Pterodactyl-Panel/app/Models/AuditLog.php

<?php

namespace Pterodactyl\Models;

use Ramsey\Uuid\Uuid;
use Illuminate\Http\Request;
use Illuminate\Container\Container;

/**
 * @property int $id
 * @property string $uuid
 * @property bool $is_system
 * @property int|null $user_id
 * @property int|null $server_id
 * @property string $action
 * @property string|null $subaction
 * @property array $device
 * @property array $metadata
 * @property \Carbon\CarbonImmutable $created_at
 * @property \Pterodactyl\Models\User|null $user
 * @property \Pterodactyl\Models\Server|null $server
 */
class AuditLog extends Model
{
    public const UPDATED_AT = null;

    public const SERVER__FILESYSTEM_DOWNLOAD = 'server:filesystem.download';
    public const SERVER__FILESYSTEM_WRITE = 'server:filesystem.write';
    public const SERVER__FILESYSTEM_DELETE = 'server:filesystem.delete';
    public const SERVER__FILESYSTEM_RENAME = 'server:filesystem.rename';
    public const SERVER__FILESYSTEM_COMPRESS = 'server:filesystem.compress';
    public const SERVER__FILESYSTEM_DECOMPRESS = 'server:filesystem.decompress';
    public const SERVER__FILESYSTEM_PULL = 'server:filesystem.pull';
    public const SERVER__BACKUP_STARTED = 'server:backup.started';
    public const SERVER__BACKUP_FAILED = 'server:backup.failed';
    public const SERVER__BACKUP_COMPELTED = 'server:backup.completed';
    public const SERVER__BACKUP_DELETED = 'server:backup.deleted';
    public const SERVER__BACKUP_DOWNLOADED = 'server:backup.downloaded';
    public const SERVER__BACKUP_LOCKED = 'server:backup.locked';
    public const SERVER__BACKUP_UNLOCKED = 'server:backup.unlocked';
    public const SERVER__BACKUP_RESTORE_STARTED = 'server:backup.restore.started';
    public const SERVER__BACKUP_RESTORE_COMPLETED = 'server:backup.restore.completed';
    public const SERVER__BACKUP_RESTORE_FAILED = 'server:backup.restore.failed';

    /**
     * @var string[]
     */
    public static $validationRules = [
        'uuid' => 'required|uuid',
        'action' => 'required|string|max:191',
        'subaction' => 'nullable|string|max:191',
        'device' => 'array',
        'device.ip_address' => 'ip',
        'device.user_agent' => 'string',
        'metadata' => 'array',
    ];

    /**
     * @var string
     */
    protected $table = 'audit_logs';

    /**
     * @var bool
     */
    protected $immutableDates = true;

    /**
     * @var string[]
     */
    protected $casts = [
        'is_system' => 'bool',
        'device' => 'array',
        'metadata' => 'array',
    ];

    /**
     * @var string[]
     */
    protected $guarded = [
        'id',
        'created_at',
    ];

    /**
     * @return \Illuminate\Database\Eloquent\Relations\BelongsTo
     */
    public function user()
    {
        return $this->belongsTo(User::class);
    }

    /**
     * @return \Illuminate\Database\Eloquent\Relations\BelongsTo
     */
    public function server()
    {
        return $this->belongsTo(Server::class);
    }

    /**
     * Creates a new AuditLog model and returns it, attaching device information and the
     * currently authenticated user if available. This model is not saved at this point, so
     * you can always make modifications to it as needed before saving.
     *
     * @return $this
     */
    public static function instance(string $action, array $metadata, bool $isSystem = false)
    {
        /** @var \Illuminate\Http\Request $request */
        $request = Container::getInstance()->make('request');
        if ($isSystem || !$request instanceof Request) {
            $request = null;
        }

        return (new self())->fill([
            'uuid' => Uuid::uuid4()->toString(),
            'is_system' => $isSystem,
            'user_id' => ($request && $request->user()) ? $request->user()->id : null,
            'server_id' => null,
            'action' => $action,
            'device' => $request ? [
                'ip_address' => $request->getClientIp(),
                'user_agent' => $request->userAgent(),
            ] : [],
            'metadata' => $metadata,
        ]);
    }
}
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`<?php`

			`namespace Pterodactyl\Models;`

			`use Ramsey\Uuid\Uuid;`
			`use Illuminate\Http\Request;`
			`use Illuminate\Container\Container;`

			`/**`
Add support for locking backups to prevent any accidental deletions 2021-05-04 06:26:09 +02:00			`* @property int $id`
			`* @property string $uuid`
			`* @property bool $is_system`
			`* @property int\|null $user_id`
			`* @property int\|null $server_id`
			`* @property string $action`
			`* @property string\|null $subaction`
			`* @property array $device`
			`* @property array $metadata`
			`* @property \Carbon\CarbonImmutable $created_at`
			`* @property \Pterodactyl\Models\User\|null $user`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`* @property \Pterodactyl\Models\Server\|null $server`
			`*/`
			`class AuditLog extends Model`
			`{`
Reeformat with new rules post merge 2021-01-26 04:20:51 +01:00			`public const UPDATED_AT = null;`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00
Reeformat with new rules post merge 2021-01-26 04:20:51 +01:00			`public const SERVER__FILESYSTEM_DOWNLOAD = 'server:filesystem.download';`
			`public const SERVER__FILESYSTEM_WRITE = 'server:filesystem.write';`
			`public const SERVER__FILESYSTEM_DELETE = 'server:filesystem.delete';`
			`public const SERVER__FILESYSTEM_RENAME = 'server:filesystem.rename';`
			`public const SERVER__FILESYSTEM_COMPRESS = 'server:filesystem.compress';`
			`public const SERVER__FILESYSTEM_DECOMPRESS = 'server:filesystem.decompress';`
			`public const SERVER__FILESYSTEM_PULL = 'server:filesystem.pull';`
			`public const SERVER__BACKUP_STARTED = 'server:backup.started';`
			`public const SERVER__BACKUP_FAILED = 'server:backup.failed';`
			`public const SERVER__BACKUP_COMPELTED = 'server:backup.completed';`
			`public const SERVER__BACKUP_DELETED = 'server:backup.deleted';`
Fix inability to download files from the panel; closes #3151 Co-Authored-By: xcgc <74693042+xcgc@users.noreply.github.com> 2021-03-07 18:45:27 +01:00			`public const SERVER__BACKUP_DOWNLOADED = 'server:backup.downloaded';`
Add support for locking backups to prevent any accidental deletions 2021-05-04 06:26:09 +02:00			`public const SERVER__BACKUP_LOCKED = 'server:backup.locked';`
			`public const SERVER__BACKUP_UNLOCKED = 'server:backup.unlocked';`
Reeformat with new rules post merge 2021-01-26 04:20:51 +01:00			`public const SERVER__BACKUP_RESTORE_STARTED = 'server:backup.restore.started';`
			`public const SERVER__BACKUP_RESTORE_COMPLETED = 'server:backup.restore.completed';`
			`public const SERVER__BACKUP_RESTORE_FAILED = 'server:backup.restore.failed';`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00
			`/**`
			`* @var string[]`
			`*/`
			`public static $validationRules = [`
			`'uuid' => 'required\|uuid',`
Update audit design 2021-01-17 20:52:44 +01:00			`'action' => 'required\|string\|max:191',`
			`'subaction' => 'nullable\|string\|max:191',`
Add basic auditing for filesystem actions Specifically skipping read actions since there isn't much to say there, and it generally wouldn't be very helpful (plus, likely to generate lots of logs). 2021-01-17 20:46:08 +01:00			`'device' => 'array',`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`'device.ip_address' => 'ip',`
			`'device.user_agent' => 'string',`
			`'metadata' => 'array',`
			`];`

			`/**`
			`* @var string`
			`*/`
			`protected $table = 'audit_logs';`

			`/**`
			`* @var bool`
			`*/`
			`protected $immutableDates = true;`

			`/**`
			`* @var string[]`
			`*/`
			`protected $casts = [`
Test that a deleted backup makes an audit log entry 2021-07-11 21:15:39 +02:00			`'is_system' => 'bool',`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`'device' => 'array',`
			`'metadata' => 'array',`
			`];`

			`/**`
			`* @var string[]`
			`*/`
			`protected $guarded = [`
			`'id',`
			`'created_at',`
			`];`

			`/**`
			`* @return \Illuminate\Database\Eloquent\Relations\BelongsTo`
			`*/`
			`public function user()`
			`{`
			`return $this->belongsTo(User::class);`
			`}`

			`/**`
			`* @return \Illuminate\Database\Eloquent\Relations\BelongsTo`
			`*/`
			`public function server()`
			`{`
			`return $this->belongsTo(Server::class);`
			`}`

			`/**`
			`* Creates a new AuditLog model and returns it, attaching device information and the`
			`* currently authenticated user if available. This model is not saved at this point, so`
			`* you can always make modifications to it as needed before saving.`
			`*`
			`* @return $this`
			`*/`
Correctly handle error; don't overwrite laravel method 2021-01-31 03:07:48 +01:00			`public static function instance(string $action, array $metadata, bool $isSystem = false)`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`{`
			`/** @var \Illuminate\Http\Request $request */`
			`$request = Container::getInstance()->make('request');`
Reeformat with new rules post merge 2021-01-26 04:20:51 +01:00			`if ($isSystem \|\| !$request instanceof Request) {`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`$request = null;`
			`}`

			`return (new self())->fill([`
			`'uuid' => Uuid::uuid4()->toString(),`
			`'is_system' => $isSystem,`
Add basic auditing for filesystem actions Specifically skipping read actions since there isn't much to say there, and it generally wouldn't be very helpful (plus, likely to generate lots of logs). 2021-01-17 20:46:08 +01:00			`'user_id' => ($request && $request->user()) ? $request->user()->id : null,`
Add base logic for audit logging 2021-01-17 19:49:36 +01:00			`'server_id' => null,`
			`'action' => $action,`
			`'device' => $request ? [`
			`'ip_address' => $request->getClientIp(),`
			`'user_agent' => $request->userAgent(),`
			`] : [],`
			`'metadata' => $metadata,`
			`]);`
			`}`
			`}`