cameleer/cameleer-server
1
0
Fork 0
Code Issues 42 Pull Requests Actions Packages Projects Releases Wiki Activity

Audit log: RBAC change filtering and highlighting #84

New Issue
Open
opened 2026-03-17 19:15:05 +01:00 by claude · 0 comments
claude commented 2026-03-17 19:15:05 +01:00
Owner
Copy Link

Context

All RBAC mutations (role assignment, group membership changes, user creation/deletion) are logged to the audit log via AuditService with categories USER_MGMT and RBAC. The audit log page (/admin/audit) exists but does not provide category-specific filtering or highlighting for RBAC events.

Requirements

Backend

  • GET /api/v1/admin/audit already supports filtering — verify it supports category query parameter
  • If not, add ?category=USER_MGMT,RBAC filter support

UI enhancements

  • Add category filter dropdown/chips to the audit log page (filter by USER_MGMT, RBAC, AUTH, CONFIG, etc.)
  • Highlight RBAC-related entries with a distinct color or icon
  • Show structured detail for RBAC events: e.g., "Assigned role OPERATOR to user:alice" rather than raw JSON
  • Quick filter: "Show RBAC changes only" toggle

Linked navigation

  • From RBAC user/group/role detail panes, add a "View audit history" link that opens the audit log pre-filtered to that entity

Notes

  • Audit categories defined in AuditCategory.java: AUTH, USER_MGMT, CONFIG, SECURITY, DATA (check if RBAC is a separate category or uses USER_MGMT)
## Context All RBAC mutations (role assignment, group membership changes, user creation/deletion) are logged to the audit log via `AuditService` with categories `USER_MGMT` and `RBAC`. The audit log page (`/admin/audit`) exists but does not provide category-specific filtering or highlighting for RBAC events. ## Requirements ### Backend - `GET /api/v1/admin/audit` already supports filtering — verify it supports `category` query parameter - If not, add `?category=USER_MGMT,RBAC` filter support ### UI enhancements - Add category filter dropdown/chips to the audit log page (filter by USER_MGMT, RBAC, AUTH, CONFIG, etc.) - Highlight RBAC-related entries with a distinct color or icon - Show structured detail for RBAC events: e.g., "Assigned role OPERATOR to user:alice" rather than raw JSON - Quick filter: "Show RBAC changes only" toggle ### Linked navigation - From RBAC user/group/role detail panes, add a "View audit history" link that opens the audit log pre-filtered to that entity ## Notes - Audit categories defined in `AuditCategory.java`: AUTH, USER_MGMT, CONFIG, SECURITY, DATA (check if RBAC is a separate category or uses USER_MGMT)
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
accessibility
Accessibility (a11y) improvements
 bug
Something isn't working correctly
 cleanup
Code cleanup, dead code removal, refactoring
 epic
Epic: groups related issues
 feature
New functionality
 pmf
Product-market fit: critical for first market offer
 route-diagram
Route diagram page and execution overlay
 security
Authentication, authorization, RBAC
 ui
Frontend / React UI
 ux
UX/usability improvements
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
claude
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: cameleer/cameleer-server#84
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?