Skip to content

Add client remote address to some audit events#36354

Merged
gabrielcorado merged 7 commits intomasterfrom
gabrielcorado/add-client-info-admin-requests
Jan 10, 2024
Merged

Add client remote address to some audit events#36354
gabrielcorado merged 7 commits intomasterfrom
gabrielcorado/add-client-info-admin-requests

Conversation

@gabrielcorado
Copy link
Copy Markdown
Contributor

@gabrielcorado gabrielcorado commented Jan 5, 2024
edited
Loading

Related to #34598.

Adds client remote address to the following audit events:

  • Users: user.create, user.update, user.delete, and user.password_change.
  • Roles: role.created, role.updated, and role.deleted.
  • Trusted cluster: trusted_cluster.create, trusted_cluster.update, and trusted_cluster.delete.
  • Github connector: github.created, github.updated, and github.deleted. And, also login events.

To fetch the client's IP address, we rely on the same mechanism used for IP pinning, where the IP address is placed in the context.

changelog: Add client remote IP address to some administrative audit events (user.create, user.update, user.delete, user.password_change, role.created, role.updated, role.deleted, trusted_cluster.create, trusted_cluster.update, trusted_cluster.delete, github.created, github.updated, and github.deleted).

@gabrielcorado gabrielcorado self-assigned this Jan 5, 2024
@github-actions github-actions Bot requested review from lxea and strideynet January 5, 2024 19:48
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Jan 5, 2024

The PR changelog entry failed validation: Changelog entry not found in the PR body. Please add a "no-changelog" label to the PR, or changelog lines starting with changelog: followed by the changelog entries for the PR.

@gabrielcorado gabrielcorado requested a review from greedy52 January 8, 2024 13:55
@public-teleport-github-review-bot public-teleport-github-review-bot Bot removed the request for review from lxea January 8, 2024 14:27
@gabrielcorado gabrielcorado added this pull request to the merge queue Jan 10, 2024
@github-merge-queue github-merge-queue Bot removed this pull request from the merge queue due to a conflict with the base branch Jan 10, 2024
@gabrielcorado gabrielcorado added this pull request to the merge queue Jan 10, 2024
Merged via the queue into master with commit e6f61ab Jan 10, 2024
@gabrielcorado gabrielcorado deleted the gabrielcorado/add-client-info-admin-requests branch January 10, 2024 13:42
@public-teleport-github-review-bot
Copy link
Copy Markdown

public-teleport-github-review-bot Bot commented Jan 10, 2024

@gabrielcorado See the table below for backport results.

Branch Result
branch/v14 Failed

gabrielcorado added a commit that referenced this pull request Jan 11, 2024
@gabrielcorado
Add client remote address to some audit events (#36354)
3ce13c0
@gabrielcorado gabrielcorado mentioned this pull request Jan 11, 2024
Merged
github-merge-queue Bot pushed a commit that referenced this pull request Jan 12, 2024
@gabrielcorado
[v14] Add client remote address to some audit events (#36567)
46ee20b 
* Add client remote address to some audit events (#36354)

* test(auth): update error assertions
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@greedy52 greedy52 greedy52 approved these changes

@strideynet strideynet strideynet approved these changes

Assignees

@gabrielcorado gabrielcorado

Labels

size/md

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@gabrielcorado @greedy52 @strideynet