UCloud logo UCloud logo UCloud
v2026.3.0
  1. UCloud/Core
  2. 1. Introduction
  3. 2. Projects
  4. 3. Accounting
  5. 4. Orchestration
  6. 5. Frontend
  7. UCloud/IM for Slurm-based HPC
  8. 6. Installation
  9. 7. Architecture and Networking
  10. 8. User and Project Management
  11. 9. Filesystem Integration
    1. 9.1. Inter-provider file transfers
  12. 10. Slurm Integration
    1. 10.1. Application Management
    2. 10.2. Built-in Applications
  13. 11. Reference
    1. 11.1. Configuration
    2. 11.2. CLI
  14. 12. Appendix
    1. 12.1. Built-in Application Index
  15. UCloud/IM for Kubernetes
  16. 13. Installation
  17. 14. Architecture and Networking
  18. 15. Filesystem Integration
  19. 16. Compute Jobs
    1. 16.1. Public Links
    2. 16.2. Public IPs
    3. 16.3. License Servers
    4. 16.4. SSH Servers
    5. 16.5. Job Audit Log
    6. 16.6. Virtual machines
  20. 17. Integrated applications
    1. 17.1. Syncthing
    2. 17.2. Integrated terminal
  21. 18. UCX applications
    1. 18.1. Hello world
    2. 18.2. Data binding
    3. 18.3. UI events
    4. 18.4. Component reference
    5. 18.5. API reference
  22. 19. Reference
    1. 19.1. Configuration
    2. 19.2. CLI
  23. Branding for UCloud
  24. 20. Branding and identity for UCloud
  25. H: Procedures
  26. 21. H: Procedures
  27. 22. H: Introduction
  28. 23. H: Auditing
  29. 24. H: Auditing scenario
  30. 25. H: GitHub actions
  31. 26. H: Deployment
  32. 27. H: 3rd party dependencies (risk assesment)
  1. Links
  2. Source Code
  3. Releases

Job Audit Log

Job audit log is a feature that allows application developers to log specific job executions.

To enable it, upload an application with the following configuration:

application: v2

name: "my-custom-app"
version: "7"

title: "My Custom Application"
documentation: "https://docs.cloud.sdu.dk/"
description: "Auditing jobs"

features:
  jobAuditLog: true
...

When this feature is enabled, the job will spawn a sidecar container called audit-log service; terminal and ssh access are disabled.

The application will then be able to make http POST request to the audit-log service eg. using curl

curl -X POST http://127.0.0.1:48291/append \
  -H "Content-Type: application/json" \
  -d '{
    "event": "DATA_EXPORT",
    "message": "Exported results to CSV",
    "meta": {
      "path": "/work/output/results.csv",
      "rows": 12500
    }
  }'

meta can hold any arbitrary data.

A log line will be appended as a json object

{"ts":"2026-01-28T09:12:44.381Z","jobId":"5003592","workspaceId":"651b3f72-b49d-4ad5-8bbe-4ff2d4889002","event":"DATA_EXPORT","message":"Exported results to CSV","meta":{"path":"/work/output/results.csv","rows":12500}}

The log file is stored in the workspace directory /audit

/audit/audit-${UCLOUD_RANK}_timestamp.jsonl

Job audit log retention period

To configure how often the audit log should be cleaned up, set the retentionPeriodInDays property in /etc/cloud/config.yaml

provider:
  id: k8s

  auditLog:
    retentionPeriodInDays: 180
...

Previous SSH Servers
Next Virtual machines