From 2da9d8f7d275b447c597dcdff306044f516e40fd Mon Sep 17 00:00:00 2001
From: iglocska <andras.iklody@gmail.com>
Date: Fri, 18 Feb 2022 11:47:33 +0100
Subject: [PATCH] new: [keycloak] log enrollment outcome in the audit log

---
 src/Model/Behavior/AuthKeycloakBehavior.php | 24 +++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/src/Model/Behavior/AuthKeycloakBehavior.php b/src/Model/Behavior/AuthKeycloakBehavior.php
index 12bb3e2..7cbb5ca 100644
--- a/src/Model/Behavior/AuthKeycloakBehavior.php
+++ b/src/Model/Behavior/AuthKeycloakBehavior.php
@@ -137,6 +137,30 @@ class AuthKeycloakBehavior extends Behavior
                 ]
             ]
         );
+        $logChange = [
+            'username' => $data['username'],
+            'individual_id' => $data['individual_id'],
+            'role_id' => $data['role_id']
+        ];
+        if (!$response->isOk()) {
+            $logChange['error_code'] = $response->getStatusCode();
+            $logChange['error_body'] = $response->getStringBody();
+            $this->_table->auditLogs()->insert([
+                'request_action' => 'enrollUser',
+                'model' => 'User',
+                'model_id' => 0,
+                'model_title' => __('Failed Keycloak enrollment for user {0}', $data['username']),
+                'changed' => $logChange
+            ]);
+        } else {
+            $this->_table->auditLogs()->insert([
+                'request_action' => 'enrollUser',
+                'model' => 'User',
+                'model_id' => 0,
+                'model_title' => __('Successful Keycloak enrollment for user {0}', $data['username']),
+                'changed' => $logChange
+            ]);
+        }
         return true;
     }