search

ltb-project / service-desk

Application for support team who need to check and reset user passwords
https://service-desk.readthedocs.io/
GNU General Public License v3.0
49 stars 19 forks source link

Log who has done the action (audit trail) #72

Closed coudot closed 1 year ago

coudot commented 1 year ago

For now, access to Service Desk is anonymous, even if we recommend to add authentication (Web Server or SSO).

We should be able to get the identity of connected user and log every action done.

coudot commented 1 year ago

See also discussions in #21

coudot commented 1 year ago

Duplicate of #41

artlog commented 1 year ago

Taking a look

coudot commented 1 year ago

Hello @artlog

I would have seen an easier solution to begin: use the admin name in the logs (with error_log -> https://www.php.net/manual/fr/function.error-log.php)

coudot commented 1 year ago

After discussions with several people, storing JSON in an audit file is a correct solution.

I will propose something slightly different that the format used in commit https://github.com/ltb-project/service-desk/commit/cec27ba65df633516347e43acdc3223df6b90d5a

coudot commented 1 year ago

Done in commits 8a36b87 and 736b5fc