Merge pull request #2847 from sciencehistory/improve_turnstile_logging

Add logging of turnstile pass, and include protected url in logging
sciencehistory · Jan 16, 2025 · 7900cda · 7900cda
2 parents cd96b8e + 1b0c116
commit 7900cda
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/app/controllers/bot_detect_controller.rb b/app/controllers/bot_detect_controller.rb
@@ -182,9 +182,10 @@ def verify_challenge
     if result["success"]
       # mark it as succesful in session, and record time. They do need a session/cookies
       # to get through the challenge.
+      Rails.logger.info("#{self.class.name}: Cloudflare Turnstile validation passed api (#{request.remote_ip}, #{request.user_agent}): #{request.url}")
       session[self.session_passed_key] = Time.now.utc.iso8601
     else
-      Rails.logger.warn("#{self.class.name}: Cloudflare Turnstile validation failed (#{request.remote_ip}, #{request.user_agent}): #{result}")
+      Rails.logger.warn("#{self.class.name}: Cloudflare Turnstile validation failed (#{request.remote_ip}, #{request.user_agent}): #{result}: #{request.url}")
     end
 
     # let's just return the whole thing to client? Is there anything confidential there?