Dependencies: core

Keeps a track of all database access actions (especially of the users').

This modules exposes an API for other modules to explicitly keep an audit trail of database access and other actions. It hooks transparently into all of the client's database access requests and logs the following data: user, timestamp, target (which object/column, etc), action (CRUD).

This access audit trail should be cryptographically signed if possible. The logging must be done on the server side to prevent tampering from the client. A client side audit API IMHO is not necessary.

Have a look at Gnumed's audit database schema for a working possible solution.

• Draft
• Specification
• API