Audit Event Logging for Auditor Role Changes
Description:
Currently, in GitLab, when a user is promoted or demoted to the 'Admin' role, an audit event is logged to capture this action. However, this audit logging does not extend to the 'Auditor' role. As an enhancement to the platform's monitoring capabilities, we propose that similar audit event logging be implemented for the 'Auditor' role. This would allow instance administrators to have a comprehensive view of all role changes, ensuring better governance and oversight.
Expected Behavior:
When a user is promoted to the 'Auditor' role, an audit event should be logged detailing the change. Similarly, when a user is removed from the 'Auditor' role, an audit event should be logged to capture this action.
By extending the audit logging to the 'Auditor' role, we can offer instance administrators a complete and transparent view of role changes within the platform. This will enhance security, accountability, and monitoring capabilities, ensuring that any changes to roles with access to sensitive data or functionalities are adequately tracked.