Cleanup of the Audit Trail
Remove entries from the audit trail by means of the Commander service.
It is possible to delete old audit trail entries by means of the audit cleanup command provided by the Commander service, together with the ./config/system/cleanupConfiguration.json configuration file.
Configuration
The audit field in the JSON file contains details on the deletion of the audit trail entries using the following parameters:
| Parameter | Description | ||||||||
|---|---|---|---|---|---|---|---|---|---|
defaultCleanupAfterDays | An integer default value for the | ||||||||
actions | Contains a list of mappings of the minimum age of audit trail entry types and the corresponding cleanup timing.
|
{
"audit": {
"defaultCleanupAfterDays": 10,
"actions": [
{
"comment": "OBJECT_CREATED",
"action": 100,
"cleanupAfterDays": -1
},
{
"comment": "DOCUMENT_ACCESSED",
"action": 400,
"cleanupAfterDays": 1
}
]
}
}
When the lifetime of the audit trail entries is exceeded, they are not automatically deleted. The deletion of entries takes place only as a result of the execution of the audit cleanup command in the Commander service AND if the specified lifetime is exceeded. When executed, the command reads the cleanupConfiguration.json file. If the file does not exist, the defaultCleanupAfterDays value is set to -1 and thus no entry will be deleted from the audit trail.
Execution in the Commander
Two parameters can be given to the audit cleanup command:
| Parameter | Description | Example |
|---|---|---|
-t | --tenant | Specifys the target tenant. If not specified, the command is executed for all tenants. | audit cleanup -t default(with the example tenant default) |