cameleer/cameleer-server
1
0
Fork 0
Code Issues 45 Pull Requests Actions Packages Projects Releases Wiki Activity

fix: exclude search endpoint from audit log
All checks were successful
CI / cleanup-branch (push) Has been skipped
Details
CI / build (push) Successful in 1m1s
Details
CI / docker (push) Successful in 37s
Details
CI / deploy-feature (push) Has been skipped
Details
CI / deploy (push) Successful in 28s
Details

Browse Source 
POST /api/v1/search/executions is a read-only query using POST for the
request body. Skip it in AuditInterceptor to avoid flooding the audit
log with search operations.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
hsiegeln
2026-03-26 23:55:24 +01:00
parent cde79bd172
commit ea88042ef5
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cameleer3-server-app/src/main/java/com/cameleer3/server/app/interceptor/AuditInterceptor.java
View File

@@ -22,6 +22,7 @@ import java.util.Set;
public class AuditInterceptor implements HandlerInterceptor { public class AuditInterceptor implements HandlerInterceptor {
private static final Set<String> AUDITABLE_METHODS = Set.of("POST", "PUT", "DELETE"); private static final Set<String> AUDITABLE_METHODS = Set.of("POST", "PUT", "DELETE");
private static final Set<String> EXCLUDED_PATHS = Set.of("/api/v1/search/executions");
private final AuditService auditService; private final AuditService auditService;
@@ -40,6 +41,9 @@ public class AuditInterceptor implements HandlerInterceptor {
} }
String path = request.getRequestURI(); String path = request.getRequestURI();
if (EXCLUDED_PATHS.contains(path)) {
return;
}
AuditResult result = response.getStatus() < 400 ? AuditResult.SUCCESS : AuditResult.FAILURE; AuditResult result = response.getStatus() < 400 ? AuditResult.SUCCESS : AuditResult.FAILURE;
auditService.log( auditService.log(