u/pc/rhodecode-enterprise-ce-fork-pc Commit - r1697:3d938b76

audit-logs: use new v2 api on login/logout/password reset views.

marcink -

r1697:3d938b76 default

parent child

rhodecode/apps/login/views.py

0 +20 0

              from rhodecode.authentication.base import authenticate, HTTP_TYPE
              from rhodecode.events import UserRegistered
              from rhodecode.lib import helpers as h
+             from rhodecode.lib import audit_logger
              from rhodecode.lib.auth import (
                  AuthUser, HasPermissionAnyDecorator, CSRFRequired)
              from rhodecode.lib.base import get_ip_addr
                              username=form_result['username'],
                              remember=form_result['remember'])
                          log.debug('Redirecting to "%s" after login.', c.came_from)
+                         audit_user = audit_logger.UserWrap(
+                             username=self.request.params.get('username'),
+                             ip_addr=self.request.remote_addr)
+                         audit_logger.store(action='user.login.success', user=audit_user,
+                                            commit=True)
                          raise HTTPFound(c.came_from, headers=headers)
                      except formencode.Invalid as errors:
                          defaults = errors.value
                              'errors': errors.error_dict,
                              'defaults': defaults,
                          })
+                         audit_user = audit_logger.UserWrap(
+                             username=self.request.params.get('username'),
+                             ip_addr=self.request.remote_addr)
+                         audit_logger.store(action='user.login.failure', user=audit_user,
+                                            commit=True)
                          return render_ctx
                      except UserCreationError as e:
                  def logout(self):
                      auth_user = self._rhodecode_user
                      log.info('Deleting session for user: `%s`', auth_user)
+                     audit_logger.store(action='user.logout', user=auth_user,
+                                        commit=True)
                      self.session.delete()
                      return HTTPFound(url('home'))
                                  form_result, password_reset_url)
                              # Display success message and redirect.
                              self.session.flash(msg, queue='success')
+                             audit_logger.store(action='user.password.reset_request',
+                                                action_data={'email': user_email},
+                                                user=self._rhodecode_user, commit=True)
                              return HTTPFound(self.request.route_path('reset_password'))
                          except formencode.Invalid as errors:

rhodecode/lib/audit_logger.py

0 +5 0

              ACTIONS = {
+                 'user.login.success': {},
+                 'user.login.failure': {},
+                 'user.logout': {},
+                 'user.password.reset_request': {},
                  'repo.add': {},
                  'repo.edit': {},
              }

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages