Mercurial > prosody-modules
changeset 5750:c89077b4f46e
mod_audit_tokens: Record events fired by mod_tokenauth in audit log
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Fri, 01 Dec 2023 21:32:33 +0100 |
| parents | 238c4ac8b735 |
| children | d563a6b0dfb7 |
| files | mod_audit_tokens/README.md mod_audit_tokens/mod_audit_tokens.lua |
| diffstat | 2 files changed, 27 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mod_audit_tokens/README.md Fri Dec 01 21:32:33 2023 +0100 @@ -0,0 +1,8 @@ +--- +summary: Store token events in the audit log +rockspec: + dependencies: + - mod_audit +... + +This module stores events relating to auth tokens, e.g. grant creations and revokations, in the audit log provided by `mod_audit`.
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mod_audit_tokens/mod_audit_tokens.lua Fri Dec 01 21:32:33 2023 +0100 @@ -0,0 +1,19 @@ +local jid = require"util.jid"; + +module:depends("audit"); +-- luacheck: read globals module.audit + +module:hook("token-grant-created", function(event) + module:audit(jid.join(event.username, event.host), "token-grant-created", { + }); +end) + +module:hook("token-grant-revoked", function(event) + module:audit(jid.join(event.username, event.host), "token-grant-revoked", { + }); +end) + +module:hook("token-revoked", function(event) + module:audit(jid.join(event.username, event.host), "token-revoked", { + }); +end)