48 lines
1.8 KiB
PHP
48 lines
1.8 KiB
PHP
<?php
|
|
// Admin/v2/security/audit_logs.php
|
|
require_once __DIR__ . '/../../../connect.php';
|
|
|
|
// ── سجل تتبع لفحص كل ما يحدث ─────────────────────────
|
|
$debugFile = __DIR__ . '/fetch_debug.txt';
|
|
$debugLog = "[" . date('Y-m-d H:i:s') . "] ";
|
|
$debugLog .= "user_id=$user_id | role=$role | method={$_SERVER['REQUEST_METHOD']}";
|
|
file_put_contents($debugFile, $debugLog . "\n", FILE_APPEND);
|
|
|
|
// ── فحص الصلاحيات ────────────────────────────────────────
|
|
if ($role !== 'super_admin' && $role !== 'admin') {
|
|
$msg = "Unauthorized. role=$role, user_id=$user_id";
|
|
file_put_contents($debugFile, " → BLOCKED: $msg\n", FILE_APPEND);
|
|
jsonError($msg, 403);
|
|
}
|
|
|
|
try {
|
|
// فحص وجود الجدول
|
|
$tableExists = $con->query("SHOW TABLES LIKE 'admin_audit_log'")->rowCount() > 0;
|
|
|
|
if (!$tableExists) {
|
|
file_put_contents($debugFile, " → Table admin_audit_log NOT FOUND\n", FILE_APPEND);
|
|
jsonSuccess([], 'Audit log table not found');
|
|
}
|
|
|
|
$stmt = $con->prepare("
|
|
SELECT
|
|
l.id, l.admin_id, e.name as admin_name, l.action, l.table_name, l.record_id, l.details, l.created_at
|
|
FROM admin_audit_log l
|
|
LEFT JOIN employee e ON l.admin_id = e.id
|
|
ORDER BY l.created_at DESC
|
|
LIMIT 100
|
|
");
|
|
$stmt->execute();
|
|
$logs = $stmt->fetchAll(PDO::FETCH_ASSOC);
|
|
|
|
$count = count($logs);
|
|
file_put_contents($debugFile, " → SUCCESS: fetched $count logs\n", FILE_APPEND);
|
|
|
|
jsonSuccess($logs);
|
|
|
|
} catch (Exception $e) {
|
|
file_put_contents($debugFile, " → ERROR: " . $e->getMessage() . "\n", FILE_APPEND);
|
|
jsonError('Audit log query failed: ' . $e->getMessage(), 500);
|
|
}
|
|
?>
|