Commit 425982b7 authored by Mark Chao's avatar Mark Chao

Merge branch 'rack-attack-logging' into 'master'

Rename rack attack log fields to be easier to find

See merge request gitlab-org/gitlab!46351
parents 2b40b207 adfdaeb8
...@@ -11,7 +11,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r ...@@ -11,7 +11,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r
env: req.env['rack.attack.match_type'], env: req.env['rack.attack.match_type'],
remote_ip: req.ip, remote_ip: req.ip,
request_method: req.request_method, request_method: req.request_method,
path: req.fullpath path: req.fullpath,
matched: req.env['rack.attack.matched']
} }
throttles_with_user_information = [ throttles_with_user_information = [
...@@ -25,9 +26,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r ...@@ -25,9 +26,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r
user_id = req.env['rack.attack.match_discriminator'] user_id = req.env['rack.attack.match_discriminator']
user = User.find_by(id: user_id) user = User.find_by(id: user_id)
rack_attack_info[:throttle_type] = req.env['rack.attack.matched']
rack_attack_info[:user_id] = user_id rack_attack_info[:user_id] = user_id
rack_attack_info[:username] = user.username unless user.nil? rack_attack_info['meta.user'] = user.username unless user.nil?
end end
Gitlab::AuthLogger.error(rack_attack_info) Gitlab::AuthLogger.error(rack_attack_info)
......
...@@ -125,7 +125,8 @@ RSpec.describe 'Rack Attack global throttles' do ...@@ -125,7 +125,8 @@ RSpec.describe 'Rack Attack global throttles' do
env: :throttle, env: :throttle,
remote_ip: '127.0.0.1', remote_ip: '127.0.0.1',
request_method: 'GET', request_method: 'GET',
path: '/users/sign_in' path: '/users/sign_in',
matched: 'throttle_unauthenticated'
} }
expect(Gitlab::AuthLogger).to receive(:error).with(arguments) expect(Gitlab::AuthLogger).to receive(:error).with(arguments)
......
...@@ -81,8 +81,15 @@ RSpec.shared_examples 'rate-limited token-authenticated requests' do ...@@ -81,8 +81,15 @@ RSpec.shared_examples 'rate-limited token-authenticated requests' do
end end
it 'logs RackAttack info into structured logs' do it 'logs RackAttack info into structured logs' do
requests_per_period.times do control_count = 0
make_request(request_args)
requests_per_period.times do |i|
if i == 0
control_count = ActiveRecord::QueryRecorder.new { make_request(request_args) }.count
else
make_request(request_args)
end
expect(response).not_to have_gitlab_http_status(:too_many_requests) expect(response).not_to have_gitlab_http_status(:too_many_requests)
end end
...@@ -93,13 +100,15 @@ RSpec.shared_examples 'rate-limited token-authenticated requests' do ...@@ -93,13 +100,15 @@ RSpec.shared_examples 'rate-limited token-authenticated requests' do
request_method: request_method, request_method: request_method,
path: request_args.first, path: request_args.first,
user_id: user.id, user_id: user.id,
username: user.username, 'meta.user' => user.username,
throttle_type: throttle_types[throttle_setting_prefix] matched: throttle_types[throttle_setting_prefix]
} }
expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once
expect_rejection { make_request(request_args) } expect_rejection do
expect { make_request(request_args) }.not_to exceed_query_limit(control_count)
end
end end
end end
...@@ -210,8 +219,15 @@ RSpec.shared_examples 'rate-limited web authenticated requests' do ...@@ -210,8 +219,15 @@ RSpec.shared_examples 'rate-limited web authenticated requests' do
end end
it 'logs RackAttack info into structured logs' do it 'logs RackAttack info into structured logs' do
requests_per_period.times do control_count = 0
request_authenticated_web_url
requests_per_period.times do |i|
if i == 0
control_count = ActiveRecord::QueryRecorder.new { request_authenticated_web_url }.count
else
request_authenticated_web_url
end
expect(response).not_to have_gitlab_http_status(:too_many_requests) expect(response).not_to have_gitlab_http_status(:too_many_requests)
end end
...@@ -222,13 +238,12 @@ RSpec.shared_examples 'rate-limited web authenticated requests' do ...@@ -222,13 +238,12 @@ RSpec.shared_examples 'rate-limited web authenticated requests' do
request_method: request_method, request_method: request_method,
path: url_that_requires_authentication, path: url_that_requires_authentication,
user_id: user.id, user_id: user.id,
username: user.username, 'meta.user' => user.username,
throttle_type: throttle_types[throttle_setting_prefix] matched: throttle_types[throttle_setting_prefix]
} }
expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once
expect { request_authenticated_web_url }.not_to exceed_query_limit(control_count)
request_authenticated_web_url
end end
end end
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment