Audit: Extracted SSCT related auditing code to formatter node (#25443)

* Removed unneeded header tracking in log request/log response of audit broker, moved SSCT overwrite to entry formatter * added changelog
2025-11-02 03:27:54 +00:00 · 2024-02-15 20:02:58 +00:00
parent 0b5bd2dd3b
commit 83986f342b
3 changed files with 16 additions and 32 deletions
--- a/audit/entry_formatter.go
+++ b/audit/entry_formatter.go
@@ -107,6 +107,13 @@ func (f *EntryFormatter) Process(ctx context.Context, e *eventlogger.Event) (*ev
 		data.Request.Headers = adjustedHeaders
 	}

+	// If the request contains a Server-Side Consistency Token (SSCT), and we
+	// have an auth response, overwrite the existing client token with the SSCT,
+	// so that the SSCT appears in the audit log for this entry.
+	if data.Request != nil && data.Request.InboundSSCToken != "" && data.Auth != nil {
+		data.Auth.ClientToken = data.Request.InboundSSCToken
+	}
+
 	var result []byte

 	switch a.Subtype {