Postgres Audit - How to get information on who is performing the DDL operation?
I'm trying to enable pgaudit in an Azure Postgres Single Server. I have followed the instructions provided by Microsoft and also the documentation of Postgres.
These are my settings ( the 2 Selected in the picture below are DDL and ROLE )
Log parameters
Then I have configured a destination for the files using a storage account. So far so good. The I ran this test case
postgres=> create table test_audit ( c1 integer ) ;
CREATE TABLE
postgres=> \dt test_audit
List of relations
Schema | Name | Type | Owner
--------+------------+-------+------------
public | test_audit | table | posadmn001
(1 row)
postgres=> insert into test_audit values ( 1 ) ;
INSERT 0 1
postgres=> insert into test_audit values ( 2 ) ;
INSERT 0 1
postgres=> alter table test_audit add c2 integer ;
ALTER TABLE
postgres=> drop table test_audit ;
DROP TABLE
So I should expect only entries for DDL operations, not for the DML, and that is working fine.
Create Table
"message": "*AUDIT: SESSION,1,1,DDL,CREATE TABLE,TABLE,public.test_audit,create table test_audit ( c1 integer ) ;,<none>","detail": "","errorLevel": "LOG","domain": "postgres-11","schemaName": "","tableName": "","columnName": "","datatypeName"
Alter Table
"message": "AUDIT: SESSION,2,1,DDL,ALTER TABLE,TABLE,public.test_audit,alter table test_audit add c2 integer ;,<none>","detail": "","errorLevel": "LOG","domain": "postgres-11","schemaName": "","tableName": "","columnName": "","datatypeName"
Drop table
"message": "AUDIT: SESSION,1,1,DDL,DROP TABLE,TABLE,public.test_audit,drop table test_audit ;,<none>","detail": "","errorLevel": "LOG","domain": "postgres-11","schemaName": "","tableName": "","columnName": "","datatypeName"
However, the audit trails don't show who have performed such operations. I mean, if I review the logs line by line, obviously there is an entry for the connection itself by the admin user, but not related to the AUDIT itself. Is there any way to collect the user within the audit trail together with the DDL operation? So that when I am looking for messages with the word AUDIT, I can get the command and the user who did it.
Thank you for your help
You can get the user name in the log line prefix by adding %u to log_line_prefix. A useful setting might be
log_line_prefix = '%m [%p] %q%u@%d (%h) '
- To select a specific column from a table using php postgres
- PGError: ERROR: column “recipes.id” must appear in the GROUP BY clause or be used in an aggregate function
- Use functions in unique constraint on multiple columns
- psql: FATAL: Ident authentication failed for user "postgres"
- Update record of a cursor where the table name is a parameter
- How do I (or can I) SELECT DISTINCT on multiple columns?
- How list all tables with data changes in the last 24 hours?
- Unable to delete duplicate rows with PostgreSQL
- Delete duplicate rows from small table
- How to delete duplicate rows without unique identifier
- In-order sequence generation
- SQLAlchemy SELECT WITH clause/statement (pgsql)
- Accidentally restored a another database to the 'postgres' database how to correct
- MERGE RETURNING into temp table without a CTE
- How do I delete a fixed number of rows with sorting in PostgreSQL?
- Can't subtract offset-naive and offset-aware datetimes
- How can I get Postgres use my functional index
- What is the correct way to implement a context manager in psycopg2?
- Can Postgres silently ignore column constraint conflicts?
- How to LIMIT the number of parent values, but return all children for each?
- Get the first date of an ISO 8601 year and week
- how can i get the last row with a given foreign key in yii2 with relations?
- Nifi : How to move CSV content and its meta data to single table in Postgresdatabase using NiFi
- SQLAlchemy hangs when sending ALTER TABLE
- log4net:ERROR ConfigureFromXml called with null 'element' parameter for Postgres SQL
- Postgres - SQL Recursivity to get the highest parent
- RDS while connection error: no pg_hba.conf entry for host
- Best way to select random rows PostgreSQL
- How to list indexes created for table in postgres
- How do you change a user in PostgreSQL?