add composer-unused, comprehensive docs, and project restructure
- Add icanhazstring/composer-unused as dev dependency for dependency hygiene checks
- Add German documentation (docs/) covering architecture, conventions, workflows, and developer checklists
- Add API layer (ApiAuth, ApiBootstrap, ApiResponse), audit, scheduler, custom fields, and SSO services
- Add Microsoft OIDC SSO, API token management, and user lifecycle features
- Add swagger-ui vendor integration and OpenAPI spec
- Add production Docker setup and bin/ scripts
- Update composer dependencies, config, templates, and frontend assets throughout
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-02-22 15:27:35 +01:00
|
|
|
<?php
|
2026-03-04 15:56:58 +01:00
|
|
|
$pageAuth = is_array($viewAuth['page'] ?? null) ? $viewAuth['page'] : [];
|
|
|
|
|
$canPurgeApiAudit = (bool) ($pageAuth['can_purge'] ?? false);
|
|
|
|
|
$toolbarFilterSchema = is_array($toolbarFilterSchema ?? null) ? $toolbarFilterSchema : [];
|
|
|
|
|
$searchToolbarFilterSchema = is_array($searchToolbarFilterSchema ?? null) ? $searchToolbarFilterSchema : [];
|
|
|
|
|
$drawerToolbarFilterSchema = is_array($drawerToolbarFilterSchema ?? null) ? $drawerToolbarFilterSchema : [];
|
|
|
|
|
$toolbarFilterState = is_array($toolbarFilterState ?? null) ? $toolbarFilterState : [];
|
|
|
|
|
$toolbarOptionSets = is_array($toolbarOptionSets ?? null) ? $toolbarOptionSets : [];
|
|
|
|
|
$filterChipMeta = is_array($filterChipMeta ?? null) ? $filterChipMeta : [];
|
|
|
|
|
$clientFilterSchema = is_array($clientFilterSchema ?? null) ? $clientFilterSchema : [];
|
|
|
|
|
$searchConfig = is_array($searchConfig ?? null) ? $searchConfig : null;
|
add composer-unused, comprehensive docs, and project restructure
- Add icanhazstring/composer-unused as dev dependency for dependency hygiene checks
- Add German documentation (docs/) covering architecture, conventions, workflows, and developer checklists
- Add API layer (ApiAuth, ApiBootstrap, ApiResponse), audit, scheduler, custom fields, and SSO services
- Add Microsoft OIDC SSO, API token management, and user lifecycle features
- Add swagger-ui vendor integration and OpenAPI spec
- Add production Docker setup and bin/ scripts
- Update composer dependencies, config, templates, and frontend assets throughout
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-02-22 15:27:35 +01:00
|
|
|
?>
|
|
|
|
|
<?php
|
|
|
|
|
$breadcrumbs = [
|
|
|
|
|
['label' => t('Home'), 'path' => 'admin'],
|
|
|
|
|
['label' => t('API audit logs')],
|
|
|
|
|
];
|
|
|
|
|
require templatePath('partials/app-breadcrumb.phtml');
|
|
|
|
|
?>
|
2026-03-04 15:56:58 +01:00
|
|
|
<?php
|
|
|
|
|
$listTitle = t('API audit logs');
|
|
|
|
|
ob_start();
|
|
|
|
|
?>
|
|
|
|
|
<?php
|
|
|
|
|
$listPurgeEnabled = $canPurgeApiAudit;
|
|
|
|
|
$listPurgeFormId = 'api-audit-purge-form';
|
|
|
|
|
$listPurgeAction = 'admin/api-audit/purge';
|
|
|
|
|
$listPurgeConfirmMessage = t('Purge entries older than 90 days?');
|
|
|
|
|
$listPurgeButtonLabel = t('Purge API audit logs');
|
|
|
|
|
require templatePath('partials/app-list-purge-action.phtml');
|
|
|
|
|
?>
|
|
|
|
|
<?php
|
|
|
|
|
$listTitleActionsHtml = ob_get_clean();
|
|
|
|
|
require templatePath('partials/app-list-titlebar.phtml');
|
|
|
|
|
?>
|
|
|
|
|
<?php
|
|
|
|
|
$filterUiNamespace = 'api-audit';
|
|
|
|
|
require templatePath('partials/app-list-filters.phtml');
|
|
|
|
|
?>
|
add composer-unused, comprehensive docs, and project restructure
- Add icanhazstring/composer-unused as dev dependency for dependency hygiene checks
- Add German documentation (docs/) covering architecture, conventions, workflows, and developer checklists
- Add API layer (ApiAuth, ApiBootstrap, ApiResponse), audit, scheduler, custom fields, and SSO services
- Add Microsoft OIDC SSO, API token management, and user lifecycle features
- Add swagger-ui vendor integration and OpenAPI spec
- Add production Docker setup and bin/ scripts
- Update composer dependencies, config, templates, and frontend assets throughout
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-02-22 15:27:35 +01:00
|
|
|
<div class="app-list-table">
|
|
|
|
|
<div id="api-audit-grid"></div>
|
|
|
|
|
</div>
|
|
|
|
|
|
2026-03-05 08:26:51 +01:00
|
|
|
<?php
|
|
|
|
|
$gridLang = json_decode(appBufferValue('grid_lang'), true);
|
|
|
|
|
if (!is_array($gridLang)) {
|
|
|
|
|
$gridLang = [];
|
|
|
|
|
}
|
|
|
|
|
$pageConfig = [
|
|
|
|
|
'gridSearch' => $searchConfig,
|
|
|
|
|
'filterSchema' => $clientFilterSchema,
|
|
|
|
|
'filterChipMeta' => $filterChipMeta,
|
|
|
|
|
'gridLang' => $gridLang,
|
|
|
|
|
'labels' => [
|
|
|
|
|
'created' => t('Created'),
|
|
|
|
|
'statusCode' => t('Status code'),
|
|
|
|
|
'method' => t('Method'),
|
|
|
|
|
'path' => t('Path'),
|
|
|
|
|
'durationMs' => t('Duration (ms)'),
|
|
|
|
|
'user' => t('User'),
|
|
|
|
|
'tenant' => t('Tenant'),
|
|
|
|
|
'errorCode' => t('Error code'),
|
|
|
|
|
'ip' => t('IP'),
|
|
|
|
|
],
|
|
|
|
|
];
|
|
|
|
|
?>
|
|
|
|
|
<script src="<?php e(assetVersion('vendor/gridjs/gridjs.umd.js')); ?>"></script>
|
|
|
|
|
<script type="application/json" id="page-config-admin-api-audit-index"><?php gridJsonForJs($pageConfig); ?></script>
|
refactor(audit): extract audit domain into self-contained module
Move the entire audit subsystem (system audit, API audit, import audit,
user lifecycle audit, frontend telemetry) from core into modules/audit/.
Core decoupling via interface-based injection:
- AuditRecorderInterface replaces SystemAuditService in 10+ core services
- UserLifecycleAuditInterface / ImportAuditInterface for specialized flows
- NullAuditRecorder fallback when audit module is disabled
- ApiBootstrap/ApiResponse use null-safe callable resolvers
Module structure (modules/audit/):
- Manifest with routes, permissions, scheduler jobs, authorization policy
- 9 services, 8 repositories, 6 domain enums, 4 job handlers
- 33 page files, 4 JS files, 8 test files, migration scripts, i18n
Core cleanup:
- OperationsAuthorizationPolicy, UiCapabilityMap, PermissionService
surgically cleaned of audit-specific constants
- Sidebar template cleared of hardcoded audit navigation
- AuditModuleIsolationContractTest ensures no future core→module coupling
All quality gates pass: 1346 tests (19,276 assertions), PHPStan level 5
clean, architecture contracts verified.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-25 21:12:49 +01:00
|
|
|
<script type="module" src="<?php e(assetVersion('modules/audit/js/pages/admin-api-audit-index.js')); ?>"></script>
|