Access logs working

2026-02-22 21:06:37 +00:00 · 2025-10-22 17:42:27 -07:00
parent 7f981f05fb
commit 0211f75cb6
28 changed files with 1003 additions and 79 deletions
--- a/server/routers/resource/authWithPassword.ts
+++ b/server/routers/resource/authWithPassword.ts
@@ -13,6 +13,7 @@ import { createResourceSession } from "@server/auth/sessions/resource";
 import logger from "@server/logger";
 import { verifyPassword } from "@server/auth/password";
 import config from "@server/lib/config";
+import { logAccessAudit } from "@server/private/lib/logAccessAudit";

 export const authWithPasswordBodySchema = z
    .object({
@@ -113,6 +114,16 @@ export async function authWithPassword(
                    `Resource password incorrect. Resource ID: ${resource.resourceId}. IP: ${req.ip}.`
                );
            }
+
+            logAccessAudit({
+                orgId: org.orgId,
+                resourceId: resource.resourceId,
+                action: false,
+                type: "password",
+                userAgent: req.headers["user-agent"],
+                requestIp: req.ip
+            });
+
            return next(
                createHttpError(HttpCode.UNAUTHORIZED, "Incorrect password")
            );
@@ -129,6 +140,15 @@ export async function authWithPassword(
            doNotExtend: true
        });

+        logAccessAudit({
+            orgId: org.orgId,
+            resourceId: resource.resourceId,
+            action: true,
+            type: "password",
+            userAgent: req.headers["user-agent"],
+            requestIp: req.ip
+        });
+
        return response<AuthWithPasswordResponse>(res, {
            data: {
                session: token