Commit 4c6bdd23 authored by James Lopez's avatar James Lopez

Merge branch 'sh-audit-event-json-log-format-from-and-to' into 'master'

Format `from` and `to` fields in JSON audit log

See merge request gitlab-org/gitlab-ce!30333
parents 0b71325d e19499ca
...@@ -35,8 +35,12 @@ class AuditEventService ...@@ -35,8 +35,12 @@ class AuditEventService
@file_logger ||= Gitlab::AuditJsonLogger.build @file_logger ||= Gitlab::AuditJsonLogger.build
end end
def formatted_details
@details.merge(@details.slice(:from, :to).transform_values(&:to_s))
end
def log_security_event_to_file def log_security_event_to_file
file_logger.info(base_payload.merge(@details)) file_logger.info(base_payload.merge(formatted_details))
end end
def log_security_event_to_database def log_security_event_to_database
......
---
title: Format `from` and `to` fields in JSON audit log
merge_request: 30333
author:
type: changed
...@@ -10,11 +10,8 @@ describe AuditEventService do ...@@ -10,11 +10,8 @@ describe AuditEventService do
let(:logger) { instance_double(Gitlab::AuditJsonLogger) } let(:logger) { instance_double(Gitlab::AuditJsonLogger) }
describe '#security_event' do describe '#security_event' do
before do
expect(service).to receive(:file_logger).and_return(logger)
end
it 'creates an event and logs to a file' do it 'creates an event and logs to a file' do
expect(service).to receive(:file_logger).and_return(logger)
expect(logger).to receive(:info).with(author_id: user.id, expect(logger).to receive(:info).with(author_id: user.id,
entity_id: project.id, entity_id: project.id,
entity_type: "Project", entity_type: "Project",
...@@ -22,5 +19,32 @@ describe AuditEventService do ...@@ -22,5 +19,32 @@ describe AuditEventService do
expect { service.security_event }.to change(SecurityEvent, :count).by(1) expect { service.security_event }.to change(SecurityEvent, :count).by(1)
end end
it 'formats from and to fields' do
service = described_class.new(
user, project,
{
from: true,
to: false,
action: :create,
target_id: 1
})
expect(service).to receive(:file_logger).and_return(logger)
expect(logger).to receive(:info).with(author_id: user.id,
entity_type: 'Project',
entity_id: project.id,
from: 'true',
to: 'false',
action: :create,
target_id: 1)
expect { service.security_event }.to change(SecurityEvent, :count).by(1)
details = SecurityEvent.last.details
expect(details[:from]).to be true
expect(details[:to]).to be false
expect(details[:action]).to eq(:create)
expect(details[:target_id]).to eq(1)
end
end end
end end
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment