Skip to content

Commit 32e7978

Browse files
jessecooperjessecooper
committed
add example with CASBIN_USER_NAME_HEADERS for audit logging
1 parent 8c42ea0 commit 32e7978

1 file changed

Lines changed: 3 additions & 0 deletions

File tree

README.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -32,6 +32,9 @@ app = Flask(__name__)
3232
app.config['CASBIN_MODEL'] = 'casbinmodel.conf'
3333
# Set headers where owner for enforcement policy should be located
3434
app.config['CASBIN_OWNER_HEADERS'] = {'X-User', 'X-Group'}
35+
# Add User Audit Logging with user name associated to log
36+
# i.e. `[2020-11-10 12:55:06,060] ERROR in casbin_enforcer: Unauthorized attempt: method: GET resource: /api/v1/item by user: janedoe@example.com`
37+
app.config['CASBIN_USER_NAME_HEADERS'] = {'X-User'}
3538
# Set up Casbin Adapter
3639
adapter = FileAdapter('rbac_policy.csv')
3740
casbin_enforcer = CasbinEnforcer(app, adapter)

0 commit comments

Comments
 (0)