phorge-phorge

mirror of https://we.phorge.it/source/phorge.git synced 2024-11-14 10:52:41 +01:00

History

epriestley deb80b7652 Provide an activity log for login and administrative actions Summary: This isn't complete, but I figured I'd ship it for review while it's still smallish. Provide an activity log for high-level system actions (logins, admin actions). This basically allows two things to happen: - The log itself is useful if there are shenanigans. - Password login can check it and start CAPTCHA'ing users after a few failed attempts. I'm going to change how the admin stuff works a little bit too, since right now you can make someone an agent, grab their certificate, revert them back to a normal user, and then act on their behalf over Conduit. This is a little silly, I'm going to move "agent" to the create workflow instead. I'll also add a confirm/email step to the administrative password reset flow. Test Plan: Took various administrative and non-administrative actions, they appeared in the logs. Filtered the logs in a bunch of different ways. Reviewers: jungejason, tuomaspelkonen, aran CC: Differential Revision: 302	2011-05-20 19:08:26 -07:00
..
__init__.php	Paginate the user list view.	2011-04-02 09:58:42 -07:00
PhabricatorPeopleListController.php	Provide an activity log for login and administrative actions	2011-05-20 19:08:26 -07:00

epriestley deb80b7652 Provide an activity log for login and administrative actions

Summary: This isn't complete, but I figured I'd ship it for review while it's still smallish.

Provide an activity log for high-level system actions (logins, admin actions). This basically allows two things to happen:

  - The log itself is useful if there are shenanigans.
  - Password login can check it and start CAPTCHA'ing users after a few failed attempts.

I'm going to change how the admin stuff works a little bit too, since right now you can make someone an agent, grab their certificate, revert them back to a normal user, and then act on their behalf over Conduit. This is a little silly, I'm going to move "agent" to the create workflow instead. I'll also add a confirm/email step to the administrative password reset flow.

Test Plan: Took various administrative and non-administrative actions, they appeared in the logs. Filtered the logs in a bunch of different ways.

Reviewers: jungejason, tuomaspelkonen, aran

CC:

Differential Revision: 302

2011-05-20 19:08:26 -07:00

__init__.php

Paginate the user list view.

2011-04-02 09:58:42 -07:00

PhabricatorPeopleListController.php

Provide an activity log for login and administrative actions

2011-05-20 19:08:26 -07:00