Emit audit events to instance level destinations (!118513) · Merge requests · GitLab.org / GitLab

Hitesh Raghuvanshi requested to merge 335176-emit-audit-events-lat into master Apr 24, 2023

What does this MR do and why?

In MR !118363 (merged), we added an API for creating instance level external audit event destinations. Now we need to emit instance level audit events to these destinations if atleast one is present.

How to set up and validate locally

Enable the feature flag ff_external_audit_events from rails console by running Feature.enable(:ff_external_audit_events).
Login as an instance admin in the browser on http://localhost:3000.
Go to http://localhost:3000/-/graphql-explorer.
Create an entry for instance level external audit event destination by running following command in graphql-explorer.

mutation {
  instanceExternalAuditEventDestinationCreate(input: { destinationUrl: "https://www.example.com"}) {
    errors
    instanceExternalAuditEventDestination {
      destinationUrl
      id
      verificationToken
    }
  }
}

Once the destination is set, create a new group.
An audit event will get created, which you can check in http://localhost:3000/admin/audit_logs and same will be sent to the external destination(s) added previously.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #335176 (closed)

Edited May 08, 2023 by Hitesh Raghuvanshi

Emit audit events to instance level destinations

What does this MR do and why?

How to set up and validate locally

MR acceptance checklist

Merge request reports