Open AlyRagab opened 2 years ago
I think this feature is really needed since there is no any sensitive data is getting logged ( as it is hashed ) as per the official documentation
I have implemented a solution around this problem: https://github.com/AlyRagab/Vault-Audit-Logging
I did something similar @AlyRagab, I wrote about it here: https://blog.erikhorton.com/2023/10/01/use-a-sidecar-container-to-read-logs-from-another-container.html.
Couldn't you also achieve it like this? vault audit enable file file_path=stdout
I agree it would be nicer if it's in the hem chart.
It is clear on the documentation that the Audit Device type
file
is not rotated so i suggest :1- Adding audit file rotation feature or if it is available then can we document how to ? 2- Allow sending the audit logs to any other log collector like
Datadog
or any other by exporting the audit logs as STDOUT