3 Replies Latest reply on Jun 7, 2016 6:53 AM by Jaroslav Simak

    Monitoring forbidden or denied access in undertow

    Jaroslav Simak Newbie

      I have configured https with client authentication, access-log and IP filter in undertow under wildfly 10. (I removed http listener too)

      Is is possible to get denied requests logged (either because request coming from not allowed IPs or because of authentication issue like wrong certificate etc.)?

       

      So far, I only saw successful access request logged in access-log. For security reason, it would be interesting to see, the denied requests.


      Undertow configuration:


              <subsystem xmlns="urn:jboss:domain:undertow:3.0">

                  <buffer-cache name="default"/>

                  <server name="default-server">

                      <https-listener name="default-https" verify-client="REQUIRED" security-realm="SSLRealm" socket-binding="https"/>

                      <host name="default-host" alias="localhost">

                          <location name="/" handler="welcome-content"/>

                          <access-log pattern="combined"/>

                          <filter-ref name="server-header"/>

                          <filter-ref name="x-powered-by-header"/>

                          <filter-ref name="ipaccess"/>

                      </host>

                  </server>

                  <servlet-container name="default">

                      <jsp-config/>

                      <websockets/>

                  </servlet-container>

                  <handlers>

                      <file name="welcome-content" path="${jboss.home.dir}/welcome-content"/>

                  </handlers>

                  <filters>

                      <response-header name="server-header" header-name="Server" header-value="WildFly/10"/>

                      <response-header name="x-powered-by-header" header-name="X-Powered-By" header-value="Undertow/1"/>

                      <expression-filter name="ipaccess" module="io.undertow.core" expression="ip-access-control(default-allow=false, acl={'10.0.0.0 allow'})"/>

                  </filters>

              </subsystem>