As a Database Administrator you want to be able to perform audit schema changes or as a Security Officer, you want to be able to audit login/logout events, successful or failure, it is as part of company policy, you need to store auditlogs on external system for period of time.

As a Database Administrator, specify the following

• When the pgaudit function is enabled with the enable parameter in FEPCluster, the following is automatically set by the operator.

  • pgaudit is added in ‘shared_preload_libraries’

  • pgaudit log directory is configured

  • pgaudit file name is configured

  • pgaudit extension is created

• Specify an external ConfigMap for pgaudit configuration.

  • This ConfigMap contains full content of pgaudit.conf

  • Both session audit and object audit can be configured

  • The configurations in this ConfigMap overwrites the pgaudit configuration specified in FEPCluster CR

• Specify a destination so that the pgaudit log files can be uploaded periodically.

  • web server

  • Azure Blob

  • AWS S3 storage