-
Notifications
You must be signed in to change notification settings - Fork 80
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enhance audit log (draft) #253
base: main
Are you sure you want to change the base?
Conversation
This proposal not only introduces a new auditlogo but also add much more events.
I suggest also making the auditlog plugable, meaning that in the future it would be possible to add other types of backends apart from postgres, like opentelemtry or loki.. I am looking into few options and Unlogged tables directly or in combination with stored procedures can provide a huge improvement in write performance. |
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Previous audit log has the log forward option, it can avoid log in the database |
The problem with the existing approach is that when this is enabled. Audit logs aren't displayed in Harbor anymore. All events are forwarded to syslog. What I had in mind was had the option to implement a different storage backend instead of the postgres. |
When you configured forward log to LogInsight or ELK, you should search the audit log in the ELK's query interface. |
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
@Vad1mo This is essentially a query module in Harbor that works with different backends. |
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
Signed-off-by: stonezdj <[email protected]>
No description provided.