[midPoint] Empty Persona Audit Records during Recomputations
iam-mailing at tk.de
iam-mailing at tk.de
Fri Nov 29 12:15:19 CET 2024
Hello together,
we use personas in our deployment a lot.
During our user recomputation task, every user gets recomputed, and midpoint only creates an audit record if the recompute results in any modification.
Unfortunately, this does not work for the personas, so if a user gets recomputed without changes than there is no audit event but for every persona we have empty audit events.
After little bit of debugging, I found out that midpoint sets “LazyAuditRequest“ in the LensContext for recomputation tasks. That prevents midpoint from creating audit events for recomputations without changes.
While creating a new LensContext for the persona delta, midpoint loses this setting. I tested an overlay where the setting would be propagated to the persona LensContext. This seems to work fine, audit events only get created if there is a modification in the persona.
For the changes I created a PR: https://github.com/Evolveum/midpoint/pull/236
What do you think about this change and behavior?
Kind Regards
Emil Militzer
__________________________
[signature_1916280972]<https://www.tk.de/>
Techniker Krankenkasse
Unternehmenszentrale
Emil Militzer
emil.militzer at tk.de<mailto:emil.militzer at tk.de>
P.S. I also created a PR for a small docs update and would be interested in your opinion: https://github.com/Evolveum/midpoint/pull/237
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20241129/e125354c/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 5701 bytes
Desc: image001.png
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20241129/e125354c/attachment.png>
More information about the midPoint
mailing list