/
Audit logging for 4.1

Audit logging for 4.1

Jan 18, 2017

Checklist

User Stories Documented
User Stories Reviewed
Design Reviewed
APIs reviewed
Release priorities assigned
Test cases reviewed
Blog post

Introduction

For each RESTful http request, we currently only log the URL of the request. We need to log the request body or response body if useful information (dataset properties, program runtime arguments, etc.) is included. 

Goals

Improve the audit logging in the router.

User Stories 

User would like to know what more for some kind of HTTP request. For example, when user updates the dataset property, in the audit log, the request body which contains the newly updated dataset property will be very helpful. 

Design 

All RESTful endpoints that needs to be logged with more information are in this table, click to expand. This table has all POST, DELETE, PUT endpoints other than GET. All GET methods do not have a body or header params so the URL is enough for audit logging.

MetricsHandler

 

[main] - [POST] /v3/metrics//query

Query param: metric, tag, groupby(optional), time range

[main] - [POST] /v3/metrics//search

Query param: target, tag.

 

 

DatasetTypeHandler

 

[main] - [DELETE] /v3/namespaces/{namespace-id}//data/modules/{name}

URL is enough

[main] - [PUT] /v3/namespaces/{namespace-id}//data/modules/{name}

Header param: class name of the module.

[main] - [DELETE] /v3/namespaces/{namespace-id}//data/modules

URL is enough

 

 

DatasetInstanceHandler

 

[main] - [PUT] /v3/namespaces/{namespace-id}//data/datasets/{name}/properties

request body: updated properties

[main] - [PUT] /v3/namespaces/{namespace-id}//data/datasets/{name}

request body: name of the dataset type, properties, and description

[main] - [DELETE] /v3/namespaces/{namespace-id}//data/datasets/{name}

URL is enough

[main] - [DELETE] /v3/namespaces/{namespace-id}//data/datasets

URL is enough

[main] - [POST] /v3/namespaces/{namespace-id}//data/datasets/{name}/admin/{method}

URL is enough

[main] - [POST] /v3/namespaces/{namespace-id}//data/datasets/{name}/data/{method}

Not implemented

 

 

NamespacedQueryExecutorHttpHandler

 

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/queries

request body: query string

 

 

QueryExecutorHttpHandler

 

[main] - [DELETE] /v3/data/explore/queries/{id}

URL is enough

[main] - [POST] /v3/data/explore/queries/{id}/next

URL is enough

[main] - [POST] /v3/data/explore/queries/{id}/preview

URL is enough

[main] - [POST] /v3/data/explore/queries/{id}/download

URL is enough

 

 

NamespacedExploreMetadataHttpHandler

These four endpoints have an issue: cdap-7625

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/jdbc/tables

request body: TableArgs

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/jdbc/columns

request body: ColumnArgs

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/jdbc/schemas

request body: SchemaArgs

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/jdbc/functions

request body: FunctionArgs

 

 

ExploreMetadataHttpHandler

 

[main] - [DELETE] /v3/data/explore/namespaces/{namespace-id}

Internal use only, URL is enough

[main] - [PUT] /v3/data/explore/namespaces/{namespace-id}

Internal use only, URL is enough

[main] - [POST] /v3/data/explore/jdbc/catalogs

URL is enough

[main] - [POST] /v3/data/explore/jdbc/tableTypes

URL is enough

[main] - [POST] /v3/data/explore/jdbc/types

URL is enough

 

 

ExploreExecutorHttpHandler

 

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/streams/{stream}/tables/{table}/enable

request body: FormatSpecification

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/streams/{stream}/tables/{table}/disable

URL is enough

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/enable-internal

request body: enabled DatasetSpecification

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/enable

URL is enough

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/update

request body: old and new DatasetSpecification

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/disable

URL is enough

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/partitions

request body: properties of partition

[main] - [POST] /v3/namespaces/{namespace-id}/data/explore/datasets/{dataset}/deletePartition

request body: properties of partition

 

 

MonitorHandler

 

[StandaloneAppFabricServer] - [PUT] /v3//system/services/{service-name}/instances

request body: instance number

[StandaloneAppFabricServer] - [POST] /v3//system/services/{service-name}/restart

URL is enough

[StandaloneAppFabricServer] - [POST] /v3//system/services/{service-name}/instances/{instance-id}/restart

URL is enough

 

 

NamespaceHttpHandler

 

[StandaloneAppFabricServer] - [DELETE] /v3//unrecoverable/namespaces/{namespace-id}

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}

request body: namespace properties

[StandaloneAppFabricServer] - [DELETE] /v3//unrecoverable/namespaces/{namespace-id}/datasets

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/properties

request body: updated namespace properties

 

 

NotificationFeedHttpHandler

 

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//feeds/categories/{feed-category}/names/{feed-name}

request body: description

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//feeds/categories/{feed-category}/names/{feed-name}

URL is enough

 

 

AppLifecycleHttpHandler

REST endpoints inconsistency?

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}

request body: JSON object specifiy the artifact and optional config

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps

Header param: archiveName, configString, response body: appId

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/versions/{version-id}/create

request body: JSON object specifiy the artifact and optional config

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//apps/{app-id}

URL is enough

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//apps/{app-id}/versions/{version-id}

URL is enough

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//apps

URL is enough

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/update

request body: JSON object specifiy the updated artifact and optional config

 

 

DashboardHttpHandler

 

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}/configuration/dashboards//{dashboard-id}

URL is enough

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}/configuration/dashboards//

request body: dashboard config, response body: dashboard id

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}/configuration/dashboards//{dashboard-id}

request body: dashboard config

 

 

ProgramLifecycleHttpHandler

 

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}/flows/{flow-id}/flowlets/{flowlet-id}/instances

request body: flowlet instance number

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}/services/{service-id}/instances

request body: service instance number

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}/workers/{worker-id}/instances

request body: worker instance number

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-name}/{program-type}/{program-name}/runs/{run-id}/loglevels

request body: log levels

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-name}/versions/{app-version}/{program-type}/{program-name}/runs/{run-id}/loglevels

request body: log levels

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-name}/versions/{app-version}/{program-type}/{program-name}/runs/{run-id}/resetloglevels

request body: reset logger names

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-name}/{program-type}/{program-name}/runs/{run-id}/resetloglevels

request body: reset logger names

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/{program-type}/{program-id}/runs/{run-id}/stop

URL is enough

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/{program-type}/{program-id}/{action}

request body: runtime arguments for action start/debug

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/versions/{app-version}/{program-type}/{program-id}/{action}

request body: runtime arguments for action start/debug

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-name}/{program-type}/{program-name}/runtimeargs

request body: runtime arguments

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-name}/versions/{app-version}/{program-type}/{program-name}/runtimeargs

request body: runtime arguments

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//status

request body: program info

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//stop

request body: program info, response body: stop status for each program

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//start

request body: program info, response body: start status for each program

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}/flows/{flow-id}/flowlets/{flowlet-id}/runs/{run-id}/loglevels

request body: log levels

[StandaloneAppFabricServer] - [PUT] /v3/namespaces/{namespace-id}//apps/{app-id}/versions/{app-version}/flows/{flow-id}/flowlets/{flowlet-id}/runs/{run-id}/loglevels

request body: log levels

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/flows/{flow-id}/flowlets/{flowlet-id}/runs/{run-id}/resetloglevels

request body: reset logger names

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/versions/{app-version}/flows/{flow-id}/flowlets/{flowlet-id}/runs/{run-id}/resetloglevels

request body: reset logger names

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//apps/{app-id}/flows/{flow-id}/queues

URL is enough

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//queues

URL is enough

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//instances

request body: program info

 

 

PreferencesHttpHandler

 

[StandaloneAppFabricServer] - [DELETE] /v3//preferences

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//preferences

request body: preferences

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/preferences

request body: preferences

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/preferences

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/apps/{application-id}/preferences

request body: preferences

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/apps/{application-id}/preferences

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/apps/{application-id}/{program-type}/{program-id}/preferences

request body: preferences

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/apps/{application-id}/{program-type}/{program-id}/preferences

URL is enough

 

 

ConsoleSettingsHttpHandler

 

[StandaloneAppFabricServer] - [DELETE] /v3/configuration/user//

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3/configuration/user//

request body: JSON string of properties

 

 

TransactionHttpHandler

 

[StandaloneAppFabricServer] - [POST] /v3//transactions/{tx-id}/invalidate

URL is enough

[StandaloneAppFabricServer] - [POST] /v3//transactions/invalid/remove/until

request body: timestamp

[StandaloneAppFabricServer] - [POST] /v3//transactions/invalid/remove/ids

request body: transaction ids

[StandaloneAppFabricServer] - [POST] /v3//transactions/state

URL is enough

 

 

WorkflowHttpHandler

 

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/workflows/{workflow-name}/runs/{run-id}/suspend

URL is enough

[StandaloneAppFabricServer] - [POST] /v3/namespaces/{namespace-id}//apps/{app-id}/workflows/{workflow-name}/runs/{run-id}/resume

URL is enough

[StandaloneAppFabricServer] - [DELETE] /v3/namespaces/{namespace-id}//apps/{app-id}/workflows/{workflow-id}/runs/{run-id}/localdatasets

URl is enough

 

 

ArtifactHttpHandler

 

[StandaloneAppFabricServer] - [POST] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}

header-param: Artifact-Versions, Artifact-Extends, Artifact-Plugins

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}

URL is enough

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}/properties

URL is enough

[StandaloneAppFabricServer] - [POST] /v3//namespaces/system/artifacts

URL is enough

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}/properties

request body: artifact properties

[StandaloneAppFabricServer] - [PUT] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}/properties/{property}

request body: property value

[StandaloneAppFabricServer] - [DELETE] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}/properties/{property}

URL is enough

[StandaloneAppFabricServer] - [POST] /v3//namespaces/{namespace-id}/artifacts/{artifact-name}/versions/{artifact-version}/plugintypes/{plugin-type}/plugins/{plugin-name}/methods/{plugin-method}

request body: method parameter type, response body: result from invoking the method

 

 

Created in 2020 by Google Inc.