search

SAP / macOS-enterprise-privileges

For Mac users in enterprise environments, this application gives users control over the administration of their machine by elevating their level of access to administrator privileges on macOS. Users can set a timeframe in the application's settings to perform specific tasks, such as installing or removing an application.
Apache License 2.0
1.35k stars 148 forks source link

Allow a url to be used for the logging server #47

Open onfire4g05 opened 2 years ago

onfire4g05 commented 2 years ago

This adds another option for the logging method that will allow for an http POST with params message and udid. The thought behind adding the UDID would be to use a simple script on the server-side that would interface with the MDM to get the device info that initiated the request and then proceed to log it. For example, we'll use this to send a Slack message to our admins that we can use to go directly to the device in our MDM.

As an example, in jamf, you can easily get the computer details by udid via https://your-server.jamfcloud.com/JSSResource/computers/udid/{udid}.

<key>RemoteLogging</key>
<dict>
    <key>ServerAddress</key>
    <string>https://example.com/endpoint-path</string>
    <key>ServerType</key>
    <string>http_post</string>
</dict>

If this PR is accepted, I'll edit the wiki for this new feature.

cla-assistant[bot] commented 2 years ago

CLA assistant check
All committers have signed the CLA.

mthielemann commented 4 months ago

Something similar be implemented in Privileges 2.0.0, which will be available later this year. We'll support posts to a https url and will provide data like this:

{ "user": "username", "admin": true, "expires": "2024-06-18T15:50+00Z", "reason": "just for fun", "uuid": "B4217748-7F6E-4FAF-B509-BC803E2EDFEE" }

3DJupp commented 2 months ago

Would be great not only to have Syslog, but also other possibilities (MQTT, LogAnalytics or other MDM-based log-collectors)