Add audit log entries for user roles (#19040)
* Refactor audit log schema * Add audit log entries for user roles
This commit is contained in:
parent
99aed9069d
commit
0396acf39e
27 changed files with 151 additions and 99 deletions
|
@ -23,6 +23,7 @@ module Admin
|
||||||
@role.current_account = current_account
|
@role.current_account = current_account
|
||||||
|
|
||||||
if @role.save
|
if @role.save
|
||||||
|
log_action :create, @role
|
||||||
redirect_to admin_roles_path
|
redirect_to admin_roles_path
|
||||||
else
|
else
|
||||||
render :new
|
render :new
|
||||||
|
@ -39,6 +40,7 @@ module Admin
|
||||||
@role.current_account = current_account
|
@role.current_account = current_account
|
||||||
|
|
||||||
if @role.update(resource_params)
|
if @role.update(resource_params)
|
||||||
|
log_action :update, @role
|
||||||
redirect_to admin_roles_path
|
redirect_to admin_roles_path
|
||||||
else
|
else
|
||||||
render :edit
|
render :edit
|
||||||
|
@ -48,6 +50,7 @@ module Admin
|
||||||
def destroy
|
def destroy
|
||||||
authorize @role, :destroy?
|
authorize @role, :destroy?
|
||||||
@role.destroy!
|
@role.destroy!
|
||||||
|
log_action :destroy, @role
|
||||||
redirect_to admin_roles_path
|
redirect_to admin_roles_path
|
||||||
end
|
end
|
||||||
|
|
||||||
|
|
|
@ -14,6 +14,7 @@ module Admin
|
||||||
@user.current_account = current_account
|
@user.current_account = current_account
|
||||||
|
|
||||||
if @user.update(resource_params)
|
if @user.update(resource_params)
|
||||||
|
log_action :change_role, @user
|
||||||
redirect_to admin_account_path(@user.account_id), notice: I18n.t('admin.accounts.change_role.changed_msg')
|
redirect_to admin_account_path(@user.account_id), notice: I18n.t('admin.accounts.change_role.changed_msg')
|
||||||
else
|
else
|
||||||
render :show
|
render :show
|
||||||
|
|
|
@ -3,7 +3,11 @@
|
||||||
module AccountableConcern
|
module AccountableConcern
|
||||||
extend ActiveSupport::Concern
|
extend ActiveSupport::Concern
|
||||||
|
|
||||||
def log_action(action, target, options = {})
|
def log_action(action, target)
|
||||||
Admin::ActionLog.create(account: current_account, action: action, target: target, recorded_changes: options.stringify_keys)
|
Admin::ActionLog.create(
|
||||||
|
account: current_account,
|
||||||
|
action: action,
|
||||||
|
target: target
|
||||||
|
)
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
|
@ -2,64 +2,31 @@
|
||||||
|
|
||||||
module Admin::ActionLogsHelper
|
module Admin::ActionLogsHelper
|
||||||
def log_target(log)
|
def log_target(log)
|
||||||
if log.target
|
case log.target_type
|
||||||
linkable_log_target(log.target)
|
|
||||||
else
|
|
||||||
log_target_from_history(log.target_type, log.recorded_changes)
|
|
||||||
end
|
|
||||||
end
|
|
||||||
|
|
||||||
private
|
|
||||||
|
|
||||||
def linkable_log_target(record)
|
|
||||||
case record.class.name
|
|
||||||
when 'Account'
|
when 'Account'
|
||||||
link_to record.acct, admin_account_path(record.id)
|
link_to log.human_identifier, admin_account_path(log.target_id)
|
||||||
when 'User'
|
when 'User'
|
||||||
link_to record.account.acct, admin_account_path(record.account_id)
|
link_to log.human_identifier, admin_account_path(log.route_param)
|
||||||
|
when 'UserRole'
|
||||||
|
link_to log.human_identifier, admin_roles_path(log.target_id)
|
||||||
when 'CustomEmoji'
|
when 'CustomEmoji'
|
||||||
record.shortcode
|
log.human_identifier
|
||||||
when 'Report'
|
when 'Report'
|
||||||
link_to "##{record.id}", admin_report_path(record)
|
link_to "##{log.human_identifier}", admin_report_path(log.target_id)
|
||||||
when 'DomainBlock', 'DomainAllow', 'EmailDomainBlock', 'UnavailableDomain'
|
when 'DomainBlock', 'DomainAllow', 'EmailDomainBlock', 'UnavailableDomain'
|
||||||
link_to record.domain, "https://#{record.domain}"
|
link_to log.human_identifier, "https://#{log.human_identifier}"
|
||||||
when 'Status'
|
when 'Status'
|
||||||
link_to record.account.acct, ActivityPub::TagManager.instance.url_for(record)
|
link_to log.human_identifier, log.permalink
|
||||||
when 'AccountWarning'
|
when 'AccountWarning'
|
||||||
link_to record.target_account.acct, admin_account_path(record.target_account_id)
|
link_to log.human_identifier, admin_account_path(log.target_id)
|
||||||
when 'Announcement'
|
when 'Announcement'
|
||||||
link_to truncate(record.text), edit_admin_announcement_path(record.id)
|
link_to truncate(log.human_identifier), edit_admin_announcement_path(log.target_id)
|
||||||
when 'IpBlock'
|
when 'IpBlock'
|
||||||
"#{record.ip}/#{record.ip.prefix} (#{I18n.t("simple_form.labels.ip_block.severities.#{record.severity}")})"
|
log.human_identifier
|
||||||
when 'Instance'
|
when 'Instance'
|
||||||
record.domain
|
log.human_identifier
|
||||||
when 'Appeal'
|
when 'Appeal'
|
||||||
link_to record.account.acct, disputes_strike_path(record.strike)
|
link_to log.human_identifier, disputes_strike_path(log.route_param)
|
||||||
end
|
|
||||||
end
|
|
||||||
|
|
||||||
def log_target_from_history(type, attributes)
|
|
||||||
case type
|
|
||||||
when 'User'
|
|
||||||
attributes['username']
|
|
||||||
when 'CustomEmoji'
|
|
||||||
attributes['shortcode']
|
|
||||||
when 'DomainBlock', 'DomainAllow', 'EmailDomainBlock', 'UnavailableDomain'
|
|
||||||
link_to attributes['domain'], "https://#{attributes['domain']}"
|
|
||||||
when 'Status'
|
|
||||||
tmp_status = Status.new(attributes.except('reblogs_count', 'favourites_count'))
|
|
||||||
|
|
||||||
if tmp_status.account
|
|
||||||
link_to tmp_status.account&.acct || "##{tmp_status.account_id}", admin_account_path(tmp_status.account_id)
|
|
||||||
else
|
|
||||||
I18n.t('admin.action_logs.deleted_status')
|
|
||||||
end
|
|
||||||
when 'Announcement'
|
|
||||||
truncate(attributes['text'].is_a?(Array) ? attributes['text'].last : attributes['text'])
|
|
||||||
when 'IpBlock'
|
|
||||||
"#{attributes['ip']}/#{attributes['ip'].prefix} (#{I18n.t("simple_form.labels.ip_block.severities.#{attributes['severity']}")})"
|
|
||||||
when 'Instance'
|
|
||||||
attributes['domain']
|
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
|
@ -362,6 +362,10 @@ class Account < ApplicationRecord
|
||||||
username
|
username
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
acct
|
||||||
|
end
|
||||||
|
|
||||||
def excluded_from_timeline_account_ids
|
def excluded_from_timeline_account_ids
|
||||||
Rails.cache.fetch("exclude_account_ids_for:#{id}") { block_relationships.pluck(:target_account_id) + blocked_by_relationships.pluck(:account_id) + mute_relationships.pluck(:target_account_id) }
|
Rails.cache.fetch("exclude_account_ids_for:#{id}") { block_relationships.pluck(:target_account_id) + blocked_by_relationships.pluck(:account_id) + mute_relationships.pluck(:target_account_id) }
|
||||||
end
|
end
|
||||||
|
|
|
@ -43,4 +43,8 @@ class AccountWarning < ApplicationRecord
|
||||||
def overruled?
|
def overruled?
|
||||||
overruled_at.present?
|
overruled_at.present?
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
target_account.acct
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
|
@ -9,38 +9,42 @@
|
||||||
# action :string default(""), not null
|
# action :string default(""), not null
|
||||||
# target_type :string
|
# target_type :string
|
||||||
# target_id :bigint(8)
|
# target_id :bigint(8)
|
||||||
# recorded_changes :text default(""), not null
|
|
||||||
# created_at :datetime not null
|
# created_at :datetime not null
|
||||||
# updated_at :datetime not null
|
# updated_at :datetime not null
|
||||||
|
# human_identifier :string
|
||||||
|
# route_param :string
|
||||||
|
# permalink :string
|
||||||
#
|
#
|
||||||
|
|
||||||
class Admin::ActionLog < ApplicationRecord
|
class Admin::ActionLog < ApplicationRecord
|
||||||
serialize :recorded_changes
|
self.ignored_columns = %w(
|
||||||
|
recorded_changes
|
||||||
|
)
|
||||||
|
|
||||||
belongs_to :account
|
belongs_to :account
|
||||||
belongs_to :target, polymorphic: true, optional: true
|
belongs_to :target, polymorphic: true, optional: true
|
||||||
|
|
||||||
default_scope -> { order('id desc') }
|
default_scope -> { order('id desc') }
|
||||||
|
|
||||||
|
before_validation :set_human_identifier
|
||||||
|
before_validation :set_route_param
|
||||||
|
before_validation :set_permalink
|
||||||
|
|
||||||
def action
|
def action
|
||||||
super.to_sym
|
super.to_sym
|
||||||
end
|
end
|
||||||
|
|
||||||
before_validation :set_changes
|
|
||||||
|
|
||||||
private
|
private
|
||||||
|
|
||||||
def set_changes
|
def set_human_identifier
|
||||||
case action
|
self.human_identifier = target.to_log_human_identifier if target.respond_to?(:to_log_human_identifier)
|
||||||
when :destroy, :create
|
end
|
||||||
self.recorded_changes = target.attributes
|
|
||||||
when :update, :promote, :demote
|
def set_route_param
|
||||||
self.recorded_changes = target.previous_changes
|
self.route_param = target.to_log_route_param if target.respond_to?(:to_log_route_param)
|
||||||
when :change_email
|
end
|
||||||
self.recorded_changes = ActiveSupport::HashWithIndifferentAccess.new(
|
|
||||||
email: [target.email, nil],
|
def set_permalink
|
||||||
unconfirmed_email: [nil, target.unconfirmed_email]
|
self.permalink = target.to_log_permalink if target.respond_to?(:to_log_permalink)
|
||||||
)
|
|
||||||
end
|
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
|
@ -12,6 +12,7 @@ class Admin::ActionLogFilter
|
||||||
reject_appeal: { target_type: 'Appeal', action: 'reject' }.freeze,
|
reject_appeal: { target_type: 'Appeal', action: 'reject' }.freeze,
|
||||||
assigned_to_self_report: { target_type: 'Report', action: 'assigned_to_self' }.freeze,
|
assigned_to_self_report: { target_type: 'Report', action: 'assigned_to_self' }.freeze,
|
||||||
change_email_user: { target_type: 'User', action: 'change_email' }.freeze,
|
change_email_user: { target_type: 'User', action: 'change_email' }.freeze,
|
||||||
|
change_role_user: { target_type: 'User', action: 'change_role' }.freeze,
|
||||||
confirm_user: { target_type: 'User', action: 'confirm' }.freeze,
|
confirm_user: { target_type: 'User', action: 'confirm' }.freeze,
|
||||||
approve_user: { target_type: 'User', action: 'approve' }.freeze,
|
approve_user: { target_type: 'User', action: 'approve' }.freeze,
|
||||||
reject_user: { target_type: 'User', action: 'reject' }.freeze,
|
reject_user: { target_type: 'User', action: 'reject' }.freeze,
|
||||||
|
@ -22,6 +23,7 @@ class Admin::ActionLogFilter
|
||||||
create_domain_block: { target_type: 'DomainBlock', action: 'create' }.freeze,
|
create_domain_block: { target_type: 'DomainBlock', action: 'create' }.freeze,
|
||||||
create_email_domain_block: { target_type: 'EmailDomainBlock', action: 'create' }.freeze,
|
create_email_domain_block: { target_type: 'EmailDomainBlock', action: 'create' }.freeze,
|
||||||
create_unavailable_domain: { target_type: 'UnavailableDomain', action: 'create' }.freeze,
|
create_unavailable_domain: { target_type: 'UnavailableDomain', action: 'create' }.freeze,
|
||||||
|
create_user_role: { target_type: 'UserRole', action: 'create' }.freeze,
|
||||||
demote_user: { target_type: 'User', action: 'demote' }.freeze,
|
demote_user: { target_type: 'User', action: 'demote' }.freeze,
|
||||||
destroy_announcement: { target_type: 'Announcement', action: 'destroy' }.freeze,
|
destroy_announcement: { target_type: 'Announcement', action: 'destroy' }.freeze,
|
||||||
destroy_custom_emoji: { target_type: 'CustomEmoji', action: 'destroy' }.freeze,
|
destroy_custom_emoji: { target_type: 'CustomEmoji', action: 'destroy' }.freeze,
|
||||||
|
@ -31,6 +33,7 @@ class Admin::ActionLogFilter
|
||||||
destroy_instance: { target_type: 'Instance', action: 'destroy' }.freeze,
|
destroy_instance: { target_type: 'Instance', action: 'destroy' }.freeze,
|
||||||
destroy_unavailable_domain: { target_type: 'UnavailableDomain', action: 'destroy' }.freeze,
|
destroy_unavailable_domain: { target_type: 'UnavailableDomain', action: 'destroy' }.freeze,
|
||||||
destroy_status: { target_type: 'Status', action: 'destroy' }.freeze,
|
destroy_status: { target_type: 'Status', action: 'destroy' }.freeze,
|
||||||
|
destroy_user_role: { target_type: 'UserRole', action: 'destroy' }.freeze,
|
||||||
disable_2fa_user: { target_type: 'User', action: 'disable' }.freeze,
|
disable_2fa_user: { target_type: 'User', action: 'disable' }.freeze,
|
||||||
disable_custom_emoji: { target_type: 'CustomEmoji', action: 'disable' }.freeze,
|
disable_custom_emoji: { target_type: 'CustomEmoji', action: 'disable' }.freeze,
|
||||||
disable_user: { target_type: 'User', action: 'disable' }.freeze,
|
disable_user: { target_type: 'User', action: 'disable' }.freeze,
|
||||||
|
@ -52,6 +55,7 @@ class Admin::ActionLogFilter
|
||||||
update_announcement: { target_type: 'Announcement', action: 'update' }.freeze,
|
update_announcement: { target_type: 'Announcement', action: 'update' }.freeze,
|
||||||
update_custom_emoji: { target_type: 'CustomEmoji', action: 'update' }.freeze,
|
update_custom_emoji: { target_type: 'CustomEmoji', action: 'update' }.freeze,
|
||||||
update_status: { target_type: 'Status', action: 'update' }.freeze,
|
update_status: { target_type: 'Status', action: 'update' }.freeze,
|
||||||
|
update_user_role: { target_type: 'UserRole', action: 'update' }.freeze,
|
||||||
unblock_email_account: { target_type: 'Account', action: 'unblock_email' }.freeze,
|
unblock_email_account: { target_type: 'Account', action: 'unblock_email' }.freeze,
|
||||||
}.freeze
|
}.freeze
|
||||||
|
|
||||||
|
|
|
@ -34,6 +34,10 @@ class Announcement < ApplicationRecord
|
||||||
before_validation :set_all_day
|
before_validation :set_all_day
|
||||||
before_validation :set_published, on: :create
|
before_validation :set_published, on: :create
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
text
|
||||||
|
end
|
||||||
|
|
||||||
def publish!
|
def publish!
|
||||||
update!(published: true, published_at: Time.now.utc, scheduled_at: nil)
|
update!(published: true, published_at: Time.now.utc, scheduled_at: nil)
|
||||||
end
|
end
|
||||||
|
|
|
@ -52,6 +52,14 @@ class Appeal < ApplicationRecord
|
||||||
update!(rejected_at: Time.now.utc, rejected_by_account: current_account)
|
update!(rejected_at: Time.now.utc, rejected_by_account: current_account)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
account.acct
|
||||||
|
end
|
||||||
|
|
||||||
|
def to_log_route_param
|
||||||
|
account_warning_id
|
||||||
|
end
|
||||||
|
|
||||||
private
|
private
|
||||||
|
|
||||||
def validate_time_frame
|
def validate_time_frame
|
||||||
|
|
|
@ -46,7 +46,7 @@ class CustomEmoji < ApplicationRecord
|
||||||
scope :local, -> { where(domain: nil) }
|
scope :local, -> { where(domain: nil) }
|
||||||
scope :remote, -> { where.not(domain: nil) }
|
scope :remote, -> { where.not(domain: nil) }
|
||||||
scope :alphabetic, -> { order(domain: :asc, shortcode: :asc) }
|
scope :alphabetic, -> { order(domain: :asc, shortcode: :asc) }
|
||||||
scope :by_domain_and_subdomains, ->(domain) { where(domain: domain).or(where(arel_table[:domain].matches('%.' + domain))) }
|
scope :by_domain_and_subdomains, ->(domain) { where(domain: domain).or(where(arel_table[:domain].matches("%.#{domain}"))) }
|
||||||
scope :listed, -> { local.where(disabled: false).where(visible_in_picker: true) }
|
scope :listed, -> { local.where(disabled: false).where(visible_in_picker: true) }
|
||||||
|
|
||||||
remotable_attachment :image, LIMIT
|
remotable_attachment :image, LIMIT
|
||||||
|
@ -67,6 +67,10 @@ class CustomEmoji < ApplicationRecord
|
||||||
copy.tap(&:save!)
|
copy.tap(&:save!)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
shortcode
|
||||||
|
end
|
||||||
|
|
||||||
class << self
|
class << self
|
||||||
def from_text(text, domain = nil)
|
def from_text(text, domain = nil)
|
||||||
return [] if text.blank?
|
return [] if text.blank?
|
||||||
|
|
|
@ -19,6 +19,10 @@ class DomainAllow < ApplicationRecord
|
||||||
|
|
||||||
scope :matches_domain, ->(value) { where(arel_table[:domain].matches("%#{value}%")) }
|
scope :matches_domain, ->(value) { where(arel_table[:domain].matches("%#{value}%")) }
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
domain
|
||||||
|
end
|
||||||
|
|
||||||
class << self
|
class << self
|
||||||
def allowed?(domain)
|
def allowed?(domain)
|
||||||
!rule_for(domain).nil?
|
!rule_for(domain).nil?
|
||||||
|
|
|
@ -31,6 +31,10 @@ class DomainBlock < ApplicationRecord
|
||||||
scope :with_user_facing_limitations, -> { where(severity: [:silence, :suspend]).or(where(reject_media: true)) }
|
scope :with_user_facing_limitations, -> { where(severity: [:silence, :suspend]).or(where(reject_media: true)) }
|
||||||
scope :by_severity, -> { order(Arel.sql('(CASE severity WHEN 0 THEN 1 WHEN 1 THEN 2 WHEN 2 THEN 0 END), reject_media, domain')) }
|
scope :by_severity, -> { order(Arel.sql('(CASE severity WHEN 0 THEN 1 WHEN 1 THEN 2 WHEN 2 THEN 0 END), reject_media, domain')) }
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
domain
|
||||||
|
end
|
||||||
|
|
||||||
def policies
|
def policies
|
||||||
if suspend?
|
if suspend?
|
||||||
[:suspend]
|
[:suspend]
|
||||||
|
|
|
@ -26,6 +26,10 @@ class EmailDomainBlock < ApplicationRecord
|
||||||
# Used for adding multiple blocks at once
|
# Used for adding multiple blocks at once
|
||||||
attr_accessor :other_domains
|
attr_accessor :other_domains
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
domain
|
||||||
|
end
|
||||||
|
|
||||||
def history
|
def history
|
||||||
@history ||= Trends::History.new('email_domain_blocks', id)
|
@history ||= Trends::History.new('email_domain_blocks', id)
|
||||||
end
|
end
|
||||||
|
|
|
@ -101,7 +101,7 @@ class Form::AccountBatch
|
||||||
|
|
||||||
def reject_account(account)
|
def reject_account(account)
|
||||||
authorize(account.user, :reject?)
|
authorize(account.user, :reject?)
|
||||||
log_action(:reject, account.user, username: account.username)
|
log_action(:reject, account.user)
|
||||||
account.suspend!(origin: :local)
|
account.suspend!(origin: :local)
|
||||||
AccountDeletionWorker.perform_async(account.id, { 'reserve_username' => false })
|
AccountDeletionWorker.perform_async(account.id, { 'reserve_username' => false })
|
||||||
end
|
end
|
||||||
|
|
|
@ -48,6 +48,8 @@ class Instance < ApplicationRecord
|
||||||
domain
|
domain
|
||||||
end
|
end
|
||||||
|
|
||||||
|
alias to_log_human_identifier to_param
|
||||||
|
|
||||||
delegate :exhausted_deliveries_days, to: :delivery_failure_tracker
|
delegate :exhausted_deliveries_days, to: :delivery_failure_tracker
|
||||||
|
|
||||||
def availability_over_days(num_days, end_date = Time.now.utc.to_date)
|
def availability_over_days(num_days, end_date = Time.now.utc.to_date)
|
||||||
|
|
|
@ -27,6 +27,10 @@ class IpBlock < ApplicationRecord
|
||||||
|
|
||||||
after_commit :reset_cache
|
after_commit :reset_cache
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
"#{record.ip}/#{record.ip.prefix}"
|
||||||
|
end
|
||||||
|
|
||||||
class << self
|
class << self
|
||||||
def blocked?(remote_ip)
|
def blocked?(remote_ip)
|
||||||
blocked_ips_map = Rails.cache.fetch(CACHE_KEY) { FastIpMap.new(IpBlock.where(severity: :no_access).pluck(:ip)) }
|
blocked_ips_map = Rails.cache.fetch(CACHE_KEY) { FastIpMap.new(IpBlock.where(severity: :no_access).pluck(:ip)) }
|
||||||
|
|
|
@ -115,6 +115,10 @@ class Report < ApplicationRecord
|
||||||
Report.where.not(id: id).where(target_account_id: target_account_id).unresolved.exists?
|
Report.where.not(id: id).where(target_account_id: target_account_id).unresolved.exists?
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
id
|
||||||
|
end
|
||||||
|
|
||||||
def history
|
def history
|
||||||
subquery = [
|
subquery = [
|
||||||
Admin::ActionLog.where(
|
Admin::ActionLog.where(
|
||||||
|
@ -136,6 +140,8 @@ class Report < ApplicationRecord
|
||||||
Admin::ActionLog.from(Arel::Nodes::As.new(subquery, Admin::ActionLog.arel_table))
|
Admin::ActionLog.from(Arel::Nodes::As.new(subquery, Admin::ActionLog.arel_table))
|
||||||
end
|
end
|
||||||
|
|
||||||
|
private
|
||||||
|
|
||||||
def set_uri
|
def set_uri
|
||||||
self.uri = ActivityPub::TagManager.instance.generate_uri_for(self) if uri.nil? && account.local?
|
self.uri = ActivityPub::TagManager.instance.generate_uri_for(self) if uri.nil? && account.local?
|
||||||
end
|
end
|
||||||
|
|
|
@ -166,6 +166,14 @@ class Status < ApplicationRecord
|
||||||
].compact.join("\n\n")
|
].compact.join("\n\n")
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
account.acct
|
||||||
|
end
|
||||||
|
|
||||||
|
def to_log_permalink
|
||||||
|
ActivityPub::TagManager.instance.uri_for(self)
|
||||||
|
end
|
||||||
|
|
||||||
def reply?
|
def reply?
|
||||||
!in_reply_to_id.nil? || attributes['reply']
|
!in_reply_to_id.nil? || attributes['reply']
|
||||||
end
|
end
|
||||||
|
|
|
@ -16,6 +16,10 @@ class UnavailableDomain < ApplicationRecord
|
||||||
|
|
||||||
after_commit :reset_cache!
|
after_commit :reset_cache!
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
domain
|
||||||
|
end
|
||||||
|
|
||||||
private
|
private
|
||||||
|
|
||||||
def reset_cache!
|
def reset_cache!
|
||||||
|
|
|
@ -181,6 +181,14 @@ class User < ApplicationRecord
|
||||||
update!(disabled: false)
|
update!(disabled: false)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
account.acct
|
||||||
|
end
|
||||||
|
|
||||||
|
def to_log_route_param
|
||||||
|
account_id
|
||||||
|
end
|
||||||
|
|
||||||
def confirm
|
def confirm
|
||||||
new_user = !confirmed?
|
new_user = !confirmed?
|
||||||
self.approved = true if open_registrations? && !sign_up_from_ip_requires_approval?
|
self.approved = true if open_registrations? && !sign_up_from_ip_requires_approval?
|
||||||
|
|
|
@ -155,6 +155,10 @@ class UserRole < ApplicationRecord
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def to_log_human_identifier
|
||||||
|
name
|
||||||
|
end
|
||||||
|
|
||||||
private
|
private
|
||||||
|
|
||||||
def in_permissions?(privilege)
|
def in_permissions?(privilege)
|
||||||
|
|
|
@ -235,6 +235,7 @@ en:
|
||||||
approve_user: Approve User
|
approve_user: Approve User
|
||||||
assigned_to_self_report: Assign Report
|
assigned_to_self_report: Assign Report
|
||||||
change_email_user: Change E-mail for User
|
change_email_user: Change E-mail for User
|
||||||
|
change_role_user: Change Role of User
|
||||||
confirm_user: Confirm User
|
confirm_user: Confirm User
|
||||||
create_account_warning: Create Warning
|
create_account_warning: Create Warning
|
||||||
create_announcement: Create Announcement
|
create_announcement: Create Announcement
|
||||||
|
@ -244,6 +245,7 @@ en:
|
||||||
create_email_domain_block: Create E-mail Domain Block
|
create_email_domain_block: Create E-mail Domain Block
|
||||||
create_ip_block: Create IP rule
|
create_ip_block: Create IP rule
|
||||||
create_unavailable_domain: Create Unavailable Domain
|
create_unavailable_domain: Create Unavailable Domain
|
||||||
|
create_user_role: Create Role
|
||||||
demote_user: Demote User
|
demote_user: Demote User
|
||||||
destroy_announcement: Delete Announcement
|
destroy_announcement: Delete Announcement
|
||||||
destroy_custom_emoji: Delete Custom Emoji
|
destroy_custom_emoji: Delete Custom Emoji
|
||||||
|
@ -254,6 +256,7 @@ en:
|
||||||
destroy_ip_block: Delete IP rule
|
destroy_ip_block: Delete IP rule
|
||||||
destroy_status: Delete Post
|
destroy_status: Delete Post
|
||||||
destroy_unavailable_domain: Delete Unavailable Domain
|
destroy_unavailable_domain: Delete Unavailable Domain
|
||||||
|
destroy_user_role: Destroy Role
|
||||||
disable_2fa_user: Disable 2FA
|
disable_2fa_user: Disable 2FA
|
||||||
disable_custom_emoji: Disable Custom Emoji
|
disable_custom_emoji: Disable Custom Emoji
|
||||||
disable_sign_in_token_auth_user: Disable E-mail Token Authentication for User
|
disable_sign_in_token_auth_user: Disable E-mail Token Authentication for User
|
||||||
|
@ -281,11 +284,13 @@ en:
|
||||||
update_custom_emoji: Update Custom Emoji
|
update_custom_emoji: Update Custom Emoji
|
||||||
update_domain_block: Update Domain Block
|
update_domain_block: Update Domain Block
|
||||||
update_status: Update Post
|
update_status: Update Post
|
||||||
|
update_user_role: Update Role
|
||||||
actions:
|
actions:
|
||||||
approve_appeal_html: "%{name} approved moderation decision appeal from %{target}"
|
approve_appeal_html: "%{name} approved moderation decision appeal from %{target}"
|
||||||
approve_user_html: "%{name} approved sign-up from %{target}"
|
approve_user_html: "%{name} approved sign-up from %{target}"
|
||||||
assigned_to_self_report_html: "%{name} assigned report %{target} to themselves"
|
assigned_to_self_report_html: "%{name} assigned report %{target} to themselves"
|
||||||
change_email_user_html: "%{name} changed the e-mail address of user %{target}"
|
change_email_user_html: "%{name} changed the e-mail address of user %{target}"
|
||||||
|
change_role_user_html: "%{name} changed role of %{target}"
|
||||||
confirm_user_html: "%{name} confirmed e-mail address of user %{target}"
|
confirm_user_html: "%{name} confirmed e-mail address of user %{target}"
|
||||||
create_account_warning_html: "%{name} sent a warning to %{target}"
|
create_account_warning_html: "%{name} sent a warning to %{target}"
|
||||||
create_announcement_html: "%{name} created new announcement %{target}"
|
create_announcement_html: "%{name} created new announcement %{target}"
|
||||||
|
@ -295,9 +300,10 @@ en:
|
||||||
create_email_domain_block_html: "%{name} blocked e-mail domain %{target}"
|
create_email_domain_block_html: "%{name} blocked e-mail domain %{target}"
|
||||||
create_ip_block_html: "%{name} created rule for IP %{target}"
|
create_ip_block_html: "%{name} created rule for IP %{target}"
|
||||||
create_unavailable_domain_html: "%{name} stopped delivery to domain %{target}"
|
create_unavailable_domain_html: "%{name} stopped delivery to domain %{target}"
|
||||||
|
create_user_role_html: "%{name} created %{target} role"
|
||||||
demote_user_html: "%{name} demoted user %{target}"
|
demote_user_html: "%{name} demoted user %{target}"
|
||||||
destroy_announcement_html: "%{name} deleted announcement %{target}"
|
destroy_announcement_html: "%{name} deleted announcement %{target}"
|
||||||
destroy_custom_emoji_html: "%{name} destroyed emoji %{target}"
|
destroy_custom_emoji_html: "%{name} deleted emoji %{target}"
|
||||||
destroy_domain_allow_html: "%{name} disallowed federation with domain %{target}"
|
destroy_domain_allow_html: "%{name} disallowed federation with domain %{target}"
|
||||||
destroy_domain_block_html: "%{name} unblocked domain %{target}"
|
destroy_domain_block_html: "%{name} unblocked domain %{target}"
|
||||||
destroy_email_domain_block_html: "%{name} unblocked e-mail domain %{target}"
|
destroy_email_domain_block_html: "%{name} unblocked e-mail domain %{target}"
|
||||||
|
@ -305,6 +311,7 @@ en:
|
||||||
destroy_ip_block_html: "%{name} deleted rule for IP %{target}"
|
destroy_ip_block_html: "%{name} deleted rule for IP %{target}"
|
||||||
destroy_status_html: "%{name} removed post by %{target}"
|
destroy_status_html: "%{name} removed post by %{target}"
|
||||||
destroy_unavailable_domain_html: "%{name} resumed delivery to domain %{target}"
|
destroy_unavailable_domain_html: "%{name} resumed delivery to domain %{target}"
|
||||||
|
destroy_user_role_html: "%{name} deleted %{target} role"
|
||||||
disable_2fa_user_html: "%{name} disabled two factor requirement for user %{target}"
|
disable_2fa_user_html: "%{name} disabled two factor requirement for user %{target}"
|
||||||
disable_custom_emoji_html: "%{name} disabled emoji %{target}"
|
disable_custom_emoji_html: "%{name} disabled emoji %{target}"
|
||||||
disable_sign_in_token_auth_user_html: "%{name} disabled e-mail token authentication for %{target}"
|
disable_sign_in_token_auth_user_html: "%{name} disabled e-mail token authentication for %{target}"
|
||||||
|
@ -332,7 +339,7 @@ en:
|
||||||
update_custom_emoji_html: "%{name} updated emoji %{target}"
|
update_custom_emoji_html: "%{name} updated emoji %{target}"
|
||||||
update_domain_block_html: "%{name} updated domain block for %{target}"
|
update_domain_block_html: "%{name} updated domain block for %{target}"
|
||||||
update_status_html: "%{name} updated post by %{target}"
|
update_status_html: "%{name} updated post by %{target}"
|
||||||
deleted_status: "(deleted post)"
|
update_user_role_html: "%{name} changed %{target} role"
|
||||||
empty: No logs found.
|
empty: No logs found.
|
||||||
filter_by_action: Filter by action
|
filter_by_action: Filter by action
|
||||||
filter_by_user: Filter by user
|
filter_by_user: Filter by user
|
||||||
|
|
|
@ -0,0 +1,7 @@
|
||||||
|
class AddHumanIdentifierToAdminActionLogs < ActiveRecord::Migration[6.1]
|
||||||
|
def change
|
||||||
|
add_column :admin_action_logs, :human_identifier, :string
|
||||||
|
add_column :admin_action_logs, :route_param, :string
|
||||||
|
add_column :admin_action_logs, :permalink, :string
|
||||||
|
end
|
||||||
|
end
|
|
@ -0,0 +1,9 @@
|
||||||
|
# frozen_string_literal: true
|
||||||
|
|
||||||
|
class RemoveRecordedChangesFromAdminActionLogs < ActiveRecord::Migration[5.2]
|
||||||
|
disable_ddl_transaction!
|
||||||
|
|
||||||
|
def change
|
||||||
|
safety_assured { remove_column :admin_action_logs, :recorded_changes, :text }
|
||||||
|
end
|
||||||
|
end
|
|
@ -10,7 +10,7 @@
|
||||||
#
|
#
|
||||||
# It's strongly recommended that you check this file into your version control system.
|
# It's strongly recommended that you check this file into your version control system.
|
||||||
|
|
||||||
ActiveRecord::Schema.define(version: 2022_08_08_101323) do
|
ActiveRecord::Schema.define(version: 2022_08_24_164532) do
|
||||||
|
|
||||||
# These are extensions that must be enabled in order to support this database
|
# These are extensions that must be enabled in order to support this database
|
||||||
enable_extension "plpgsql"
|
enable_extension "plpgsql"
|
||||||
|
@ -205,9 +205,11 @@ ActiveRecord::Schema.define(version: 2022_08_08_101323) do
|
||||||
t.string "action", default: "", null: false
|
t.string "action", default: "", null: false
|
||||||
t.string "target_type"
|
t.string "target_type"
|
||||||
t.bigint "target_id"
|
t.bigint "target_id"
|
||||||
t.text "recorded_changes", default: "", null: false
|
|
||||||
t.datetime "created_at", null: false
|
t.datetime "created_at", null: false
|
||||||
t.datetime "updated_at", null: false
|
t.datetime "updated_at", null: false
|
||||||
|
t.string "human_identifier"
|
||||||
|
t.string "route_param"
|
||||||
|
t.string "permalink"
|
||||||
t.index ["account_id"], name: "index_admin_action_logs_on_account_id"
|
t.index ["account_id"], name: "index_admin_action_logs_on_account_id"
|
||||||
t.index ["target_type", "target_id"], name: "index_admin_action_logs_on_target_type_and_target_id"
|
t.index ["target_type", "target_id"], name: "index_admin_action_logs_on_target_type_and_target_id"
|
||||||
end
|
end
|
||||||
|
|
|
@ -3,32 +3,4 @@
|
||||||
require 'rails_helper'
|
require 'rails_helper'
|
||||||
|
|
||||||
RSpec.describe Admin::ActionLogsHelper, type: :helper do
|
RSpec.describe Admin::ActionLogsHelper, type: :helper do
|
||||||
klass = Class.new do
|
|
||||||
include ActionView::Helpers
|
|
||||||
include Admin::ActionLogsHelper
|
|
||||||
end
|
|
||||||
|
|
||||||
let(:hoge) { klass.new }
|
|
||||||
|
|
||||||
describe '#log_target' do
|
|
||||||
after do
|
|
||||||
hoge.log_target(log)
|
|
||||||
end
|
|
||||||
|
|
||||||
context 'log.target' do
|
|
||||||
let(:log) { double(target: true) }
|
|
||||||
|
|
||||||
it 'calls linkable_log_target' do
|
|
||||||
expect(hoge).to receive(:linkable_log_target).with(log.target)
|
|
||||||
end
|
|
||||||
end
|
|
||||||
|
|
||||||
context '!log.target' do
|
|
||||||
let(:log) { double(target: false, target_type: :type, recorded_changes: :change) }
|
|
||||||
|
|
||||||
it 'calls log_target_from_history' do
|
|
||||||
expect(hoge).to receive(:log_target_from_history).with(log.target_type, log.recorded_changes)
|
|
||||||
end
|
|
||||||
end
|
|
||||||
end
|
|
||||||
end
|
end
|
||||||
|
|
Loading…
Reference in a new issue