Skip to content

Limit user information to RackAttack throttles

Mayra Cabrera requested to merge 62756-follow-up-user-info-in-auth-log into master

What does this MR do?

While browsing the auth.log on Kibana, I noticed that on Rack Attack blocks events we're not filling the Rack Attack discriminator, so user_id appears as nil on these cases. This MR limits the user info only to throttle_authenticated_api and throttle_authenticated_web.

Rack Attack log example:

Does this MR meet the acceptance criteria?


Related to #62756 (moved)

Edited by 🤖 GitLab Bot 🤖

Merge request reports