1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34 package info.magnolia.logging;
35
36 import info.magnolia.cms.core.ItemType;
37 import info.magnolia.cms.security.UserManager;
38 import info.magnolia.cms.security.auth.login.FormLogin;
39 import info.magnolia.cms.security.auth.login.LoginResult;
40 import info.magnolia.context.MgnlContext;
41 import info.magnolia.context.UserContext;
42
43 import javax.jcr.nodetype.NodeType;
44 import javax.servlet.http.HttpServletRequest;
45
46
47
48
49
50
51 public class AuditLoggingUtil {
52
53 public static final String ACTION_CREATE = "create";
54 public static final String ACTION_MODIFY = "modify";
55 public static final String ACTION_DELETE = "delete";
56 public static final String ACTION_COPY = "copy";
57 public static final String ACTION_MOVE = "move";
58 public static final String ACTION_ACTIVATE = "activate";
59 public static final String ACTION_DEACTIVATE = "deactivate";
60 public static final String ACTION_LOGIN = "login";
61 public static final String ACTION_LOGOUT = "logout";
62
63
64
65
66
67
68 @Deprecated
69 public static void log(String action, String workspaceName, ItemType nodeType, String nodePath) {
70 AuditLoggingUtil.log(action, new String[]{AuditLoggingUtil.getUser(), workspaceName, nodeType == null ? "" : nodeType.getSystemName(), nodePath});
71 }
72
73
74
75
76 public static void log(String action, String workspaceName, NodeType nodeType, String nodePath) {
77 AuditLoggingUtil.log(action, new String[] { AuditLoggingUtil.getUser(), workspaceName, nodeType == null ? "" : nodeType.getName(), nodePath });
78 }
79
80
81
82
83 public static void log(String action, String workspaceName, String nodePathFrom, String nodePathTo ) {
84 AuditLoggingUtil.log(action, new String[]{AuditLoggingUtil.getUser(), workspaceName, nodePathFrom, nodePathTo});
85 }
86
87
88
89
90 public static void log(final UserContext userContext ) {
91 AuditLoggingUtil.log(AuditLoggingUtil.ACTION_LOGOUT, null, (String) null, null);
92 }
93
94
95
96
97 public static void log(final LoginResult loginResult, final HttpServletRequest request ) {
98 if(loginResult.getStatus() == LoginResult.STATUS_SUCCEEDED || loginResult.getStatus() == LoginResult.STATUS_FAILED) {
99
100 String userid = request.getParameter(FormLogin.PARAMETER_USER_ID);
101 if (UserManager.ANONYMOUS_USER.equals(userid)) {
102
103 return;
104 }
105
106 String result;
107 if(loginResult.getStatus() == LoginResult.STATUS_SUCCEEDED) {
108 result = "Success";
109 } else {
110 result = "Failure " + loginResult.getLoginException().getLocalizedMessage();
111 }
112 AuditLoggingUtil.log(AuditLoggingUtil.ACTION_LOGIN, new String[]{userid, request.getRemoteAddr(), result});
113 }
114
115 }
116
117 private static void log(String action, String[] data) {
118 AuditLoggingManager manager = AuditLoggingManager.getInstance();
119 if(manager != null) {
120 manager.log(action, data);
121 }
122 }
123
124 private static String getUser() {
125 if (MgnlContext.isSystemInstance()) {
126 return "SystemUser";
127 }
128 try {
129 if(MgnlContext.hasInstance() && MgnlContext.getUser() != null) {
130 return MgnlContext.getUser().getName();
131 }
132 }catch (Exception e) {
133 return "system user";
134 }
135 return "user not set";
136 }
137
138 }