diff options
author | Gordon Chung <chungg@ca.ibm.com> | 2014-02-13 12:51:22 -0500 |
---|---|---|
committer | Gordon Chung <chungg@ca.ibm.com> | 2014-06-05 18:52:15 -0400 |
commit | c575e6d1df34c31d1c3733809e88af2f0b66a83b (patch) | |
tree | 424397c70b07ebcc7e3af5379d83bf78cf6c5ccd /etc | |
parent | 6ac553173de8e01f0b4a8bb73c212c63fd8679a4 (diff) | |
download | pycadf-c575e6d1df34c31d1c3733809e88af2f0b66a83b.tar.gz |
add audit_maps for more OpenStack components
add audit_maps for:
- cinder
- glance
- neutron
Change-Id: If324c1296f852e57f3a376ccfc485ed1b3df75e3
Blueprint: audit-all-apis
Diffstat (limited to 'etc')
-rw-r--r-- | etc/pycadf/cinder_api_audit_map.conf | 27 | ||||
-rw-r--r-- | etc/pycadf/glance_api_audit_map.conf | 16 | ||||
-rw-r--r-- | etc/pycadf/neutron_api_audit_map.conf | 31 | ||||
-rw-r--r-- | etc/pycadf/nova_api_audit_map.conf (renamed from etc/pycadf/api_audit_map.conf) | 11 |
4 files changed, 76 insertions, 9 deletions
diff --git a/etc/pycadf/cinder_api_audit_map.conf b/etc/pycadf/cinder_api_audit_map.conf new file mode 100644 index 0000000..ce1d2c3 --- /dev/null +++ b/etc/pycadf/cinder_api_audit_map.conf @@ -0,0 +1,27 @@ +[DEFAULT] +# default target endpoint type +# should match the endpoint type defined in service catalog +target_endpoint_type = None + +# map urls ending with specific text to a unique action +[custom_actions] +associate = update/associate +disassociate = update/disassociate +disassociate_all = update/disassociate_all +associations = read/list/associations + +# possible end path of api requests +[path_keywords] +defaults = None +detail = None +limits = None +os-quota-specs = project +qos-specs = qos-spec +snapshots = snapshot +types = type +volumes = volume + +# map endpoint type defined in service catalog to CADF typeURI +[service_endpoints] +volume = service/storage/block +volumev2 = service/storage/block
\ No newline at end of file diff --git a/etc/pycadf/glance_api_audit_map.conf b/etc/pycadf/glance_api_audit_map.conf new file mode 100644 index 0000000..fc9e461 --- /dev/null +++ b/etc/pycadf/glance_api_audit_map.conf @@ -0,0 +1,16 @@ +[DEFAULT] +# default target endpoint type +# should match the endpoint type defined in service catalog +target_endpoint_type = None + +# possible end path of api requests +[path_keywords] +detail = None +file = None +images = image +members = member +tags = tag + +# map endpoint type defined in service catalog to CADF typeURI +[service_endpoints] +image = service/storage/image
\ No newline at end of file diff --git a/etc/pycadf/neutron_api_audit_map.conf b/etc/pycadf/neutron_api_audit_map.conf new file mode 100644 index 0000000..2705252 --- /dev/null +++ b/etc/pycadf/neutron_api_audit_map.conf @@ -0,0 +1,31 @@ +[DEFAULT] +# default target endpoint type +# should match the endpoint type defined in service catalog +target_endpoint_type = None + +[custom_actions] +add_router_interface = update/add +remove_router_interface = update/remove + +# possible end path of api requests +[path_keywords] +floatingips = ip +healthmonitors = healthmonitor +health_monitors = health_monitor +lb = None +members = member +metering-labels = label +metering-label-rules = rule +networks = network +pools = pool +ports = port +routers = router +quotas = quota +security-groups = security-group +security-group-rules = rule +subnets = subnet +vips = vip + +# map endpoint type defined in service catalog to CADF typeURI +[service_endpoints] +network = service/network
\ No newline at end of file diff --git a/etc/pycadf/api_audit_map.conf b/etc/pycadf/nova_api_audit_map.conf index a6cafb5..f9bda45 100644 --- a/etc/pycadf/api_audit_map.conf +++ b/etc/pycadf/nova_api_audit_map.conf @@ -50,7 +50,7 @@ os-keypairs = keypair os-migrations = None os-networks = network os-quota-sets = tenant -os-security-groups = security-group +os-security-groups = security_group os-security-group-rules = rule os-server-password = None os-services = None @@ -66,13 +66,6 @@ shutdown = None startup = None statistics = None - # map endpoint type defined in service catalog to CADF typeURI [service_endpoints] -identity = service/security -object-store = service/storage/object -volume = service/storage/block -image = service/storage/image -network = service/network -compute = service/compute -metering = service/bss/metering
\ No newline at end of file +compute = service/compute
\ No newline at end of file |