Nexeed
    • Introduction
    • User manual
      • Basic operation
      • Getting started
      • User
      • Groups
      • Roles
      • Organizations
      • Contracts
      • Modules
      • Identity providers
        • General Settings for the Identity Provider
        • Mapper Overview
      • Reports
      • Activity log
      • My Account
        • Overview: Login Tab
      • Configuration
        • Contents of the configuration file
        • How to work with the configuration file
    • Operations manual
      • Overview
      • System Architecture and Interfaces
      • System Requirements
        • macma/macma-webapp-backend
        • macma/macma-core
        • macma/macma-keycloak-mssql
      • Migration from Previous Versions
        • Migration to 1.37+
        • Migration to 1.34+
        • Migration to 1.33+
        • Migration to 1.32+
        • Migration to 1.31+
        • Migration to 1.29+
        • Migration to 1.28+
        • Migration to 1.27+
        • Migration to 1.26+
        • Migration to 1.25+
        • Migration to 1.21+
        • Migration to 1.20+
        • Migration to 1.19+
        • Migration to 1.18+
        • Migration to 1.17+
        • Migration to 1.16.0
        • Migration to 1.15.0
      • Setup and Configuration
        • Helm Configuration
        • macma/macma-core Configuration
        • macma/macma-keycloak-mssql Configuration
        • macma/macma-webapp-backend Configuration
        • Installation guide
        • Identity provider integration
        • Optional Configuration
        • Recommendations
        • Module Health Verification Endpoints and K8S Probes
      • Start and Shutdown
      • Regular Operations
        • Registering a new application in MACMA
          • Allowing application to use other applications
        • Change client secret of an application
      • Logging and Monitoring
        • Required Monitoring
        • Security Logging
          • Macma Security Events
          • Keycloak Security Events
          • Security Logging Format
        • Activity Logging
          • Activity Log Events
      • Known Limitations
        • Performance
        • General
        • Allowed characters and Internationalization
    • Developer documentation
      • Concepts
        • Authentication
        • Authorization
        • Resources
        • Roles
        • Sharing
      • Getting started
        • Registration
        • Authentication
        • Authorization
        • Multitenancy
      • How-to
        • Get & handle tokens
        • OAuth 2.0 for Mobile and Native Apps
        • Evolve authorization in your application lifecycle
        • Use Web Core for user login
        • Handle our integration events
        • Frequent How-To Questions for Application Developers
        • Do automated testing
        • Advertise things to colleagues
        • Integrate with additional environments
      • Deep dives
        • OAuth2 and its flows
        • OpenID Connect endpoints
    • Troubleshooting
      • Startup and availability
      • Identity provider integration
      • Resource deletion
      • Authentication
      • Authorization
    • API documentation
      • HTTP API
      • Event API
    • Glossary
Multitenant Access Control
  • Industrial Application System
  • Core Services
    • Block Management
    • Deviation Processor
    • ID Builder
    • Multitenant Access Control
    • Notification Service
    • Ticket Management
    • Web Portal
  • Shopfloor Management
    • Andon Live
    • Global Production Overview
    • KPI Reporting
    • Operational Routines
    • Shift Book
    • Shopfloor Management Administration
  • Product & Quality
    • Product Setup Management
    • Part Traceability
    • Process Quality
    • Setup Specs
  • Execution
    • Line Control
    • Material Management
    • Order Management
    • Packaging Control
    • Rework Control
  • Intralogistics
    • AGV Control Center
    • Stock Management
    • Transport Management
  • Machine & Equipment
    • Condition Monitoring
    • Device Portal
    • Maintenance Management
    • Tool Management
  • Enterprise & Shopfloor Integration
    • Archiving Bridge
    • Data Publisher
    • Direct Data Link
    • Engineering UI
    • ERP Connectivity
    • Gateway
    • Information Router
    • Master Data Management
    • Orchestrator

Nexeed Learning Portal
  • Multitenant Access Control
  • Operations manual
  • Logging and Monitoring
  • Security Logging
  • Macma Security Events
1.37.1 1.37.0

Macma Security Events

There is no security event logged when a request to a MACMA API happens without a token.

Events logged by MACMA Core are

Table 1. Macma Security Events
Log event Description

TLS_DISABLED

Check environment variable JAVA_TLS_DISABLE.

LOGIN_FAILED

Login failed e.g. invalid username or password.

LOGIN_SUCCESSFUL

The login succeeded.

TOKEN_EXPIRED

Is logged as TOKEN_VALIDATION_FAILED.

TOKEN_SIGNATURE_INVALID

Is logged as TOKEN_VALIDATION_FAILED.

TOKEN_VALIDATION_FAILED

The token validation failed. For the reason look into the message details.

UNAUTHORIZED_ACCESS

Attempt to access a resource without required privilege e.g. without being logged in.

INPUT_VALIDATION_FAILED

All input is validated regarding size and accepted characters.

SENSITIVE_DATA_ACCESSED

User password changed or client secret changed.

ENDPOINT_DOES_NOT_EXIST

An url was accessed that does not exist.

X_INPUT_CONVERSION_FAILED

Conversion from payload into object failed.

X_BAD_REQEUST

Tried to access with invalid or incomplete request.

X_UNEXPECTED_EXCEPTION

Any exception can be a hint that an attack is ongoing.

X_NOT_FOUND_EXCEPTION

Tried to access an entity that does not exist.

X_METHOD_NOT_ALLOWED

HTTP method is not supported.

X_UNSUPPORTED_MEDIA_TYPE

The request did provide none or a not supported media type.

X_ACCESS_DENIED

The access was denied.

X_ACCESS_GRANTED

The access was granted after verifying the privileges.

X_CLIENT_ERROR_EXCEPTION

Got an exception from underlying service, most likely keycloak. HTTP 4xx status codes.

X_WEB_APPLICATION_EXCEPTION

Generic runtime exception thrown when calling underlying service.

X_MAX_ALLOWED_SIZE_EXCEEDED

The payload of the request is too large.

Contents

© Robert Bosch Manufacturing Solutions GmbH 2023-2025, all rights reserved

Changelog Corporate information Legal notice Data protection notice Third party licenses