>_
.issue.db
/highway-workflow-engine
Dashboard
Issues
Memory
Lessons
Audit Log
New Issue
Edit Issue #316
Update issue details
Title *
Description
## Problem No audit logging for secret operations. Only standard Python logging which is not: - Persistent in database - Queryable by tenant/user - Compliant with audit requirements ## Required Audit Events - SECRET_CREATED: path, keys (not values), user, timestamp - SECRET_UPDATED: path, keys changed, user, timestamp - SECRET_DELETED: path, user, timestamp - SECRET_READ: path, key accessed (workflow context), timestamp - SECRET_LIST: path queried, user, timestamp ## Acceptance Criteria - All secret operations logged to audit_logs table - Audit includes tenant_id, user_email, action, path, timestamp - Secret VALUES never logged - API endpoint to query secret audit: GET /tenant/secrets/<path>/audit - Audit retention policy configurable
Priority
Low
Medium
High
Critical
Status
Open
In Progress
Closed
Won't Do
Due Date (YYYY-MM-DD)
Tags (comma separated)
Related Issues (IDs)
Enter IDs of issues related to this one. They will be linked as 'related'.
Update Issue
Cancel