tuxudo/audit_mr

Module for munkireport.

Maintainers

Details

github.com/tuxudo/audit_mr

Source

Issues

Installs: 5

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 0

Open Issues: 0

v1.0 2023-07-26 19:42 UTC

MIT cc9955a35569c1272b979bfebae68b23c63eb327

This package is auto-updated.

Last update: 2024-10-26 22:19:24 UTC

README

This is an unofficial module and requires some modifications to two core MunkiReport files.

Audits and lists login, logout, and login failures to MunkiReport. Resulting audit can be viewed in the Login Audit admin tab.

File Modifications

Two files need to be edited in order for this module to be able to capture and record logins

  • /munkireport-php/app/controllers/Auth.php

    Line ~5 - Change:

    use \Controller, \View;

    To:

    use \Controller, \View, \Audit_mr_model;

    Line ~109 - Change:

     } else {
      error('Wrong username or password', 'auth.wrong_user_or_pass');
 }

    To:

     } else {
      // Load and audit the login
      $audit = new Audit_mr_model;
      $audit->add_audit_user("Login Failed", $login);
 
      error('Wrong username or password', 'auth.wrong_user_or_pass');
 }

    Line ~151 - Change:

     // Initialize session
 $this->authorized();

 // Check if saml

    To:

     // Initialize session
 $this->authorized();

 // Load and audit the logout
 $audit = new Audit_mr_model;
 $audit->add_audit("Logout");

 // Check if saml

  • /munkireport-php/app/lib/munkireport/AuthHandler.php

    Line ~4 - Change:

    use \Exception, \View, \Reportdata_model

    To:

    use \Exception, \View, \Reportdata_model, \Audit_mr_model;

    Line ~38 - Change:

     session_regenerate_id();

 return true;

    To:

     session_regenerate_id();

 // Load and audit the login
 $audit = new Audit_mr_model;
 $audit->add_audit("Login");

 return true;

    Line ~62 - Change:

     if ($authObj->getAuthStatus() == 'failed'){
 	return false;
 }
 if ($authObj->getAuthStatus() == 'unauthorized'){

 	error('Not authorized', 'auth.not_authorized');

    To:

     if ($authObj->getAuthStatus() == 'failed'){

 	// Load and audit the login
 	$audit = new Audit_mr_model;
 	$audit->add_audit_user("Login Failed", $login);

 	return false;
 }
 if ($authObj->getAuthStatus() == 'unauthorized'){

 	// Load and audit the login
 	$audit = new Audit_mr_model;
 	$audit->add_audit_user("Unauthorized", $login);

 	error('Not authorized', 'auth.not_authorized');

Remarks

This module will likely NOT be updated for MunkiReport v6. That version of MunkiReport will use the framework's built in auditing.

Table Schema

  • username - (string) - Username of user doing action
  • ip_address - (text) - IP address of action
  • user_agent - (text) - User agent of user
  • timestamp - (big int) - Timestamp of when action happened
  • action - (string) - What action happened
  • role - (string) - User's MunkiReport role