Ability to define custom audit polcy rules

2026-03-06 18:17:47 +03:00 · 2018-08-20 07:04:56 +02:00
parent 855f2a55cb
commit fc38b6d0ca
2 changed files with 10 additions and 0 deletions
--- a/roles/kubernetes/master/defaults/main.yml
+++ b/roles/kubernetes/master/defaults/main.yml
@@ -36,6 +36,12 @@ audit_log_maxbackups: 1
 audit_log_maxsize: 100
 # policy file
 audit_policy_file: "{{ kube_config_dir }}/audit-policy/apiserver-audit-policy.yaml"
+# custom audit policy rules (to replace the default ones)
+# audit_policy_custom_rules: >
+#   - level: None
+#     users: []
+#     verbs: []
+#     resources: []

 # audit log hostpath
 audit_log_name: audit-logs