use crate::tools::ticket::{self, Empty, Ticket};
use crate::auth_helpers::*;
use crate::api2::types::*;
+use crate::tools::{FileLogOptions, FileLogger};
use crate::config::cached_user_info::CachedUserInfo;
use crate::config::acl::{PRIVILEGES, PRIV_PERMISSIONS_MODIFY};
port: Option<u16>,
rpcenv: &mut dyn RpcEnvironment,
) -> Result<Value, Error> {
+ let logger_options = FileLogOptions {
+ append: true,
+ prefix_time: true,
+ ..Default::default()
+ };
+ let mut auth_log = FileLogger::new("/var/log/proxmox-backup/api/auth.log", logger_options)?;
+
match authenticate_user(&username, &password, path, privs, port) {
Ok(true) => {
let ticket = Ticket::new("PBS", &username)?.sign(private_auth_key(), None)?;
let token = assemble_csrf_prevention_token(csrf_secret(), &username);
- log::info!("successful auth for user '{}'", username);
+ auth_log.log(format!("successful auth for user '{}'", username));
Ok(json!({
"username": username,
None => "unknown".into(),
};
- log::error!("authentication failure; rhost={} user={} msg={}", client_ip, username, err.to_string());
+ let msg = format!(
+ "authentication failure; rhost={} user={} msg={}",
+ client_ip,
+ username,
+ err.to_string()
+ );
+ auth_log.log(&msg);
+ log::error!("{}", msg);
+
Err(http_err!(UNAUTHORIZED, "permission check failed."))
}
}