Configure the request headers that are output to the audit log (#2321)

* Add /sys/config/audited-headers endpoint for configuring the headers that will be audited * Remove some debug lines * Add a persistant layer and refactor a bit * update the api endpoints to be more restful * Add comments and clean up a few functions * Remove unneeded hash structure functionaility * Fix existing tests * Add tests * Add test for Applying the header config * Add Benchmark for the ApplyConfig method * ResetTimer on the benchmark: * Update the headers comment * Add test for audit broker * Use hyphens instead of camel case * Add size paramater to the allocation of the result map * Fix the tests for the audit broker * PR feedback * update the path and permissions on config/* paths * Add docs file * Fix TestSystemBackend_RootPaths test
2025-11-01 19:17:58 +00:00 · 2017-02-02 11:49:20 -08:00
parent 6c028a7d4a
commit 590b5681cd
16 changed files with 772 additions and 25 deletions
--- a/audit/format_json_test.go
+++ b/audit/format_json_test.go
@@ -32,6 +32,9 @@ func TestFormatJSON_formatRequest(t *testing.T) {
 				WrapInfo: &logical.RequestWrapInfo{
 					TTL: 60 * time.Second,
 				},
+				Headers: map[string][]string{
+					"foo": []string{"bar"},
+				},
 			},
 			errors.New("this is an error"),
 			testFormatJSONReqBasicStr,
@@ -76,5 +79,5 @@ func TestFormatJSON_formatRequest(t *testing.T) {
 	}
 }

-const testFormatJSONReqBasicStr = `{"time":"2015-08-05T13:45:46Z","type":"request","auth":{"display_name":"","policies":["root"],"metadata":null},"request":{"operation":"update","path":"/foo","data":null,"wrap_ttl":60,"remote_address":"127.0.0.1"},"error":"this is an error"}
+const testFormatJSONReqBasicStr = `{"time":"2015-08-05T13:45:46Z","type":"request","auth":{"display_name":"","policies":["root"],"metadata":null},"request":{"operation":"update","path":"/foo","data":null,"wrap_ttl":60,"remote_address":"127.0.0.1","headers":{"foo":["bar"]}},"error":"this is an error"}
 `