Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make sure session recordings can be correlated with Kubernetes audit logs #13

Open
spbnick opened this issue Jun 1, 2017 · 0 comments
Open

Make sure session recordings can be correlated with Kubernetes audit logs #13

spbnick opened this issue Jun 1, 2017 · 0 comments
Labels
pri: medium
Milestone
ENTERPRISEv1

Comments

@spbnick
Copy link
Member

spbnick commented Jun 1, 2017

Kubernetes, which is the basis of OpenShift, already has audit logging for API calls, and an extension proposal is up.

We need to make sure we can correlate the tlog and aushape logs with Kubernetes API calls, so that it is possible to see the effect the recorded terminal session had on Kubernetes/OpenShift.

I sent a question to kubernetes-dev maillist and got a suggestion to pass any necessary identifying information in the bearer token, joining any authenticating information there. So far I presume that would require providing a wrapper to kubectl, and making sure that modified wrapper is used, instead of the basic kubectl, or just an HTTP client, such as cURL. I don't think the latter part is practical, but perhaps if we make our route easy, and users prefer it, then that will be good enough.
@spbnick spbnick modified the milestones: Stage A, Stage B Jun 1, 2017
@spbnick spbnick modified the milestones: Stage B, ENTERPRISEv1 Oct 12, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
pri: medium
Projects
None yet
Milestone
ENTERPRISEv1
Development

No branches or pull requests
1 participant
@spbnick