Synadia Control Plane
Logging
Controls log levels and logging destinations.
Logging Configuration
| Key | Type | Required | Description |
|---|---|---|---|
components | Map of Component Name : Component | No | Logging component configuration Common logging component names are:
|
Component
| Key | Type | Required | Description |
|---|---|---|---|
level | enum | No | Log level, from most to least verbose: Trace, Debug, Info (default), Warn, Error, Fatal, or Panic. |
log_path | string | No | If specified, component will be written in json format to a file at this path. Default is to write the log to stdout in human-readable format |
log_file_mode | uint32 | No | If log_path is specified and the file does not exist, this is the mode the file will be created with. Default is 0o600. |
Audit Logging
Audit logging records the following fields:
time: Timeauthorized:trueorfalseauthorization_decision_data: Data from authorization engineauthenticated:trueorfalseauthentication_method:SESSIONorBEARERentity: Entity typeoperation:CREATE,READ,UPDATE, orDELETErequest_id: Unique ID for HTTP requestrequest_method: HTTP Methodrequest_remote_addr: HTTP Remote IP/Portrequest_user_agent: HTTP User Agent Headerrequest_url: HTTP URLrequest_x_forwarded_for: HTTP X-Forwarded-For Headersession_id: Session IDresult:SUCCESSorFAILUREresponse_status: HTTP Response Status Codeuser_id: User's database IDuser_identifier: User's Username or Emailuser_name: User's Name
By default, audit logging runs at Info level, logs to stdout in human readable format, and only logs CREATE, UPDATE, and DELETE operations. To enable audit logging for READ operations also change it to Trace level.
Example: write all operations to an audit log file at /var/log/scp-audit.log in json format:
logging:
components:
audit:
level: Trace
log_path: /var/log/scp-audit.log