How to disable Apereo CAS audit log
I'm using Apereo CAS 5.3.x and I don't need audit log like below in my log file.(For Security reasons)
WHO: org.apereo.cas.support.oauth.authentication.principal.OAuthCredentials@6cd7c975
WHAT: supplied credentials: org.apereo.cas.support.oauth.authentication.principal.OAuthCredentials@6cd7c975
ACTION: AUTHENTICATION_SUCCESS
APPLICATION: CAS
WHEN: Mon Aug 26 12:35:59 IST 2013
CLIENT IP ADDRESS: 172.16.5.181
SERVER IP ADDRESS: 192.168.200.22
I tried to search CAS documentation and got some properties but seems none of them are suitable.
While there is no property available for 5.3.x to enable/disable audits, you can simply turn off audit logs via the logging configuration, as the very same page you pointed out shows how that can be done via Slf4j logging that controls log files. Find your log4j2.xml file and adjust as:
<AsyncLogger name="org.apereo.inspektr.audit.support" level="info">
<!-- Route the audit data ... -->
</AsyncLogger>
A simple strategy would be to set info to off. Starting with CAS 6.1.x, you can use cas.audit.enabled=false
I tried to search CAS documentation and got some properties but seems none of them are suitable.
The documentation you point to is for CAS 5.1.x, as evidenced in the URL for 5.1.x, and at the very top of the page and almost every page in the documentation:
The correct link for future reference, is this.
- Ticket validated but no PGT in the ticket validation response (CAS 6.5.9)
- Attempt by security transparent method X to access security critical method Y failed
- Spring Security 6.2 and CAS authentication : what happened to CasAuthenticationFilter.CAS_STATEFUL_IDENTIFIER?
- jdk.event.security sending logs for 3 minutes before starting my spring boot app [Apereo CAS]
- What happened "org.apereo.cas.web.security" in 7.0.0-RC9 of org.apereo.cas?
- How to retrieve attributes and username sent by the CAS server with Spring Security
- Creating SSO (single sign on) CAS on ASP.NET Core 6 MVC app
- On apereo cas 6.6 MFA can I check for trusted devices before showing the provider selection screen?
- CAS - how print the value present in json service in the webview login page?
- Saml assertion response does not include all attributes
- Could not resolve org.scaldingspoon.gradle:gradle-waroverlay-plugin:0.9.3
- Matrix-synapse doesn't retrieve CAS attributes
- Get my own properties in cas client and Liferay
- Checking CAS user in internal database with Laravel
- Can i use Jasig CAS server for android mobile applications?
- CAS service ticket validate failed
- How integrating CAS Protocol with Microsoft .NET6 APIs c#
- PG::UniqueViolation error with Devise and devise_cas_authenticable
- CAS vs Okta Vs Keycloak comparisions as an SSO solution
- Can't Define Services in CAS Overlay Template v. 6.4 (Docker)
- cannot start cas-overlay-template on windows - missing \etc\cas\thekeystore
- IllegalArgumentException deploying CAS 5.3.10 Maven Overlay WAR on Wildfly 14
- CAS Spnego - KrbException: Checksum failed
- Derived types must either match the security accessibility of the base type or be less accessible in very basic case
- Configuration of OpenId Connect token expiration in CAS
- Cross browser SSO with CAS
- Using CAS with redirect Failed asserting that the Response status code is 200
- How to read CAS ticket validation XML using spring security?
- Uri not Absolute exception getting while calling Restful Webservice
- What is the point of the Kerberos Service Ticket (ST) in CAS?