Details
-
Suggestion
-
Status: Gathering Interest (View Workflow)
-
Resolution: Unresolved
-
None
-
None
Description
Summary: The customer has interacted with User management for Confluence and Jira with Crowd. Whenever user authentication failed due to an incorrect user/password in the Confluence/Jira side, Crowd Access logs print the IP-Address of Confluence and Jira Server.
Expected Behaviour:
Ideally, after the login attempt failed at Jira/Confluence it should print the Client IP address along with the Server details of who is trying to attempt a login.
07/Feb/2023:10:38:56 +0000]|10.6.0.4,-|-|Apache-HttpClient/4.5.13 (Java/11.0.17)|POST|POST /crowd/rest/usermanagement/1/authentication?username=szielinska HTTP/1.1|202|400|https-jsse-nio-8443-exec-9
[07/Feb/2023:10:46:01 +0000]|10.6.0.1,-|-|Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/109.0|GET|GET /crowd/console/login.action HTTP/1.1|1587|200|http-nio-8095-exec-13
Here,
10.6.0.4 => Jira Server IP
10.6.0.1 => Client IP