torizon_audit 0.0.7 → 0.0.8

Sign up to get free protection for your applications and to get access to all the features.
Files changed (3) hide show
  1. checksums.yaml +4 -4
  2. data/lib/torizon_audit.rb +15 -11
  3. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 81e7af01773e1433fc7489de22aefafd31c56ad3fb12cca4dd310152ce80026d
4
- data.tar.gz: f0a52dd55c34c9d3e8ce31ccda1eb5f897c7bc51b96d7fdc8d784b7ec5b2c5f7
3
+ metadata.gz: 2c50971c4656b798f91fc6c5425f9980f87e787dfee2c298c96621935b505923
4
+ data.tar.gz: dffd561304c72e55c5d0d77abc578fc27aeed8c387de97579c6dd186fd719032
5
5
  SHA512:
6
- metadata.gz: f79fd5c4a081a9a118f6750780d9f1b5d678c96c67f1a44d473c90c63c9604de2ebb1ce585548ec4a6f3dc84f0b3822aa04edcda0085178f7ebc252ce25dc723
7
- data.tar.gz: 9314b8818b0d597fc72261d4bfca3d9dbf154cb8ff32ce9a84998218f6846b7573f9a9d48c8cc24192ba409556c3edae879c068c95dd3b3de89c0f548d660c7c
6
+ metadata.gz: e7081b8c8313196678c72f38c70963a4e8cce844ed0ec35c89b94714206556e927319cab3ca36f5007e6178c252c2aa1383dd6bc247f082b047969222d466f3c
7
+ data.tar.gz: 26cb791aef470cae8b5def32a70f25d5a235989fef4b721105b687c97c52ccfc2ccc619cc3980cd9a8f70cde5b6b593599bce39ce5652219954dc69a81403566
data/lib/torizon_audit.rb CHANGED
@@ -128,20 +128,24 @@ class Audit
128
128
  actions = response["hits"]["hits"].map{ |obj|
129
129
  src = obj["_source"]
130
130
  {
131
- "method" => src.key?("request_method") ? src["request_method"] : "",
132
- "path" => src.key?("uri") ? src["uri"]: "",
133
- "at" => src.key?("@timestamp") ? src["@timestamp"]: "",
134
- "namespace" => src.key?("namespace") ? src["namespace"]: "",
135
- "origin_namespace" => src.key?("origin_namespace") ? src["origin_namespace"]: "",
136
- "status_code" => src.key?("status") ? src["status"]: "",
137
- "ip" => src.key?("client_addr") ? src["client_addr"]: "",
138
- "query" => src.key?("query_string") ? src["query_string"]: "",
139
- "log_id" => obj.key?("_id") ? obj["_id"]: "",
140
- "action" => self.findAction(src.key?("request_method") ? src["request_method"] : "", src.key?("uri") ? src["uri"]: "")
131
+ "time" => DateTime.parse(src.key?("@timestamp") ? src["@timestamp"]: ""),
132
+ "host" => "app.torizon.io",
133
+ "source" => "torizon",
134
+ "event" => {
135
+ "path" => src.key?("uri") ? src["uri"]: "",
136
+ "method" => src.key?("request_method") ? src["request_method"] : "",
137
+ "namespace" => src.key?("namespace") ? src["namespace"]: "",
138
+ "origin_namespace" => src.key?("origin_namespace") ? src["origin_namespace"]: "",
139
+ "status_code" => src.key?("status") ? src["status"]: "",
140
+ "ip" => src.key?("client_addr") ? src["client_addr"]: "",
141
+ "query" => src.key?("query_string") ? src["query_string"]: "",
142
+ "log_id" => obj.key?("_id") ? obj["_id"]: "",
143
+ "action" => self.findAction(src.key?("request_method") ? src["request_method"] : "", src.key?("uri") ? src["uri"]: "")
144
+ }
141
145
  }
142
146
  }
143
147
  if dropUnknownActions
144
- return actions.select{|req| req["action"] != "Unknown Action"}
148
+ return actions.select{|req| req["event"]["action"] != "Unknown Action"}
145
149
  end
146
150
  return actions
147
151
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: torizon_audit
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.0.7
4
+ version: 0.0.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - Ben Clouser
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-03-24 00:00:00.000000000 Z
11
+ date: 2023-03-31 00:00:00.000000000 Z
12
12
  dependencies: []
13
13
  description: Fetch user actions from torizon platform
14
14
  email: ben.clouser@toradex.com