-
Story
-
Resolution: Unresolved
-
Major
-
None
-
5
-
False
-
-
False
-
-
Unset
-
CRCPLAN-233 - AuthZ | PRBAC v2 Customer Migration to Workspaces
-
None
-
Platform A&M Sprint 71, Platform A&M Sprint 72, Platform A&M Sprint 73, Platform A&M Sprint 74, Platform A&M Sprint 75, Access & Management Sprint 76, Access & Management Sprint 77, Access & Management Sprint 78, Access & Management Sprint 79, Access & Management Sprint 80, Access & Management Sprint 81, Access & Management Sprint 82, Access & Management Sprint 83, Access & Management Sprint 84, Access & Management Sprint 85, Access & Management Sprint 86, Access & Management Sprint 87, Access & Management Sprint 88, Access & Management Sprint 89, Access & Management Sprint 90, Access & Management Sprint 91, Access & Management Sprint 92, Access & Management Sprint 93, Access & Management Sprint 94, A&M Tech Debt Q10, Access & Management Sprint 95, Access & Management Sprint 95, Access & Management Sprint 96, Access & Management Sprint 97, Access & Management Sprint 98, Access & Management Sprint 99, Access & Management Sprint 100
We will need audit logs for RBAC operations, to provide an audit trail on operations performed in RBAC.
We may be able to tie into some of the hooks created for notifications [1], but should come up with a set of specific actions required for these logs.
This may also be tangentially related/relevant to the discussion around TAM access request tracing/audit trails [2].
rhn-support-lphiri to help provide requirements around this.
[1] https://issues.redhat.com/browse/RHCLOUD-17740
[2] https://issues.redhat.com/browse/RHCLOUD-10910
- blocks
-
RHCLOUD-26581 RBAC | Audit Log Table layout
- Refinement
1.
|
[Spike/Research] RBAC Audit Logs - Modify PDP as Audit Logger? | Closed | Unassigned | ||
2.
|
Create Audit Log Model/Serializer/View | Closed | Ellen Dong | ||
3.
|
Log when group and role is created | Closed | Ellen Dong | ||
4.
|
Remove Principal Id and Add Resource UUID (?) | Closed | Ellen Dong | ||
5.
|
Log when Group and Role is Deleted | Closed | Ellen Dong | ||
6.
|
Log when Group/Role is Edited | Closed | Ellen Dong | ||
7.
|
Handoff to platex team | Backlog | Ellen Dong | ||
8.
|
Log when Role/User/SA is added to a group | Code Review | Ellen Dong | ||
9.
|
Log_Remove when principal/SA/role is removed from group | New | Ellen Dong |