Adding audit trail actions into the publish, yank and unyank transactions.

markcatley · markcatley · commit 79ce0b644499 · 2019-05-03T19:42:47.000+12:00
diff --git a/src/controllers/krate/publish.rs b/src/controllers/krate/publish.rs
@@ -8,7 +8,11 @@ use swirl::Job;
 use crate::controllers::prelude::*;
 use crate::git;
 use crate::models::dependency;
-use crate::models::{Badge, Category, Keyword, NewCrate, NewVersion, Rights, User};
+use crate::models::{
+    Badge, Category, Keyword, NewCrate, NewVersion, NewVersionOwnerAction, Rights, User,
+    VersionAction,
+};
+
 use crate::render;
 use crate::util::{internal, CargoError, ChainError, Maximums};
 use crate::util::{read_fill, read_le_u32};
@@ -148,6 +152,14 @@ pub fn publish(req: &mut dyn Request) -> CargoResult<Response> {
         )?
         .save(&conn, &new_crate.authors, &verified_email_address)?;
 
+        NewVersionOwnerAction::new(
+            version.id,
+            user.id,
+            req.authentication_source()?.api_token_id(),
+            VersionAction::Publish,
+        )
+        .save(&conn)?;
+
         // Link this new version to all dependencies
         let git_deps = dependency::add_dependencies(&conn, &new_crate.deps, version.id)?;
 
diff --git a/src/controllers/version/yank.rs b/src/controllers/version/yank.rs
@@ -5,7 +5,7 @@ use swirl::Job;
 use super::version_and_crate;
 use crate::controllers::prelude::*;
 use crate::git;
-use crate::models::Rights;
+use crate::models::{NewVersionOwnerAction, Rights, VersionAction};
 use crate::util::CargoError;
 
 /// Handles the `DELETE /crates/:crate_id/:version/yank` route.
@@ -35,6 +35,14 @@ fn modify_yank(req: &mut dyn Request, yanked: bool) -> CargoResult<Response> {
     if user.rights(req.app(), &owners)? < Rights::Publish {
         return Err(human("must already be an owner to yank or unyank"));
     }
+    let action = if yanked {
+        VersionAction::Yank
+    } else {
+        VersionAction::Unyank
+    };
+    let api_token_id = req.authentication_source()?.api_token_id();
+
+    NewVersionOwnerAction::new(version.id, user.id, api_token_id, action).save(&conn)?;
 
     git::yank(krate.name, version, yanked)
         .enqueue(&conn)
diff --git a/src/middleware/current_user.rs b/src/middleware/current_user.rs
@@ -86,3 +86,12 @@ impl<'a> RequestUser for dyn Request + 'a {
             .chain_error(|| Unauthorized)
     }
 }
+
+impl AuthenticationSource {
+    pub fn api_token_id(self) -> Option<i32> {
+        match self {
+            AuthenticationSource::SessionCookie => None,
+            AuthenticationSource::ApiToken { api_token_id } => Some(api_token_id),
+        }
+    }
+}

Original file line number	Diff line number	Diff line change
`@@ -86,3 +86,12 @@ impl<'a> RequestUser for dyn Request + 'a {`
`86`	`86`	`.chain_error(\|\| Unauthorized)`
`87`	`87`	`}`
`88`	`88`	`}`
	`89`	`+`
	`90`	`+impl AuthenticationSource {`
	`91`	`+ pub fn api_token_id(self) -> Option<i32> {`
	`92`	`+ match self {`
	`93`	`+ AuthenticationSource::SessionCookie => None,`
	`94`	`+ AuthenticationSource::ApiToken { api_token_id } => Some(api_token_id),`
	`95`	`+ }`
	`96`	`+ }`
	`97`	`+}`