View System Audit Log

The system audit log records all the API requests made to the AIOLI platform. You can view the system audit log to monitor the activities on the platform.

Before You Start #

• You must have access to the cluster where the platform is deployed.

How to View System Audit Log #

1. Connect to the cluster.
2. Run the following command to view the system audit log:

   kubectl exec svc/aioli-master-service-aioli -- cat /var/log/aioli/audit.log

   Copy

   time="2024-04-25T19:03:14Z" level=info msg="POST /api/v1/login 200" aioli_user=unknown remote_ip=10.244.0.41 unauthorized=false
   time="2024-04-25T19:03:37Z" level=info msg="POST /api/v1/users 200" aioli_user=admin remote_ip=10.244.0.41 unauthorized=false
   ...

   Copy

Unknown Users

Entries in the system audit log where the aioli_user is unknown are requests either made by unauthenticated users or users who presented an invalid login token. All other values map to RBAC user roles.