Skip to content
This repository has been archived by the owner on Nov 19, 2019. It is now read-only.

authority_success logging #119

Merged
merged 5 commits into from
Feb 7, 2017
Merged

authority_success logging #119

merged 5 commits into from
Feb 7, 2017

Conversation

forced-request
Copy link
Contributor

This PR introduces the authority_success controller method, which can be utilized to log successful authorization events. This must be enabled within the configuration by setting config.log_success = true within the initializer.

This method will log via Authority.logger.info by default, but can be overloaded in the controller similar to how authority_forbidden is. As an example:

class ApplicationController < ActionController::Base
  # Send 'em back where they came from with a slap on the wrist
  def authority_forbidden(error)
    log_security_event("failure", nil, "Authority Failure")

    Authority.logger.warn(error.message)
    redirect_to request.referrer.presence || root_path, :alert => 'You are not authorized to complete that action.'
  end

  def authority_success(*opts)
    log_security_event("success", nil, "Authority Success")
  end
end

This may not be the best way to handle things. For instance, you may prefer that the authority_success action operating on an object similar to SecurityViolation. I didn't see the need for this for my use case.

What do you think?

@forced-request
Added option to enable logging for all authority interactions, as per n…
7dbe29f 
…athanl#118

Added option to enable logging for all authority interactions, as per nathanl#118

Logging will utilize Authority.info, and will only occur in instance within which a SecurityViolation is not generated
@forced-request
Refactored authority to introduce the authority_success method
da0f172
@forced-request
Added passing unit tests
2eadac6
@forced-request
renamed from log_all to log_success to be more indicative of what was…
9fb29c6 
… actually happening.
nathanl
nathanl reviewed Feb 2, 2017
View reviewed changes
lib/authority/controller.rb Outdated
# This method can be overloaded inside the application controller, similar to authority_forbidden.
def authority_success(user, action, resource)
if Authority.configuration.log_success
Authority.logger.info("#{user} successfully performed the #{action} action to this resource: #{resource}")
Copy link
Owner

@nathanl nathanl Feb 2, 2017
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A couple of thoughts:

  • We don't actually know that they successfully performed the action, only that they successfully made it through the authorization step. We should log something like "user was authorized to perform the #{action} to the resource #{resource}"
  • Is there a good reason to make this a controller method, or a method the user can override? authority_forbidden renders 403 (a controller responsibility) and some people might want to show 404 or something else (so it probably needs to be overridable). But it seems like Authority.enforce could just say "if the log_attempts option is true, log the attempt."

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  1. Fair point. I think the function name makes sense, since we successfully passed through authority.. but the default message should be changed. Will fix that.

  2. For my personal need I have to overwrite it because I need to capture specific information in the request such as path details and controller methods. Also figured that if it were a controller method other users would see the need to extend it as well since it's similar to the authority_forbidden action. At first I did have this being logged via Authority.enforce, but overriding that was less clean than just making it a controller method.

Really up to you! It's easy to make the change, but I think it's more restrictive.

Copy link
Owner

@nathanl nathanl Feb 6, 2017
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Makes sense.

One other thought - if authority_success can be overridden to do anything the user wants, the config option log_success isn't necessarily an accurate name. What if we don't even have a config option, and authority_success has a default implementation that does nothing? Then the instructions are "if you want to log successful authorization or do anything else about it, define authority_success however you like."

@forced-request
Removed config option. By default the authority_success method will a…
fb86bd9 
…lways be called, but won't actually do anything unless the implementing app decides to override
@forced-request
Copy link
Contributor Author

@nathanl I think what you said makes sense. I made those changes. It's much simpler now. I also removed the test coverage since the function doesn't actually do anything.

@nathanl
Copy link
Owner

nathanl commented Feb 7, 2017

👍

@nathanl nathanl merged commit 4c1fd89 into nathanl:master Feb 7, 2017
@nathanl nathanl mentioned this pull request Apr 7, 2017
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@nathanl nathanl nathanl left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@forced-request @nathanl