[Feature][service]add audit fuction

[yc322]

[Feature][service]add audit fuction

Feature Desciption
This function records the operations that users successfully perform to change the system or workflow configuration, such as creating queue, creating workflow and so on. User can determine whether audit function turn on or not through the switch setting. The default implementation mode of the audit data is written to MySQL, and the extension interface is provided to store the data in other ways. The audit log is displayed on the front page, and the basic filtering operation is provided.

why this new feature usefule for most users

1. Improve the security of the system, audit function records the modification and operator of the database, which is convenient to view the specific reasons when the business is modified.

2. Users can view the historical behavior, and can trace back according to the operation history when the business has problems

3. At present, only the API operation information and user-defined workflow output log are recorded in the log. Users need to track the log when troubleshooting, which is not convenient and simple to use.

Design plan
Plan a: publish and subscribe mode . After user completes the modification operation, the operation behavior information is published as the form of message

Plan B: implementation using AOP

Audit Log Schema Design

Module	Type	IP	operator	time
workflow definition	create workflow	124.202.192.246	admin	2021-10-11 12:11:10

Additional context
Airflow provides basic user behavior recording and viewing functions, recording the time, operator, event, parameter and other information of operation.

功能描述
该功能记录用户成功执行的对系统工作流配置有改动的操作，如创建队列、创建工作流等操作。通过开关设置是否开启审计功能, 审计的数据
默认提供的实现方式是写入mysql,并且提供扩展接口实现使用其他方式存储。在前端页面上展示审计日志，并且提供基本的筛选操作。

实现方案
plan A:采用发布订阅模式，用户修改操作执行完成后，将操作行为信息以消息的方式进行发布
plan B:使用AOP进行实现

该功能为何对大多数用户有用？

1. 提高系统安全性，审计功能记录下数据库的修改和操作人，方便在业务被修改等情况查看具体原因。
2. 用户能够查看历史行为，在业务出现问题的时候，可以根据操作历史进行回溯
3. 目前只在日志中记录了对API的操作信息，以及用户定义的工作流输出日志。用户进行问题排查时，需要追踪日志，使用不够方便和简单。

日志的shema设计

Module	Type	IP	operator	time
workflow definition	create workflow	124.202.192.246	admin	2021-10-11 12:11:10

其他
airflow提供了基本的用户行为记录和查看功能，记录了用户操作的时间、操作人、事件、参数等信息。

[github-actions]

[Feature][service]add audit fuction

Feature Desciption
This function records the operations that users successfully perform to change the database, such as creating queue, creating workflow and so on. User can determine whether audit function turn on or not through the switch setting. The default implementation mode of the audit data is written to MySQL, and the extension interface is provided to store the data in other ways. The audit log is displayed on the front page, and the basic filtering operation is provided.

This function records the operations that users have successfully performed that have changed the database, such as creating queues and creating workflows. Set whether to enable the audit function through the switch, and the audited data
The implementation provided by default is to write to mysql, and provide an extended interface to implement storage in other ways. Display the audit log on the front-end page and provide basic filtering operations.

why this new feature usefule for most users

1. Improve the security of the system, audit function records the modification and operator of the database, which is convenient to view the specific reasons when the business is modified.

2. Users can view the historical behavior, and can trace back according to the operation history when the business has problems

3. Only gateway logs and workflow output logs are recorded. There is a lack of record and display of the user's successful execution and modification of the database.

4. Improve the security of the system. The audit function records the modification of the database and the operator, so that it is convenient to check the specific reason when the business is modified.

5. Users can view historical behaviors, and when there is a business problem, they can backtrack according to the operation history

6. Currently, only the gateway log and user-defined workflow output log are recorded. There is a lack of records and displays of actions that have been successfully executed by the user and have been modified to the database.

Design plan
Plan a: publish and subscribe mode. After user completes the modification operation, the operation behavior information is published as the form of message

Plan B: implementation using AOP
plan A: adopt the publish and subscribe mode, after the user modify the operation is completed, the operation behavior information will be published in the form of messages
plan B: Use AOP for implementation

Audit Log Schema Design

Module	Type	IP	operator	time
workflow definition	create workflow	124.202.192.246	admin	2021-10-11 12:11:10

Additional context
Airflow provides basic user behavior recording and viewing functions, recording the time, operator, event, parameter and other information of operation.

Airflow provides basic user behavior recording and viewing functions, recording user operation time, operators, events, parameters and other information.

[github-actions]

Hi:

• Thank you for your feedback, we have received your issue, Please wait patiently for a reply.
• In order for us to understand your request as soon as possible, please provide detailed information、version or pictures.
• If you haven't received a reply for a long time, you can subscribe to the developer's email，Mail subscription steps reference https://dolphinscheduler.apache.org/zh-cn/community/development/subscribe.html ,Then write the issue URL in the email content and send question to dev@dolphinscheduler.apache.org.

[davidzollo]

good suggestion, many users also feedbacked that they need this feature

BTW, which plan do you prefer?

[yc322]

good suggestion, many users also feedbacked that they need this feature

BTW, which plan do you prefer?

AOP can be used to get the relevant operation records in the form of log after the end of user operation, but it is not convenient to judge whether the operation is successful.

If use the publish subscribe mode , a message can be sent to the subscriber after the user's operation is successful.

If only need to record the successfully configuration modification, it will be better to use publish and subscribe mode.

[davidzollo]

good suggestion, many users also feedbacked that they need this feature
BTW, which plan do you prefer?

AOP can be used to get the relevant operation records in the form of log after the end of user operation, but it is not convenient to judge whether the operation is successful.

If use the publish subscribe mode , a message can be sent to the subscriber after the user's operation is successful.

If only need to record the successfully configuration modification, it will be better to use publish and subscribe mode.

sorry for reply late, got it, I agree with what you said,
good job, please send the plan to dev@dolphinscheduler.apache.org, import things need to happen in mailing list, thx
at the same time, I am looking forwarding to your PR to implement it ^_^

[github-actions]

This issue has been automatically marked as stale because it has not had recent activity for 30 days. It will be closed in next 7 days if no further activity occurs.

[github-actions]

This issue has been closed because it has not received response for too long time. You could reopen it if you encountered similar problems in the future.

[xbyang18]

everyone,is this feature enable for this v3.0.0 now? I find it was not used by latest 3.1.0,and there was not invoke addAudit method from source code