Logging des authentifications #50
Loading…
x
Reference in New Issue
Block a user
No description provided.
Delete Branch "issue-4707"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Description
Cette pull request vise à ajouter la fonctionnalité de logging des authentifications réussies et échouées pour le projet Cadoles/hydra-sql. Le but est d'améliorer la traçabilité et la sécurité en enregistrant les tentatives d'authentification, que ce soit avec succès ou en cas d'échec. Cela permettra de suivre les accès au système et d'identifier les éventuelles tentatives d'intrusion.
Lié à CNOUS/mse#4707
Changements
Les changements apportés dans cette pull request incluent :
symfony/monolog-bundle
dans le fichiercomposer.json
pour intégrer les fonctionnalités de logging de Monolog.composer.lock
pour refléter les nouvelles dépendances.config/packages/monolog.yaml
.config/bundles.php
.SQLLoginUserAuthenticator
pour logger les tentatives d'authentification réussies et échouées en utilisant l'interfaceLoggerInterface
.config/services.yaml
etdocker-compose.yml
.Tester
Symfony Security Check Report
5 packages have known vulnerabilities.
symfony/http-client (v5.4.44)
symfony/http-foundation (v5.4.44)
symfony/runtime (v5.4.40)
symfony/security-http (v5.4.44)
twig/twig (v3.14.0)
Note that this checker can only detect vulnerabilities that are referenced in the security advisories database.
Execute this command regularly to check the newly discovered vulnerabilities.
Test report
PHP CS Fixer
Overview
Total duration: 0s
See details
src/Security/SQLLoginUserAuthenticator
Errors
`src/Security/SQLLoginUserAuthenticator`
Output
Rapport PHPStan
feat: add authentication success/failure log outputsto Ajout de la fonctionnalité de logging des authentificationsAjout de la fonctionnalité de logging des authentificationsto Logging des authentifications@ -111,11 +116,13 @@ class SQLLoginUserAuthenticator extends AbstractLoginFormAuthenticator
}
$passport->setAttribute('attributes', $user->getAttributes());
$this->logger->warning("authentication scceeded", ['username' => $login, "remote_address" => $request->getClientIp()]);
typo :/
Corrigé :)
50132d83dc
tof007dcf6d8
Symfony Security Check Report
5 packages have known vulnerabilities.
symfony/http-client (v5.4.44)
symfony/http-foundation (v5.4.44)
symfony/runtime (v5.4.40)
symfony/security-http (v5.4.44)
twig/twig (v3.14.0)
Note that this checker can only detect vulnerabilities that are referenced in the security advisories database.
Execute this command regularly to check the newly discovered vulnerabilities.
Test report
PHP CS Fixer
Overview
Total duration: 0s
See details
src/Security/SQLLoginUserAuthenticator
Errors
`src/Security/SQLLoginUserAuthenticator`
Output
Rapport PHPStan
Symfony Security Check Report
5 packages have known vulnerabilities.
symfony/http-client (v5.4.44)
symfony/http-foundation (v5.4.44)
symfony/runtime (v5.4.40)
symfony/security-http (v5.4.44)
twig/twig (v3.14.0)
Note that this checker can only detect vulnerabilities that are referenced in the security advisories database.
Execute this command regularly to check the newly discovered vulnerabilities.
Test report
PHP CS Fixer
Overview
Total duration: 0s
See details
src/Service/SQLLoginService
Errors
`src/Service/SQLLoginService`
Output
Rapport PHPStan
Checkout
From your project repository, check out a new branch and test the changes.