Eventarc 审计日志 Scope 仅限于当前项目
[英]Eventarc Audit Log Scope Limited to Current Project
问题描述
In GCP, I have a log sink which centralizes logs onto a GCP Project.
在 GCP 中,我有一个日志接收器,它将日志集中到 GCP 项目中。 I also have an EventArc trigger that listens for Cloud Resource Manager events, specifically the createProject method我还有一个 EventArc 触发器,用于侦听 Cloud Resource Manager 事件,特别是 createProject 方法
Are Eventarc triggers limited to only the current projects logs? Eventarc 触发器是否仅限于当前项目日志? Or can it access all logs from all logs bucket in a GCP Project或者它是否可以访问 GCP 项目中所有日志存储桶中的所有日志
The logs show up in Cloud Logging (only when I set the scope to include all buckets and not limit it to the current project), however no Eventarc triggers are generated off of this.日志显示在 Cloud Logging 中(仅当我将 scope 设置为包含所有存储桶且不将其限制为当前项目时),但是不会由此生成 Eventarc 触发器。
Is this a limitation of Eventarc or am I missing something here?这是 Eventarc 的限制还是我在这里遗漏了什么?
1 个解决方案
解决方案1
0 2022-09-01 07:36:10
Since the createProject method is among the very first logs that gets generated in a newly created project, EventArc triggers will NOT pick them up since the trigger would have to be created after the project has been created.由于 createProject 方法是在新创建的项目中生成的第一批日志之一,因此 EventArc 触发器不会拾取它们,因为必须在创建项目后创建触发器。 Triggers might take a few minutes to become active before they can process logs.触发器可能需要几分钟才能激活,然后才能处理日志。
In my case, I was able to create a Logs Router at an organization / folder level to overcome this issue, the Logs Router would include all child elements and would capture specific logs from the Cloud Resource Manager.在我的例子中,我能够在组织/文件夹级别创建一个日志路由器来解决这个问题,日志路由器将包含所有子元素并从云资源管理器中捕获特定日志。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.