Authorization in rest layer automated test for audit logging

[peternied]

We've got unit tests that verify that the audit log sink is firing and we should be sure that the audit log entries are generated when using authZ in the rest layer.

Exit Criteria

• Integration test that verifies authorization in the rest layer success creates an audit log message
• Integration test that verifies authorization in the rest layer failure creates an audit log message
• Integration test that verifies authorization in rest layer vs transport layer audit message bodies are identical