- Notifications
You must be signed in to change notification settings - Fork928
feat: audit login#5925
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Merged
Uh oh!
There was an error while loading.Please reload this page.
Merged
feat: audit login#5925
Changes fromall commits
Commits
Show all changes
21 commits Select commitHold shift + click to select a range
0a0adfd added migration for api key resource
Kira-Pilot6ddead2 Merge remote-tracking branch 'origin/main' into audit-login-logout/ki…
Kira-Pilot1acc73c sort of working
Kira-Pilota75392e auditing login
Kira-Pilot4c754d3 passing the correct user id
Kira-Pilot622733c added and fixed tests
Kira-Pilotd9480b6 gen documentation
Kira-Pilot7308943 formatting and lint
Kira-Pilote5dbe17 lint
Kira-Pilote3a6587 audit Github oauth and write tests
Kira-Pilot809dc7b audit oauth and write tests
Kira-Pilote0a0b38 added defer fn for login error auditing
Kira-Pilot524e001 Merge remote-tracking branch 'origin/main' into audit-login-logout/ki…
Kira-Pilotb19ae71 fixed test
Kira-Pilot244068f feat: audit logout (#5998)
Kira-Pilot3465617 Update coderd/userauth.go
Kira-Pilot28f8060 Merge remote-tracking branch 'origin/main' into audit-login-logout/ki…
Kira-Pilot5a25616 Merge remote-tracking branch 'origin/main' into audit-login-logout/ki…
Kira-Pilote242716 fix test
Kira-Pilotcda0818 bypassing diff generation if login/logout
Kira-Pilot9bfc125 lint
Kira-PilotFile filter
Filter by extension
Conversations
Failed to load comments.
Loading
Uh oh!
There was an error while loading.Please reload this page.
Jump to
Jump to file
Failed to load files.
Loading
Uh oh!
There was an error while loading.Please reload this page.
Diff view
Diff view
There are no files selected for viewing
8 changes: 6 additions & 2 deletionscoderd/apidoc/docs.go
Some generated files are not rendered by default. Learn more abouthow customized files appear on GitHub.
Oops, something went wrong.
Uh oh!
There was an error while loading.Please reload this page.
6 changes: 4 additions & 2 deletionscoderd/apidoc/swagger.json
Some generated files are not rendered by default. Learn more abouthow customized files appear on GitHub.
Oops, something went wrong.
Uh oh!
There was an error while loading.Please reload this page.
14 changes: 7 additions & 7 deletionscoderd/apikey.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
10 changes: 10 additions & 0 deletionscoderd/audit.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
48 changes: 39 additions & 9 deletionscoderd/audit/request.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -31,6 +31,10 @@ type Request[T Auditable] struct { | ||
| Old T | ||
| New T | ||
| // This optional field can be passed in when the userID cannot be determined from the API Key | ||
| // such as in the case of login, when the audit log is created prior the API Key's existence. | ||
| UserID uuid.UUID | ||
Kira-Pilot marked this conversation as resolved. Show resolvedHide resolvedUh oh!There was an error while loading.Please reload this page. | ||
| } | ||
| type BuildAuditParams[T Auditable] struct { | ||
| @@ -64,6 +68,9 @@ func ResourceTarget[T Auditable](tgt T) string { | ||
| return typed.PublicKey | ||
| case database.AuditableGroup: | ||
| return typed.Group.Name | ||
| case database.APIKey: | ||
| // this isn't used | ||
| return "" | ||
| default: | ||
| panic(fmt.Sprintf("unknown resource %T", tgt)) | ||
| } | ||
| @@ -85,6 +92,8 @@ func ResourceID[T Auditable](tgt T) uuid.UUID { | ||
| return typed.UserID | ||
| case database.AuditableGroup: | ||
| return typed.Group.ID | ||
| case database.APIKey: | ||
| return typed.UserID | ||
| default: | ||
| panic(fmt.Sprintf("unknown resource %T", tgt)) | ||
| } | ||
| @@ -106,6 +115,8 @@ func ResourceType[T Auditable](tgt T) database.ResourceType { | ||
| return database.ResourceTypeGitSshKey | ||
| case database.AuditableGroup: | ||
| return database.ResourceTypeGroup | ||
| case database.APIKey: | ||
| return database.ResourceTypeApiKey | ||
| default: | ||
| panic(fmt.Sprintf("unknown resource %T", tgt)) | ||
| } | ||
| @@ -130,7 +141,14 @@ func InitRequest[T Auditable](w http.ResponseWriter, p *RequestParams) (*Request | ||
| // If no resources were provided, there's nothing we can audit. | ||
| if ResourceID(req.Old) == uuid.Nil && ResourceID(req.New) == uuid.Nil { | ||
| // If the request action is a login or logout, we always want to audit it even if | ||
| // there is no diff. This is so we can capture events where an API Key is never created | ||
| // because an unknown user fails to login. | ||
| // TODO: introduce the concept of an anonymous user so we always have a userID even | ||
| // when dealing with a mystery user. https://github.com/coder/coder/issues/6054 | ||
| if req.params.Action != database.AuditActionLogin && req.params.Action != database.AuditActionLogout { | ||
| return | ||
| } | ||
| } | ||
| var diffRaw = []byte("{}") | ||
| @@ -150,16 +168,24 @@ func InitRequest[T Auditable](w http.ResponseWriter, p *RequestParams) (*Request | ||
| p.AdditionalFields = json.RawMessage("{}") | ||
| } | ||
| var userID uuid.UUID | ||
| key, ok := httpmw.APIKeyOptional(p.Request) | ||
| if ok { | ||
| userID = key.UserID | ||
| } else { | ||
| userID = req.UserID | ||
| } | ||
Kira-Pilot marked this conversation as resolved. Show resolvedHide resolvedUh oh!There was an error while loading.Please reload this page. | ||
| ip := parseIP(p.Request.RemoteAddr) | ||
| auditLog := database.AuditLog{ | ||
| ID: uuid.New(), | ||
| Time: database.Now(), | ||
| UserID:userID, | ||
| Ip: ip, | ||
| UserAgent: sql.NullString{String: p.Request.UserAgent(), Valid: true}, | ||
| ResourceType: either(req.Old, req.New, ResourceType[T], req.params.Action), | ||
| ResourceID: either(req.Old, req.New, ResourceID[T], req.params.Action), | ||
| ResourceTarget: either(req.Old, req.New, ResourceTarget[T], req.params.Action), | ||
| Action: p.Action, | ||
| Diff: diffRaw, | ||
| StatusCode: int32(sw.Status), | ||
| @@ -202,9 +228,9 @@ func BuildAudit[T Auditable](ctx context.Context, p *BuildAuditParams[T]) { | ||
| UserID: p.UserID, | ||
| Ip: ip, | ||
| UserAgent: sql.NullString{}, | ||
| ResourceType: either(p.Old, p.New, ResourceType[T], p.Action), | ||
| ResourceID: either(p.Old, p.New, ResourceID[T], p.Action), | ||
| ResourceTarget: either(p.Old, p.New, ResourceTarget[T], p.Action), | ||
| Action: p.Action, | ||
| Diff: diffRaw, | ||
| StatusCode: int32(p.Status), | ||
| @@ -221,11 +247,15 @@ func BuildAudit[T Auditable](ctx context.Context, p *BuildAuditParams[T]) { | ||
| } | ||
| } | ||
| func either[T Auditable, R any](old, new T, fn func(T) R, auditAction database.AuditAction) R { | ||
| if ResourceID(new) != uuid.Nil { | ||
| return fn(new) | ||
| } else if ResourceID(old) != uuid.Nil { | ||
| return fn(old) | ||
| } else if auditAction == database.AuditActionLogin || auditAction == database.AuditActionLogout { | ||
| // If the request action is a login or logout, we always want to audit it even if | ||
| // there is no diff. See the comment in audit.InitRequest for more detail. | ||
| return fn(old) | ||
| } else { | ||
| panic("both old and new are nil") | ||
| } | ||
4 changes: 3 additions & 1 deletioncoderd/database/dump.sql
Some generated files are not rendered by default. Learn more abouthow customized files appear on GitHub.
Oops, something went wrong.
Uh oh!
There was an error while loading.Please reload this page.
2 changes: 2 additions & 0 deletionscoderd/database/migrations/000094_add_resource_type_api_key.down.sql
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,2 @@ | ||
| -- It's not possible to drop enum values from enum types, so the UP has "IF NOT | ||
| -- EXISTS". |
9 changes: 9 additions & 0 deletionscoderd/database/migrations/000094_add_resource_type_api_key.up.sql
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,9 @@ | ||
| ALTER TYPE audit_action | ||
| ADD VALUE IF NOT EXISTS 'login'; | ||
| ALTER TYPE audit_action | ||
| ADD VALUE IF NOT EXISTS 'logout'; | ||
| ALTER TYPE resource_type | ||
| ADD VALUE IF NOT EXISTS 'api_key'; | ||
Kira-Pilot marked this conversation as resolved. Show resolvedHide resolvedUh oh!There was an error while loading.Please reload this page. | ||
8 changes: 7 additions & 1 deletioncoderd/database/models.go
Some generated files are not rendered by default. Learn more abouthow customized files appear on GitHub.
Oops, something went wrong.
Uh oh!
There was an error while loading.Please reload this page.
4 changes: 2 additions & 2 deletionscoderd/gitsshkey_test.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
17 changes: 9 additions & 8 deletionscoderd/templates_test.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
8 changes: 4 additions & 4 deletionscoderd/templateversions_test.go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.Learn more about bidirectional Unicode characters
Oops, something went wrong.
Uh oh!
There was an error while loading.Please reload this page.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.