AlyRagab
commented
1 year ago I think this feature is really needed since there is no any sensitive data is getting logged ( as it is hashed ) as per the official documentation
Open AlyRagab opened 2 years ago
AlyRagab
commented
1 year ago I think this feature is really needed since there is no any sensitive data is getting logged ( as it is hashed ) as per the official documentation
AlyRagab
commented
1 year ago I have implemented a solution around this problem: https://github.com/AlyRagab/Vault-Audit-Logging
hortonew
commented
9 months ago I did something similar @AlyRagab, I wrote about it here: https://blog.erikhorton.com/2023/10/01/use-a-sidecar-container-to-read-logs-from-another-container.html.
ppeereb1
commented
3 months ago Couldn't you also achieve it like this? vault audit enable file file_path=stdout
I agree it would be nicer if it's in the hem chart.
It is clear on the documentation that the Audit Device type
fileis not rotated so i suggest :1- Adding audit file rotation feature or if it is available then can we document how to ? 2- Allow sending the audit logs to any other log collector like
Datadogor any other by exporting the audit logs as STDOUT