Access logging to standard out #2

mlbiam · 2021-11-19T18:49:03Z

Currently the proxy supports audit logs in the same way that the API server does. this is duplicative and doesn't cover a major use case of tracking which user is accessing each URL. From a SIEM perspective, it would be good to support a simpler logging model as well that logs:

timestamp
URL
User
Authentication success or failure (ie did the token fail)

this can additionally log other events too such as inbound impersonation

mlbiam · 2021-12-15T23:12:56Z

need to stop double logging the source ip

mlbiam added the enhancement New feature or request label Nov 19, 2021

mlbiam self-assigned this Nov 19, 2021

mlbiam mentioned this issue Nov 19, 2021

Support kubectl --as #3

Closed

mlbiam added this to the 1.0.0 milestone Nov 22, 2021

mlbiam referenced this issue in mlbiam/kube-oidc-proxy Nov 25, 2021

for #2 added success and failure logging

64ee2d8

mlbiam referenced this issue in mlbiam/kube-oidc-proxy Nov 25, 2021

for #2 added docs

d5367f6

mlbiam closed this as completed Nov 25, 2021

mlbiam reopened this Dec 15, 2021

mlbiam referenced this issue in mlbiam/kube-oidc-proxy Dec 16, 2021

for #2 strip off proxy IP from x-forwarded-for

44fcea0

mlbiam closed this as completed Dec 16, 2021

This was referenced Dec 16, 2021

Updates for 1.0.0 release #11

Merged

1.0.0 updates jetstack/kube-oidc-proxy#206

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Access logging to standard out #2

Access logging to standard out #2

mlbiam commented Nov 19, 2021

mlbiam commented Dec 15, 2021

Access logging to standard out #2

Access logging to standard out #2

Comments

mlbiam commented Nov 19, 2021

mlbiam commented Dec 15, 2021