Audit events

Product audit

The audit events are grouped as collection of functional scenarios for internal components. Following is the list of audit scenarios per internal components.

Scenarios

Configuration Management APIs

Create, update and delete actions performed on the following configurations are audited:

Deployment configurations (default configs and project-specific configs)
Security provider authentication bindings
MongoDB bindings
Kafka connection bindings
Topic bindings

K5 Configurator APIs

Create, update and delete actions performed on the following product configurations are audited:

Config maps used by internal components
IAM
Master Key
MongoDB
Audit Binding
S3Storage
Truststore

Pipeline Manager APIs

Pipeline configurations for a single services' deployment are audited:

trigger new pipelines (both steps combined and separately)
delete pipelines
update Git credentials
undeploy projects

Git Integration APIs

Create, update and delete actions performed on the Git provider for the following configurations are audited:

Git provider
Git token
Git repository

Solution Designer APIs

Selective actions performed by the backend interface of the UI are audited:

Create & delete an application or service project
Commit and push changes made on a project
Import service project templates
Create and delete Cloud Pak services
Create and delete the API keys of Cloud Pak services
Fetch properties for Cloud Pak services asset

Solution Controller APIs

The following actions are also audited:

Create a new application or service project
Delete a project