Audit log for user authentication

author: Valery Sizov <vsv2711@gmail.com> 2015-07-03 14:54:50 +0300
committer: Valery Sizov <vsv2711@gmail.com> 2015-07-06 12:36:08 +0300
commit: 411829fdb5f24f97ce17e05f5fd018d47075b216 (patch)
tree: aa39d65d78e0aa719df07ab268522a5bc3cb371f /app/controllers/sessions_controller.rb
parent: 8ba83cbab86349c5fa5ce5034df6ffc8225f137c (diff)
download: gitlab-ce-411829fdb5f24f97ce17e05f5fd018d47075b216.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/app/controllers/sessions_controller.rb b/app/controllers/sessions_controller.rb
index 7577fc96d6d..89629bc0581 100644
--- a/app/controllers/sessions_controller.rb
+++ b/app/controllers/sessions_controller.rb
@@ -37,6 +37,8 @@ class SessionsController < Devise::SessionsController
         resource.update_attributes(reset_password_token: nil,
                                    reset_password_sent_at: nil)
       end
+      authenticated_with = user_params[:otp_attempt] ? "two-factor" : "standard"
+      log_audit_event(current_user, with: authenticated_with)
     end
   end
 
@@ -95,4 +97,9 @@ class SessionsController < Devise::SessionsController
     user.valid_otp?(user_params[:otp_attempt]) ||
     user.invalidate_otp_backup_code!(user_params[:otp_attempt])
   end
+
+  def log_audit_event(user, options = {})
+    AuditEventService.new(user, user, options).
+      for_authentication.security_event
+  end
 end
author	Valery Sizov <vsv2711@gmail.com>	2015-07-03 14:54:50 +0300
committer	Valery Sizov <vsv2711@gmail.com>	2015-07-06 12:36:08 +0300
commit	411829fdb5f24f97ce17e05f5fd018d47075b216 (patch)
tree	aa39d65d78e0aa719df07ab268522a5bc3cb371f /app/controllers/sessions_controller.rb
parent	8ba83cbab86349c5fa5ce5034df6ffc8225f137c (diff)
download	gitlab-ce-411829fdb5f24f97ce17e05f5fd018d47075b216.tar.gz