Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Backport of Implement user lockout log into release/1.15.x #23588

Conversation

hc-github-team-secure-vault-core
Copy link
Collaborator

Backport

This PR is auto-generated from #23140 to be assessed for backporting due to the inclusion of the label backport/1.15.x.

The below text is copied from the body of the original PR.


This PR adds a log which will be emitted at a configurable interval (default of 1 minute), in the event of there being a locked user anywhere in Vault. This adds visibility for operators around the user lockout feature via the operational logs, allowing them to know when a user lockout is in effect. A WARN log will be emitted when a lockout is in effect, and an INFO log will be emitted when all lockouts have been cleared. The log interval can be modified as part of the server config using the user_lockout_log_interval parameter.

Example Config:
user_lockout_log_interval="30s"


Overview of commits

@github-actions github-actions bot added the hashicorp-contributed-pr If the PR is HashiCorp (i.e. not-community) contributed label Oct 10, 2023
@github-actions
Copy link

Build Results:
All builds succeeded! ✅

@github-actions
Copy link

CI Results:
All Go tests succeeded! ✅

@schavis schavis added the vault-update Used by SPE team to filter out PRs not related to content label Oct 10, 2023
@davidadeleon davidadeleon merged commit c7cfe1d into release/1.15.x Oct 11, 2023
98 of 99 checks passed
@davidadeleon davidadeleon deleted the backport/davidadeleon/implement-user-lockout-log/normally-smart-mackerel branch October 11, 2023 13:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
hashicorp-contributed-pr If the PR is HashiCorp (i.e. not-community) contributed vault-update Used by SPE team to filter out PRs not related to content
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants