The highest tagged major version is
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Auditable ¶
type Auditable interface {
database.APIKey |
database.Organization |
database.OrganizationMember |
database.Template |
database.TemplateVersion |
database.User |
database.Workspace |
database.GitSSHKey
}
Auditable is mostly a marker interface. It contains a definitive list of all auditable types. If you want to audit a new type, first define it in AuditableResources, then add it to this interface.
type Auditor ¶ added in v0.8.11
type Backend ¶ added in v0.5.5
type Backend interface {
// Decision determines the FilterDecisions that the backend tolerates.
Decision() FilterDecision
// Export sends an audit log to the backend.
Export(ctx context.Context, alog database.AuditLog) error
}
Backends can store or send audit logs to arbitrary locations.
type Differ ¶ added in v0.8.11
Differ is used so the enterprise version can implement the diff function in the Auditor feature interface. Only types in the same package as the interface can implement unexported methods.
type Exporter ¶ added in v0.5.5
type Exporter struct {
// contains filtered or unexported fields
}
Exporter exports audit logs to an arbitrary list of backends.
func NewExporter ¶ added in v0.5.5
NewExporter creates an exporter from the given filter and backends.
type Filter ¶ added in v0.5.5
type Filter interface {
Check(ctx context.Context, alog database.AuditLog) (FilterDecision, error)
}
Filters produce a FilterDecision for a given audit log.
var DefaultFilter Filter = FilterFunc(func(ctx context.Context, alog database.AuditLog) (FilterDecision, error) { return FilterDecisionStore | FilterDecisionExport, nil })
DefaultFilter is the default filter used when exporting audit logs. It allows storage and exporting for all audit logs.
type FilterDecision ¶ added in v0.5.5
type FilterDecision uint8
FilterDecision is a bitwise flag describing the actions a given filter allows for a given audit log.
const ( // FilterDecisionDrop indicates that the audit log should be dropped. It // should not be stored or exported anywhere. FilterDecisionDrop FilterDecision = 0 // FilterDecisionStore indicates that the audit log should be allowed to be // stored in the Coder database. FilterDecisionStore FilterDecision = 1 << iota // FilterDecisionExport indicates that the audit log should be exported // externally of Coder. FilterDecisionExport )
type FilterFunc ¶ added in v0.5.5
FilterFunc constructs a Filter from a simple function.
func (FilterFunc) Check ¶ added in v0.5.5
func (f FilterFunc) Check(ctx context.Context, alog database.AuditLog) (FilterDecision, error)
type Map ¶
Map is a map of changed fields in an audited resource. It maps field names to the old and new value for that field.
type OldNew ¶ added in v0.8.11
OldNew is a pair of values representing the old value and the new value.
type Request ¶ added in v0.8.11
type Request[T Auditable] struct { Old T New T // contains filtered or unexported fields }
func InitRequest ¶ added in v0.8.11
func InitRequest[T Auditable](w http.ResponseWriter, p *RequestParams) (*Request[T], func())
InitRequest initializes an audit log for a request. It returns a function that should be deferred, causing the audit log to be committed when the handler returns.
type RequestParams ¶ added in v0.8.11
type RequestParams struct {
Audit Auditor
Log slog.Logger
Action database.AuditAction
ResourceType database.ResourceType
Actor uuid.UUID
}
Source Files
Directories