eagle-security/eagle-security-common/src/main/java/org/apache/eagle/security/hdfs/MAPRFSAuditLogParser.java - eagle - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *    http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 package org.apache.eagle.security.hdfs;

 import org.apache.eagle.common.DateTimeUtil;
 import org.codehaus.jettison.json.JSONException;
 import org.codehaus.jettison.json.JSONObject;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;

 public final class MAPRFSAuditLogParser {
     private final static Logger LOG = LoggerFactory.getLogger(MAPRFSAuditLogParser.class);

     public MAPRFSAuditLogParser() {
     }

     public MAPRFSAuditLogObject parse(String log) throws JSONException {
         JSONObject jsonObject = new JSONObject(log);
         MAPRFSAuditLogObject entity = new MAPRFSAuditLogObject();
         try {
             String timestamp = jsonObject.getJSONObject("timestamp").getString("$date");
             String cmd = jsonObject.getString("operation");
             String user = jsonObject.getString("uid");
             String ip = jsonObject.getString("ipAddress");
             String status = jsonObject.getString("status");
             String volumeID = jsonObject.getString("volumeId");
             String src;
             String dst;
             if (jsonObject.has("srcFid")) {
                 src = jsonObject.getString("srcFid");
             } else {
                 src = "null";
             }

             if (jsonObject.has("dstFid")) {
                 dst = jsonObject.getString("dstFid");
             } else {
                 dst = "null";
             }
             entity.user = user;
             entity.cmd = cmd;
             entity.src = src;
             entity.dst = dst;
             entity.host = ip;
             entity.status = status;
             entity.volume = volumeID;
             entity.timestamp = DateTimeUtil.maprhumanDateToMilliseconds(timestamp);
         } catch (Exception e) {
             LOG.error("Failed to parse mapr audit log message", e);
         }
         return entity;
     }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	package org.apache.eagle.security.hdfs;

	import org.apache.eagle.common.DateTimeUtil;
	import org.codehaus.jettison.json.JSONException;
	import org.codehaus.jettison.json.JSONObject;
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;

	public final class MAPRFSAuditLogParser {
	private final static Logger LOG = LoggerFactory.getLogger(MAPRFSAuditLogParser.class);

	public MAPRFSAuditLogParser() {
	}

	public MAPRFSAuditLogObject parse(String log) throws JSONException {
	JSONObject jsonObject = new JSONObject(log);
	MAPRFSAuditLogObject entity = new MAPRFSAuditLogObject();
	try {
	String timestamp = jsonObject.getJSONObject("timestamp").getString("$date");
	String cmd = jsonObject.getString("operation");
	String user = jsonObject.getString("uid");
	String ip = jsonObject.getString("ipAddress");
	String status = jsonObject.getString("status");
	String volumeID = jsonObject.getString("volumeId");
	String src;
	String dst;
	if (jsonObject.has("srcFid")) {
	src = jsonObject.getString("srcFid");
	} else {
	src = "null";
	}

	if (jsonObject.has("dstFid")) {
	dst = jsonObject.getString("dstFid");
	} else {
	dst = "null";
	}
	entity.user = user;
	entity.cmd = cmd;
	entity.src = src;
	entity.dst = dst;
	entity.host = ip;
	entity.status = status;
	entity.volume = volumeID;
	entity.timestamp = DateTimeUtil.maprhumanDateToMilliseconds(timestamp);
	} catch (Exception e) {
	LOG.error("Failed to parse mapr audit log message", e);
	}
	return entity;
	}
	}