mirror of
https://github.com/neondatabase/neon.git
synced 2026-01-14 17:02:56 +00:00
56efce2249
set to 'Hipaa': - setup and configure pgaudit and pgauditlogtofile extensions in compute_ctl. - spin up a rsyslog server in the compute VM, and configure it to send logs to the endpoint specified in AUDIT_LOGGING_ENDPOINT env. Change pgaudit.log default to log 'all'. exclude postgres database from audit logging: we consider it system database that doesn't contain any sensitive data. - add pgaudit, pgauditlogtofile to shared_preload_libraries if audit_log_level Hipaa is enabled Move rsyslog config to compute_rsyslog_template.conf Set pgaudit.log_rotation_age
This directory contains files that are needed to build the compute images, or included in the compute images.
compute-node.Dockerfile To build the compute image
vm-image-spec.yaml Instructions for vm-builder, to turn the compute-node image into corresponding vm-compute-node image.
etc/ Configuration files included in /etc in the compute image
patches/ Some extensions need to be patched to work with Neon. This directory contains such patches. They are applied to the extension sources in compute-node.Dockerfile
In addition to these, postgres itself, the neon postgres extension, and compute_ctl are built and copied into the compute image by compute-node.Dockerfile.