scottk/databunker
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/databunker.git synced 2025-11-01 18:38:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

show audit events for admin

Browse Source
This commit is contained in:
root
2020-07-25 20:49:01 +00:00
parent 042368245d
commit 67a445d506
4 changed files with 63 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
src/audit_api.go
View File

@@ -12,7 +12,6 @@ func (e mainEnv) getAuditEvents(w http.ResponseWriter, r *http.Request, ps httpr
userTOKEN := ps.ByName("token") userTOKEN := ps.ByName("token")
event := audit("view audit events", userTOKEN, "token", userTOKEN) event := audit("view audit events", userTOKEN, "token", userTOKEN)
defer func() { event.submit(e.db) }() defer func() { event.submit(e.db) }()
//fmt.Println("error code")
if enforceUUID(w, userTOKEN, event) == false { if enforceUUID(w, userTOKEN, event) == false {
return return
} }
@@ -40,6 +39,33 @@ func (e mainEnv) getAuditEvents(w http.ResponseWriter, r *http.Request, ps httpr
w.Write([]byte(str)) w.Write([]byte(str))
} }
func (e mainEnv) getAdminAuditEvents(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
authResult := e.enforceAdmin(w, r)
if authResult == "" {
return
}
var offset int32
var limit int32 = 10
args := r.URL.Query()
if value, ok := args["offset"]; ok {
offset = atoi(value[0])
}
if value, ok := args["limit"]; ok {
limit = atoi(value[0])
}
resultJSON, counter, err := e.db.getAdminAuditEvents(offset, limit)
if err != nil {
returnError(w, r, "internal error", 405, err, nil)
return
}
fmt.Printf("Total count of events: %d\n", counter)
w.Header().Set("Content-Type", "application/json; charset=utf-8")
w.WriteHeader(200)
str := fmt.Sprintf(`{"status":"ok","total":%d,"rows":%s}`, counter, resultJSON)
w.Write([]byte(str))
}
func (e mainEnv) getAuditEvent(w http.ResponseWriter, r *http.Request, ps httprouter.Params) { func (e mainEnv) getAuditEvent(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
atoken := ps.ByName("atoken") atoken := ps.ByName("atoken")
event := audit("view audit event", atoken, "token", atoken) event := audit("view audit event", atoken, "token", atoken)

37
src/audit_db.go
View File

@@ -78,7 +78,6 @@ func (event auditEvent) submit(db *dbcon) {
} }
func (dbobj dbcon) getAuditEvents(userTOKEN string, offset int32, limit int32) ([]byte, int64, error) { func (dbobj dbcon) getAuditEvents(userTOKEN string, offset int32, limit int32) ([]byte, int64, error) {
//var results []*auditEvent
count, err := dbobj.store.CountRecords(storage.TblName.Audit, "record", userTOKEN) count, err := dbobj.store.CountRecords(storage.TblName.Audit, "record", userTOKEN)
if err != nil { if err != nil {
return nil, 0, err return nil, 0, err
@@ -107,15 +106,47 @@ func (dbobj dbcon) getAuditEvents(userTOKEN string, offset int32, limit int32) (
} }
results = append(results, element) results = append(results, element)
} }
resultJSON, err := json.Marshal(records) resultJSON, err := json.Marshal(records)
if err != nil { if err != nil {
return nil, 0, err return nil, 0, err
} }
//fmt.Printf("Found multiple documents (array of pointers): %+v\n", results)
return resultJSON, count, nil return resultJSON, count, nil
} }
func (dbobj dbcon) getAdminAuditEvents(offset int32, limit int32) ([]byte, int64, error) {
count := int64(1000)
if count == 0 {
return []byte("[]"), 0, nil
}
var results []bson.M
records, err := dbobj.store.GetList0(storage.TblName.Audit, offset, limit, "when")
if err != nil {
return nil, 0, err
}
for _, element := range records {
element["more"] = false
if _, ok := element["before"]; ok {
element["more"] = true
element["before"] = ""
}
if _, ok := element["after"]; ok {
element["more"] = true
element["after"] = ""
}
if _, ok := element["debug"]; ok {
element["more"] = true
element["debug"] = ""
}
results = append(results, element)
}
resultJSON, err := json.Marshal(records)
if err != nil {
return nil, 0, err
}
return resultJSON, count, nil
}
func (dbobj dbcon) getAuditEvent(atoken string) (string, []byte, error) { func (dbobj dbcon) getAuditEvent(atoken string) (string, []byte, error) {
//var results []*auditEvent //var results []*auditEvent
record, err := dbobj.store.GetRecord(storage.TblName.Audit, "atoken", atoken) record, err := dbobj.store.GetRecord(storage.TblName.Audit, "atoken", atoken)

1
src/bunker.go
View File

@@ -208,6 +208,7 @@ func (e mainEnv) setupRouter() *httprouter.Router {
router.GET("/v1/metrics", e.metrics) router.GET("/v1/metrics", e.metrics)
router.GET("/v1/audit/admin", e.getAdminAuditEvents)
router.GET("/v1/audit/list/:token", e.getAuditEvents) router.GET("/v1/audit/list/:token", e.getAuditEvents)
router.GET("/v1/audit/get/:atoken", e.getAuditEvent) router.GET("/v1/audit/get/:atoken", e.getAuditEvent)

7
ui/site/admin-audit.html
View File

@@ -34,7 +34,6 @@
<script> <script>
var xtoken = window.localStorage.getItem('xtoken'); var xtoken = window.localStorage.getItem('xtoken');
var token = window.localStorage.getItem('token');
function displayTargetObject(target, row, index) { function displayTargetObject(target, row, index) {
if (row.mode) { if (row.mode) {
return '(' + row.mode + ') ' + target; return '(' + row.mode + ') ' + target;
@@ -138,10 +137,9 @@
$(function () { $(function () {
//$('#msg').text("Loading data") //$('#msg').text("Loading data")
//token = "faa006da-475e-45c6-a4a1-6586dce8b8d2";
$('#table').bootstrapTable({ $('#table').bootstrapTable({
/*data: mydata */ /*data: mydata */
url: "/v1/audit/list/" + token, url: "/v1/audit/admin/",
undefinedText: 'n/a', undefinedText: 'n/a',
/* url: "data1.json", */ /* url: "data1.json", */
method: "GET", method: "GET",
@@ -156,9 +154,6 @@
classes: "table", classes: "table",
onLoadError: function (status, res) { onLoadError: function (status, res) {
console.log(status); console.log(status);
if (status > 400 && status < 500) {
document.location = "/";
}
} }
}); });
}); });