oacnhpkqxjhufwumkkqnshvlmheokqv
commented
1 year ago Hey @mike-r-mclaughlin how do we get some motion on this one?
To clarify, we ship all container logs to Splunk, so just outputting this data to the container logs would be great.
Event data that would be super valuable to have:
- User's email address
- User action (run a search, click a button, scroll down search results list to load streaming search result details, etc.)
- User client (web UI, IDE extension, browser extension, custom API client, and details on which browser / IDE, version, extension version)
- URL that the user took the action on (for new connections, this may be blank or the referrer)
- URL that the user action took them to (or tried to take them to)
- HTTP response code (200, 403, 404, 504, etc.,)
- Reason for failures, like repo doesn’t exist or file doesn’t exist in repo for 404s, repo exists but the user doesn’t have access to it for 403s, frontend timed out waiting for backend to return API request for 504, with a useful amount of detail
- Duration the user had to wait between initiating the action and the getting the complete results
There's this RFE, but building a whole analytical interface is probably a much bigger ask than just outputting the events via container logs so customers can use their existing analytics infrastructure.
Feature request description
Allow administrators to configure Sourcegraph to optionally send the user event logs (
/users/<username>/settings/event-log) to SplunkIs your feature request related to a problem? If so, please describe.
Admins would like to search and report on user activity
Describe alternatives you've considered.
Write a script to pull the data from Sourcegraph via the
query UserEventLogsAPI and push to Splunk.Additional context
Requested by: https://github.com/sourcegraph/accounts/issues/6716 via Slack