Bug #5461
Changes to user group permissions via API are not audit logged
Start date:
11.04.2018
Due date:
% Done:
0%
Estimated time:
Sorting:
Commit Number:
Affected Version:
Description
grant_user_permission_to_user_group()
revoke_user_permission_from_user_group()
grant_user_group_permission_to_user_group()
revoke_user_group_permission_from_user_group()
in rhodecode/api/views/user_group_api.py
are missing audit_logger.store_api('user_group.edit.permissions', ...)
History
#1
Updated by Marcin Kuzminski [staff] over 1 year ago
- Target version set to v4.12
@team, can we force push this to 4.12 ?
Those functions use the general logger that audit logs it to the logging system but as indicated those should be audit logged as well...
#2
Updated by Marcin Kuzminski [staff] over 1 year ago
- Status changed from New to In Progress
#3
Updated by Peter Colledge over 1 year ago
#4
Updated by Marcin Kuzminski [staff] over 1 year ago
- Status changed from In Progress to Resolved