[backstage] audit log for suspend
Closed this issue · 0 comments
foot commented
Annotate who-done-it.
When you click suspend
- weave.works/suspended-by:
Can we can the BS user/principal from the FE?
- Probably can get it in the FE, but then it could potentially be impersonated if we're not verifying it before PATCHing via the kubeproxy?
- This would be a TRUST based system here if we can grab the user/principal from the FE
Potential follow up issue:
- weave.works/suspended-comment: