CASSANDRA-12151 is merged we have support for audit logs in Cassandra. With this ticket I want to explore the idea of managing audit whitelists using CQL.
I can think of a few different benefits compared to current yaml-based whitelist/blacklist approach.
- Nodes would always be aligned - no risk that node configuraiton go out of sync as tables are added and whitelists updated.
- Easier to manage whitelists in large clusters - change in one place and apply cluster wide.
- Changes to the whitelists would be in the audit log itself.