Merge pull request #1866 from codidact/0valt/audits

Oaphi · web-flow · commit 6b2cfd34a0e8 · 2025-10-07T19:35:43.000+03:00
Add audit logs for mod warning creations
diff --git a/app/controllers/mod_warning_controller.rb b/app/controllers/mod_warning_controller.rb
@@ -46,10 +46,15 @@ def create
     @warning = ModWarning.new(author: current_user, community_user: @user.community_user,
                               body: params[:mod_warning][:body], is_suspension: is_suspension,
                               suspension_end: suspension_end, active: true, read: false)
+
     if @warning.save
+      audit_warning('warning_create', @warning)
+
       if is_suspension
         @user.community_user.update(is_suspended: is_suspension, suspension_end: suspension_end,
                                     suspension_public_comment: params[:mod_warning][:suspension_public_notice])
+
+        audit_warning('suspension_create', @warning)
       end
 
       redirect_to user_path(@user)
@@ -65,8 +70,11 @@ def lift
     @warning.update(active: false, read: false)
     @user.community_user.update is_suspended: false, suspension_public_comment: nil, suspension_end: nil
 
-    AuditLog.moderator_audit(event_type: 'warning_lift', related: @warning, user: current_user,
-                             comment: "<<Warning #{@warning.attributes_print} >>")
+    audit_warning('warning_lift', @warning)
+
+    if @warning.suspension?
+      audit_warning('suspension_lift', @warning)
+    end
 
     flash[:success] = 'The warning or suspension has been lifted. Please consider adding an annotation ' \
                       'explaining your reasons.'
@@ -88,4 +96,13 @@ def set_user
   def user_scope
     User.joins(:community_user).includes(:community_user, :avatar_attachment)
   end
+
+  # Adds an audit log for a given mod warning
+  # @param event_type [String] type of the event
+  # @param warning [ModWarning] warning to audit
+  def audit_warning(event_type, warning)
+    AuditLog.moderator_audit(event_type: event_type,
+                             related: warning, user: current_user,
+                             comment: "<<Warning #{warning.attributes_print} >>")
+  end
 end
diff --git a/app/models/mod_warning.rb b/app/models/mod_warning.rb
@@ -10,8 +10,16 @@ class ModWarning < ApplicationRecord
   scope :active, -> { where(active: true) }
   scope :to, ->(user) { where(community_user: user.community_user) }
 
+  # Was the warning issued with a suspension?
+  # @return [Boolean] check result
+  def suspension?
+    is_suspension
+  end
+
+  # Is the suspension issued with the warning still active?
+  # @return [Boolean] check result
   def suspension_active?
-    active && is_suspension && !suspension_end.past?
+    active && suspension? && !suspension_end.past?
   end
 
   def body_as_html
diff --git a/app/views/admin/_log_table.html.erb b/app/views/admin/_log_table.html.erb
@@ -1,31 +1,33 @@
 <table class="table is-full-width is-with-hover">
   <thead>
-  <tr>
-    <th><%= t('g.type').capitalize %></th>
-    <th><%= t('g.event').capitalize %></th>
-    <th><%= t('g.user').capitalize %></th>
-    <th><%= t('g.related').capitalize %></th>
-    <th><%= t('g.comment').capitalize %></th>
-    <th><%= t('g.created').capitalize %></th>
-  </tr>
+    <tr>
+      <th><%= t('g.type').capitalize %></th>
+      <th><%= t('g.event').capitalize %></th>
+      <th><%= t('g.user').capitalize %></th>
+      <th><%= t('g.related').capitalize %></th>
+      <th><%= t('g.comment').capitalize %></th>
+      <th><%= t('g.created').capitalize %></th>
+    </tr>
   </thead>
   <tbody>
-  <% @logs.each do |log| %>
-    <tr>
-      <td><%= log.log_type.humanize %></td>
-      <td><%= log.event_type.humanize %></td>
-      <td><%= user_link log.user %></td>
-      <td>
-        <% if log.related.present? %>
-          <%= log.related_type %> #<%= log.related_id %>
-          <% if log.related.respond_to? :name %>
-            (<%= log.related.name %>)
+    <% @logs.each do |log| %>
+      <tr>
+        <td class="wrap-word"><%= log.log_type.humanize %></td>
+        <td class="wrap-word"><%= log.event_type.humanize %></td>
+        <td><%= user_link log.user %></td>
+        <td class="wrap-word">
+          <% if log.related.present? %>
+            <%= log.related_type %> #<%= log.related_id %>
+            <% if log.related.respond_to? :name %>
+              (<%= log.related.name %>)
+            <% end %>
           <% end %>
-        <% end %>
-      </td>
-      <td><pre class="pre-wrap"><%= log.comment %></pre></td>
-      <td title="<%= log.created_at.iso8601 %>"><%= time_ago_in_words(log.created_at) %> ago</td>
-    </tr>
-  <% end %>
+        </td>
+        <td>
+          <pre class="pre-wrap"><%= log.comment %></pre>
+        </td>
+        <td title="<%= log.created_at.iso8601 %>"><%= time_ago_in_words(log.created_at) %> ago</td>
+      </tr>
+    <% end %>
   </tbody>
-</table>
+</table>
diff --git a/app/views/mod_warning/log.html.erb b/app/views/mod_warning/log.html.erb
@@ -1,46 +1,42 @@
 <h1>Warnings sent to <%= user_link @user %></h1>
 
 <table class="table is-full-width is-with-hover">
+  <tr>
+    <th>Date</th>
+    <th>Type</th>
+    <th>From</th>
+    <th>Excerpt</th>
+    <th>Status</th>
+  </tr>
+  <% @warnings.each do |w| %>
     <tr>
-        <th>Date</th>
-        <th>Type</th>
-        <th>From</th>
-        <th>Excerpt</th>
-        <th>Status</th>
+      <td>
+        <span title="<%= w.created_at.iso8601 %>"><%= time_ago_in_words(w.created_at) %> ago</span>
+      </td>
+      <td>
+        <% if w.suspension? %>
+          <% diff = ((w.suspension_end - w.created_at) / (3600 * 24)).to_i %>
+          <span class="badge is-tag is-red is-filled nowrap">Suspension</span> (<%= diff %>d)
+        <% else %>
+          <span class="badge is-tag is-muted nowrap">Warning</span>
+        <% end %>
+      </td>
+      <td><%= user_link w.author %></td>
+      <td><%= raw(sanitize(render_markdown(w.body), scrubber: scrubber)) %></td>
+      <td class="wrap-word">
+        <% if w.suspension_active? %>
+          <strong>Current</strong>
+          <%= form_tag lift_mod_warning_url(@user.id), method: :post do %>
+            <%= submit_tag '(lift)', class: 'link is-red' %>
+          <% end %>
+        <% elsif w.active %>
+          <strong>Unread</strong>
+        <% elsif w.read %>
+          Read
+        <% else %>
+          <strong>Lifted</strong>
+        <% end %>
+      </td>
     </tr>
-    <% @warnings.each do |w| %>
-        <tr>
-            <td>
-                <span title="<%= w.created_at.iso8601 %>"><%= time_ago_in_words(w.created_at) %> ago</span>
-            </td>
-            <td>
-                <% if w.is_suspension %>
-                <% diff = ((w.suspension_end - w.created_at) / (3600 * 24)).to_i %>
-                <span class="badge is-tag is-red is-filled">Suspension</span> (<%= diff %>d)
-                <% else %>
-                <span class="badge is-tag is-muted">Warning</span>
-                <% end %>
-            </td>
-            <td>
-                <%= user_link w.author %>
-            </td>
-            <td>
-                <%= raw(sanitize(render_markdown(w.body), scrubber: scrubber)) %>
-            </td>
-            <td>
-                <% if w.suspension_active? %>
-                <strong>Current</strong>
-                <%= form_tag lift_mod_warning_url(@user.id), method: :post do %>
-                    <%= submit_tag '(lift)', class: 'link is-red' %>
-                <% end %>
-                <% elsif w.active %>
-                <strong>Unread</strong>
-                <% elsif w.read %>
-                Read
-                <% else %>
-                <strong>Lifted</strong>
-                <% end %>
-            </td>
-        </tr>
-    <% end %>
-</table>
+  <% end %>
+</table>
diff --git a/test/controllers/mod_warning_controller_test.rb b/test/controllers/mod_warning_controller_test.rb
@@ -21,7 +21,7 @@ class ModWarningControllerTest < ActionController::TestCase
 
   test 'mods or admins should be able to access pages' do
     [users(:moderator), users(:admin)].each do |user|
-      sign_in user
+      sign_in(user)
 
       [:log, :new].each do |path|
         get path, params: { user_id: users(:standard_user).id }
@@ -30,6 +30,21 @@ class ModWarningControllerTest < ActionController::TestCase
     end
   end
 
+  test ':create should correctly create mod warnings' do
+    user = users(:moderator)
+    subject = users(:standard_user)
+
+    sign_in(user)
+
+    try_create_mod_warning(subject)
+
+    assert_redirected_to(user_path(subject))
+    warning = assigns(:warning)
+    assert_not_nil warning
+    assert_audit_log('warning_create', related: warning)
+    assert_audit_log('suspension_create', related: warning)
+  end
+
   test 'suspended user should redirect to current warning page' do
     sign_in users(:standard_user)
     mod_warnings(:first_warning).update(active: true)
@@ -75,12 +90,39 @@ class ModWarningControllerTest < ActionController::TestCase
 
     std = users(:standard_user)
     warning = mod_warnings(:third_warning)
-
     warning.update(active: true)
-    post :lift, params: { user_id: std.id }
+
+    try_lift_suspension(std)
 
     assert_response(:found)
     warning.reload
     assert_not warning.active
+
+    assert_audit_log('warning_lift', related: warning)
+    assert_audit_log('suspension_lift', related: warning)
+  end
+
+  private
+
+  # @param subject [User] to whom the mod warning is issued
+  # @option opts :body [String]
+  # @option opts :suspension_public_notice [String]
+  # @option opts :is_suspension [Boolean]
+  # @option opts :suspension_duration [Integer]
+  def try_create_mod_warning(subject, **opts)
+    post :create, params: {
+      user_id: subject.id,
+      mod_warning: {
+        body: 'You have been suspended for science. Your sacrifice will not be forgotten',
+        suspension_public_notice: 'Do not mind this suspension, nothing to see here, move along',
+        is_suspension: true,
+        suspension_duration: 365
+      }.merge(opts)
+    }
+  end
+
+  # @param subject [User] for whome to lift the suspension
+  def try_lift_suspension(subject)
+    post :lift, params: { user_id: subject.id }
   end
 end
diff --git a/test/test_helper.rb b/test/test_helper.rb
@@ -129,6 +129,20 @@ def copy_abilities(community_id)
     end
   end
 
+  def assert_audit_log(event_type, related: nil)
+    log_entry = AuditLog.where(event_type: event_type)
+                        .order(created_at: :desc)
+                        .last
+    assert_not_nil(log_entry)
+    assert_equal event_type, log_entry['event_type']
+
+    if related.present?
+      assert_equal related.id, log_entry['related_id']
+    else
+      assert_nil(log_entry['related_id'])
+    end
+  end
+
   def assert_draft_deleted(user, path, *fields)
     base_key = "saved_post.#{user.id}.#{path}"
 
