Details
Major Description
1. Proposed title of this feature request
Implement "UserRequests" audit policy
2. What is the nature and description of the request?
In addition to the existing Audit Policies that were implemented as part of RFE-520, customers are looking for another audit policy that is focused on user requests. Discussions with sttts@redhat.com and anachand show that there are already plans to implement a "UserRequests" policy that includes:
- request-level for user (oauth-authenticated) requests (with exeception of security sensitive resource like secrets and configmaps, those only on metalevel)
- metalevel for everything else (with some exceptions like kube-proxy).
This RFE is to track the implementation of that additional audit policy
3. Why does the customer need this? (List the business requirements here)
OpenShift Container Platform 4 implements only certain audit policies that are either too coarse or too fine-grained in relation to user requests. Some customers would need to implement additional filtering in their logging solution to discard the messages, which may or may not incur higher costs for the customer (depending on the logging solution such as Splunk).
4. List any affected packages or components.
API Server
