Project

General

Profile

Actions
Copy link

Bug #5461

open

Changes to user group permissions via API are not audit logged

Added by Peter Colledge over 5 years ago. Updated about 5 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
-
Target version:
v4.12
Start date:
11.04.2018
Due date:
% Done:

0%

Estimated time:
Sorting:
Commit Number:
Affected Version:
v4.11

Description

grant_user_permission_to_user_group()
revoke_user_permission_from_user_group()
grant_user_group_permission_to_user_group()
revoke_user_group_permission_from_user_group()

in rhodecode/api/views/user_group_api.py

are missing audit_logger.store_api('user_group.edit.permissions', ...)

Actions
Copy link
 #1

Updated by Marcin Kuzminski [CTO] over 5 years ago

  • Target version set to v4.12

@team, can we force push this to 4.12 ?

Those functions use the general logger that audit logs it to the logging system but as indicated those should be audit logged as well...

Actions
Copy link
 #2

Updated by Marcin Kuzminski [CTO] over 5 years ago

  • Status changed from New to In Progress
Actions
Copy link
 #4

Updated by Marcin Kuzminski [CTO] about 5 years ago

  • Status changed from In Progress to Resolved
Actions
Copy link

Also available in: Atom PDF