Change log for SHIBBOLETH_IDP
| Date | Changes |
|---|---|
| 2024-03-11 | Enhancement:
- Added support for JSON format logs. - Added a Grok pattern to parse "dns" type logs. - Mapped "createdDateTime" to "metadata.event_timestamp". - Mapped "id" to "metadata.product_log_id". - Mapped "ipAddress" and "ip" to "principal.ip". - Mapped "location.city" to "principal.location.city" - Mapped "location.state" to "principal.location.state". - Mapped "location.country" to "principal.location.country". - Mapped "location.geoCoordinates.latitude" to "principal.location.region_latitude". - Mapped "location.geoCoordinates.longitude" to "principal.location.region_longitude". - Mapped "userDisplayName" to "principal.user.user_display_name". - Mapped "resourceDisplayName" to "target.resource.name". - Mapped "resourceId" to "target.resource.product_object_id". - Mapped "deviceDetail.displayName" to "principal.asset.hardware". - Mapped "deviceDetail.browser" to "network.http.user_agent". - Mapped "deviceDetail.operatingSystem" to "principal.platform_version". - Mapped "deviceDetail.operatingSystem" to "principal.platform". - Mapped "record_name" to "dns.question.name". - Mapped "record_type" to "dns.question.class". |