feat: audit additional events

[riceyrice]

Thanks for submitting a PR! Please check the boxes below:

• I have run pre-commit to check linting
• I have filled in the "Changes" section below?
• I have filled in the "How did you test this code" section below?
• I have used a Conventional Commit title for this Pull Request

Changes

Implements #2797

• refactors AuditLog to associate with organisation without needing project/environment
• audits security-related project, user, group, role, permission changes per organisation
• upgrades and patches django-simple-history to correctly handle indirect m2m signals
• audits user login success/failure and logout signals
• refactors auth mechanisms to send login success/failure and logout signals

Note: python manage.py populate_history --auto must be run after migrations in order to create initial history instances, otherwise the first update to any model will log a warning but create no audit log records.

Note: There are corresponding changes in flagsmith-saml to ensure django signals are sent which must be deployed to correctly audit saml login success/failure.

Note: Does not include front-end changes to view per-organisation audit logs. AuditLog views look for organisation directly/indirectly and should be simplified once organisation field is backfilled for existing records.

How did you test this code?

Tested manually by making changes to memberships and permissions in the front end app or django admin or django shell. Audit log may be inspected per-project or per-environment in the front end but otherwise must be checked using REST API for per-organisation feed or django shell.
Unit tests will be added once functionality approved. Existing unit tests may fail as I'm currently unable to run them 😞
Login success/failure tested manually in front end using samltest.id and developer GitHib/Google apps.
Unit tests now complete.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
docs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Apr 15, 2024 2:22pm
flagsmith-frontend-preview	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Apr 15, 2024 2:22pm
flagsmith-frontend-staging	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Apr 15, 2024 2:22pm

[github-actions]

Uffizzi Ephemeral Environment deployment-43169

☁️ https://app.uffizzi.com/github.com/Flagsmith/flagsmith/pull/2918

📄 View Application Logs etc.

What is Uffizzi? Learn more!

[matthewelwell]

@riceyrice on the whole, this looks great! I've added some (mostly) minor comments, but it seems to achieve what we're looking for and the code looks good.

[matthewelwell]

These methods should be 'public' if we're calling them here. Is there a reason they're 'private'?

[riceyrice]

They are only private because they were already private - I guess they were intended for use by the public get_environment_and_project (now get_organisations_project_environment).
Previously this code accessed member variables directly, which seemed to be against DRY and introduce the possibility that it could pick different values to those used for audit logs that go via _get_environment.
I guess there are some options here:

• use get_organisations_project_environment public interface (like create_audit_log_from_historical_record in the same file does)
• make _get_organisations/project/environment into public interface

[matthewelwell]

I guess the downside of option 1 here is that we don't need the organisations (I don't think?). My preference in that case would be option 2 but if, for whatever reason, we do want the organisation here too, let's go with option 1.

[riceyrice]

We don't need organisation so went with option 2

[matthewelwell]

What's the benefit of doing it this way versus defining the defaults on the base class itself?

[riceyrice]

This dance was to avoid changing the default behaviour of abstract_base_auditable_model_factory as many things already call this expecting _AbstractBaseAuditableModel and its implementations that return None, logging nothing by default.
All the things I've added want to log create/update/delete by default (except project but maybe it should).
I will see if I can do it more elegantly using mixins.

[riceyrice]

I've replaced this with a mixin implementation - it's a bit verbose but hopefully clearer. tbh if create/update/delete logging could be on/off rather than three toggles, that could be a fair bit simpler. Project audit being create/delete only is the only real reason for it and maybe that's not a real requirement.

[matthewelwell]

Yeah, I don't think that's an intentional requirement. I think having project update would also be beneficial.