Skip to content

Commit 3b9189a

Browse files
Paul-BobPaul-Bob
authored
changes on development authorization logs (#362)
1 parent dd1a907 commit 3b9189a

File tree

1 file changed

+12
-5
lines changed

1 file changed

+12
-5
lines changed

docs/3.0/authorization.md

+12-5
Original file line numberDiff line numberDiff line change
@@ -470,14 +470,21 @@ Now, you'll have to provide a policy for each resource you have in your app, thu
470470
<VersionReq version="3.11.7" />
471471
[Developers](authentication.html#_2-developer-user) have the ability to monitor any unauthorized actions. When a [developer user](authentication.html#_2-developer-user) makes a request that triggers an unauthorized action, a log entry similar to the following will be generated:
472472

473-
In development each log entry provides details about the policy class, the action attempted, the user who made the request, and the record involved:
473+
In development each log entry provides details about the policy class, the action attempted, the global id of the user who made the request, and the global id of the record involved:
474474
```bash
475-
web | [Avo->] Unauthorized action 'act_on?' for 'UserPolicy'
476-
web | user: #<User id: 20, first_name: "Avo", last_name: "Cado", roles: {"admin"=>true, "manager"=>false, "writer"=>false}, team_id: nil, slug: "avo-cado", active: true, email: "[email protected]", created_at: "2023-05-20 18:32:32.857042000 +0000", updated_at: "2024-01-03 14:20:00.352895000 +0000">
477-
web | record: User(id: integer, first_name: string, last_name: string, roles: json, team_id: integer, slug: string, active: boolean, email: string, encrypted_password: string, reset_password_token: string, reset_password_sent_at: datetime, remember_created_at: datetime, created_at: datetime, updated_at: datetime)
475+
web | [Avo->] Unauthorized action 'reorder?' for 'UserPolicy'
476+
web | user: gid://dummy/User/20
477+
web | record: gid://dummy/User/31
478+
```
479+
480+
To find a record based on its global id you can use `GlobalID::Locator.locate`
481+
482+
```ruby
483+
gid = "gid://dummy/User/20"
484+
user = GlobalID::Locator.locate(gid)
478485
```
479486

480-
In production each log entry provides details about the policy class and the attempted action:
487+
In production each log entry provides details only about the policy class and the attempted action:
481488
```bash
482489
web | [Avo->] Unauthorized action 'act_on?' for 'UserPolicy'
483490
```

0 commit comments

Comments
 (0)