I want to modify the code to generate specific Security Event.
How Security Events are logged in UserSpice ?
Generally security events are logged on tomfoolery.php and the information is gathered from the audit table.
But in 4.3 we have a more detailed logging system where you can log your events in your code however you want. We also have a little more advanced tomfoolery that looks to see if the ip which triggered a security event has logged in before and if it has it assigns it as being most likely from that user.
I am unable to find the code where information is inserted in audit table.
In tomfoolery.php I think only the information from audit table is extracted and displayed in the form of Security Events.
In tomfoolery.php I think only the information from audit table is extracted and displayed in the form of Security Events.
Yep. It's in the securePage function in us_helpers.php just search for the word audit.
The logic is a little fancier in 4.3 to infer who could have triggerd the security issue even if they're not logged in.
You can add your own events too.
4.3 also has a logging feature that lets you do more expanded logging...so you can do things like "user 3 changed their password" in the logs.
The logic is a little fancier in 4.3 to infer who could have triggerd the security issue even if they're not logged in.
You can add your own events too.
4.3 also has a logging feature that lets you do more expanded logging...so you can do things like "user 3 changed their password" in the logs.
Thanks for the instant reply. In love with Userspice.
We love having you, please don't hesitate to ask more questions as they come up.