Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
branch: master

Fetching latest commit…

Octocat-spinner-32-eaf2f5

Cannot retrieve the latest commit at this time

Octocat-spinner-32 app
Octocat-spinner-32 config
Octocat-spinner-32 lib
Octocat-spinner-32 script
Octocat-spinner-32 test
Octocat-spinner-32 .gitignore
Octocat-spinner-32 Gemfile
Octocat-spinner-32 MIT-LICENSE
Octocat-spinner-32 README.rdoc
Octocat-spinner-32 Rakefile
Octocat-spinner-32 audited_actions.gemspec
README.rdoc

AuditedActions

Rails plugin (based on v3.2) to audit users' actions. It sends users' actions to IronMQ first and then process them by IronWorker and save to the DB. For now only Mongoid ORM is supported as DB for storing audited actions.

This gem is still in development. Some features are not realized.

Installation

  1. Add to Gemfile

    gem 'audited_actions', git: 'git://github.com/featalion/audited_actions.git'
  2. Configure AuditedActions, place the code bellow at config/initializers/audition_actions.rb

    module AuditedActions
      class Engine < Rails::Engine
    
        config.token = 'IRON_IO_TOKEN'
        config.project_id = 'IRON_IO_PROJECT_ID'
        config.queue_name = 'audited_actions'
    
        config.access_restriction_callback = nil
        config.current_user = :current_user
        config.known_models = Mongoid::Document # ancestor class (or Array of classes)
    
        config.mongo = Rails.application.config.mongo # Hash to configure mongoid
      end
    end

    Change +'IRON_IO_TOKEN'+ and +'IRON_IO_PROJECT_ID'+ to right iron.io credentials.

  3. Mount engine to your application, add to config/routes.rb

    mount AuditedActions::Engine, at: 'audited_actions' # , as: 'my_cool_name'
  4. Add to controllers which actions may be audited

    audited_actions [:view, :download], associate: {content: :container}
    
    def view
      @container = VideoContainer.find(params['id'])
    end
    
    ...
  5. Install worker

    rake audited_actions:install_worker
  6. Write your own view (and layout) if you want. Place view at app/views/audited_actions/audited_actions/index.html.[erb|haml] and layout at app/layouts/audited_actions/application.html.[erb|haml].

    If you want to adapt your own app layout instead create a new one use routes with Rails engines' names:

    main_app.root_path
    audited_actions.audited_actions_path

    Engine's controller supports pagination and provides next instance variables in the view:

    @entries # => Array[AuditedActionsLogEntry, ...] - set of the log entries from the DB
    @total_entries # => Integer
    @page # => Integer
    @per_page # => Integer
    @total_pages # => Integer

    Accepted parameters for GET on `audited_actions`:

    • page - page number to show, default is 1

    • per_page - entities per page, default is 10

    You can launch worker from your app. Use POST to `audited_actions` with no parameters to queue worker and launch ASAP.

    <%= button_to 'Launch AuditedActions worker now!', {action: :create, method: :post}, class: 'btn' %>

    To schedule new worker PUT to `audited_actions`

    • interval - run interval in minutes

    Be carefull: when you create new schedule of worker plugin cancels others (only with the same worker name of course) under project you're using at iron.io.

    <%= form_tag(audited_actions.audited_action_path('1'), method: :put) do %>
      <%= submit_tag "Schedule AuditedActions worker!", class: 'btn' %>
      <%= select_tag :interval, options_for_select([['every 30 min', '30'], ['every hour', '60'],
                                                    ['every 2 hours', '120'], ['every 4 hours', '240']]) %>
    <% end %>

Features

Associations with models recognition

Main association for any audited action is user model you are using in your app and names actor. By default plugin gets current actor by current_user method call. If you are using another method just pass its name (string or symbol) to config.current_user in the plugin initializer from step 2.

When you associate any data with the action with associate parameter the plugin try to check is it model or not. The same mechanism is used for actor. To extend the list of ORMs you want to recognize just add their base classes as config.known_models in app's initializer.

Note: Mongoid::Document would be included to the list automatically.

Warning: any ORM you added must support id and find method. It is because plugin provides automatically association loading thru +ORMClass.find(id)+ call.

Other associations would be converted to JSON and then back and stored to the DB as Hash field.

In your app you will be able to use log entries documents from DB. Associations are available by name and automatically loaded and instantiated as one of known ORMs' models.

log_entry = AuditedActions::AuditedActionsLogEntry.where(audited_at: {:$gte => 3.days.ago}).first # => Mongoid::Document
log_entry.actor # => KnownModel (Mongoid::Document, ActiveRecord::Base, etc.)
log_entry.my_association_name # => KnownModel

AuditedActionsLogEntry also supports special scope by_actor

actor = User.first # User must have one of known models as ancestor
AuditedActions::AuditedActionsLogEntry.by_actor(actor).where(controller: 'files') # supports chain filtering

Sometimes loaded associations might be unavailable in the DB. You can reload associations of log entry by reload_associations method.

Note: when association (ORM model document/record) is not found it returns nil.

TODO

  1. Add functional tests.

  2. Add schedule configuration feature which could be built-in to the main app.

  3. Support different ORMs to store audited actions log entries. Configurable from engine's config (initializer).

This project rocks and uses MIT-LICENSE (-:

Something went wrong with that request. Please try again.