Added logging to filters.

anierzad · anierzad · commit c7619474137f · 2017-07-19T11:35:24.000+01:00
diff --git a/PolyDeploy/WebAPI/APIAuthentication.cs b/PolyDeploy/WebAPI/APIAuthentication.cs
@@ -1,12 +1,10 @@
 ﻿using Cantarus.Modules.PolyDeploy.Components;
 using Cantarus.Modules.PolyDeploy.DataAccess.Models;
+using DotNetNuke.Services.Log.EventLog;
 using System;
-using System.Collections;
-using System.Collections.Generic;
 using System.Linq;
 using System.Net;
 using System.Net.Http;
-using System.Web;
 using System.Web.Http.Controllers;
 using System.Web.Http.Filters;
 
@@ -21,13 +19,15 @@ public override void OnActionExecuting(HttpActionContext actionContext)
             bool authenticated = false;
             string message = "Access denied.";
 
+            string apiKey = null;
+
             try
             {
                 // Is there an api key header present?
                 if (actionContext.Request.Headers.Contains("x-api-key"))
                 {
                     // Get the api key from the header.
-                    string apiKey = actionContext.Request.Headers.GetValues("x-api-key").FirstOrDefault();
+                    apiKey = actionContext.Request.Headers.GetValues("x-api-key").FirstOrDefault();
 
                     // Make sure it's not null and it's 32 characters or we're wasting our time.
                     if (apiKey != null && apiKey.Length == 32)
@@ -55,6 +55,12 @@ public override void OnActionExecuting(HttpActionContext actionContext)
             // If authentication failure occurs, return a response without carrying on executing actions.
             if (!authenticated)
             {
+                EventLogController elc = new EventLogController();
+
+                string log = string.Format("(APIKey: {1}) {2}", apiKey, message);
+
+                elc.AddLog("PolyDeploy", log, EventLogController.EventLogType.HOST_ALERT);
+
                 actionContext.Response = actionContext.Request.CreateErrorResponse(HttpStatusCode.Forbidden, message);
             }
         }
diff --git a/PolyDeploy/WebAPI/InWhitelist.cs b/PolyDeploy/WebAPI/InWhitelist.cs
@@ -1,9 +1,6 @@
 ﻿using Cantarus.Modules.PolyDeploy.Components;
-using Cantarus.Modules.PolyDeploy.DataAccess.Models;
+using DotNetNuke.Services.Log.EventLog;
 using System;
-using System.Collections;
-using System.Collections.Generic;
-using System.Linq;
 using System.Net;
 using System.Net.Http;
 using System.Web;
@@ -21,9 +18,11 @@ public override void OnActionExecuting(HttpActionContext actionContext)
             bool authenticated = false;
             string message = "Access denied.";
 
+            string clientIpAddress = null;
+
             try
             {
-                string clientIpAddress = HttpContext.Current.Request.UserHostAddress;
+                clientIpAddress = HttpContext.Current.Request.UserHostAddress;
 
                 // Got the ip address?
                 if (!string.IsNullOrEmpty(clientIpAddress))
@@ -46,6 +45,12 @@ public override void OnActionExecuting(HttpActionContext actionContext)
             // If authentication failure occurs, return a response without carrying on executing actions.
             if (!authenticated)
             {
+                EventLogController elc = new EventLogController();
+
+                string log = string.Format("(IP: {1}) {2}", clientIpAddress, message);
+
+                elc.AddLog("PolyDeploy", log, EventLogController.EventLogType.HOST_ALERT);
+
                 actionContext.Response = actionContext.Request.CreateErrorResponse(HttpStatusCode.Forbidden, message);
             }
         }
