open-vault/audit/audit.go

package audit

import (
	"context"

	"github.com/hashicorp/vault/helper/salt"
	"github.com/hashicorp/vault/logical"
)

// Backend interface must be implemented for an audit
// mechanism to be made available. Audit backends can be enabled to
// sink information to different backends such as logs, file, databases,
// or other external services.
type Backend interface {
	// LogRequest is used to synchronously log a request. This is done after the
	// request is authorized but before the request is executed. The arguments
	// MUST not be modified in anyway. They should be deep copied if this is
	// a possibility.
	LogRequest(context.Context, *LogInput) error

	// LogResponse is used to synchronously log a response. This is done after
	// the request is processed but before the response is sent. The arguments
	// MUST not be modified in anyway. They should be deep copied if this is
	// a possibility.
	LogResponse(context.Context, *LogInput) error

	// GetHash is used to return the given data with the backend's hash,
	// so that a caller can determine if a value in the audit log matches
	// an expected plaintext value
	GetHash(context.Context, string) (string, error)

	// Reload is called on SIGHUP for supporting backends.
	Reload(context.Context) error

	// Invalidate is called for path invalidation
	Invalidate(context.Context)
}

// LogInput contains the input parameters passed into LogRequest and LogResponse
type LogInput struct {
	Auth                *logical.Auth
	Request             *logical.Request
	Response            *logical.Response
	OuterErr            error
	NonHMACReqDataKeys  []string
	NonHMACRespDataKeys []string
}

// BackendConfig contains configuration parameters used in the factory func to
// instantiate audit backends
type BackendConfig struct {
	// The view to store the salt
	SaltView logical.Storage

	// The salt config that should be used for any secret obfuscation
	SaltConfig *salt.Config

	// Config is the opaque user configuration provided when mounting
	Config map[string]string
}

// Factory is the factory function to create an audit backend.
type Factory func(context.Context, *BackendConfig) (Backend, error)
audit: Basic interface 2015-03-27 20:43:23 +00:00			`package audit`

Add HMAC capability to salt. Pass a salt into audit backends. Require it for audit.Hash. 2015-09-18 16:18:37 +00:00			`import (`
Add context to storage backends and wire it through a lot of places (#3817) 2018-01-19 06:44:44 +00:00			`"context"`

Add HMAC capability to salt. Pass a salt into audit backends. Require it for audit.Hash. 2015-09-18 16:18:37 +00:00			`"github.com/hashicorp/vault/helper/salt"`
			`"github.com/hashicorp/vault/logical"`
			`)`
audit: Adding basic interface methods 2015-04-01 20:54:50 +00:00
audit: Basic interface 2015-03-27 20:43:23 +00:00			`// Backend interface must be implemented for an audit`
			`// mechanism to be made available. Audit backends can be enabled to`
			`// sink information to different backends such as logs, file, databases,`
			`// or other external services.`
			`type Backend interface {`
Speling police 2016-05-15 16:58:36 +00:00			`// LogRequest is used to synchronously log a request. This is done after the`
audit: Document that arguments must not be modified 2015-04-27 21:24:11 +00:00			`// request is authorized but before the request is executed. The arguments`
			`// MUST not be modified in anyway. They should be deep copied if this is`
			`// a possibility.`
Non-HMAC audit values (#4033) * Add non-hmac request keys * Update comment * Initial audit request keys implementation * Add audit_non_hmac_response_keys * Move where req.NonHMACKeys gets set * Minor refactor * Add params to auth tune endpoints * Sync cache on loadCredentials * Explicitly unset req.NonHMACKeys * Do not error if entry is nil * Add tests * docs: Add params to api sections * Refactor audit.Backend and Formatter interfaces, update audit broker methods * Add audit_broker.go * Fix method call params in audit backends * Remove fields from logical.Request and logical.Response, pass keys via LogInput * Use data.GetOk to allow unsetting existing values * Remove debug lines * Add test for unsetting values * Address review feedback * Initialize values in FormatRequest and FormatResponse using input values * Update docs * Use strutil.StrListContains * Use strutil.StrListContains 2018-03-02 17:18:39 +00:00			`LogRequest(context.Context, *LogInput) error`
audit: Adding basic interface methods 2015-04-01 20:54:50 +00:00
Speling police 2016-05-15 16:58:36 +00:00			`// LogResponse is used to synchronously log a response. This is done after`
audit: Document that arguments must not be modified 2015-04-27 21:24:11 +00:00			`// the request is processed but before the response is sent. The arguments`
			`// MUST not be modified in anyway. They should be deep copied if this is`
			`// a possibility.`
Non-HMAC audit values (#4033) * Add non-hmac request keys * Update comment * Initial audit request keys implementation * Add audit_non_hmac_response_keys * Move where req.NonHMACKeys gets set * Minor refactor * Add params to auth tune endpoints * Sync cache on loadCredentials * Explicitly unset req.NonHMACKeys * Do not error if entry is nil * Add tests * docs: Add params to api sections * Refactor audit.Backend and Formatter interfaces, update audit broker methods * Add audit_broker.go * Fix method call params in audit backends * Remove fields from logical.Request and logical.Response, pass keys via LogInput * Use data.GetOk to allow unsetting existing values * Remove debug lines * Add test for unsetting values * Address review feedback * Initialize values in FormatRequest and FormatResponse using input values * Update docs * Use strutil.StrListContains * Use strutil.StrListContains 2018-03-02 17:18:39 +00:00			`LogResponse(context.Context, *LogInput) error`
Reintroduce the ability to look up obfuscated values in the audit log with a new endpoint '/sys/audit-hash', which returns the given input string hashed with the given audit backend's hash function and salt (currently, always HMAC-SHA256 and a backend-specific salt). In the process of adding the HTTP handler, this also removes the custom HTTP handlers for the other audit endpoints, which were simply forwarding to the logical system backend. This means that the various audit functions will now redirect correctly from a standby to master. (Tests all pass.) Fixes #784 2015-11-19 01:26:03 +00:00
			`// GetHash is used to return the given data with the backend's hash,`
			`// so that a caller can determine if a value in the audit log matches`
			`// an expected plaintext value`
Add context to the NewSalt function (#4102) 2018-03-08 19:21:11 +00:00			`GetHash(context.Context, string) (string, error)`
Adds HUP support for audit log files to close and reopen. (#1953) Adds HUP support for audit log files to close and reopen. This makes it much easier to deal with normal log rotation methods. As part of testing this I noticed that HUP and other items that come out of command/server.go are going to stderr, which is where our normal log lines go. This isn't so much problematic with our normal output but as we officially move to supporting other formats this can cause interleaving issues, so I moved those to stdout instead. 2016-09-30 19:04:50 +00:00
			`// Reload is called on SIGHUP for supporting backends.`
Add context to storage backends and wire it through a lot of places (#3817) 2018-01-19 06:44:44 +00:00			`Reload(context.Context) error`
Delay salt initialization for audit backends 2017-05-24 00:36:20 +00:00
			`// Invalidate is called for path invalidation`
Add context to storage backends and wire it through a lot of places (#3817) 2018-01-19 06:44:44 +00:00			`Invalidate(context.Context)`
audit: Basic interface 2015-03-27 20:43:23 +00:00			`}`

Non-HMAC audit values (#4033) * Add non-hmac request keys * Update comment * Initial audit request keys implementation * Add audit_non_hmac_response_keys * Move where req.NonHMACKeys gets set * Minor refactor * Add params to auth tune endpoints * Sync cache on loadCredentials * Explicitly unset req.NonHMACKeys * Do not error if entry is nil * Add tests * docs: Add params to api sections * Refactor audit.Backend and Formatter interfaces, update audit broker methods * Add audit_broker.go * Fix method call params in audit backends * Remove fields from logical.Request and logical.Response, pass keys via LogInput * Use data.GetOk to allow unsetting existing values * Remove debug lines * Add test for unsetting values * Address review feedback * Initialize values in FormatRequest and FormatResponse using input values * Update docs * Use strutil.StrListContains * Use strutil.StrListContains 2018-03-02 17:18:39 +00:00			`// LogInput contains the input parameters passed into LogRequest and LogResponse`
			`type LogInput struct {`
			`Auth *logical.Auth`
			`Request *logical.Request`
			`Response *logical.Response`
			`OuterErr error`
			`NonHMACReqDataKeys []string`
			`NonHMACRespDataKeys []string`
			`}`

			`// BackendConfig contains configuration parameters used in the factory func to`
			`// instantiate audit backends`
Add HMAC capability to salt. Pass a salt into audit backends. Require it for audit.Hash. 2015-09-18 16:18:37 +00:00			`type BackendConfig struct {`
Delay salt initialization for audit backends 2017-05-24 00:36:20 +00:00			`// The view to store the salt`
			`SaltView logical.Storage`

			`// The salt config that should be used for any secret obfuscation`
			`SaltConfig *salt.Config`
Add HMAC capability to salt. Pass a salt into audit backends. Require it for audit.Hash. 2015-09-18 16:18:37 +00:00
			`// Config is the opaque user configuration provided when mounting`
			`Config map[string]string`
			`}`

audit: Basic interface 2015-03-27 20:43:23 +00:00			`// Factory is the factory function to create an audit backend.`
Add context to storage backends and wire it through a lot of places (#3817) 2018-01-19 06:44:44 +00:00			`type Factory func(context.Context, *BackendConfig) (Backend, error)`