Spaces:

jebin2
/

apigateway

Sleeping

jebin2 commited on 19 days ago

Commit

c5e99dc

1 Parent(s): 28e48bc

Phase 1: Fix audit logging in blink.py

- Replace direct AuditLog creation with AuditService.log_event()
- Ensures consistent audit logging across codebase
- Removed unused AuditLog import

Fixes critical audit logging inconsistency identified in audit

Files changed (1) hide show

routers/blink.py +23 -20

routers/blink.py CHANGED Viewed

@@ -9,7 +9,7 @@ import ipaddress
 import logging
 from core.database import get_db
-from core.models import User, AuditLog, GeminiJob, Contact, ClientUser
 from services.encryption_service import decrypt_multiple_blocks
 from dependencies import get_geolocation
@@ -544,34 +544,37 @@ async def blink(
                 "region": region
             }
-            audit_log = AuditLog(
-                log_type="client",
-                user_id=server_user_id,  # Set if authenticated, None if anonymous
-                client_user_id=client_user_id,
                 action="blink",
                 details=details,
-                ip_address=ip_address,
-                user_agent=user_agent,
-                refer_url=refer_url,
-                status="success"
             )
-            db.add(audit_log)
             records_created += 1
         # If no results but we have encrypted data, store a record
         if not decrypted_results and encrypted_data:
-            audit_log = AuditLog(
-                log_type="client",
-                user_id=server_user_id,  # Set if authenticated, None if anonymous
-                client_user_id=client_user_id,
                 action="blink",
-                details={"encrypted_length": len(encrypted_data), "country": country, "region": region},
-                ip_address=ip_address,
-                user_agent=user_agent,
-                refer_url=refer_url,
-                status="success"
             )
-            db.add(audit_log)
             records_created = 1
         await db.commit()

 import logging
 from core.database import get_db
+from core.models import User, GeminiJob, Contact, ClientUser
 from services.encryption_service import decrypt_multiple_blocks
 from dependencies import get_geolocation
                 "region": region
             }
+            # Use AuditService for consistent logging
+            from services.audit_service import AuditService
+            await AuditService.log_event(
+                db=db,
                 action="blink",
+                status="success",
+                user_id=server_user_id,
+                client_user_id=client_user_id,
                 details=details,
+                request=request,
+                log_type="client"
             )
             records_created += 1
         # If no results but we have encrypted data, store a record
         if not decrypted_results and encrypted_data:
+            # Use AuditService for consistent logging
+            from services.audit_service import AuditService
+            details = {"encrypted_length": len(encrypted_data), "country": country, "region": region}
+            await AuditService.log_event(
+                db=db,
                 action="blink",
+                status="success",
+                user_id=server_user_id,
+                client_user_id=client_user_id,
+                details=details,
+                request=request,
+                log_type="client"
             )
             records_created = 1
         await db.commit()