Skip to content

[MODAUD-296] Add user audit enabled setting #238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
slaemmer merged 5 commits into from
Feb 11, 2026
Merged

[MODAUD-296] Add user audit enabled setting #238

slaemmer merged 5 commits into from
Feb 11, 2026

Conversation

@slaemmer
Copy link
Contributor

@slaemmer slaemmer commented Feb 9, 2026

Purpose

Adds settings infrastructure for user audit logging as part of MODAUD-296, the first implementation step of UXPROD-5171 (Users Version history / Change tracker).

Creates a new audit.users setting group with an enabled flag (defaulting to false) so that user audit logging can be toggled via the existing audit config API.

Approach

Followed the existing pattern established by the audit.inventory and audit.authority setting groups:

  • Added USER / USER_RECORDS_ENABLED enum constants
  • Added database seed records for the new group and its enabled setting
  • Added two permissions for reading and updating user audit settings
  • Added integration tests covering CRUD and permission enforcement

The REST API is generic and required no changes. The enabled flag defaults to false since user event processing is not yet implemented.

Pre-Merge Checklist:

  • Does this PR meet or exceed the expected quality standards?
    • Code coverage on new code is 80% or greater
    • Duplications on new code is 3% or less
    • There are no major code smells or security issues
  • Does this introduce breaking changes?
    • Were any API paths or methods changed, added or removed?
    • Were there any schema changes?
    • Did any of the interface versions change?
    • Were permissions changed, added, or removed?
    • Are there new interface dependencies?
    • There are no breaking changes in this PR.
    • Check logging

New permissions added (non-breaking):

  • audit.config.groups.settings.audit.users.collection.get
  • audit.config.groups.settings.audit.users.enabled.item.put

@slaemmer
[MODAUD-296] Add user audit enabled setting
a20c776 
Implements settings infrastructure for user audit logging:

- Add USER setting group (audit.users) to enum and database
- Add USER_RECORDS_ENABLED setting (defaults to false)
- Add permissions for user audit configuration:
    - audit.config.groups.settings.audit.users.collection.get
    - audit.config.groups.settings.audit.users.enabled.item.put
- Add integration tests for user settings CRUD and permissions

This creates the configuration foundation for future user event
processing. The enabled flag defaults to false (disabled) and can
be toggled via the existing /audit/config/groups API.
@slaemmer slaemmer marked this pull request as ready for review February 10, 2026 08:21
@slaemmer slaemmer requested a review from a team February 10, 2026 08:25
@sonarqubecloud
Copy link

sonarqubecloud bot commented Feb 10, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@slaemmer slaemmer merged commit c180d33 into master Feb 11, 2026
4 checks passed
@slaemmer slaemmer deleted the MODAUD-296 branch February 11, 2026 13:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pfilippov-epam pfilippov-epam pfilippov-epam approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@slaemmer @pfilippov-epam