Commit 81eaa356 authored by GitLab Bot's avatar GitLab Bot

Automatic merge of gitlab-org/gitlab-ce master

parents f31dbe5b 53c9885d
...@@ -35,8 +35,12 @@ class AuditEventService ...@@ -35,8 +35,12 @@ class AuditEventService
@file_logger ||= Gitlab::AuditJsonLogger.build @file_logger ||= Gitlab::AuditJsonLogger.build
end end
def formatted_details
@details.merge(@details.slice(:from, :to).transform_values(&:to_s))
end
def log_security_event_to_file def log_security_event_to_file
file_logger.info(base_payload.merge(@details)) file_logger.info(base_payload.merge(formatted_details))
end end
def log_security_event_to_database def log_security_event_to_database
......
---
title: Format `from` and `to` fields in JSON audit log
merge_request: 30333
author:
type: changed
...@@ -10,11 +10,8 @@ describe AuditEventService do ...@@ -10,11 +10,8 @@ describe AuditEventService do
let(:logger) { instance_double(Gitlab::AuditJsonLogger) } let(:logger) { instance_double(Gitlab::AuditJsonLogger) }
describe '#security_event' do describe '#security_event' do
before do
expect(service).to receive(:file_logger).and_return(logger)
end
it 'creates an event and logs to a file' do it 'creates an event and logs to a file' do
expect(service).to receive(:file_logger).and_return(logger)
expect(logger).to receive(:info).with(author_id: user.id, expect(logger).to receive(:info).with(author_id: user.id,
entity_id: project.id, entity_id: project.id,
entity_type: "Project", entity_type: "Project",
...@@ -22,5 +19,32 @@ describe AuditEventService do ...@@ -22,5 +19,32 @@ describe AuditEventService do
expect { service.security_event }.to change(SecurityEvent, :count).by(1) expect { service.security_event }.to change(SecurityEvent, :count).by(1)
end end
it 'formats from and to fields' do
service = described_class.new(
user, project,
{
from: true,
to: false,
action: :create,
target_id: 1
})
expect(service).to receive(:file_logger).and_return(logger)
expect(logger).to receive(:info).with(author_id: user.id,
entity_type: 'Project',
entity_id: project.id,
from: 'true',
to: 'false',
action: :create,
target_id: 1)
expect { service.security_event }.to change(SecurityEvent, :count).by(1)
details = SecurityEvent.last.details
expect(details[:from]).to be true
expect(details[:to]).to be false
expect(details[:action]).to eq(:create)
expect(details[:target_id]).to eq(1)
end
end end
end end
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment