[Bug 39370] New: staff authentication (success or fail) should always be logged
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=39370 Bug ID: 39370 Summary: staff authentication (success or fail) should always be logged Change sponsored?: --- Product: Koha Version: unspecified Hardware: All OS: All Status: NEW Severity: normal Priority: P5 - low Component: Authentication Assignee: koha-bugs@lists.koha-community.org Reporter: evelyn@bywatersolutions.com QA Contact: testopia@bugs.koha-community.org CC: dpavlin@rot13.org Regardless of the Authentication Logs being enabled in Koha, when a user of the category type "staff" attempts to authenticate, it should always be logged. Ideally the length of the session should also be stored, but that may add complexity (I'm happy to open a new bug for length of session if that's the preference, please just let me know). This would help for any future security questions for libraries that don't enable those authentication logs by default, and also assist in making audits more straightforward. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=39370 Evelyn Hartline <evelyn@bywatersolutions.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|koha-bugs@lists.koha-commun |kyle@bywatersolutions.com |ity.org | -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=39370 Lucas Gass (lukeg) <lucas@bywatersolutions.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |lucas@bywatersolutions.com -- You are receiving this mail because: You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org