Skip to content

chore(audit): disable config-change log filtering in 4.0#183

Merged
dkmstr merged 1 commit into
v4.0from
master-openuds-server-audit-disable-config-scan
Jul 2, 2026
Merged

chore(audit): disable config-change log filtering in 4.0#183
dkmstr merged 1 commit into
v4.0from
master-openuds-server-audit-disable-config-scan

Conversation

@aschumann-virtualcable

@aschumann-virtualcable aschumann-virtualcable commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

This pull request temporarily disables the inclusion of configuration change log entries from the "LOGS" source in the audit report generation, due to performance concerns with large datasets in version 4.0. Only REST-based log entries are now processed for audit reports, avoiding expensive full-table scans.

Performance and Filtering Changes:

  • Disabled the use of Q objects and the data__contains filter for including config-change entries from the "LOGS" source in the audit report, as this would require a full-table LIKE scan and is not scalable for large installations. Only entries from the "REST" source are now considered. [1] [2]

Code and Logic Adjustments:

  • Commented out all logic related to processing "LOGS" source config-change entries, including the CONFIG_MARKER constant and the code that parsed and yielded these entries, to align with the new filtering approach for version 4.0. [1] [2]

The config-change entries require a data__contains filter, which becomes a
full-table LIKE '%...%' scan over every Log row. On installations with
hundreds of millions of rows this is prohibitively slow. Comment out the new
logic and keep the old REST-only filter active; kept commented for reference.
@dkmstr dkmstr merged commit 787c5b5 into v4.0 Jul 2, 2026
1 of 2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants