本文档介绍了 Google Cloud Managed Service for Apache Kafka 的审核日志记录。 Google Cloud 服务会生成审核日志,以记录 Google Cloud 资源中的管理和访问活动。如需详细了解 Cloud Audit Logs,请参阅以下内容:
服务名称
Google Cloud Managed Service for Apache Kafka 审核日志使用服务名称 managedkafka.googleapis.com。针对此服务的过滤条件:
protoPayload.serviceName="managedkafka.googleapis.com"
方法(按权限类型)
每个 IAM 权限都有一个 type 属性,该属性的值是一个枚举,可以是以下四个值之一:ADMIN_READ、ADMIN_WRITE、DATA_READ 或 DATA_WRITE。在您调用某个方法时,Google Cloud Managed Service for Apache Kafka 会生成一个审核日志,其类别取决于执行该方法所需权限的 type 属性。需要 IAM 权限且 type 属性值为 DATA_READ、DATA_WRITE 或 ADMIN_READ 的方法会生成数据访问审核日志。需要 IAM 权限且 type 属性值为 ADMIN_WRITE 的方法会生成管理员活动审核日志。
| 权限类型 | 方法 |
|---|---|
ADMIN_READ |
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CheckCompatibilitygoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetContextgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchemagoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchemaVersiongoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemagoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaConfiggoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaModegoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaRegistrygoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetVersiongoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListContextsgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListReferencedSchemasgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaRegistriesgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaTypesgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaVersionsgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjectsgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjectsBySchemaIdgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListVersionsgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.LookupVersiongoogle.cloud.managedkafka.v1.ManagedKafka.GetAclgoogle.cloud.managedkafka.v1.ManagedKafka.GetClustergoogle.cloud.managedkafka.v1.ManagedKafka.GetConsumerGroupgoogle.cloud.managedkafka.v1.ManagedKafka.GetTopicgoogle.cloud.managedkafka.v1.ManagedKafka.ListAclsgoogle.cloud.managedkafka.v1.ManagedKafka.ListClustersgoogle.cloud.managedkafka.v1.ManagedKafka.ListConsumerGroupsgoogle.cloud.managedkafka.v1.ManagedKafka.ListTopicsgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnectClustergoogle.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectClustersgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectorsgoogle.longrunning.Operations.GetOperationgoogle.longrunning.Operations.ListOperations |
ADMIN_WRITE |
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateSchemaRegistrygoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateVersiongoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaConfiggoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaModegoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaRegistrygoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSubjectgoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteVersiongoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaConfiggoogle.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaModegoogle.cloud.managedkafka.v1.ManagedKafka.AddAclEntrygoogle.cloud.managedkafka.v1.ManagedKafka.CreateAclgoogle.cloud.managedkafka.v1.ManagedKafka.CreateCluster (LRO)google.cloud.managedkafka.v1.ManagedKafka.CreateTopicgoogle.cloud.managedkafka.v1.ManagedKafka.DeleteAclgoogle.cloud.managedkafka.v1.ManagedKafka.DeleteCluster (LRO)google.cloud.managedkafka.v1.ManagedKafka.DeleteConsumerGroupgoogle.cloud.managedkafka.v1.ManagedKafka.DeleteTopicgoogle.cloud.managedkafka.v1.ManagedKafka.RemoveAclEntrygoogle.cloud.managedkafka.v1.ManagedKafka.UpdateAclgoogle.cloud.managedkafka.v1.ManagedKafka.UpdateCluster (LRO)google.cloud.managedkafka.v1.ManagedKafka.UpdateConsumerGroupgoogle.cloud.managedkafka.v1.ManagedKafka.UpdateTopicgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnectCluster (LRO)google.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnectCluster (LRO)google.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.PauseConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.RestartConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.ResumeConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.StopConnectorgoogle.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnectCluster (LRO)google.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnectorgoogle.longrunning.Operations.CancelOperationgoogle.longrunning.Operations.DeleteOperation |
DATA_WRITE |
google.cloud.managedkafka.v1.Auth.AuthenticateConnection |
API 接口审核日志
如需了解如何针对每种方法评估权限以及评估哪些权限,请参阅 Google Cloud Managed Service for Apache Kafka 的 Identity and Access Management 文档。
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry
以下审核日志与属于 google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry 的方法相关联。
CheckCompatibility
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CheckCompatibility - 审核日志类型:数据访问
- 权限:
managedkafka.versions.checkCompatibility - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CheckCompatibility"
CreateSchemaRegistry
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateSchemaRegistry - 审核日志类型:管理员活动
- 权限:
managedkafka.schemaRegistries.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateSchemaRegistry"
CreateVersion
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateVersion - 审核日志类型:管理员活动
- 权限:
managedkafka.versions.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.CreateVersion"
DeleteSchemaConfig
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaConfig - 审核日志类型:管理员活动
- 权限:
managedkafka.config.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaConfig"
DeleteSchemaMode
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaMode - 审核日志类型:管理员活动
- 权限:
managedkafka.mode.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaMode"
DeleteSchemaRegistry
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaRegistry - 审核日志类型:管理员活动
- 权限:
managedkafka.schemaRegistries.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSchemaRegistry"
DeleteSubject
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSubject - 审核日志类型:管理员活动
- 权限:
managedkafka.subjects.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteSubject"
DeleteVersion
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteVersion - 审核日志类型:管理员活动
- 权限:
managedkafka.versions.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.DeleteVersion"
GetContext
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetContext - 审核日志类型:数据访问
- 权限:
managedkafka.contexts.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetContext"
GetRawSchema
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchema - 审核日志类型:数据访问
- 权限:
managedkafka.schemas.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchema"
GetRawSchemaVersion
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchemaVersion - 审核日志类型:数据访问
- 权限:
managedkafka.versions.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetRawSchemaVersion"
GetSchema
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchema - 审核日志类型:数据访问
- 权限:
managedkafka.schemas.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchema"
GetSchemaConfig
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaConfig - 审核日志类型:数据访问
- 权限:
managedkafka.config.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaConfig"
GetSchemaMode
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaMode - 审核日志类型:数据访问
- 权限:
managedkafka.mode.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaMode"
GetSchemaRegistry
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaRegistry - 审核日志类型:数据访问
- 权限:
managedkafka.schemaRegistries.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetSchemaRegistry"
GetVersion
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetVersion - 审核日志类型:数据访问
- 权限:
managedkafka.versions.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.GetVersion"
ListContexts
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListContexts - 审核日志类型:数据访问
- 权限:
managedkafka.contexts.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListContexts"
ListReferencedSchemas
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListReferencedSchemas - 审核日志类型:数据访问
- 权限:
managedkafka.versions.referencedby - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListReferencedSchemas"
ListSchemaRegistries
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaRegistries - 审核日志类型:数据访问
- 权限:
managedkafka.schemaRegistries.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaRegistries"
ListSchemaTypes
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaTypes - 审核日志类型:数据访问
- 权限:
managedkafka.schemas.listTypes - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaTypes"
ListSchemaVersions
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaVersions - 审核日志类型:数据访问
- 权限:
managedkafka.schemas.listVersions - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSchemaVersions"
ListSubjects
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjects - 审核日志类型:数据访问
- 权限:
managedkafka.subjects.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjects"
ListSubjectsBySchemaId
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjectsBySchemaId - 审核日志类型:数据访问
- 权限:
managedkafka.schemas.listSubjects - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListSubjectsBySchemaId"
ListVersions
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListVersions - 审核日志类型:数据访问
- 权限:
managedkafka.versions.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.ListVersions"
LookupVersion
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.LookupVersion - 审核日志类型:数据访问
- 权限:
managedkafka.subjects.lookup - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.LookupVersion"
UpdateSchemaConfig
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaConfig - 审核日志类型:管理员活动
- 权限:
managedkafka.config.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaConfig"
UpdateSchemaMode
- 方法:
google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaMode - 审核日志类型:管理员活动
- 权限:
managedkafka.mode.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.schemaregistry.v1.ManagedSchemaRegistry.UpdateSchemaMode"
google.cloud.managedkafka.v1.Auth
以下审核日志与属于 google.cloud.managedkafka.v1.Auth 的方法相关联。
AuthenticateConnection
- 方法:
google.cloud.managedkafka.v1.Auth.AuthenticateConnection - 审核日志类型:数据访问
- 权限:
managedkafka.clusters.connect - DATA_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.Auth.AuthenticateConnection"
google.cloud.managedkafka.v1.ManagedKafka
以下审核日志与属于 google.cloud.managedkafka.v1.ManagedKafka 的方法相关联。
AddAclEntry
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.AddAclEntry - 审核日志类型:管理员活动
- 权限:
managedkafka.acls.updateEntries - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.AddAclEntry"
CreateAcl
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.CreateAcl - 审核日志类型:管理员活动
- 权限:
managedkafka.acls.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.CreateAcl"
CreateCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.CreateCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.clusters.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.CreateCluster"
CreateTopic
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.CreateTopic - 审核日志类型:管理员活动
- 权限:
managedkafka.topics.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.CreateTopic"
DeleteAcl
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.DeleteAcl - 审核日志类型:管理员活动
- 权限:
managedkafka.acls.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.DeleteAcl"
DeleteCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.DeleteCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.clusters.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.DeleteCluster"
DeleteConsumerGroup
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.DeleteConsumerGroup - 审核日志类型:管理员活动
- 权限:
managedkafka.consumerGroups.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.DeleteConsumerGroup"
DeleteTopic
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.DeleteTopic - 审核日志类型:管理员活动
- 权限:
managedkafka.topics.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.DeleteTopic"
GetAcl
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.GetAcl - 审核日志类型:数据访问
- 权限:
managedkafka.acls.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.GetAcl"
GetCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.GetCluster - 审核日志类型:数据访问
- 权限:
managedkafka.clusters.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.GetCluster"
GetConsumerGroup
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.GetConsumerGroup - 审核日志类型:数据访问
- 权限:
managedkafka.consumerGroups.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.GetConsumerGroup"
GetTopic
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.GetTopic - 审核日志类型:数据访问
- 权限:
managedkafka.topics.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.GetTopic"
ListAcls
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.ListAcls - 审核日志类型:数据访问
- 权限:
managedkafka.acls.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.ListAcls"
ListClusters
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.ListClusters - 审核日志类型:数据访问
- 权限:
managedkafka.clusters.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.ListClusters"
ListConsumerGroups
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.ListConsumerGroups - 审核日志类型:数据访问
- 权限:
managedkafka.consumerGroups.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.ListConsumerGroups"
ListTopics
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.ListTopics - 审核日志类型:数据访问
- 权限:
managedkafka.topics.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.ListTopics"
RemoveAclEntry
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.RemoveAclEntry - 审核日志类型:管理员活动
- 权限:
managedkafka.acls.updateEntries - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.RemoveAclEntry"
UpdateAcl
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.UpdateAcl - 审核日志类型:管理员活动
- 权限:
managedkafka.acls.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.UpdateAcl"
UpdateCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.UpdateCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.clusters.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.UpdateCluster"
UpdateConsumerGroup
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.UpdateConsumerGroup - 审核日志类型:管理员活动
- 权限:
managedkafka.consumerGroups.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.UpdateConsumerGroup"
UpdateTopic
- 方法:
google.cloud.managedkafka.v1.ManagedKafka.UpdateTopic - 审核日志类型:管理员活动
- 权限:
managedkafka.topics.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafka.UpdateTopic"
google.cloud.managedkafka.v1.ManagedKafkaConnect
以下审核日志与属于 google.cloud.managedkafka.v1.ManagedKafkaConnect 的方法相关联。
CreateConnectCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnectCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.connectClusters.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnectCluster"
CreateConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.create - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.CreateConnector"
DeleteConnectCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnectCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.connectClusters.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnectCluster"
DeleteConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.DeleteConnector"
GetConnectCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnectCluster - 审核日志类型:数据访问
- 权限:
managedkafka.connectClusters.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnectCluster"
GetConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnector - 审核日志类型:数据访问
- 权限:
managedkafka.connectors.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.GetConnector"
ListConnectClusters
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectClusters - 审核日志类型:数据访问
- 权限:
managedkafka.connectClusters.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectClusters"
ListConnectors
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectors - 审核日志类型:数据访问
- 权限:
managedkafka.connectors.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.ListConnectors"
PauseConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.PauseConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.pause - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.PauseConnector"
RestartConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.RestartConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.restart - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.RestartConnector"
ResumeConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.ResumeConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.resume - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.ResumeConnector"
StopConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.StopConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.stop - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.StopConnector"
UpdateConnectCluster
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnectCluster - 审核日志类型:管理员活动
- 权限:
managedkafka.connectClusters.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:长时间运行的操作
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnectCluster"
UpdateConnector
- 方法:
google.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnector - 审核日志类型:管理员活动
- 权限:
managedkafka.connectors.update - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.cloud.managedkafka.v1.ManagedKafkaConnect.UpdateConnector"
google.longrunning.Operations
以下审核日志与属于 google.longrunning.Operations 的方法相关联。
CancelOperation
- 方法:
google.longrunning.Operations.CancelOperation - 审核日志类型:管理员活动
- 权限:
managedkafka.operations.cancel - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.CancelOperation"
DeleteOperation
- 方法:
google.longrunning.Operations.DeleteOperation - 审核日志类型:管理员活动
- 权限:
managedkafka.operations.delete - ADMIN_WRITE
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.DeleteOperation"
GetOperation
- 方法:
google.longrunning.Operations.GetOperation - 审核日志类型:数据访问
- 权限:
managedkafka.operations.get - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.GetOperation"
ListOperations
- 方法:
google.longrunning.Operations.ListOperations - 审核日志类型:数据访问
- 权限:
managedkafka.operations.list - ADMIN_READ
- 方法是长时间运行的操作或流式传输操作:否。
- 此方法的过滤条件:
protoPayload.methodName="google.longrunning.Operations.ListOperations"