Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How can I populate my audit log UserId field when I don't have access to HttpContext?

Tags:

c#

entity-framework

audit.net

I have a solution with two projects, my API layer and my Data layer.

The Data layer is using Entity Framework, and does not know about ASP.NET WebApi.

The API layer is using ASP.NET WebApi.

I am planning on using Audit.NET to audit record changes.

Currently, I have installed Audit.NET, Audit.EntityFramework and Audit.WebApi in my API project.

I wish to use the Audit Filter Attribute. (config.Filters.Add(new AuditApiAttribute());)

My issue is, when I come to populate the EntityLog object, I also would like to populate the UserId field with the Id of the user currently performing an authorized action, or null if the action is anonymous.

As part of my Startup.cs, I run this function to configure Audit.NET:

private void ConfigureAudit()
        {
            Audit.Core.Configuration.Setup()
                .UseEntityFramework(x => x
                    .AuditTypeMapper(t => typeof(AuditLog))
                    .AuditEntityAction<AuditLog>((ev, entry, entity) =>
                    {
                        entity.UserId = ???;
                        // other fields...
                    })
                    .IgnoreMatchedProperties()
                );
        }

Obviously at this point I cannot use HttpContext.Current.User.Identity.GetUserId() as I'm not inside a controller, and I don't see a way of passing the UserId into the Audit event.

How can I retrieve the UserId at this point?

like image 872
JH-Sen-Ren Avatar asked Sep 19 '19 10:09

JH-Sen-Ren

1 Answers

In addition to Steve answer, I guess you should be able to add a Custom Field from a OnScopeCreated custom action, like this on your asp.net startup logic:

Audit.Core.Configuration.AddCustomAction(ActionType.OnScopeCreated, scope =>
{
    scope.SetCustomField("User", HttpContext.Current.User.Identity.GetUserId());
});

So you will have that field on the AuditEvent on your EF data provider, and should be able to retrieve like this:

Audit.Core.Configuration.Setup()
    .UseEntityFramework(_ => _
        .AuditTypeMapper(t => typeof(AuditLog))
        .AuditEntityAction<AuditLog>((ev, entry, entity) =>
        {
            var x = ev.CustomFields["User"];
            ...
        })
        .IgnoreMatchedProperties());

Note: if you are only interested in auditing entity framework DB contexts, you don't need the Audit.WebApi library. That one is for auditing the controller actions.

like image 67
thepirat000 Avatar answered Nov 08 '22 13:11

thepirat000
Sign in to Comment

Related questions

How can data be streamed from a LINQ to Entities query?
How to use DbFunction translation in EF Core?
The object 'PK_AspNetUserTokens' is dependent on column 'Name'. ALTER TABLE ALTER COLUMN Name failed because one or more objects access this column
Turn A Full Path Into A Path With Environment Variables
Xamarin Forms +Entity Framework Core + SQLite - Calling migration on production breaks application
Restricting cursor to a radius around my Player
Azure Functions - output bindings justification
How to handle properly temporary files?
Does using a discard operator "_" in C# optimize the code in any way?
How to set a property value from an expression tree?
Can kestrel server in ASP.NET core be configured with idle timeout at startup
Should I use OwinContext's Environment to hold application specific data per request
What is Interlocked.Increment actually doing?
Entity Framework Filter "Expression<Func<T, bool>>"
Restarting Windows from within a .NET application
OWIN cookie authentication without ASP.NET Identity
How to detect the language of a string?
Why have class-level access modifiers instead of object-level?
Volatile Violates its main job?
Send POST request to asp.net mvc action via Fiddler

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!