alovh
commented
1 year ago To solve this we need to figure out where to store the access logs, it has to be in a storage bucket. Should this be inside the same project? Will the purpose be debugging or security? Should we give option to give bucket name, would the users know which bucket to use? Should we create the log bucket from the project, would whoever being logged have access to the logs. Could creating the log bucket in module with only read access for authenticated users be a valid solution?
https://docs.bridgecrew.io/docs/bc_gcp_logging_2