Log username download requests (#65)

seanshahkarami · web-flow · commit 927e2bbf2c26 · 2025-07-14T13:33:07.000-05:00
* log which user made file download request

* add timestamp to download log
diff --git a/config/settings/base.py b/config/settings/base.py
@@ -179,6 +179,11 @@
             "level": "INFO",
             "handlers": ["console", "slack_admins"],
         },
+        "downloads": {
+            "level": "INFO",
+            "handlers": ["console"],
+            "propagate": False,
+        },
     },
 }
 
diff --git a/downloads/views.py b/downloads/views.py
@@ -31,6 +31,10 @@
 from app.authentication import TokenAuthentication as SageTokenAuthentication
 import time
 from unittest.mock import patch
+import logging
+
+
+logger = logging.getLogger(__name__)
 
 
 @dataclass
@@ -299,6 +303,19 @@ def get(
             node_id,
             timestamp_and_filename,
         )
+
+        # Log the access attempt
+        username = (
+            request.user.username if request.user.is_authenticated else "anonymous"
+        )
+
         if self.file_is_public or has_object_permission(request.user, self.node):
+            logger.info(
+                f"{datetime.now(timezone.utc).isoformat()} file download allowed: username={username} path={request.path} is_public={self.file_is_public}"
+            )
             return HttpResponseRedirect(get_redirect_url(item))
+
+        logger.warning(
+            f"{datetime.now(timezone.utc).isoformat()} file download denied: username={username} path={request.path} is_public={self.file_is_public}"
+        )
         return HttpResponse("Permission denied", status=status.HTTP_403_FORBIDDEN)
