phorge-phorge/src/applications/people/query/PhabricatorPeopleLogQuery.php

<?php

final class PhabricatorPeopleLogQuery
  extends PhabricatorCursorPagedPolicyAwareQuery {

  private $actorPHIDs;
  private $userPHIDs;
  private $relatedPHIDs;
  private $sessionKeys;
  private $actions;
  private $remoteAddressPrefix;

  public function withActorPHIDs(array $actor_phids) {
    $this->actorPHIDs = $actor_phids;
    return $this;
  }

  public function withUserPHIDs(array $user_phids) {
    $this->userPHIDs = $user_phids;
    return $this;
  }

  public function withRelatedPHIDs(array $related_phids) {
    $this->relatedPHIDs = $related_phids;
    return $this;
  }

  public function withSessionKeys(array $session_keys) {
    $this->sessionKeys = $session_keys;
    return $this;
  }

  public function withActions(array $actions) {
    $this->actions = $actions;
    return $this;
  }

  public function withRemoteAddressPrefix($remote_address_prefix) {
    $this->remoteAddressPrefix = $remote_address_prefix;
    return $this;
  }

  public function loadPage() {
    $table  = new PhabricatorUserLog();
    $conn_r = $table->establishConnection('r');

    $data = queryfx_all(
      $conn_r,
      'SELECT * FROM %T %Q %Q %Q',
      $table->getTableName(),
      $this->buildWhereClause($conn_r),
      $this->buildOrderClause($conn_r),
      $this->buildLimitClause($conn_r));

    return $table->loadAllFromArray($data);
  }

  private function buildWhereClause($conn_r) {
    $where = array();

    if ($this->actorPHIDs !== null) {
      $where[] = qsprintf(
        $conn_r,
        'actorPHID IN (%Ls)',
        $this->actorPHIDs);
    }

    if ($this->userPHIDs !== null) {
      $where[] = qsprintf(
        $conn_r,
        'userPHID IN (%Ls)',
        $this->userPHIDs);
    }

    if ($this->relatedPHIDs !== null) {
      $where[] = qsprintf(
        $conn_r,
        'actorPHID IN (%Ls) OR userPHID IN (%Ls)',
        $this->relatedPHIDs,
        $this->relatedPHIDs);
    }

    if ($this->sessionKeys !== null) {
      $where[] = qsprintf(
        $conn_r,
        'session IN (%Ls)',
        $this->sessionKeys);
    }

    if ($this->actions !== null) {
      $where[] = qsprintf(
        $conn_r,
        'action IN (%Ls)',
        $this->actions);
    }

    if ($this->remoteAddressPrefix !== null) {
      $where[] = qsprintf(
        $conn_r,
        'remoteAddr LIKE %>',
        $this->remoteAddressPrefix);
    }

    $where[] = $this->buildPagingClause($conn_r);

    return $this->formatWhereClause($where);
  }

  public function getQueryApplicationClass() {
    return 'PhabricatorPeopleApplication';
  }

}
Modernize user activity logs (ApplicationSearch, policies) Summary: Ref T4398. Ref T4842. I want to let users review their own account activity, partly as a general security measure and partly to make some of the multi-factor stuff easier to build and debug. To support this, implement modern policies and application search. I also removed the "old" and "new" columns from this output, since they had limited utility and revealed email addresses to administrators for some actions. We don't let administrators access email addresses from other UIs, and the value of doing so here seems very small. Test Plan: Used interface to issue a bunch of queries against user logs, got reasonable/expected results. Reviewers: btrahan Reviewed By: btrahan Subscribers: keir, epriestley Maniphest Tasks: T4842, T4398 Differential Revision: https://secure.phabricator.com/D8856 2014-04-28 02:31:35 +02:00			`<?php`

			`final class PhabricatorPeopleLogQuery`
			`extends PhabricatorCursorPagedPolicyAwareQuery {`

			`private $actorPHIDs;`
			`private $userPHIDs;`
			`private $relatedPHIDs;`
			`private $sessionKeys;`
			`private $actions;`
			`private $remoteAddressPrefix;`

			`public function withActorPHIDs(array $actor_phids) {`
			`$this->actorPHIDs = $actor_phids;`
			`return $this;`
			`}`

			`public function withUserPHIDs(array $user_phids) {`
			`$this->userPHIDs = $user_phids;`
			`return $this;`
			`}`

			`public function withRelatedPHIDs(array $related_phids) {`
			`$this->relatedPHIDs = $related_phids;`
			`return $this;`
			`}`

			`public function withSessionKeys(array $session_keys) {`
			`$this->sessionKeys = $session_keys;`
			`return $this;`
			`}`

			`public function withActions(array $actions) {`
			`$this->actions = $actions;`
			`return $this;`
			`}`

			`public function withRemoteAddressPrefix($remote_address_prefix) {`
			`$this->remoteAddressPrefix = $remote_address_prefix;`
			`return $this;`
			`}`

			`public function loadPage() {`
			`$table = new PhabricatorUserLog();`
			`$conn_r = $table->establishConnection('r');`

			`$data = queryfx_all(`
			`$conn_r,`
			`'SELECT * FROM %T %Q %Q %Q',`
			`$table->getTableName(),`
			`$this->buildWhereClause($conn_r),`
			`$this->buildOrderClause($conn_r),`
			`$this->buildLimitClause($conn_r));`

			`return $table->loadAllFromArray($data);`
			`}`

			`private function buildWhereClause($conn_r) {`
			`$where = array();`

			`if ($this->actorPHIDs !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'actorPHID IN (%Ls)',`
			`$this->actorPHIDs);`
			`}`

			`if ($this->userPHIDs !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'userPHID IN (%Ls)',`
			`$this->userPHIDs);`
			`}`

			`if ($this->relatedPHIDs !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'actorPHID IN (%Ls) OR userPHID IN (%Ls)',`
Let users review their own account activity logs Summary: Ref T4398. This adds a settings panel for account activity so users can review activity on their own account. Some goals are: - Make it easier for us to develop and support auth and credential information, see T4398. This is the primary driver. - Make it easier for users to understand and review auth and credential information (see T4842 for an example -- this isn't there yet, but builds toward it). - Improve user confidence in security by making logging more apparent and accessible. Minor corresponding changes: - Entering and exiting hisec mode is now logged. - This, sessions, and OAuth authorizations have moved to a new "Sessions and Logs" area, since "Authentication" was getting huge. Test Plan: - Viewed new panel. - Viewed old UI. - Entered/exited hisec and got prompted. Reviewers: btrahan Reviewed By: btrahan Subscribers: epriestley Maniphest Tasks: T4398 Differential Revision: https://secure.phabricator.com/D8871 2014-04-28 02:32:09 +02:00			`$this->relatedPHIDs,`
Modernize user activity logs (ApplicationSearch, policies) Summary: Ref T4398. Ref T4842. I want to let users review their own account activity, partly as a general security measure and partly to make some of the multi-factor stuff easier to build and debug. To support this, implement modern policies and application search. I also removed the "old" and "new" columns from this output, since they had limited utility and revealed email addresses to administrators for some actions. We don't let administrators access email addresses from other UIs, and the value of doing so here seems very small. Test Plan: Used interface to issue a bunch of queries against user logs, got reasonable/expected results. Reviewers: btrahan Reviewed By: btrahan Subscribers: keir, epriestley Maniphest Tasks: T4842, T4398 Differential Revision: https://secure.phabricator.com/D8856 2014-04-28 02:31:35 +02:00			`$this->relatedPHIDs);`
			`}`

			`if ($this->sessionKeys !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'session IN (%Ls)',`
			`$this->sessionKeys);`
			`}`

			`if ($this->actions !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'action IN (%Ls)',`
			`$this->actions);`
			`}`

			`if ($this->remoteAddressPrefix !== null) {`
			`$where[] = qsprintf(`
			`$conn_r,`
			`'remoteAddr LIKE %>',`
			`$this->remoteAddressPrefix);`
			`}`

			`$where[] = $this->buildPagingClause($conn_r);`

			`return $this->formatWhereClause($where);`
			`}`

			`public function getQueryApplicationClass() {`
Rename `PhabricatorApplication` subclasses Summary: Ref T5655. Some discussion in D9839. Generally speaking, `Phabricator{$name}Application` is clearer than `PhabricatorApplication{$name}`. Test Plan: # Pinned and uninstalled some applications. # Applied patch and performed migrations. # Verified that the pinned applications were still pinned and that the uninstalled applications were still uninstalled. # Performed a sanity check on the database contents. Reviewers: btrahan, epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: hach-que, epriestley, Korvin Maniphest Tasks: T5655 Differential Revision: https://secure.phabricator.com/D9982 2014-07-23 02:03:09 +02:00			`return 'PhabricatorPeopleApplication';`
Modernize user activity logs (ApplicationSearch, policies) Summary: Ref T4398. Ref T4842. I want to let users review their own account activity, partly as a general security measure and partly to make some of the multi-factor stuff easier to build and debug. To support this, implement modern policies and application search. I also removed the "old" and "new" columns from this output, since they had limited utility and revealed email addresses to administrators for some actions. We don't let administrators access email addresses from other UIs, and the value of doing so here seems very small. Test Plan: Used interface to issue a bunch of queries against user logs, got reasonable/expected results. Reviewers: btrahan Reviewed By: btrahan Subscribers: keir, epriestley Maniphest Tasks: T4842, T4398 Differential Revision: https://secure.phabricator.com/D8856 2014-04-28 02:31:35 +02:00			`}`

			`}`