FEATURE: add hidden setting for verbose auth token logging

This is only needed to debug auth token issues, will result in lots of logging
2025-02-25 18:55:32 -06:00 · 2017-02-13 14:01:01 -05:00
parent 0e58e393a1
commit 0ab96a7691
6 changed files with 143 additions and 2 deletions
--- a/lib/auth/default_current_user_provider.rb
+++ b/lib/auth/default_current_user_provider.rb
@@ -44,7 +44,11 @@ class Auth::DefaultCurrentUserProvider
      limiter = RateLimiter.new(nil, "cookie_auth_#{request.ip}", COOKIE_ATTEMPTS_PER_MIN ,60)

      if limiter.can_perform?
-        @user_token = UserAuthToken.lookup(auth_token, seen: true)
+        @user_token = UserAuthToken.lookup(auth_token,
+                                           seen: true,
+                                           user_agent: @env['HTTP_USER_AGENT'],
+                                           client_ip: @request.ip)
+
        current_user = @user_token.try(:user)
      end