The following warnings occurred:
Warning [2] Undefined variable $unreadreports - Line: 26 - File: global.php(961) : eval()'d code PHP 8.2.25 (Linux)
File Line Function
/global.php(961) : eval()'d code 26 errorHandler->error
/global.php 961 eval
/showthread.php 28 require_once





× This forum is read only. As of July 23, 2019, the UserSpice forums have been closed. To receive support, please join our Discord by clicking here. Thank you!

  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
How Security Events are logged in UserSpice ?
#1
I want to modify the code to generate specific Security Event.
  Reply
#2
Generally security events are logged on tomfoolery.php and the information is gathered from the audit table.
  Reply
#3
But in 4.3 we have a more detailed logging system where you can log your events in your code however you want. We also have a little more advanced tomfoolery that looks to see if the ip which triggered a security event has logged in before and if it has it assigns it as being most likely from that user.
  Reply
#4
I am unable to find the code where information is inserted in audit table.
In tomfoolery.php I think only the information from audit table is extracted and displayed in the form of Security Events.
  Reply
#5
Yep. It's in the securePage function in us_helpers.php just search for the word audit.

The logic is a little fancier in 4.3 to infer who could have triggerd the security issue even if they're not logged in.

You can add your own events too.

4.3 also has a logging feature that lets you do more expanded logging...so you can do things like "user 3 changed their password" in the logs.
  Reply
#6
Thanks for the instant reply. In love with Userspice.
  Reply
#7
We love having you, please don't hesitate to ask more questions as they come up.
  Reply


Forum Jump:


Users browsing this thread: 2 Guest(s)