Audit events in admin interface of user edits
Zendesk: https://gitlab.zendesk.com/agent/tickets/15224
description
Show audit events in the admin screen for the following actions:
- a user is created
- a user is blocked
- a user is deleted
original issue
I recently worked with a customer that had some strange things happen with a user being added, granting some permission and then the user was deleted. We can look up what happened in the application.log but it seems it would be nice to have audit events about global changes in the admin area. Events may include users created/blocked/deleted from the system as well as other global tasks are they are deemed useful.
This doesn't seem like a ton of work. We can just hook in any place that is currently writing to application.log. We can basically re-use the views from group/project events. It's not urgent, but a nice to have.
cc/ @JobV @dzaporozhets What do you think?
Proposal
Add audit events to the GitLab UI for the three listed activities. They should have important detail for auditing purposes. For example:
-
AdministratorcreatedUser(name, email) atdate/timestamp -
AdministratorblockedUser(name, email) atdate/timestamp -
AdministratordeletedUser(name, email) atdate/timestamp
This data should have a default sort order of Newest to Oldest based on date/timestamp.
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.