Skip to content

Audit events in admin interface of user edits

Zendesk: https://gitlab.zendesk.com/agent/tickets/15224

description

Show audit events in the admin screen for the following actions:

  • a user is created
  • a user is blocked
  • a user is deleted

original issue

I recently worked with a customer that had some strange things happen with a user being added, granting some permission and then the user was deleted. We can look up what happened in the application.log but it seems it would be nice to have audit events about global changes in the admin area. Events may include users created/blocked/deleted from the system as well as other global tasks are they are deemed useful.

This doesn't seem like a ton of work. We can just hook in any place that is currently writing to application.log. We can basically re-use the views from group/project events. It's not urgent, but a nice to have.

cc/ @JobV @dzaporozhets What do you think?

Proposal

Add audit events to the GitLab UI for the three listed activities. They should have important detail for auditing purposes. For example:

  • Administrator created User (name, email) at date/timestamp
  • Administrator blocked User (name, email) at date/timestamp
  • Administrator deleted User (name, email) at date/timestamp

This data should have a default sort order of Newest to Oldest based on date/timestamp.

Edited by Matt Gonzales (ex-GitLab)