Don't log security event to database on a read-only instance

Downloading the project source code on a Geo secondary node tries to log a security event to the database raising a `PG::ReadOnlySqlTransaction` error.

Don't log security event to database on a read-only instance
Downloading the project source code on a Geo secondary node tries to log a security event to the database raising a `PG::ReadOnlySqlTransaction` error.
55b9f01a · Douglas Barbosa Alexandre · a11fca06 · 55b9f01a · 55b9f01a
Commit 55b9f01a authored Feb 05, 2020 by Douglas Barbosa Alexandre
Hide whitespace changes
Inline Side-by-side

Showing with 12 additions and 0 deletions

app/services/audit_event_service.rb app/services/audit_event_service.rb +2 -0

ee/spec/services/audit_event_service_spec.rb ee/spec/services/audit_event_service_spec.rb +10 -0

No files found.
--- a/app/services/audit_event_service.rb
+++ b/app/services/audit_event_service.rb
@@ -44,6 +44,8 @@ class AuditEventService
  end

  def log_security_event_to_database
+    return if Gitlab::Database.read_only?
+
    SecurityEvent.create(base_payload.merge(details: @details))
  end
 end

--- a/ee/spec/services/audit_event_service_spec.rb
+++ b/ee/spec/services/audit_event_service_spec.rb
@@ -85,6 +85,16 @@ describe AuditEventService do
      it 'creates an event' do
        expect { service.security_event }.to change(SecurityEvent, :count).by(1)
      end
+
+      context 'on a read-only instance' do
+        before do
+          allow(Gitlab::Database).to receive(:read_only?).and_return(true)
+        end
+
+        it 'does not create an event' do
+          expect { service.security_event }.not_to change(SecurityEvent, :count)
+        end
+      end
    end
  end