Community
Participate
Working Groups
Created attachment 245901 [details] Provided logging of repo files on fetch or push We have a corporate security requirement to log user access to repositories hosted on our Git server. Part of this requirement involves detailing the access time, user info, the Git action and repository state and files fetched or modified. There does not seem to be any auditing or logging capabilities in JGit that would help us comply with those requirements. Ideally the auditing should allow administrators to enable or disable the types of events or data that get logged.
Gerrit (which uses JGit) has logging. It doesn't log while files are updated, but that information is in the repo and Gerrit can ensure that users only push changes in their authenticated users own name. Else, if you build something on top of JGit, you can add logging too on top of JGit, just as Gerrit does.
Thanks Robin for your comments. We are in fact using Gerrit and have already added a com.google.gerrit.audit.AuditListener but the logging information here is insufficient to meet our requirements. Is this the Gerrit logging you were referring to? We are not considering developing an additional layer at this time, we were hoping that logging for security and auditing purposes would be an integral component of JGit itself.