From 29f8e195efa8f02e51e9239394aaff97f057f24d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andor=20Moln=C3=A1r?= <andor@cloudera.com>
Date: Tue, 30 Jul 2019 12:50:57 +0200
Subject: [PATCH] HBASE-22759. Extended grant and revoke audit events with
 caller info (#427)

---
 .../apache/hadoop/hbase/security/access/AccessController.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java b/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
index bebf16cadbac..082f11239ede 100644
--- a/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
+++ b/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
@@ -2072,7 +2072,7 @@ public Void run() throws Exception {
 
         if (AUDITLOG.isTraceEnabled()) {
           // audit log should store permission changes in addition to auth results
-          AUDITLOG.trace("Granted permission " + perm.toString());
+          AUDITLOG.trace("User {} granted permission {}", caller, perm);
         }
       } else {
         throw new CoprocessorException(AccessController.class, "This method "
@@ -2129,7 +2129,7 @@ public Void run() throws Exception {
 
         if (AUDITLOG.isTraceEnabled()) {
           // audit log should record all permission changes
-          AUDITLOG.trace("Revoked permission " + perm.toString());
+          AUDITLOG.trace("User {} revoked permission {}", caller, perm);
         }
       } else {
         throw new CoprocessorException(AccessController.class, "This method "