o Hý¤h× ã@s|dZddlmZddlZddlmZddlmZd!d d „Zd"d d „Z dddddœd#dd„Z ddddœd$dd„Z d%dd „Z dS)&aæ audit.py Purpose: Centralized audit logging for authentication events and administrative actions. This module provides small, focused helpers to record security- relevant events into the SQLite database, so operators have traceability for incident response. How it works: - Lazily ensures minimal schemas for two tables: `auth_log` and `admin_audit`. - Exposes `log_auth_event(...)` and `log_admin_action(...)` with simple parameters to record events. Timestamps are stored as UNIX epoch seconds. - Keeps the code path lightweight; failures to log never break requests. Data model: - auth_log(id, ts, ip, user_id, username, event, detail) - admin_audit(id, ts, ip, admin_user_id, target_user_id, action, detail) é)Ú annotationsN)ÚOptionalé)Úget_dbÚreturnÚintcCs tt ¡ƒS)N)rÚtime©r r ú"/var/www/html/app_modules/audit.pyÚ_nows r ÚNonecCs&tƒ}| d¡| d¡| ¡dS)Na CREATE TABLE IF NOT EXISTS auth_log ( id INTEGER PRIMARY KEY AUTOINCREMENT, ts INTEGER NOT NULL, ip TEXT, user_id INTEGER, username TEXT, event TEXT NOT NULL, detail TEXT ) a6 CREATE TABLE IF NOT EXISTS admin_audit ( id INTEGER PRIMARY KEY AUTOINCREMENT, ts INTEGER NOT NULL, ip TEXT, admin_user_id INTEGER NOT NULL, target_user_id INTEGER, action TEXT NOT NULL, detail TEXT ) )rÚexecuteÚcommit)Údbr r r Ú_ensure_schema"sÿ ÿ r)ÚusernameÚuser_idÚipÚdetailÚeventÚstrrú Optional[str]rú Optional[int]rrc CsJztƒtƒ}| dtƒ|||||f¡| ¡WdSty$YdSw)NzYINSERT INTO auth_log (ts, ip, user_id, username, event, detail) VALUES (?, ?, ?, ?, ?, ?)©rrr r rÚ Exception)rrrrrrr r r Úlog_auth_eventAsþ þr)Útarget_user_idrrÚactionÚ admin_user_idrc CsJztƒtƒ}| dtƒ|||||f¡| ¡WdSty$YdSw)NziINSERT INTO admin_audit (ts, ip, admin_user_id, target_user_id, action, detail) VALUES (?, ?, ?, ?, ?, ?)r)rrrrrrr r r Úlog_admin_actionPsþ ÿrcCs@z|j d¡pd d¡d ¡}|p|jWStyYdSw)NzX-Forwarded-ForÚú,r)ÚheadersÚgetÚsplitÚstripÚ remote_addrr)ÚrequestÚfwdr r r Úget_request_ip^s   ÿr))rr)rr ) rrrrrrrrrrrr ) rrrrrrrrrrrr )rr) Ú__doc__Ú __future__rrÚtypingrrrr rrrr)r r r r Ús     ÿÿ