Class designation: Class org.apache.wiki.event.WikiSecurityEvent extends org.apache.wiki.event.WikiEvent

WikiSecurityEvent is the WikiEvent subclass for security events: login/logout, wiki group adds/changes, and authorization decisions. When a WikiSecurityEvent is constructed, the security logger LOGGER is notified.

The WikiSecurityEvent types are as follows:

WikiSecurityEvent.LOGIN_INITIATED
When a user's attempts to log in as guest, via cookies, using a password or otherwise.
WikiSecurityEvent.LOGIN_ANONYMOUS
When a user first accesses JSPWiki, but before logging in or setting a cookie.
WikiSecurityEvent.LOGIN_ASSERTED
When a user sets a cookie to assert their identity.
WikiSecurityEvent.LOGIN_AUTHENTICATED
When a user authenticates with a username and password, or via container auth.
WikiSecurityEvent.LOGIN_ACCOUNT_EXPIRED
When a login fails due to account expiration.
WikiSecurityEvent.LOGIN_CREDENTIAL_EXPIRED
When a login fails due to credential expiration.
WikiSecurityEvent.LOGIN_FAILED
When a login fails due to wrong username or password.
WikiSecurityEvent.LOGOUT
When a user logs out.
WikiSecurityEvent.SESSION_EXPIRED
When a session expires.
WikiSecurityEvent.GROUP_ADD
When a new wiki group is added.
WikiSecurityEvent.GROUP_REMOVE
When a wiki group is deleted.
WikiSecurityEvent.GROUP_CLEAR_GROUPS
When all wiki groups are removed from GroupDatabase.
WikiSecurityEvent.ACCESS_ALLOWED
When access to a resource is allowed.
WikiSecurityEvent.ACCESS_DENIED
When access to a resource is denied.
WikiSecurityEvent.PROFILE_SAVE
When a user profile is saved.

Log levels#

These events are logged with priority ERROR:

  • login failed - bad credential or password

These events are logged with priority WARN:

  • access denied
  • login failed - credential expired
  • login failed - account expired

These events are logged with priority INFO:

  • login succeeded
  • logout

These events are logged with priority DEBUG:

  • access allowed
  • add group
  • remove group
  • clear all groups
  • add group member
  • remove group member
  • clear all members from group


See: WikiEvent, WikiEventManager


Category.D