Created
April 17, 2019 13:04
-
-
Save sttts/377ae0450a263421a047734f9dc7b9a1 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --audit-dynamic-configuration | |
| Enables dynamic audit configuration. This feature also requires the DynamicAuditing feature flag | |
| --audit-log-batch-buffer-size int | |
| The size of the buffer to store events before batching and writing. Only used in batch mode. (default 10000) | |
| --audit-log-batch-max-size int | |
| The maximum size of a batch. Only used in batch mode. (default 1) | |
| --audit-log-batch-max-wait duration | |
| The amount of time to wait before force writing the batch that hadn't reached the max size. Only used in batch mode. | |
| --audit-log-batch-throttle-burst int | |
| Maximum number of requests sent at the same moment if ThrottleQPS was not utilized before. Only used in batch mode. | |
| --audit-log-batch-throttle-enable | |
| Whether batching throttling is enabled. Only used in batch mode. | |
| --audit-log-batch-throttle-qps float32 | |
| Maximum average number of batches per second. Only used in batch mode. | |
| --audit-log-format string | |
| Format of saved audits. "legacy" indicates 1-line text format for each event. "json" indicates structured json format. Known formats are legacy,json. (default "json") | |
| --audit-log-maxage int | |
| The maximum number of days to retain old audit log files based on the timestamp encoded in their filename. | |
| --audit-log-maxbackup int | |
| The maximum number of old audit log files to retain. | |
| --audit-log-maxsize int | |
| The maximum size in megabytes of the audit log file before it gets rotated. | |
| --audit-log-mode string | |
| Strategy for sending audit events. Blocking indicates sending events should block server responses. Batch causes the backend to buffer and write events asynchronously. Known modes are batch,blocking,blocking-strict. | |
| (default "blocking") | |
| --audit-log-path string | |
| If set, all requests coming to the apiserver will be logged to this file. '-' means standard out. | |
| --audit-log-truncate-enabled | |
| Whether event and batch truncating is enabled. | |
| --audit-log-truncate-max-batch-size int | |
| Maximum size of the batch sent to the underlying backend. Actual serialized size can be several hundreds of bytes greater. If a batch exceeds this limit, it is split into several batches of smaller size. (default | |
| 10485760) | |
| --audit-log-truncate-max-event-size int | |
| Maximum size of the audit event sent to the underlying backend. If the size of an event is greater than this number, first request and response are removed, and if this doesn't reduce the size enough, event is | |
| discarded. (default 102400) | |
| --audit-log-version string | |
| API group and version used for serializing audit events written to log. (default "audit.k8s.io/v1") | |
| --audit-policy-file string | |
| Path to the file that defines the audit policy configuration. | |
| --audit-webhook-batch-buffer-size int | |
| The size of the buffer to store events before batching and writing. Only used in batch mode. (default 10000) | |
| --audit-webhook-batch-max-size int | |
| The maximum size of a batch. Only used in batch mode. (default 400) | |
| --audit-webhook-batch-max-wait duration | |
| The amount of time to wait before force writing the batch that hadn't reached the max size. Only used in batch mode. (default 30s) | |
| --audit-webhook-batch-throttle-burst int | |
| Maximum number of requests sent at the same moment if ThrottleQPS was not utilized before. Only used in batch mode. (default 15) | |
| --audit-webhook-batch-throttle-enable | |
| Whether batching throttling is enabled. Only used in batch mode. (default true) | |
| --audit-webhook-batch-throttle-qps float32 | |
| Maximum average number of batches per second. Only used in batch mode. (default 10) | |
| --audit-webhook-config-file string | |
| Path to a kubeconfig formatted file that defines the audit webhook configuration. | |
| --audit-webhook-initial-backoff duration | |
| The amount of time to wait before retrying the first failed request. (default 10s) | |
| --audit-webhook-mode string | |
| Strategy for sending audit events. Blocking indicates sending events should block server responses. Batch causes the backend to buffer and write events asynchronously. Known modes are batch,blocking,blocking-strict. | |
| (default "batch") | |
| --audit-webhook-truncate-enabled | |
| Whether event and batch truncating is enabled. | |
| --audit-webhook-truncate-max-batch-size int | |
| Maximum size of the batch sent to the underlying backend. Actual serialized size can be several hundreds of bytes greater. If a batch exceeds this limit, it is split into several batches of smaller size. (default | |
| 10485760) | |
| --audit-webhook-truncate-max-event-size int | |
| Maximum size of the audit event sent to the underlying backend. If the size of an event is greater than this number, first request and response are removed, and if this doesn't reduce the size enough, event is | |
| discarded. (default 102400) | |
| --audit-webhook-version string | |
| API group and version used for serializing audit events written to webhook. (default "audit.k8s.io/v1") |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment