chore(CE): add audit logs to users controller (#449)

Co-authored-by: TivonB-AI2 <[email protected]>
Multiwoven · Oct 30, 2024 · 82172fc · 82172fc
1 parent 4db64a2
commit 82172fc
Show file tree

Hide file tree

Showing 2 changed files with 42 additions and 0 deletions.
diff --git a/server/app/controllers/api/v1/users_controller.rb b/server/app/controllers/api/v1/users_controller.rb
@@ -3,10 +3,19 @@
 module Api
   module V1
     class UsersController < ApplicationController
+      include AuditLogger
+      after_action :create_audit_log
+
       def me
         authorize current_user
         render json: current_user, serializer: UserSerializer, workspace_id: current_workspace.id
       end
+
+      private
+
+      def create_audit_log
+        audit!(resource_id: params[:id])
+      end
     end
   end
 end
diff --git a/server/spec/requests/api/v1/users_controller_spec.rb b/server/spec/requests/api/v1/users_controller_spec.rb
@@ -31,6 +31,17 @@
         expect(response_hash.dig(:data, :attributes, :created_at)).not_to be_nil
         expect(response_hash.dig(:data, :attributes, :role)).to eq("Admin")
         expect(response_hash.dig(:data, :attributes, :status)).to eq("active")
+
+        audit_log = AuditLog.last
+        expect(audit_log).not_to be_nil
+        expect(audit_log.user_id).to eq(user.id)
+        expect(audit_log.action).to eq("me")
+        expect(audit_log.resource_type).to eq("User")
+        expect(audit_log.resource_id).to eq(nil)
+        expect(audit_log.resource).to eq(nil)
+        expect(audit_log.workspace_id).to eq(workspace.id)
+        expect(audit_log.created_at).not_to be_nil
+        expect(audit_log.updated_at).not_to be_nil
       end
 
       it "returns user details withg member role" do
@@ -45,6 +56,17 @@
         expect(response_hash.dig(:data, :attributes, :created_at)).not_to be_nil
         expect(response_hash.dig(:data, :attributes, :role)).to eq("Member")
         expect(response_hash.dig(:data, :attributes, :status)).to eq("active")
+
+        audit_log = AuditLog.last
+        expect(audit_log).not_to be_nil
+        expect(audit_log.user_id).to eq(user.id)
+        expect(audit_log.action).to eq("me")
+        expect(audit_log.resource_type).to eq("User")
+        expect(audit_log.resource_id).to eq(nil)
+        expect(audit_log.resource).to eq(nil)
+        expect(audit_log.workspace_id).to eq(workspace.id)
+        expect(audit_log.created_at).not_to be_nil
+        expect(audit_log.updated_at).not_to be_nil
       end
 
       it "returns user details withg viewer role" do
@@ -59,6 +81,17 @@
         expect(response_hash.dig(:data, :attributes, :created_at)).not_to be_nil
         expect(response_hash.dig(:data, :attributes, :role)).to eq("Viewer")
         expect(response_hash.dig(:data, :attributes, :status)).to eq("active")
+
+        audit_log = AuditLog.last
+        expect(audit_log).not_to be_nil
+        expect(audit_log.user_id).to eq(user.id)
+        expect(audit_log.action).to eq("me")
+        expect(audit_log.resource_type).to eq("User")
+        expect(audit_log.resource_id).to eq(nil)
+        expect(audit_log.resource).to eq(nil)
+        expect(audit_log.workspace_id).to eq(workspace.id)
+        expect(audit_log.created_at).not_to be_nil
+        expect(audit_log.updated_at).not_to be_nil
       end
     end
   end