Skip to content

Audit Log Support #277

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
6 tasks done
misskniss opened this issue Feb 11, 2022 · 1 comment
Closed
6 tasks done

Audit Log Support #277

misskniss opened this issue Feb 11, 2022 · 1 comment
Labels
enterprise Enterprise-license / premium functionality

Comments

@misskniss
Copy link

misskniss commented Feb 11, 2022
edited
Loading

Breakout Discussion

March 15, 2022
RFC

User Stories

  • As an ADMIN I want to view audit logs to find out what changed about the platform
  • As an ADMIN I want to use audit logs to detect and respond to security incidents
  • As an ADMIN I want to export audit logs to my cloud for better search-ability, monitoring, and alerts

On day 1 of MVP, the audit log on the dashboard looks exactly as it does now, except that the backend no longer stores Open, Connect, and other spammy audit logs. We have one option for exporting via slog.

  • Move over the distributed diff names into the single source - BETA
  • Implement ability to use the single source to generate a JSON blob of all our diffs - something that will let us generate docs - ENT
  • Create generic filter system to allow us to only export some logs. - BETA
    Start with high level design documentation that we can cover in a review session.
  • Investigate which backend log ingestion services are highest values for our customers so we know where to focus our support efforts first - ENT
    @tjcran
  • Create list for the logs we do/not want to show on the front end (look at [Teleport] - ENT (https://goteleport.com/how-it-works/audit-logging-for-ssh-and-kubernetes/)
    We should reference what the industry in general is doing / market validation)
    @vapurrmaid @tjcran
  • Frontend: components will need an overhaul/clean up to simplify and pull in a static list of keys for the filtering input fields. - ENT
    @vapurrmaid
  • Investigate a Free vs Paid model. Model this off of GitHub? - ENT
    Note: it is easier for us to un-restrict than retroactively restrict things.
    @tjcran
  • Create an implementation plan for the Free vs Paid model that can be discussed in a review session. - ENT
  • Bring in frontend testing for diff generation - ENT
    @vapurrmaid
  • Create testing that is decoupled from the HTTP API tests. How to we make sure the audit logs are created? How to we validate the logs that are generated / that the diff is correct. - BETA
  • There are Storybook tests for audit logging now. Can we model this on the XState work? - ENT
  • Collect any past user feedback about our logging. Summarize that info below in the "user feedback summary" section. ( @tjcran )

user feedback summary

See: https://www.notion.so/coderhq/Workspaces-v2-GTM-a317650d4b4e4770bf4925f5688e36d0
@misskniss misskniss added this to the V2 Alpha milestone Feb 11, 2022
@misskniss misskniss added the Epic label Feb 11, 2022
@tjcran tjcran removed the V2 ALPHA label Mar 28, 2022
@misskniss misskniss modified the milestones: V2 Alpha, V2 Beta Mar 29, 2022
@jsjoeio jsjoeio mentioned this issue Apr 6, 2022
Closed
@misskniss misskniss removed this from the V2 Beta milestone May 5, 2022
@ketang ketang added the enterprise Enterprise-license / premium functionality label Jun 30, 2022
@kylecarbs kylecarbs removed the V2 BETA label Jul 18, 2022
@Kira-Pilot
Copy link
Member

Closing in favor of #3251

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enterprise Enterprise-license / premium functionality
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@ketang @misskniss @coadler @tjcran @kylecarbs @Kira-Pilot