You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We propose to extend the "action" field in AuthorizationPolicy to support use cases like "audit" , in which case, the matching condition in AuthorizationPolicy can be used to determine when an audit log is generated. It will set a new boolean attribute e.g. 'istio.audit', which can be read by telemetry plugins to determine whether to log based on its value.
[ ] Configuration Infrastructure
[ ] Docs
[ ] Installation
[ ] Networking
[ ] Performance and Scalability
[ X] Policies and Telemetry
[ X] Security
[ ] Test and Release
[ ] User Experience
[ ] Developer Infrastructure
We propose to extend the "action" field in AuthorizationPolicy to support use cases like "audit" , in which case, the matching condition in AuthorizationPolicy can be used to determine when an audit log is generated. It will set a new boolean attribute e.g. 'istio.audit', which can be read by telemetry plugins to determine whether to log based on its value.
[ ] Configuration Infrastructure
[ ] Docs
[ ] Installation
[ ] Networking
[ ] Performance and Scalability
[ X] Policies and Telemetry
[ X] Security
[ ] Test and Release
[ ] User Experience
[ ] Developer Infrastructure
cc @louiscryan @smawson @liminw @mandarjog
The text was updated successfully, but these errors were encountered: