Story

As an administrator of cluster log forwarding for multi-admin clusters,
I need to use a separate STS Role and Token for authenticating each of the cluster-wide logging configs, so that each instance can authenticate independently

Acceptance Criteria

multiple, isolated, ClusterLogForwarder instances can authenticate with Cloudwatch using STS roles
Logs are written to CW based on the specific role_arn

Notes

Will require each logging instance to have access to a unique webIdentityToken, specified for each aws profile or logging configuration
for the splunk-audit-exporter
- we implemented a session timer to handle the specifics of expired token rotation
- read/write mutex to allow multiple goroutines to read logs while ensuring only one at a time can write to CW
Based off epic for multiple-forwarders - ref: https://issues.redhat.com/browse/LOG-1343

is related to

LOG-5539 When log forwarding to cloudWatch using different AWS Role, all logs arrives to the first

Closed

OBSDA-344 Audit log forwarding produces excessive data, configuration for prefiltering is needed

Closed

Assignee:: Casey Hartman

Reporter:: Casey Hartman

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/05/02 3:38 PM

Updated:: 2024/06/11 3:56 PM

Resolved:: 2024/06/11 3:56 PM

Details

Description

Story

Acceptance Criteria

Notes

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates