Add event codes for tracking one login creation/migration events (#2541)

ministryofjustice · Mar 11, 2024 · d6e9489 · d6e9489
1 parent 1314127
commit d6e9489
Show file tree

Hide file tree

Showing 3 changed files with 19 additions and 4 deletions.
diff --git a/service-api/app/src/App/src/Service/Log/EventCodes.php b/service-api/app/src/App/src/Service/Log/EventCodes.php
@@ -48,4 +48,14 @@ class EventCodes
      * Activation key request is successful for partial match LPA type pfa
      */
     public const PARTIAL_MATCH_KEY_REQUEST_SUCCESS_LPA_TYPE_PFA = 'PARTIAL_MATCH_KEY_REQUEST_SUCCESS_LPA_TYPE_PFA';
+
+    /**
+     * A one login authentication transaction resulted in a username/password account being migrated.
+     */
+    public const AUTH_ONELOGIN_ACCOUNT_MIGRATED = 'AUTH_ONELOGIN_ACCOUNT_MIGRATED';
+
+    /**
+     * A one login authentication transaction resulted in a new local account being created.
+     */
+    public const AUTH_ONELOGIN_ACCOUNT_CREATED = 'AUTH_ONELOGIN_ACCOUNT_CREATED';
 }
diff --git a/service-api/app/src/App/src/Service/User/ResolveOAuthUser.php b/service-api/app/src/App/src/Service/User/ResolveOAuthUser.php
@@ -5,6 +5,7 @@
 namespace App\Service\User;
 
 use App\DataAccess\Repository\ActorUsersInterface;
+use App\Service\Log\EventCodes;
 use App\Exception\{ConflictException, CreationException, DateTimeException, NotFoundException, RandomException};
 use App\Service\Log\Output\Email;
 use DateTimeInterface;
@@ -116,8 +117,9 @@ public function attemptToFetchUserByEmail(string $identity, string $email): ?arr
             $this->logger->info(
                 'Migrated existing account with email {email} to OIDC login',
                 [
-                    'identity' => $identity,
-                    'email'    => new Email($email),
+                    'identity'   => $identity,
+                    'email'      => new Email($email),
+                    'event_code' => EventCodes::AUTH_ONELOGIN_ACCOUNT_MIGRATED,
                 ]
             );
         } catch (NotFoundException) {
@@ -142,8 +144,9 @@ public function addNewUser(string $identity, string $email): array
             $this->logger->info(
                 'Created new OIDC login for account with email {email}',
                 [
-                    'identity' => $identity,
-                    'email'    => new Email($email),
+                    'identity'   => $identity,
+                    'email'      => new Email($email),
+                    'event_code' => EventCodes::AUTH_ONELOGIN_ACCOUNT_CREATED,
                 ]
             );
 

diff --git a/terraform/environment/region/cloudwatch_metrics.tf b/terraform/environment/region/cloudwatch_metrics.tf
@@ -47,6 +47,8 @@ locals {
     "event_code.PARTIAL_MATCH_KEY_REQUEST_SUCCESS_LPA_TYPE_HW",
     "event_code.PARTIAL_MATCH_KEY_REQUEST_SUCCESS_LPA_TYPE_PFA",
     "event_code.ACTIVATION_KEY_REQUEST_REPLACEMENT_ATTORNEY",
+    "event_code.AUTH_ONELOGIN_ACCOUNT_MIGRATED",
+    "event_code.AUTH_ONELOGIN_ACCOUNT_CREATED",
   ]
 }