Support for accessing syslog and mounting additional volumes for audit collection

[Balaal]

Proposal

Add the ability to configure syslog and add option to mount additional volumes, so i can use a sidecar like fluentbit to collect audit logs

Use-Case

Currently i cannot access audit logs in syslog or file format as i cannot access these directories from a sidecar. Having the option to modify rsyslog.conf or mounting volumes on the mongod pod will allow me to collect the logs using fluentbit

In the existing operator, we can add volumes and mounts to sidecars, but there is no extraVolumes or additionalVolumes property available for the mongod replicaset itself, so i cannot expose directories for fluentbit to collect from

For our SIEM monitoring, we have a requirement to collect audit events from MongoDB

Is this a feature you are interested in implementing yourself?

Maybe

Anything else?

No response

[spron-in]

@Balaal thank you for bringing this up, quite interesting.
We will discuss internally.

Meanwhile, I would appreciate if you can share the example of the YAML manifest that you have in mind when it is implemented. I'm curious about the user experience flow that you see would solve the problem.