Module gcp_bigquery_client::model::audit_config
source · [−]Structs
AuditConfig : Specifies the audit configuration for a service. The configuration determines which permission types
are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more
AuditLogConfigs. If there are AuditConfigs for both allServices
and a specific service, the union of the two
AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the
exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs:
{ "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "user:jose@example.com" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "sampleservice.googleapis.com", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "user:aliya@example.com" ] } ] } ] }
For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts
jose@example.com from DATA_READ logging, and aliya@example.com from DATA_WRITE logging.