Page MenuHomePhabricator
Create Task
Maniphest T4376

Record access to Passphrase secrets in transaction log
Closed, ResolvedPublic
Actions

Description

When a user accesses a secret in Passphrase, it would be nice to record that access in the transaction log.

Revisions and Commits

rP Phabricator
D8345rP64d15c344e31 Passphrase - added "looked at secret" transaction.

Event Timeline

epriestley created this task.Feb 5 2014, 4:07 PM
epriestley raised the priority of this task from to Low.
epriestley updated the task description. (Show Details)
epriestley added a project: Passphrase.
epriestley added subscribers: epriestley, jadz0r.
btrahan added a subscriber: btrahan.Feb 21 2014, 8:30 PM

By transaction log do you mean PhabricatorUserLog ?

epriestley added a comment.Feb 21 2014, 8:39 PM

Oh, no -- on the passphrase object, it says stuff like:

epriestley created this credential.
epriestley updated the title from "X" to "Y".

...using ApplicationTransactions. The idea is to apply a new type of "edit" when you look at the secret, which doesn't change anything but just adds a transaction to the log:

epriestley examined the secret plaintext for this credential.

So roughly:

  • Define PassphraseCredentialTransaction::TYPE_LOOKEDATSECRET.
  • Add Editor support (e.g., the transaction always has an effect, but makes no changes).
  • In the dialog workflow before we show the secret, apply a transaction "edit".
btrahan claimed this task.Feb 25 2014, 10:25 PM
btrahan edited this Maniphest Task.Feb 25 2014, 10:48 PM
btrahan edited this Maniphest Task.Feb 25 2014, 10:58 PM
btrahan closed this task as Resolved.Feb 25 2014, 10:58 PM

Closed by commit rP64d15c344e31.

Phabricator · Built by Phacility