improve logging of auth events

a0a93185 · ale · 9f2bc780 · a0a93185 · a0a93185
Commit a0a93185 authored 10 years ago by ale
--- a/authserv/app_main.py
+++ b/authserv/app_main.py
@@ -31,18 +31,22 @@ def api_auth():
    check_ratelimit(request, username, source_ip)
    try:
-        result, errmsg, unused_shard = do_auth(
+        auth_status, errmsg, unused_shard = do_auth(
            username, service, shard, password, otp_token, source_ip)
    except Exception, e:
        app.logger.exception('Unexpected exception in authenticate()')
        abort(500)
-    app.logger.info(
+    # Build a nice log message.
-        'AUTH %s %s %s otp=%s%s',
+    log_parts = [username, service, auth_status]
-        username, service, result, otp_token and 'y' or 'n',
+    log_parts.append('otp=%s' % (otp_token and 'y' or 'n'))
-        (' err=%s' % errmsg) if errmsg else '')
+    if shard:
+        log_parts.append('shard=%s' % shard)
+    if errmsg:
+        log_parts.append('err=%s' % errmsg)
+    app.logger.info('AUTH %s', ' '.join(log_parts))
-    response = make_response(result)
+    response = make_response(auth_status)
    response.headers['Cache-Control'] = 'no-cache'
    response.headers['Content-Type'] = 'text/plain'
    response.headers['Expires'] = '-1'

--- a/authserv/app_nginx.py
+++ b/authserv/app_nginx.py
@@ -40,10 +40,12 @@ def do_nginx_http_auth():
        app.logger.exception('Unexpected exception in authenticate()')
        abort(500)
-    app.logger.info(
+    log_parts = [username, service, auth_status]
-        'NGINX_AUTH %s %s %s shard=%s%s',
+    if shard:
-        username, service, auth_status, shard,
+        log_parts.append('-> shard=%s' % shard)
-        (' err=%s' % errmsg) if errmsg else '')
+    if errmsg:
+        log_parts.append('err=%s' % errmsg)
+    app.logger.info('NGINX_AUTH %s', ' '.join(log_parts))
    response = make_response('')
    if auth_status == 'OK':