Description Jan-Luca Kiok 2023-12-12 11:37:25 CET

If an error occurs while syncing objects via the ID Connector the error is logged, the transaction discarded and the corresponding payload is moved to the trash dir.
This means that operators are not notified that there is a problem and if it is discovered later and the automatic cleaning mechanism and/or logrotation is turned on the payload and/or log statements might already be lost.

As a first and quick step that does not alter the behavior too much we should move rejected transactions to a new directory (e.g. "rejected") instead of moving them to the trash.
It might be considerable to also log these errors to a new logfile too.

Instead of having to rely on log analysis operators could monitor this directory to be notified sooner and easier.
We should avoid to clean this directory with the auto mechanism so that files are not removed without manual approval.