MB-46194 Add additional auditing

stevewatanabe · stevewatanabe · commit 8a16d06676f5 · 2021-08-30T19:16:53.000Z
Prior to this change auditing was not generated for * settings/rbac/users/external/<user-name> * settings/rbac/users/local/<user-name> Change-Id: I359b8e9df6bc798b7285805b8bbfabfc8ff25e4a Reviewed-on: http://review.couchbase.org/c/ns_server/+/160461 Well-Formed: Restriction Checker Well-Formed: Build Bot <build@couchbase.com> Reviewed-by: Meni Hillel <meni.hillel@couchbase.com> Tested-by: Steve Watanabe <steve.watanabe@couchbase.com>
diff --git a/src/menelaus_web_rbac.erl b/src/menelaus_web_rbac.erl
@@ -452,6 +452,7 @@ handle_get_user(Domain, UserId, Req) ->
                 true ->
                     verify_security_roles_access(
                       Req, ?SECURITY_READ, menelaus_users:get_roles(Identity)),
+                    ns_audit:rbac_info_retrieved(Req, users),
                     menelaus_util:reply_json(Req, get_user_json(Identity))
             end
     end.
