5. Logging

Two types of logging are used in DAS:

  1. Application logging, to aid in debugging the application.

  2. Audit logging, to have an audit trail of important actions being performed.

5.1. Application logging

The application log is sent to the standard output within the Docker container. If Docker Swarm is used as the orchestrator, the logs can be shown by: docker service logs mgrid_das where mgrid is the stack name and das is the name of the container. Use -f to follow the logs.

5.2. Audit logging

If enabled, audit logging is sent to a FluentD server. Audit logging can be configured using the AUDIT_* variables.

Events are logged in the following cases:

5.2.1. User authentication

  • user_auth_login_personal

  • user_auth_login_group

  • user_auth_logout

5.2.2. Permission requests and responses

  • permission_request_create

  • permission_request_delete

  • permission_request_update

  • permission_response_approved

  • permission_response_denied

  • permission_response_revoked

5.2.3. Entities

  • approver_create

  • approver_delete

  • approver_update

  • authorisation_create

  • authorisation_delete

  • authorisation_update

  • dataset_create

  • dataset_delete

  • dataset_update

  • user_create

  • user_delete

  • user_update