feat(compute_ctl): allow to change audit_log_level for existing (#11308)

projects.

Preserve the information about the current audit log level in compute
state, so that we don't relaunch rsyslog on every spec change

https://github.com/neondatabase/cloud/issues/25349

---------

Co-authored-by: Tristan Partin <tristan@neon.tech>

libs/compute_api/src/spec.rs

@@ -160,12 +160,6 @@ pub struct ComputeSpec {
     pub drop_subscriptions_before_start: bool,
 
     /// Log level for audit logging:
-    ///
-    /// Disabled - no audit logging. This is the default.
-    /// log - log masked statements to the postgres log using pgaudit extension
-    /// hipaa - log unmasked statements to the file using pgaudit and pgauditlogtofile extension
-    ///
-    /// Extensions should be present in shared_preload_libraries
     #[serde(default)]
     pub audit_log_level: ComputeAudit,
 }
@@ -276,16 +270,27 @@ pub enum ComputeMode {
 }
 
 /// Log level for audit logging
-/// Disabled, log, hipaa
-/// Default is Disabled
-#[derive(Clone, Debug, Default, Eq, PartialEq, Deserialize, Serialize)]
+#[derive(Clone, Copy, Debug, Default, Eq, PartialEq, Deserialize, Serialize)]
 pub enum ComputeAudit {
     #[default]
+    /// no audit logging. This is the default.
     Disabled,
+    /// write masked audit log statements to the postgres log using pgaudit extension
     Log,
+    /// log unmasked statements to the file using pgaudit and pgauditlogtofile extensions
     Hipaa,
 }
 
+impl ComputeAudit {
+    pub fn as_str(&self) -> &str {
+        match self {
+            ComputeAudit::Disabled => "disabled",
+            ComputeAudit::Log => "log",
+            ComputeAudit::Hipaa => "hipaa",
+        }
+    }
+}
+
 #[derive(Clone, Debug, Default, Deserialize, Serialize, PartialEq, Eq)]
 pub struct Cluster {
     pub cluster_id: Option<String>,