@@ -24,7 +24,7 @@ def __init__(self, app, adapter, watcher=None):
2424 """
2525 self .app = app
2626 self .adapter = adapter
27- self .e = casbin .Enforcer (app .config .get ("CASBIN_MODEL" ), self .adapter , True )
27+ self .e = casbin .Enforcer (app .config .get ("CASBIN_MODEL" ), self .adapter )
2828 if watcher :
2929 self .e .set_watcher (watcher )
3030 self ._owner_loader = None
@@ -90,9 +90,16 @@ def wrapper(*args, **kwargs):
9090 )
9191 continue
9292
93- if self .user_name_headers and header in self .user_name_headers :
93+ if self .user_name_headers and header in map ( str . lower , self .user_name_headers ) :
9494 owner_audit = owner
9595 if self .e .enforce (owner , uri , request .method ):
96+ self .app .logger .info (
97+ "access granted: method: %s resource: %s%s" % (
98+ request .method ,
99+ uri ,
100+ "" if not self .user_name_headers and owner_audit != "" else " to user: %s" % owner_audit
101+ )
102+ )
96103 return func (* args , ** kwargs )
97104 else :
98105 # Split header by ',' in case of groups when groups are
@@ -109,6 +116,13 @@ def wrapper(*args, **kwargs):
109116 if self .e .enforce (
110117 owner .strip ('"' ), uri , request .method
111118 ):
119+ self .app .logger .info (
120+ "access granted: method: %s resource: %s%s" % (
121+ request .method ,
122+ uri ,
123+ "" if not self .user_name_headers and owner_audit != "" else " to user: %s" % owner_audit
124+ )
125+ )
112126 return func (* args , ** kwargs )
113127 else :
114128 self .app .logger .error (
0 commit comments