sigmasternchen/mobmash.click
1
0
Fork 0
mirror of https://github.com/sigmasternchen/mobmash.click synced 2025-03-15 08:09:02 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: Add audit log

Browse source
This commit is contained in:
overflowerror 2024-08-04 12:46:27 +02:00
parent 0ac852a846
commit ed6978615d
5 changed files with 36 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
core.php
View file

@ -4,4 +4,6 @@ require_once __DIR__ . "/version.php";
require_once __DIR__ . "/lib/migrate.php"; require_once __DIR__ . "/lib/migrate.php";
require_once __DIR__ . "/lib/security.php";
migrate(); migrate();

5
html/index.php
View file

@ -3,7 +3,8 @@
require_once __DIR__ . "/../core.php"; require_once __DIR__ . "/../core.php";
require_once __DIR__ . "/../lib/pairing.php"; require_once __DIR__ . "/../lib/pairing.php";
require_once __DIR__ . "/../lib/rating.php"; require_once __DIR__ . "/../lib/rating.php";
require_once __DIR__ . "/../lib/security.php";
ensureSession();
function renderChoice(): void { function renderChoice(): void {
[$left, $right] = [$_SESSION["left"], $_SESSION["right"]]; [$left, $right] = [$_SESSION["left"], $_SESSION["right"]];
@ -60,8 +61,6 @@ function voteAndNextPairing(int $winner): array {
return [$left, $right]; return [$left, $right];
} }
session_start();
[$_SESSION["left"], $_SESSION["right"], $render] = match (true) { [$_SESSION["left"], $_SESSION["right"], $render] = match (true) {
isset($_GET["new"]), !isset($_SESSION["left"]) => [...newPairing(), false], isset($_GET["new"]), !isset($_SESSION["left"]) => [...newPairing(), false],
isset($_GET["left"]) => [...voteAndNextPairing(LEFT), false], isset($_GET["left"]) => [...voteAndNextPairing(LEFT), false],

6
lib/rating.php
View file

@ -12,8 +12,12 @@ function getEloForMob(int $mob): int {
function addMatch(int $mob1, int $mob2, int $winner, string $session): void { function addMatch(int $mob1, int $mob2, int $winner, string $session): void {
global $pdo; global $pdo;
$query = $pdo->prepare("INSERT INTO mm_matches (mob1fk, mob2fk, winner, session) VALUES (?, ?, ?, ?)"); $query = $pdo->prepare("INSERT INTO mm_matches (mob1fk, mob2fk, winner, session) VALUES (?, ?, ?, ?) RETURNING id");
$query->execute([$mob1, $mob2, $winner, $session]); $query->execute([$mob1, $mob2, $winner, $session]);
$result = $query->fetch(PDO::FETCH_ASSOC);
auditLog(AUDIT_EVENT_MATCH_ADDED, session_id(), $result["id"]);
} }
function getMobsWithMetaData($orderBy = "rating", $direction = "DESC"): array { function getMobsWithMetaData($orderBy = "rating", $direction = "DESC"): array {

17
lib/security.php
View file

@ -3,3 +3,20 @@
function makeCcrfToken(): string { function makeCcrfToken(): string {
return bin2hex(random_bytes(8)); return bin2hex(random_bytes(8));
} }
const AUDIT_EVENT_SESSION_CREATED = "session_created";
const AUDIT_EVENT_MATCH_ADDED = "match_added";
function auditLog(string $event, string $session, string|null $details) {
global $pdo;
$query = $pdo->prepare("INSERT INTO mm_audit_log (event, session, details) VALUES (?, ?, ?)");
$query->execute([$event, $session, $details]);
}
function ensureSession() {
session_start();
if (!isset($_SESSION["exists"])) {
$_SESSION["exists"] = true;
auditLog(AUDIT_EVENT_SESSION_CREATED, session_id(), null);
}
}

11
migrations/0001_mobsMatchesAndRating.sql
View file

@ -23,7 +23,7 @@ create table mm_matches
session varchar(255) session varchar(255)
); );
create table public.mm_history_cache create table mm_history_cache
( (
ratings jsonb not null, ratings jsonb not null,
last_update bigint not null last_update bigint not null
@ -201,3 +201,12 @@ FROM (
ON key_dates.id = history.last_update ON key_dates.id = history.last_update
) AS ratings_at_key_date, ) AS ratings_at_key_date,
jsonb_each(ratings_at_key_date.ratings) AS ratings(key, value); jsonb_each(ratings_at_key_date.ratings) AS ratings(key, value);
create table mm_audit_log
(
time timestamp default CURRENT_TIMESTAMP not null,
session varchar(255) not null,
event varchar(255) not null,
details text
);