This is the epic for Audit Logging

User Story

As a user, I would like to identify security incidents, policy violations, fraudulent activity, and operational problems.

Requirements and Details

See our Audit Logging RFC

AC

See the individual tickets linked below. (TBD)

Definition of Done

• Moving existing audit code to /enterprise folders
• Adding generation of audit logs to the HTTP API for all supported auditable objects
• Adding CLI command to read audit logs
• Adding frontend page to read audit logs
• Adding APIKey support for Diff’ing
• Exporting to slog

Tasks

Backend Issues

• https://github.com/coder/coder/issues/3605
• https://github.com/coder/coder/issues/3606

Frontend Issues

• Hide Audit Log if disabled #3220
• Show Audit Log if licensed #3219
• Design Audit Log #3218
• Create a pagination component #3266
• Add new audit route and link #3356
• Add audit page header, subheader, and CLI snippet #3357
• Add documentation for Audit page #3418
• Create XService for new audit data fetch #3428
• Scaffold out audit feed #3429
• Gate audit log by permissions #3460
• Display audit log diffs in a git diff format #3607
• Populate Audit Feed with Data #3608
• Hook up new pagination component to audit log #3609
• Allow all users with audit logs to view audit log page #3610