Rename rack attack log fields to be easier to find

`throttle_type` is now `matched`, as that's what it's called by rack attack internally. It's now always logged, not just when a user is also logged. `username` is now `meta.user` to match the context logging in Rails, Sidekiq, and Grape logs.

Rename rack attack log fields to be easier to find
`throttle_type` is now `matched`, as that's what it's called by rack attack internally. It's now always logged, not just when a user is also logged. `username` is now `meta.user` to match the context logging in Rails, Sidekiq, and Grape logs.
81642e91 · Sean McGivern · 5bdd3c1f · 81642e91 · 81642e91 · 81642e91
Commit 81642e91 authored Oct 28, 2020 by Sean McGivern
3 changed files
--- a/config/initializers/rack_attack_logging.rb
+++ b/config/initializers/rack_attack_logging.rb
@@ -11,7 +11,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r
      env: req.env['rack.attack.match_type'],
      remote_ip: req.ip,
      request_method: req.request_method,
-      path: req.fullpath
+      path: req.fullpath,
+      matched: req.env['rack.attack.matched']
    }

    throttles_with_user_information = [
@@ -25,9 +26,8 @@ ActiveSupport::Notifications.subscribe(/rack_attack/) do |name, start, finish, r
      user_id = req.env['rack.attack.match_discriminator']
      user = User.find_by(id: user_id)

-      rack_attack_info[:throttle_type] = req.env['rack.attack.matched']
      rack_attack_info[:user_id] = user_id
-      rack_attack_info[:username] = user.username unless user.nil?
+      rack_attack_info['meta.user'] = user.username unless user.nil?
    end

    Gitlab::AuthLogger.error(rack_attack_info)

--- a/spec/requests/rack_attack_global_spec.rb
+++ b/spec/requests/rack_attack_global_spec.rb
@@ -125,7 +125,8 @@ RSpec.describe 'Rack Attack global throttles' do
          env: :throttle,
          remote_ip: '127.0.0.1',
          request_method: 'GET',
-          path: '/users/sign_in'
+          path: '/users/sign_in',
+          matched: 'throttle_unauthenticated'
        }

        expect(Gitlab::AuthLogger).to receive(:error).with(arguments)

--- a/spec/support/shared_examples/requests/rack_attack_shared_examples.rb
+++ b/spec/support/shared_examples/requests/rack_attack_shared_examples.rb
@@ -93,8 +93,8 @@ RSpec.shared_examples 'rate-limited token-authenticated requests' do
        request_method: request_method,
        path: request_args.first,
        user_id: user.id,
-        username: user.username,
-        throttle_type: throttle_types[throttle_setting_prefix]
+        'meta.user' => user.username,
+        matched: throttle_types[throttle_setting_prefix]
      }

      expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once
@@ -222,8 +222,8 @@ RSpec.shared_examples 'rate-limited web authenticated requests' do
        request_method: request_method,
        path: url_that_requires_authentication,
        user_id: user.id,
-        username: user.username,
-        throttle_type: throttle_types[throttle_setting_prefix]
+        'meta.user' => user.username,
+        matched: throttle_types[throttle_setting_prefix]
      }

      expect(Gitlab::AuthLogger).to receive(:error).with(arguments).once