add logging

2023-03-04 11:20:12 +01:00
parent 2cc9b12674
commit 23f3c142c1
7 changed files with 112 additions and 2 deletions
--- a/src/rest/mod.rs
+++ b/src/rest/mod.rs
@ -103,17 +103,24 @@ async fn savename(
                let entered_pw = hasher.finalize();

                if hex::encode(entered_pw) == pw {
+                    log::info!("{} hat sich erfolgreich eingeloggt (mit PW)", name.name);
                    cookies.add_private(Cookie::new("name", name.name.clone()));
                    return Flash::success(Redirect::to("/"), "Erfolgreich eingeloggt");
                } else {
+                    log::warn!("Somebody tried to login as {} with a WRONG pw", name.name);
                    return Flash::error(Redirect::to("/name"), "Falsches Passwort");
                }
            }
            None => {
+                log::warn!(
+                    "Somebody tried to login as {}, w/o specifying a pw",
+                    name.name
+                );
                return Flash::error(Redirect::to("/name"), "Benutzer besitzt hat Passwort, du hast jedoch keines eingegeben. Bitte nochmal probieren");
            }
        },
        None => {
+            log::info!("{} hat sich erfolgreich eingeloggt (ohne PW)", name.name);
            cookies.add_private(Cookie::new("name", name.name.clone()));
            return Flash::success(Redirect::to("/"), "Name erfolgreich ausgewählt");
        }
--- a/src/rest/restday.rs
+++ b/src/rest/restday.rs
@ -28,10 +28,12 @@ async fn create(db: &State<DatabaseConnection>, day: Form<DayForm>) -> Redirect
        .await
        .unwrap();
    match day {
-        Some(_) => {
+        Some(day) => {
+            log::info!("{:?} got updated to {:?}", day, new_day);
            new_day.update(db.inner()).await.unwrap(); //TODO: fixme
        }
        None => {
+            log::info!("{:?} got inserted", new_day);
            new_day.insert(db.inner()).await.unwrap(); //TODO: fixme
        }
    }
--- a/src/rest/restreg.rs
+++ b/src/rest/restreg.rs
@ -29,6 +29,7 @@ async fn register(
        .expect("There's no trip on this date (yet)");

    if !(day.open_registration || user.is_cox) {
+        log::error!("{} tried to register, even though the user it should not be possible to do so via UI -> manually crafted request?", user.name);
        return Redirect::to("/");
    }

@ -41,6 +42,7 @@ async fn register(
        ..Default::default()
    };

+    log::info!("{} registered for {:?}", user.name, trip);
    trip.insert(db.inner()).await.unwrap();

    Redirect::to("/")
@ -65,6 +67,7 @@ async fn delete(
        .expect("There's no trip on this date (yet)");

    if delete.user != user.id {
+        log::error!("{} tried to delete a registration from user_id {} on day {:?} (probably hand-crafted request)", user.name, delete.user, delete.day);
        return Flash::error(
            Redirect::to("/"),
            "Du kannst nur deine eigenen Anmeldungen löschen!",
@ -76,8 +79,12 @@ async fn delete(
        .await
        .unwrap();
    match trip {
-        None => return Flash::error(Redirect::to("/"), "Du bist gar nicht angemeldet!"),
+        None => {
+            log::error!("Tried to register w/o being authenticated (prob. hand crafted request (user.name = {})", user.name);
+            return Flash::error(Redirect::to("/"), "Du bist gar nicht angemeldet!");
+        }
        Some(trip) => {
+            log::info!("User {} deleted the registration for {:?}", user.name, trip);
            trip::Entity::delete(trip::ActiveModel {
                day: Set(trip.day),
                user_id: Set(trip.user_id),