Commit aebb2e0c authored by Max Woolf's avatar Max Woolf

Refactor profile authentication log to show relevent events

Profile authentication log was showing invalid audit events
with misleading information.

Changes the log to only show authentication events with their
correct type.

Changelog: changed
parent 275af535
...@@ -63,7 +63,7 @@ class ProfilesController < Profiles::ApplicationController ...@@ -63,7 +63,7 @@ class ProfilesController < Profiles::ApplicationController
# rubocop: disable CodeReuse/ActiveRecord # rubocop: disable CodeReuse/ActiveRecord
def audit_log def audit_log
@events = AuditEvent.where(entity_type: "User", entity_id: current_user.id) @events = AuthenticationEvent.where(user: current_user)
.order("created_at DESC") .order("created_at DESC")
.page(params[:page]) .page(params[:page])
......
...@@ -3,10 +3,11 @@ ...@@ -3,10 +3,11 @@
%ul.content-list %ul.content-list
- events.each do |event| - events.each do |event|
- if event.success?
%li %li
%span.description %span.description
= audit_icon(event.details[:with], css_class: 'gl-mr-2') = audit_icon('key', css_class: 'gl-mr-2')
= _('Signed in with %{authentication} authentication') % { authentication: event.details[:with]} = _('Signed in with %{authentication} authentication') % { authentication: event.provider }
%span.float-right= time_ago_with_tooltip(event.created_at) %span.float-right= time_ago_with_tooltip(event.created_at)
= paginate events, theme: "gitlab" = paginate events, theme: "gitlab"
...@@ -6,6 +6,6 @@ ...@@ -6,6 +6,6 @@
%h4.gl-mt-0 %h4.gl-mt-0
= page_title = page_title
%p %p
= _('This is a security log of important events involving your account.') = _('This is a security log of authentication events involving your account.')
.col-lg-8 .col-lg-8
= render 'event_table', events: @events = render 'event_table', events: @events
...@@ -35137,7 +35137,7 @@ msgstr "" ...@@ -35137,7 +35137,7 @@ msgstr ""
msgid "This is a private email address %{helpIcon} generated just for you. Anyone who has it can create issues or merge requests as if they were you. If that happens, %{resetLinkStart}reset this token%{resetLinkEnd}." msgid "This is a private email address %{helpIcon} generated just for you. Anyone who has it can create issues or merge requests as if they were you. If that happens, %{resetLinkStart}reset this token%{resetLinkEnd}."
msgstr "" msgstr ""
msgid "This is a security log of important events involving your account." msgid "This is a security log of authentication events involving your account."
msgstr "" msgstr ""
msgid "This is a self-managed instance of GitLab." msgid "This is a self-managed instance of GitLab."
......
...@@ -125,6 +125,8 @@ RSpec.describe ProfilesController, :request_store do ...@@ -125,6 +125,8 @@ RSpec.describe ProfilesController, :request_store do
end end
describe 'GET audit_log' do describe 'GET audit_log' do
let(:auth_event) { create(:authentication_event, user: user) }
it 'tracks search event', :snowplow do it 'tracks search event', :snowplow do
sign_in(user) sign_in(user)
...@@ -136,6 +138,14 @@ RSpec.describe ProfilesController, :request_store do ...@@ -136,6 +138,14 @@ RSpec.describe ProfilesController, :request_store do
user: user user: user
) )
end end
it 'loads page correctly' do
sign_in(user)
get :audit_log
expect(response).to have_gitlab_http_status(:success)
end
end end
describe 'PUT update_username' do describe 'PUT update_username' do
......
...@@ -7,5 +7,13 @@ FactoryBot.define do ...@@ -7,5 +7,13 @@ FactoryBot.define do
user_name { 'Jane Doe' } user_name { 'Jane Doe' }
ip_address { '127.0.0.1' } ip_address { '127.0.0.1' }
result { :failed } result { :failed }
trait :successful do
result { :success }
end
trait :failed do
result { :failed }
end
end end
end end
# frozen_string_literal: true
require 'spec_helper'
RSpec.describe 'profiles/audit_log' do
let(:user) { create(:user) }
before do
assign(:user, user)
assign(:events, AuthenticationEvent.all.page(params[:page]))
allow(controller).to receive(:current_user).and_return(user)
end
context 'when user has successful and failure events' do
before do
create(:authentication_event, :successful, user: user)
create(:authentication_event, :failed, user: user)
end
it 'only shows successful events' do
render
expect(rendered).to have_text('Signed in with standard authentication', count: 1)
end
end
end
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment