Audit Middleware driver config issue with Nova, Neutron
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
keystonemiddleware |
Fix Released
|
Wishlist
|
Arun Kant |
Bug Description
Audit middleware is using oslo messaging library to send audit events to messaging queue or to logs. For this, it requires notification driver identifier to send audit events to correct destination.
This audit middleware can be easily added to openstack services paste pipeline where the application is not using oslo messaging notifications feature.
In case service is already using oslo messaging notification feature, then adding auditing support using this middleware can become issue. The issue is that service and audit middleware both are using same configuration for its notification driver which means both service notifications and audit events are going to land into same notification destinations (queue or/and log).
This makes audit middleware inflexible to use as deployment may want to write audit events to log files but still want its service related notifications to messaging queue or vice versa. Even if we use multiple values approach by setting both 'messaging' and 'log', still there is issue of sending unwanted notifications in log and messaging side.
If audit middleware has it own configuration section for driver and topic, then it will be easier to integrate audit middleware for services already using oslo messaging notification e.g. nova (notifications for ceilometer) and neutron (notifications to l3, dhcp_agent)
Changed in keystonemiddleware: | |
importance: | Undecided → Wishlist |
Fix proposed to branch: master /review. openstack. org/279828
Review: https:/