Open GaProgMan opened 3 years ago
Consider using a SIEM for logging, rather than logging out to a flat file or database.
Doing this will allow us to collect audit logs and, over time, increase the security of the system by setting up alerts for things like "too many requests", etc.
Consider investigating whether there are any SIEM offerings that can be containerised, and potentially use one for LOCAL DEV ONLY. That way contributors can run a single docker-compose
(or similar) command to set everything up locally when wanting to work on or investigate something.
Description
We should be logging all requests which come through to the API, tracing their journey through to when the relevant controller generates a response. This will be helpful in providing essential information when investigating bugs.
High-Level Proposed Solution
HttpContext.TraceIdentifier
Considerations
Requirements