Add additional user actions in Audit events
Description
As part of the Audit events, we need to log important user actions.
We currently track user authentication data as part of GitLab CE.
All new functionality is only available to GitLab EEP.
This is to be recorded when the user does the actions below.
- Add a new email address
- Remove an email address
- Password change
- Forget password
- Failed to login
- Add SSH key
- Grant Oauth access
Additional information to be recorded:
- Timestamp
- IP address
This information is available instance wide, in a new tab in the administration panel, under 'Audit events'.
Example
| Author | Object | Action | Target | IP Address | Date |
|---|---|---|---|---|---|
| Mike Bartlett | mydigitalself | Add email address | mike@hipgeeks.net | 192.168.0.1 | Timestamp |
| Mike Bartlett | mydigitalself | Remove email address | mike@hipgeeks.net | 192.168.0.1 | Timestamp |
| Mike Bartlett | mydigitalself | Change password | 192.168.0.1 | Timestamp | |
| Mike Bartlett | mydigitalself | Ask for password reset | 192.168.0.1 | Timestamp | |
| Mike Bartlett | mydigitalself | Login failed | 192.168.0.1 | Timestamp | |
| Mike Bartlett | mydigitalself | Add SSH key | 192.168.0.1 | Timestamp | |
| Mike Bartlett | mydigitalself | Grant oAuth Access | App Name | 192.168.0.1 | Timestamp |
References
Part of meta issue about logs: https://gitlab.com/gitlab-org/gitlab-ee/issues/579