Audit external status on users

SAM FIGUEROArequested to merge
sf/feature/audit-external-internal-user-switch into master

What does this MR do and why?

This change adds audit logging functionality to track when a user's external status is modified in GitLab. When an administrator changes a user from "internal" (regular user) to "external" (limited access user) or vice versa, the system will now automatically record this action in the audit logs for compliance and security monitoring purposes. The implementation includes configuration files to define the new audit event type, documentation updates to list the new events, code changes to actually log these status changes, and tests to verify the functionality works correctly.

References

#546230 (closed)

Screenshots or screen recordings

image

How to set up and validate locally

  1. Go to user admin page
  2. Edit a random user
  3. Check External check box
  4. Save user
  5. Go to Audit Events
  6. Observe, profit

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Merge request reports