controllers/token: Add client IP address and headers to the log message

Author: Turbo87

src/controllers/token.rs

@@ -6,6 +6,7 @@ use anyhow::Context;
 
 use crate::app::AppState;
 use crate::auth::AuthCheck;
+use crate::middleware::real_ip::RealIp;
 use crate::models::token::{CrateScope, EndpointScope};
 use crate::util::errors::{AppResult, bad_request, custom};
 use crate::util::token::PlainToken;
@@ -20,8 +21,8 @@ use diesel::dsl::{IntervalDsl, now};
 use diesel::prelude::*;
 use diesel::sql_types::Timestamptz;
 use diesel_async::RunQueryDsl;
-use http::StatusCode;
 use http::request::Parts;
+use http::{StatusCode, header};
 use minijinja::context;
 use secrecy::ExposeSecret;
 use serde::{Deserialize, Serialize};
@@ -129,7 +130,16 @@ pub async fn create_api_token(
 
     // Check if token creation is disabled
     if let Some(disable_message) = &app.config.disable_token_creation {
+        let client_ip = parts.extensions.get::<RealIp>().map(|ip| ip.to_string());
+        let client_ip = client_ip.as_deref().unwrap_or("unknown");
+
+        let mut headers = parts.headers.clone();
+        headers.remove(header::AUTHORIZATION);
+        headers.remove(header::COOKIE);
+
         warn!(
+            network.client.ip = client_ip,
+            http.headers = ?headers,
             "Blocked token creation for user `{}` (id: {}) due to disabled flag (token name: `{}`)",
             user.gh_login, user.id, new.api_token.name
         );