We should add audit logs of the panel that track all changes on the panel.
All changes to models should be tracked. Additionally:
- logins (maybe)
- server start/stop/restart/kill
- server commands (maybe)
It should also be configurable and allow to disable some logs, especially ones like server commands or logins that can generate a lot of data fairly quickly.
Also the option to only keep logs for a specific time, maybe even per category would be nice.
parkervcp
All 18 comments
Maybe also add logging for commands issued via console and the possibility to see which sub-user issued them? Also, maybe a log for webbased file manager changes like deletion, uploading, editing. Just a thought
unreliability
on 29 Jun 2018
i'd say it should be decently easy to do at least commands issued via console, which would be great.
Otherwise i like the idea of knowing if webbased file manager actions were taken too.
Either way, would be awesome to see this soon =D
Keep up the great work!
Asherslab
on 6 Jul 2018
Adding after discovering that I keep getting random failed hits for sftp on the daemon we need to track SFTP login fails and their IP addresses as well.
parkervcp
on 7 Jul 2018
Is this already in development?
JustinRijsdijk
on 8 Oct 2019
Nope. But feel free to implement it and open a pull request, if you are interested 馃檪
schrej
on 8 Oct 2019
I will look into it.
Just for my information would we want, an audit log per server (filter on server id's?)?
or would we want an audit log for the whole app? (this does not have my perference, due to hosting companies using the panel).
And maybe even more important, where would we display the audit log?
JustinRijsdijk
on 8 Oct 2019
The sftp logging isn't tied to a single server.
parkervcp
on 8 Oct 2019
Ideally we would track everything globally, with the option for server owners to view the logs for their servers individually.
So we would have two locations where we display the output:
- on the admin interface with a global view of all audit log entries
- per server view of all related audit log entries (actions on the server only)
Additionally maybe a third view where a user can see all of the actions that were performed with his account.
schrej
on 8 Oct 2019
maybe also in the admin interface, and maybe even in the server interface, it would be good to make it filterable? logins, server actions (start, restart, kill, stop), sftp?, and for each model a filter option?
so an audit will contain: user_id, server_id, type (action, login etc), performed_action (start, stop, changed file etc) and ofcourse timestamps
JustinRijsdijk
on 8 Oct 2019
Ideally we would track everything globally, with the option for server owners to view the logs for their servers individually.
So we would have two locations where we display the output:
- on the admin interface with a global view of all audit log entries
- per server view of all related audit log entries (actions on the server only)
Additionally maybe a third view where a user can see all of the actions that were performed with his account.
Why only server owners? In my eyes, that info can be relevant to anyone?
JustinRijsdijk
on 8 Oct 2019
It can include possibly sensitive information, so I'd limit it to server owners (or subusers with full access) to make implementation easier.
schrej
on 8 Oct 2019
It can include possibly sensitive information, so I'd limit it to server owners (or subusers with full access) to make implementation easier.
good argument, I will narrow it down to sys-admins & server owners. eventually we can add a user vriew.
JustinRijsdijk
on 10 Oct 2019
Would love to see this added
TristanWiley
on 15 May 2020
Would love to see this added
I have made this for my own panel, but I won't bother creating a PR, due to the fact that there is a totally new panel coming up.
JustinRijsdijk
on 15 May 2020
Would love to see this added
I have made this for my own panel, but I won't bother creating a PR, due to the fact that there is a totally new panel coming up.
I mean, you should be able to make it with the beta, and then it _should_ be compatible with the final release of 1.0
FoksVHox
on 15 May 2020
Would love to see this added
I have made this for my own panel, but I won't bother creating a PR, due to the fact that there is a totally new panel coming up.
I mean, you should be able to make it with the beta, and then it _should_ be compatible with the final release of 1.0
You are right here, though I don't have time to checkuot v1 alpha's/betas yet.
JustinRijsdijk
on 15 May 2020
This could be a great feature. I may try to attempt this, I鈥檒l keep it updated
ElijahRus250
on 11 Dec 2020
This could be a great feature. I may try to attempt this, I鈥檒l keep it updated
When I build the react-admin I plan to do permissions and audit logs for the admin. Doing audit logs on users should currently be possible and somewhat straight forward, but it won't be easy on servers as power actions and commands are done through the websocket which is not handled through the panel.
matthewpi
on 11 Dec 2020
Related issues
parkervcp
路
3Comments
Doc94
路
4Comments
DaneEveritt
路
4Comments
stijnb1234
路
3Comments
Games4k
路
3Comments
Most helpful comment
Maybe also add logging for commands issued via console and the possibility to see which sub-user issued them? Also, maybe a log for webbased file manager changes like deletion, uploading, editing. Just a thought