admin: Reduce logging levels

Switch logging from info to debug in various places in the code. Also, simplify the check for permitted user groups in the `admin_user_required` decorator.

admin: Reduce logging levels
Switch logging from info to debug in various places in the code. Also, simplify the check for permitted user groups in the `admin_user_required` decorator.
edc275e6 · Alex Pyrgiotis · 472a77d8 · edc275e6 · edc275e6
Commit edc275e6 authored Sep 01, 2014 by Alex Pyrgiotis
Showing with 12 additions and 20 deletions

snf-admin-app/synnefo_admin/admin/utils.py snf-admin-app/synnefo_admin/admin/utils.py +4 -1

snf-admin-app/synnefo_admin/admin/views.py snf-admin-app/synnefo_admin/admin/views.py +8 -19

No files found.
--- a/snf-admin-app/synnefo_admin/admin/utils.py
+++ b/snf-admin-app/synnefo_admin/admin/utils.py
@@ -75,7 +75,10 @@ def admin_log(request, *argc, **kwargs):
    for key, value in kwargs.iteritems():
        s += "%s: %s, " % (key.capitalize(), value)

-    logging.info(s)
+    if caller_name == "admin_actions":
+        logging.info(s)
+    else:
+        logging.debug(s)


 def conditionally_gzip_page(func):

--- a/snf-admin-app/synnefo_admin/admin/views.py
+++ b/snf-admin-app/synnefo_admin/admin/views.py
@@ -125,29 +125,18 @@ def admin_user_required(func, permitted_groups=admin_settings.\
            groups = request.user['access']['user']['roles']
            groups = [g["name"] for g in groups]

-            if not groups:
-                logger.info("Failed to access admin view. User: %r",
-                            request.user_uniq)
-                raise PermissionDenied
-
-            has_perm = False
-            for g in groups:
-                if g in permitted_groups:
-                    has_perm = True
-                    break
-
-            if not has_perm:
-                logger.info("Failed to access admin view %r. No valid "
-                            "admin group (%r) matches user groups (%r)",
-                            request.user_uniq, permitted_groups, groups)
+            if not set(groups) & set(permitted_groups):
+                logger.debug("Failed to access admin view %r. No valid admin "
+                             "group (%r) matches user groups (%r)",
+                             request.user_uniq, permitted_groups, groups)
                raise PermissionDenied
        else:
-            logger.info("Failed to access admin view %r. No authenticated "
-                        "user found.", request.user_uniq)
-            logger.info("auth_url (%s)", settings.ASTAKOS_AUTH_URL)
+            logger.debug("Failed to access admin view %r. No authenticated "
+                         "user found.", request.user_uniq)
+            logger.debug("auth_url (%s)", settings.ASTAKOS_AUTH_URL)
            raise PermissionDenied

-        logging.info("User %s accessed admininterface view (%s)",
+        logging.debug("User %s accessed admininterface view (%s)",
                     request.user_uniq, request.path)
        return func(request, *args, **kwargs)