Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-120916

As a Developer, I want to have a separate storage service to store Auditing information for MFA checkers

Details

    Description

      1. Currently, each checker needs to write its own service method to update information like lastFailDate, lastFailIP, lastSuccessDate, lastSuccessIP.
      2. With current service design, each user can only store information for the last (fail/success) attempt, it is desirable to be able to store a configurable size of history of attempts.
      3. For FIDO2 credentials, because by spec, each user can potentially have more than one credential, it's kind of tricky to store the attempt info right now.
      4. Unique information for each checker can be stored in additional data column, similar to what we did in auditMessageBuilder.
      5. Maybe we can integrate such service with the auditMessageBuilder we have, to increase code re-usability.

      Attachments

        Activity

          People

            support-lep@liferay.com SE Support
            arthur.chen Arthur Chen
            Kiyoshi Lee Kiyoshi Lee
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Packages

                Version Package