Skip to content

feat(audits): optional read/view auditing (#388) #394

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
KofTwentyTwo wants to merge 1 commit into
base: develop
Choose a base branch
from
Draft

feat(audits): optional read/view auditing (#388) #394

KofTwentyTwo wants to merge 1 commit into from

Conversation

@KofTwentyTwo
Copy link
Member

@KofTwentyTwo KofTwentyTwo commented Feb 2, 2026

Summary

  • Adds ReadAuditLevel (NONE/GET/GET_AND_QUERY) on QAuditRules to optionally audit read operations (views and queries)
  • Async fire-and-forget via shared AuditHandlerExecutor thread pool -- never blocks or fails reads
  • QUERY audits include filter summary as auditDetail records; GET audits have no details
  • New READ handler type with ReadAuditHandlerInterface for custom read audit processing
  • InputSource guard (USER only) and recursion prevention (audit tables have no readAuditLevel)
  • QInstanceValidator checks: READ handler code references and audit table existence when readAuditLevel != NONE

Test plan

  • 17 tests in ReadAuditActionTest covering all ReadAuditLevel combinations, InputSource filtering, async isolation, handler invocation, recursion prevention, and auditDetail filter summaries
  • QInstanceValidatorTest for readAuditLevel validation
  • GetActionTest and QueryActionTest pass with integration changes

Closes #388

@KofTwentyTwo
feat(audits): add optional read/view auditing for tables (#388)
b3776eb 
Add ReadAuditLevel (NONE/GET/GET_AND_QUERY) on QAuditRules to track
who viewed what data. Async fire-and-forget via shared thread pool.
Includes READ handler type, QInstanceValidator checks, and query
filter summary in auditDetail records.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

feat(audit): support optional audit records for entity record views

2 participants

@KofTwentyTwo