added current user for django

stuartaccent · web-flow · commit 7ba756f0b147 · 2022-06-09T14:46:18.000+01:00
diff --git a/DJANGO_USAGE.md b/DJANGO_USAGE.md
@@ -0,0 +1,34 @@
+# Django Usage
+
+A middleware to add the current user to the transactions
+
+Add as low down as possible in the order so all the session, user security comes first.
+
+```python
+from django.db import connection, transaction
+
+
+class AuditLogUserMiddleware:
+    """
+    Execute the request/response cycle in an atomic transaction.
+    Update the audit log with the current user.
+    """
+
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+        if request.method in ["POST", "PUT", "PATCH", "DELETE"]:
+            with transaction.atomic():
+                response = self.get_response(request)
+                if request.user.is_authenticated:
+                    with connection.cursor() as cursor:
+                        sql = """
+                            UPDATE audit.logged_actions
+                            SET meta_fields = hstore('current_user', %s)
+                            WHERE transaction_id = txid_current();
+                        """
+                        cursor.execute(sql, [str(request.user)])
+                return response
+        return self.get_response(request)
+```
diff --git a/audit.sql b/audit.sql
@@ -53,7 +53,8 @@ CREATE TABLE audit.logged_actions (
     action TEXT NOT NULL CHECK (action IN ('I','D','U', 'T')),
     row_data hstore,
     changed_fields hstore,
-    statement_only boolean not null
+    statement_only boolean not null,
+    meta_fields hstore
 );
 
 REVOKE ALL ON audit.logged_actions FROM public;
@@ -110,7 +111,8 @@ BEGIN
         current_query(),                              -- top-level query or queries (if multistatement) from client
         substring(TG_OP,1,1),                         -- action
         NULL, NULL,                                   -- row_data, changed_fields
-        'f'                                           -- statement_only
+        'f',                                          -- statement_only
+        NULL                                          -- fields to store abritary info
         );
 
     IF NOT TG_ARGV[0]::boolean IS DISTINCT FROM 'f'::boolean THEN
