-
-
Notifications
You must be signed in to change notification settings - Fork 1.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
API - Audit Logs #4316
Comments
Thanks for the request @ademxoy.
There is also webhooks, which can spit out anything that gets recorded to the audit log, but I appreciate that's quite a different form of data handling.
I'll keep this issue open as it fits the platform while naturally following the path of matching UI abilities with the API, and existing other users may desire this also, but I generally like to increase our scope of core support to actual existing user need rather than potential/theoretical requirement. |
This is actually in use; but I just wanted to give you the freedom to work on it whenever you have time. I understand the burden of an open source projects... We export the database, import the database as read-only (using a read-only username to access to the database) to have a read-only version, export the activities right now. This only happens once a day. Appreciate the support and the product! |
Dev NotesSome notes since I looked into doing this but it's getting late so not implementing right now, but don't want to loose my thoughts so recording here:
|
I don't just want to leave a +1 here, so I explain my use case: I would like to reduce the amount of API calls and load on the system by using a centralized log API. First thought was the audit-log in the settings. But an activities API (even filtered by users) would work equally well for my use-case. (I'm more interested in the contents, than the exact values in the database.) |
@ssddanbrown Hi Dan, any update on this? We had a situation where we lost our database and can't figure out how much data was lost. |
@ademxoy No news from me. |
Yeah, in this scenario, I would transfer the audit logs to Splunk every X minutes so we could tell what documents were changed by who since the last backup. |
+1 This would be really useful for us |
Not yested covered with testing. Changes database columns for more presentable names and for future use to connect additional model types. For #4316
Thanks, Dan. We appreciate the work you do! |
Describe the feature you'd like
I would like to be able to get the audit logs using an API to transfer the data to splunk. Application & Splunk servers are in 2 different zones that does not allow access to database from Splunk or direct access from bookstack to splunk.
Describe the benefits this would bring to existing BookStack users
Audit logs one of the most important part of managing access and making sure all the information bookstack contains is safe. I would have helped if bookstack was written with Python or Go but I have no knowledge in PHP...
Can the goal of this request already be achieved via other means?
Yes, Database activities table can be dumped, ftp over to and then written into another server. It is just very clumsy.
Have you searched for an existing open/closed issue?
How long have you been using BookStack?
Not using yet, just scoping
Additional context
There were a few other requests to transfer to csv, etc. In my case, bookstack contains sensitive data and almost every port is blocked by a firewall (including the database from outside).
The text was updated successfully, but these errors were encountered: