fixes #81 add enhanced audit logging

FAForever · Nov 1, 2017 · 2ca5fe8 · 2ca5fe8
1 parent 8cf22ca
commit 2ca5fe8
Show file tree

Hide file tree

Showing 3 changed files with 41 additions and 2 deletions.
diff --git a/src/main/java/com/faforever/api/config/elide/ElideConfig.java b/src/main/java/com/faforever/api/config/elide/ElideConfig.java
@@ -8,10 +8,10 @@
 import com.faforever.api.data.checks.permission.HasBanRead;
 import com.faforever.api.data.checks.permission.HasBanUpdate;
 import com.faforever.api.data.checks.permission.HasLadder1v1Update;
+import com.faforever.api.security.ExtendedAuditLogger;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.yahoo.elide.Elide;
 import com.yahoo.elide.ElideSettingsBuilder;
-import com.yahoo.elide.audit.Slf4jLogger;
 import com.yahoo.elide.core.EntityDictionary;
 import com.yahoo.elide.core.filter.dialect.RSQLFilterDialect;
 import com.yahoo.elide.datastores.hibernate5.HibernateStore;
@@ -46,7 +46,7 @@ public Elide elide(EntityManagerFactory entityManagerFactory, ObjectMapper objec
 
     return new Elide(new ElideSettingsBuilder(hibernateStore)
       .withJsonApiMapper(new JsonApiMapper(entityDictionary, objectMapper))
-      .withAuditLogger(new Slf4jLogger())
+      .withAuditLogger(new ExtendedAuditLogger())
       .withEntityDictionary(entityDictionary)
       .withJoinFilterDialect(rsqlFilterDialect)
       .withSubqueryFilterDialect(rsqlFilterDialect)

diff --git a/src/main/java/com/faforever/api/data/domain/Ladder1v1Map.java b/src/main/java/com/faforever/api/data/domain/Ladder1v1Map.java
@@ -1,6 +1,8 @@
 package com.faforever.api.data.domain;
 
 import com.faforever.api.data.checks.permission.HasLadder1v1Update;
+import com.yahoo.elide.annotation.Audit;
+import com.yahoo.elide.annotation.Audit.Action;
 import com.yahoo.elide.annotation.CreatePermission;
 import com.yahoo.elide.annotation.DeletePermission;
 import com.yahoo.elide.annotation.Include;
@@ -24,6 +26,8 @@
 @Table(name = "ladder_map")
 @Include(rootLevel = true, type = "ladder1v1Map")
 @Immutable
+@Audit(action = Action.CREATE, logStatement = "Added map `{0}` with version `{1}` to the ladder pool", logExpressions = {"${ladder1v1Map.mapVersion.map.displayName}", "${ladder1v1Map.mapVersion.version}"})
+@Audit(action = Action.DELETE, logStatement = "Removed map `{0}` with version `{1}` from the ladder pool", logExpressions = {"${ladder1v1Map.mapVersion.map.displayName}", "${ladder1v1Map.mapVersion.version}"})
 public class Ladder1v1Map {
   private int id;
   private MapVersion mapVersion;

diff --git a/src/main/java/com/faforever/api/security/ExtendedAuditLogger.java b/src/main/java/com/faforever/api/security/ExtendedAuditLogger.java
@@ -0,0 +1,35 @@
+package com.faforever.api.security;
+
+import com.yahoo.elide.audit.AuditLogger;
+import com.yahoo.elide.audit.LogMessage;
+import com.yahoo.elide.core.RequestScope;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.security.core.context.SecurityContextHolder;
+
+import java.io.IOException;
+import java.text.MessageFormat;
+
+@Slf4j
+public class ExtendedAuditLogger extends AuditLogger {
+  @Override
+  public void commit(RequestScope requestScope) throws IOException {
+    Object principal = SecurityContextHolder.getContext().getAuthentication().getPrincipal();
+    String user;
+
+    if (principal instanceof FafUserDetails) {
+      FafUserDetails fafUserDetails = (FafUserDetails) principal;
+      user = MessageFormat.format("`{0}` with id `{1}`", fafUserDetails.getUsername(), fafUserDetails.getId());
+    } else {
+      user = principal.toString();
+    }
+
+    try {
+      for (LogMessage message : messages.get()) {
+        String extendedMessage = MessageFormat.format("{0} [invoked by {1}]", message.getMessage(), user);
+        log.debug(extendedMessage);
+      }
+    } finally {
+      messages.get().clear();
+    }
+  }
+}