Add Audit Event when the 2FA of a user is disabled

With #26149 (closed), we are sending out an email to the user when their 2FA is disabled.

Along similar lines, we also need to an add an Audit event when the 2FA of a user is disabled.

added Category:Audit Events devopsmanage groupcompliance typefeature labels

mentioned in merge request !39572 (merged)

FYI @mattgonzales

Thanks so much for the tag @manojmj

In !39572 (diffs, comment 398506380) was discussed the need of wrapping disable_two_factor! inside user's UpdateService, addition of audit_events was mentioned as the main reason, in case we evaluate that audit_events for 2fa change won't be called from UpdateService, we may consider removing this block wrapper.

mentioned in issue #240838 (closed)

mentioned in issue #243451 (closed)

added sectiondev label

mentioned in issue #246442 (closed)

mentioned in issue #249044 (closed)

added audit_events_list label

marked #364148 (closed) as a duplicate of this issue

marked this issue as related to #364148 (closed)

added to epic &476

assigned to @anton

mentioned in merge request !89598 (merged)

mentioned in merge request gitlab-com/www-gitlab-com!105856 (merged)

mentioned in issue gitlab-org/manage/general-discussion#17496

changed milestone to %15.1

The respective MR for this issue has been merged and is live in GitLab.com!

I've just finished my testing and it works as expected.

This will be in the 15.1 release. Closing!

closed