# Copyright 2022 Google LLC # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. ##### ### Enable Audit Logs apiVersion: iam.cnrm.cloud.google.com/v1beta1 kind: IAMAuditConfig metadata: name: org-audit-logs namespace: config-control # kpt-set: ${management-namespace} annotations: config.kubernetes.io/depends-on: iam.cnrm.cloud.google.com/namespaces/config-control/IAMPolicyMember/guardrails-project-id-service-usage # kpt-set: iam.cnrm.cloud.google.com/namespaces/${management-namespace}/IAMPolicyMember/${guardrails-project-id}-service-usage spec: service: allServices auditLogConfigs: - logType: DATA_WRITE - logType: DATA_READ resourceRef: apiVersion: resourcemanager.cnrm.cloud.google.com/v1beta1 kind: Organization external: "0000000000" # kpt-set: ${org-id}