From 450e951718633ec57fcae7a2449f6db23a527545 Mon Sep 17 00:00:00 2001
From: Bjørn Christian Seime <bjorncs@oath.com>
Date: Wed, 29 Nov 2017 15:02:12 +0100
Subject: Add ssl principal to json access log

---
 .../src/main/java/com/yahoo/container/logging/JSONFormatter.java     | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'container-accesslogging/src')

diff --git a/container-accesslogging/src/main/java/com/yahoo/container/logging/JSONFormatter.java b/container-accesslogging/src/main/java/com/yahoo/container/logging/JSONFormatter.java
index 2e97dff775b..a8be7c5ed13 100644
--- a/container-accesslogging/src/main/java/com/yahoo/container/logging/JSONFormatter.java
+++ b/container-accesslogging/src/main/java/com/yahoo/container/logging/JSONFormatter.java
@@ -68,6 +68,11 @@ public class JSONFormatter {
                 generator.writeStringField("user-principal", principal.getName());
             }
 
+            Principal sslPrincipal = accessLogEntry.getSslPrincipal();
+            if (sslPrincipal != null) {
+                generator.writeStringField("ssl-principal", principal.getName());
+            }
+
             // Only add remote address/port fields if relevant
             if (remoteAddressDiffers(accessLogEntry.getIpV4Address(), accessLogEntry.getRemoteAddress())) {
                 generator.writeStringField("remoteaddr", accessLogEntry.getRemoteAddress());
-- 
cgit v1.2.3