You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
api-audit-events-query v1.2.0 (C-07, AC-12) + frontend-host-detail v1.8.0
(AC-44). Phase 2b of the activity readability initiative.
Backend: GET /api/v1/audit/events now returns a server-rendered readable
'message' ('<actor> <predicate>', e.g. 'alice@example.com created a host'),
built by the shared activity.FormatAudit (exported from internal/activity so
the audit-events endpoint and the activity feed's audit leg render audit the
SAME way — no duplicate map). It also exposes actor_label and accepts
resource_type + resource_id query filters for a single resource's trail.
Frontend: the host-detail Audit log tab goes live (HostAuditLogTab) — the
host-scoped forensic trail via /audit/events?resource_type=host&resource_id=X,
rendered with the readable message, gated on audit:read. Removed from the
stub registry. Both deferred host tabs (Activity in 2a, Audit log here) are
now live.
This is decision #2 from the Phase 2 discussion (keep the Audit log tab, make
it a real per-host audit view) and de-risks Phase 3 (the settings audit log
gets the same readable message field for free).
Verified live: owas-tst01 Audit log shows 'Someone completed host discovery',
'Someone mounted a filesystem' — readable, host-scoped. Full frontend suite
(321) + backend audit suite + specter (111, structural 100%) green.
0 commit comments