Project

General

Profile

Feature #22690

[Audit] Add audit to more Katello resources - Content-view, Repository, Lifecycle environment and their associations

Added by Kavita Gaikwad almost 2 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Category:
-
Target version:
Difficulty:
Triaged:
Bugzilla link:
Fixed in Releases:
Found in Releases:

Related issues

Related to Katello - Feature #22053: Audit Katello objects/resourcesResolved2017-12-21
Blocked by Foreman - Bug #23415: Clear taxable_taxonomies created by audit records on taxonomy deletionClosed2018-04-27

Associated revisions

Revision 68d64c0f (diff)
Added by Kavita Gaikwad over 1 year ago

Fixes #22690 - added more resources to audit

More resources and their associations to audit.
- capsule_lifecycle_environment
- content-view and its associations
- repositories, puppet-modules, kt_environment,
filter
- association of a subscription pool to host

History

#1 Updated by Kavita Gaikwad almost 2 years ago

#2 Updated by Andrew Kofink almost 2 years ago

  • Legacy Backlogs Release (now unused) set to 338

#3 Updated by Kavita Gaikwad over 1 year ago

  • Subject changed from [Audit] Content view - creation, publish (?), destroy (Composite & Non-composite) to [Audit] Add audit to more Katello resources - Content-view, Repository, Lifecycle environment and their associations
  • activation-key:

activation-key don't record any log if a user assign/unassign a host collection to/from it

  • Enabled repositories:

This would just show up as a repo create.

Note: based on this, we may not be able to differentiate between a custom repo create and a RH repo
enablement. but important is we have data, later we can better display them, e.g. enabled vs created...

  • Lifecycle environment + associations

Note: there are a lot of possible associations for environments; however, not sure if it makes sense to

audit all of them.

Katello::KTEnvironment - for basic CRUD
capsule_lifecycle_environments (association) - add/remove capsules
Yeah, we'd need a lot more information here. seeing that:

What LE a host is assigned to (hosts (association)) - this should probably be audited on host side? should
we start auditing hosts' subscription facets?. It looks like this one would be on the content_facet, but it
does seem worthy to audit. On the subscription facet side, wonder if it would be useful to include when a
pool is added/removed to the host.
What Content View Version is in a particular environment (content_view_versions (association)) similar
to above but with content facet

  • (Composite) Content view - creation, publish (?), destroy

Katello::ContentView - for basic CRUD

For composite views:

content_view_components (association) - add/remove component (i.e. Composite Content View
Component)

For non-composite (or component views):

repositories (association) - add/remove repository
content_view_puppet_modules (association) - add/remove puppet-module
filters (association) - CRUD (Katello::ContentViewFilter)
repositories (association) - add/remove repositories

Note: Each of the *Filter models below have a STI relationship with

Katello::ContentViewFilter
ContentViewDockerFilter
docker_rules (association) - CRUD rules
ContentViewErratumFIlter
erratum_rules (association) - CRUD rules
ContentViewPackageFilter
package_rules (association) - CRUD rules
ContentViewPackageGroupFilter
package_group_rules (association) - CRUD rules
Katello::ContentViewVersion - CRUD actions should handle the CV publish (and possibly promote &
remove)

  • Custom repository
    Katello::Repository - CRUD
    The requirement mentions 'knowing when custom repos are added to the satellite', I assume this would
    be via basic create actions on the Repository model. That said, the same model is used for both custom
    and RH repos.
    The requirement mentions 'which are added to Content views', I assume this can be done with the
    'repositories' association on the ContentView model above.
  • Incremental updates of content (rpm and puppet)

this would be handled the same way as a Content View Version above, publish/promote butwould need investigation. Might be able to differentiate with a comment.

#4 Updated by The Foreman Bot over 1 year ago

  • Pull request https://github.com/Katello/katello/pull/7248 added

#5 Updated by The Foreman Bot over 1 year ago

  • Status changed from New to Ready For Testing

#6 Updated by Kavita Gaikwad over 1 year ago

  • Related to Bug #23415: Clear taxable_taxonomies created by audit records on taxonomy deletion added

#7 Updated by Kavita Gaikwad over 1 year ago

  • Related to deleted (Bug #23415: Clear taxable_taxonomies created by audit records on taxonomy deletion)

#8 Updated by Kavita Gaikwad over 1 year ago

  • Blocked by Bug #23415: Clear taxable_taxonomies created by audit records on taxonomy deletion added

#9 Updated by Kavita Gaikwad over 1 year ago

  • % Done changed from 0 to 100
  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF