auth logging UI

closes CNVS-6069

This modifies the "view notifications" ui in the admin tools to use user
search, rather than just taking a canvas user id. It then generalizes
that user+daterange search form and re-uses it to implement ui for
viewing user login/logout audit logs.

test plan:
* Visit /accounts/X/admin_tools as a site admin, and verify that View Notifications still works
  * You should be able to search for users by id, name, email or sis id, just like the course roster page
  * Then you can select a date range and view their notification
    history
* On the same page, test the new "Logging" tab, you will need the auditors cassandra keyspace enabled
  * Just like with notifications, search for a user and date range (date range depends on another commit)
  * You should then see the user's login/logout history
* If an account admin without "view statistics" or "manage login"
  permissions visits the page, the "Logging" tab shouldn't appear

Change-Id: I79b15a52b82f23b7fea8eeae2c50437762892ccf
Reviewed-on: https://gerrit.instructure.com/22420
Reviewed-by: Brian Palmer <brianp@instructure.com>
Product-Review: Brian Palmer <brianp@instructure.com>
QA-Review: Brian Palmer <brianp@instructure.com>
Tested-by: Jenkins <jenkins@instructure.com>

Author: codekitchen

app/coffeescripts/bundles/account_admin_tools.coffee

@@ -21,40 +21,75 @@ require [
   'compiled/views/accounts/admin_tools/RestoreContentPaneView'
   'compiled/views/accounts/admin_tools/CourseSearchFormView'
   'compiled/views/accounts/admin_tools/CourseSearchResultsView'
+  'compiled/views/InputFilterView'
+  'compiled/views/accounts/UserView'
   'compiled/views/PaginatedCollectionView'
   'compiled/collections/CommMessageCollection'
+  'compiled/collections/AccountUserCollection'
+  'compiled/collections/AuthLoggingCollection'
   'compiled/views/accounts/admin_tools/CommMessagesContentPaneView'
-  'compiled/views/accounts/admin_tools/CommMessagesSearchFormView'
+  'compiled/views/accounts/admin_tools/AuthLoggingContentPaneView'
+  'compiled/views/accounts/admin_tools/UserDateRangeSearchFormView'
   'compiled/views/accounts/admin_tools/CommMessageItemView'
+  'compiled/views/accounts/admin_tools/AuthLoggingItemView'
   'jst/accounts/admin_tools/commMessagesSearchResults'
-], (CourseRestoreModel, AdminToolsView, RestoreContentPaneView, CourseSearchFormView, CourseSearchResultsView, PaginatedCollectionView, CommMessageCollection, CommMessagesContentPaneView, CommMessagesSearchFormView, CommMessageItemView, messagesSearchResultsTemplate) ->
+  'jst/accounts/admin_tools/authLoggingSearchResults'
+  'jst/accounts/usersList'
+], (CourseRestoreModel, AdminToolsView, RestoreContentPaneView, CourseSearchFormView, CourseSearchResultsView, InputFilterView, UserView, PaginatedCollectionView, CommMessageCollection, AccountUserCollection, AuthLoggingCollection, CommMessagesContentPaneView, AuthLoggingContentPaneView, UserDateRangeSearchFormView, CommMessageItemView, AuthLoggingItemView, messagesSearchResultsTemplate, authLoggingResultsTemplate, usersTemplate) ->
     # This is used by admin tools to display search results
     restoreModel = new CourseRestoreModel account_id: ENV.ACCOUNT_ID
 
     messages = new CommMessageCollection null,
       params: {perPage: 10}
-    formView = new CommMessagesSearchFormView
-      collection: messages
-    resultsView = new PaginatedCollectionView
-      template: messagesSearchResultsTemplate
-      itemView: CommMessageItemView
-      collection: messages
+    users = new AccountUserCollection null,
+      account_id: ENV.ACCOUNT_ID
     messagesContentView = new CommMessagesContentPaneView
-      searchForm: formView
-      resultsView: resultsView
+      searchForm: new UserDateRangeSearchFormView
+        formName: 'messages'
+        inputFilterView: new InputFilterView
+          collection: users
+        usersView: new PaginatedCollectionView
+          collection: users
+          itemView: UserView
+          buffer: 1000
+          template: usersTemplate
+        collection: messages
+      resultsView: new PaginatedCollectionView
+        template: messagesSearchResultsTemplate
+        itemView: CommMessageItemView
+        collection: messages
       collection: messages
+    loggingEvents = new AuthLoggingCollection null
+    loggingContentView = new AuthLoggingContentPaneView
+      searchForm: new UserDateRangeSearchFormView
+        formName: 'logging'
+        inputFilterView: new InputFilterView
+          collection: users
+        usersView: new PaginatedCollectionView
+          collection: users
+          itemView: UserView
+          buffer: 1000
+          template: usersTemplate
+        collection: loggingEvents
+      resultsView: new PaginatedCollectionView
+        template: authLoggingResultsTemplate
+        itemView: AuthLoggingItemView
+        collection: loggingEvents
+      collection: loggingEvents
 
       # Render tabs
     @app = new AdminToolsView
       el: "#content"
       tabs:
         courseRestore: ENV.PERMISSIONS.restore_course
         viewMessages: ENV.PERMISSIONS.view_messages
+        authLogging: ENV.PERMISSIONS.auth_logging
       restoreContentPaneView: new RestoreContentPaneView
                                 courseSearchFormView: new CourseSearchFormView
                                   model: restoreModel
                                 courseSearchResultsView: new CourseSearchResultsView
                                   model: restoreModel
       messageContentPaneView: messagesContentView
+      authLoggingContentPaneView: loggingContentView
 
     @app.render()

app/coffeescripts/collections/AccountUserCollection.coffee

@@ -0,0 +1,16 @@
+define [
+  'compiled/collections/PaginatedCollection'
+  'compiled/models/AccountUser'
+], (PaginatedCollection, AccountUser) ->
+
+  class AccountUserCollection extends PaginatedCollection
+
+    model: AccountUser
+
+    ##
+    # The account id of this user collection
+
+    @optionProperty 'account_id'
+
+    url: ->
+      "/api/v1/accounts/#{@options.account_id}/users"

app/coffeescripts/collections/AuthLoggingCollection.coffee

@@ -0,0 +1,26 @@
+#
+# Copyright (C) 2013 Instructure, Inc.
+#
+# This file is part of Canvas.
+#
+# Canvas is free software: you can redistribute it and/or modify it under
+# the terms of the GNU Affero General Public License as published by the Free
+# Software Foundation, version 3 of the License.
+#
+# Canvas is distributed in the hope that it will be useful, but WITHOUT ANY
+# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
+# A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
+# details.
+#
+# You should have received a copy of the GNU Affero General Public License along
+# with this program. If not, see <http://www.gnu.org/licenses/>.
+#
+
+define [
+  'compiled/collections/PaginatedCollection'
+], (PaginatedCollection) ->
+
+  class AuthLoggingCollection extends PaginatedCollection
+    url: ->
+      "/api/v1/audit/authentication/users/#{@options.params.user_id}"
+

app/coffeescripts/models/AccountUser.coffee

@@ -0,0 +1,7 @@
+define ['compiled/models/User'], (User) ->
+
+  class AccountUser extends User
+
+    defaults:
+      avatar_url: '/images/messages/avatar-50.png'
+

app/coffeescripts/views/CollectionView.coffee

@@ -88,7 +88,7 @@ define [
     # @api private
 
     removePreviousItems: (models) =>
-      @$list.children().each (index, el) =>
+      @$list?.children().each (index, el) =>
         @$(el).data('view')?.remove()
 
     renderOnReset: =>

app/coffeescripts/views/InputView.coffee

@@ -25,7 +25,7 @@ define [
       @setupElement()
 
     setupElement: ->
-      @lastValue = @el.value
+      @lastValue = @el?.value
       @modelAttribute = @$el.attr('name') or @options.modelAttribute
 
     attach: ->

app/coffeescripts/views/accounts/UserView.coffee

@@ -0,0 +1,27 @@
+define [
+  'Backbone'
+  'jst/accounts/user'
+], (Backbone, template) ->
+
+  class UserView extends Backbone.View
+
+    tagName: 'tr'
+
+    className: 'rosterUser al-hover-container'
+
+    template: template
+
+    events:
+      'click': 'click'
+
+    attach: ->
+      @model.collection.on 'selectedModelChange', @changeSelection
+
+    click: (e) =>
+      e.preventDefault()
+      @model.collection.trigger('selectedModelChange', @model)
+
+    changeSelection: (u) =>
+      if u == @model
+        setTimeout((() => @$el.addClass('selected')), 0)
+

app/coffeescripts/views/accounts/admin_tools/AdminToolsView.coffee

@@ -17,6 +17,7 @@ define [
     # @api custom backbone
     @child 'restoreContentPaneView', '#restoreContentPane'
     @child 'messageContentPaneView', '#commMessagesPane'
+    @child 'authLoggingContentPaneView', '#authLoggingPane'
     @optionProperty 'tabs'
 
     template: template
@@ -33,5 +34,6 @@ define [
       json = super
       json.courseRestore = @tabs.courseRestore
       json.viewMessages = @tabs.viewMessages
+      json.authLogging = @tabs.authLogging
       json
 

app/coffeescripts/views/accounts/admin_tools/AuthLoggingContentPaneView.coffee

@@ -0,0 +1,22 @@
+define [
+  'Backbone'
+  'jquery'
+  'jst/accounts/admin_tools/authLoggingContentPane'
+], (Backbone, $, template) ->
+  class AuthLoggingContentPaneView extends Backbone.View
+    @child 'searchForm', '#authLoggingSearchForm'
+    @child 'resultsView', '#authLoggingSearchResults'
+
+    template: template
+
+    attach: ->
+      @collection.on 'setParams', @fetch
+
+    fetch: =>
+      @collection.fetch().fail @onFail
+
+    onFail: =>
+      # Received a 404, empty the collection and don't let the paginated
+      # view try to fetch more.
+      @collection.reset()
+      @resultsView.detachScroll()

app/coffeescripts/views/accounts/admin_tools/AuthLoggingItemView.coffee

@@ -0,0 +1,21 @@
+define [
+  'Backbone'
+  'jst/accounts/admin_tools/authLoggingItem'
+  'i18n!auth_logging'
+], (Backbone, template, I18n) ->
+
+  class AuthLoggingItemView extends Backbone.View
+
+    tagName: 'tr'
+
+    className: 'logitem'
+
+    template: template
+
+    toJSON: ->
+      json = super
+      if json.event_type == "login"
+        json.event = I18n.t("login", "LOGIN")
+      else if json.event_type == "logout"
+        json.event = I18n.t("logout", "LOGOUT")
+      json