From 4862afc4daf2a8b363fbd60113c1e905eca40799 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jes=C3=BAs=20P=C3=A9rez=20Lorenzo?=
 <jesusperezlorenzo@rigzin.local>
Date: Mon, 20 Jan 2025 05:30:58 +0000
Subject: [PATCH] chore: add audit-policy for kubernetes

---
 audit-policy.yaml | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 audit-policy.yaml

diff --git a/audit-policy.yaml b/audit-policy.yaml
new file mode 100644
index 0000000..b8b3d85
--- /dev/null
+++ b/audit-policy.yaml
@@ -0,0 +1,12 @@
+apiVersion: audit.k8s.io/v1 # This is required.
+kind: Policy
+# Don't generate audit events for all requests in RequestReceived stage.
+omitStages:
+  - "RequestReceived"
+rules:
+  # A catch-all rule to log all other requests at the Metadata level.
+  - level: Metadata
+    # Long-running requests like watches that fall under this rule will not
+    # generate an audit event in RequestReceived.
+    omitStages:
+      - "RequestReceived"
\ No newline at end of file