Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Stash audit logs

Thomas Have
Thomas Have August 24, 2014

Hi!

We need to have audit logs for source code, tickets and our documents. And are considering to use the JIRA suite to help (current system doesn't cut it).

I have some questions I hope you will answer

  • Are read accesses logged in Stash?
    • If the user browses the code through the UI (it's my understanding this can be done directly in Stash and also via JIRA)?
    • Git pulls are logged as per the documentation as far as I can see.

Regards,

Thomas

Answer
Watch
Like Be the first to like this
763 views

3 answers

0 votes
Thomas Have
Thomas Have August 25, 2014

Indeed it does. Thanks!

Reply
0 votes
Michael Heemskerk
Michael Heemskerk
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
August 24, 2014

Thomas,

For Stash, the audit logs (under STASH_HOME/logs/audit) track selected events only. Have a look at https://confluence.atlassian.com/display/STASH/Audit+events+in+Stashfor a list of events that can be tracked. Note that by default not even all these events are included in the audit log; only the 'high' priority events are logged, but you can configure that in the stash-config.properties. Have a look at https://confluence.atlassian.com/display/STASH/Stash+config+properties#Stashconfigproperties-Auditfor more information on how to do that.

While the access logs don't track repository read access, you could still use the access logs for that. They record every request that's made over HTTP and SSH, complete with the authenticated user. See https://confluence.atlassian.com/display/STASHKB/Stash+Log+Formatsfor a description of the access log format.

Hope this helps!

Cheers,

Michael

Reply
0 votes
Johannes Kilian
Johannes Kilian
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 24, 2014

Not really an answer - but I don't see the need for logging read accesses (beside statistical issues). If you want your repository to be read only by certain people you should use access control to restrict the access - as reading is a non-modifying action on the repository, everybody who has granted access to your repo should be allowed to read it (no need for logging here).

View More Comments
Thomas Have
Thomas Have August 24, 2014

Hi,

To clearify: We need this because we want a Common Criteria Certificate -perhaps not so widely known, but it's important for security related products. From CC it's mandated (on our level anyway) that all accesses are logged.

Thanks,

Thomas

Like
Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events