auditlog

package

v0.9.15 Latest Latest Go to latest Published: Mar 3, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/GoogleCloudPlatform/healthcare-federated-access-services

Links

Open Source Insights

Documentation ¶

Overview ¶

Package auditlog contains logging structs.

Index ¶

Constants
Variables
func WritePolicyDecisionLog(client *logging.Client, log *PolicyDecisionLog)
func WriteRequestLog(ctx context.Context, client *logging.Client, log *RequestLog)
type PolicyDecisionLog
type RequestLog

Constants ¶

View Source

const (
	// TypeRequestLog log type string for access log
	TypeRequestLog = "request"
	// TypePolicyLog log type string for policy log
	TypePolicyLog = "policy_decision"
)

Variables ¶

View Source

var (
	// LogSync ensure that logs are written sync.
	// Useful for testing.
	LogSync bool

	// SearchableFields lists all labels allow to search via FA endpoints
	SearchableFields = []string{
		"httpRequest.requestMethod",
		"labels.token_id",
		"labels.token_issuer",
		"labels.tracing_id",
		"labels.request_endpoint",
		"labels.request_path",
		"labels.error_type",
		"labels.resource",
		"labels.ttl",
		"labels.cart_id",
	}
)

Functions ¶

func WritePolicyDecisionLog ¶ added in v0.8.5

func WritePolicyDecisionLog(client *logging.Client, log *PolicyDecisionLog)

WritePolicyDecisionLog puts the policy decision log to StackDriver.

func WriteRequestLog ¶ added in v0.9.5

func WriteRequestLog(ctx context.Context, client *logging.Client, log *RequestLog)

WriteRequestLog puts the access log to StackDriver.

Types ¶

type PolicyDecisionLog ¶ added in v0.8.5

type PolicyDecisionLog struct {
	// TokenID is the id of the token, maybe "jti".
	TokenID string
	// TokenSubject is the "sub" of the token.
	TokenSubject string
	// TokenIssuer is the iss of the token.
	TokenIssuer string
	// Resource identifies the dataset.
	Resource string
	// TTL that user requested to grant.
	TTL string
	// PassAuthCheck if the request pass the auth checker.
	PassAuthCheck bool
	// ErrorType of deny.
	ErrorType string
	// CartID of request.
	CartID string
	// ConfigRevision the request using. Can use /config/history/{revision} to see the policy.
	ConfigRevision int64
	// Message of deny.
	Message interface{}
}

PolicyDecisionLog logs the dataset access request be granted or denied and the reason.

type RequestLog ¶ added in v0.9.5

type RequestLog struct {
	// TokenID is the id of the token, maybe "jti".
	TokenID string
	// TokenSubject is the "sub" of the token.
	TokenSubject string
	// TokenIssuer is the iss of the token.
	TokenIssuer string
	// TracingID is the id of request from proxies.
	TracingID string
	// RequestMethod is the http method of the request.
	RequestMethod string
	// RequestEndpoint is the absolute abstract path of the request endpoint registration.
	RequestEndpoint string
	// RequestPath is the request's path with concrete variables (such as realm) filled in
	// as per the caller's absolute path.
	RequestPath string
	// RequestIP is the requester IP.
	RequestIP string
	// ErrorType formats like "no_token" for search.
	ErrorType string
	// ResponseCode is the response code.
	ResponseCode int
	// Request stores the http.Request.
	Request *http.Request
	// PassAuthCheck if the request pass the auth checker.
	PassAuthCheck bool
	// Payload of the log.
	Payload interface{}
}

RequestLog logs the http endpoint accessing.

Source Files ¶

View all Source files

auditlog.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL