Update services/src/main/java/org/keycloak/events/log/JBossLoggingEve…

…ntListenerProvider.java Co-authored-by: Václav Muzikář <[email protected]> Signed-off-by: Peter Zaoral <[email protected]>
Pepo48 · Aug 19, 2024 · 5b815c1 · 5b815c1
1 parent 40889f1
commit 5b815c1
Showing 1 changed file with 10 additions and 10 deletions.
diff --git a/services/src/main/java/org/keycloak/events/log/JBossLoggingEventListenerProvider.java b/services/src/main/java/org/keycloak/events/log/JBossLoggingEventListenerProvider.java
@@ -142,16 +142,16 @@ private void logEvent(Event event) {
             logger.log(logger.isTraceEnabled() ? Logger.Level.TRACE : level, sb.toString());
         }
 
-        RealmModel realm = session.realms().getRealm(event.getRealmId());
-        UserModel user = session.users().getUserById(realm, event.getUserId());
-        ClientModel client = session.clients().getClientByClientId(realm, event.getClientId());
-
-        if (EventType.LOGIN.equals(event.getType()) && Boolean.parseBoolean(user.getFirstAttribute(TEMP_ADMIN_ATTR_NAME))) {
-            logger.warn(user.getUsername() + " is a temporary admin user account. To harden security, create a permanent account and delete the temporary one.");
-        }
-
-        if (EventType.CLIENT_LOGIN.equals(event.getType()) && Boolean.parseBoolean(client.getAttribute(TEMP_ADMIN_ATTR_NAME))) {
-            logger.warn(client.getClientId() + " is a temporary admin service account. To harden security, create a permanent account and delete the temporary one.");
+        if (event.getRealmName().equals(Config.getAdminRealm()) && (EventType.LOGIN.equals(event.getType()) || EventType.CLIENT_LOGIN.equals(event.getType()))) {
+            RealmModel realm = session.realms().getRealm(event.getRealmId());
+            UserModel user = session.users().getUserById(realm, event.getUserId());
+            ClientModel client = session.clients().getClientByClientId(realm, event.getClientId());
+
+            if (EventType.LOGIN.equals(event.getType()) && Boolean.parseBoolean(user.getFirstAttribute(TEMP_ADMIN_ATTR_NAME))) {
+                logger.warn(user.getUsername() + " is a temporary admin user account. To harden security, create a permanent account and delete the temporary one.");
+            } else if (EventType.CLIENT_LOGIN.equals(event.getType()) && Boolean.parseBoolean(client.getAttribute(TEMP_ADMIN_ATTR_NAME))) {
+                logger.warn(client.getClientId() + " is a temporary admin service account. To harden security, create a permanent account and delete the temporary one.");
+            }
         }
     }