#!/usr/bin/env python """ Test script for audit reporting and analysis tools """ import os import sys import django from datetime import datetime, timedelta # Setup Django os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'branch_system.settings') django.setup() from django.contrib.auth import get_user_model from django.utils import timezone from django.db.models import Count from users.models import EnhancedAuditLog, AuditEventType, SecurityEventSeverity from users.audit_service import AuditService User = get_user_model() def test_audit_reporting(): """Test the audit reporting functionality""" print("๐Ÿงช Testing Audit Reporting and Analysis Tools...") try: # Create test user if doesn't exist test_user, created = User.objects.get_or_create( email='test@example.com', defaults={ 'first_name': 'Test', 'last_name': 'User', 'role': 'admin', 'is_active': True } ) if created: print(f"โœ… Created test user: {test_user.get_full_name()}") else: print(f"โœ… Using existing test user: {test_user.get_full_name()}") # Initialize audit service audit_service = AuditService() # Create sample audit logs sample_logs = [ { 'event_type': AuditEventType.LOGIN, 'action': 'user_login', 'module': 'authentication', 'description': 'User logged in successfully', 'ip_address': '192.168.1.100' }, { 'event_type': AuditEventType.PERMISSION_CHANGE, 'action': 'grant_permission', 'module': 'permissions', 'description': 'Permission granted to user', 'permission_checked': 'loans.view_applications', 'permission_granted': True }, { 'event_type': AuditEventType.DATA_ACCESS, 'action': 'view_client_list', 'module': 'clients', 'description': 'Accessed client list page' }, { 'event_type': AuditEventType.SECURITY_VIOLATION, 'action': 'failed_login_attempt', 'module': 'authentication', 'description': 'Multiple failed login attempts detected', 'is_security_event': True, 'severity': SecurityEventSeverity.HIGH }, { 'event_type': AuditEventType.EXPORT_DATA, 'action': 'export_client_data', 'module': 'reports', 'description': 'Exported client data to CSV' } ] # Create audit log entries created_logs = [] for log_data in sample_logs: log = EnhancedAuditLog.objects.create( user=test_user, timestamp=timezone.now() - timedelta(hours=len(created_logs)), **log_data ) created_logs.append(log) print(f"โœ… Created {len(created_logs)} sample audit log entries") # Test audit queries print("\n๐Ÿ“Š Testing audit queries...") # Test basic queries total_logs = EnhancedAuditLog.objects.count() print(f" Total audit logs: {total_logs}") security_events = EnhancedAuditLog.objects.filter(is_security_event=True).count() print(f" Security events: {security_events}") permission_checks = EnhancedAuditLog.objects.filter( permission_checked__isnull=False ).count() print(f" Permission checks: {permission_checks}") # Test date range queries last_24h = timezone.now() - timedelta(hours=24) recent_logs = EnhancedAuditLog.objects.filter(timestamp__gte=last_24h).count() print(f" Recent logs (24h): {recent_logs}") # Test user activity analysis user_activities = EnhancedAuditLog.objects.filter(user=test_user).count() print(f" Test user activities: {user_activities}") # Test module breakdown module_breakdown = EnhancedAuditLog.objects.values('module').annotate( count=Count('id') ).order_by('-count') print(f" Module breakdown: {dict(module_breakdown.values_list('module', 'count'))}") # Test event type breakdown event_breakdown = EnhancedAuditLog.objects.values('event_type').annotate( count=Count('id') ).order_by('-count') print(f" Event type breakdown: {dict(event_breakdown.values_list('event_type', 'count'))}") print("\nโœ… All audit reporting tests passed!") print("\n๐Ÿ“‹ Summary:") print(f" - Created {len(created_logs)} test audit entries") print(f" - Verified basic audit queries work correctly") print(f" - Confirmed security event filtering") print(f" - Tested permission usage tracking") print(f" - Validated date range filtering") print(f" - Checked user activity analysis") print("\n๐ŸŽฏ Next steps:") print(" 1. Access the audit dashboard at /users/audit/dashboard/") print(" 2. View audit trail at /users/audit/trail/") print(" 3. Analyze user activity at /users/audit/activity/") print(" 4. Check security compliance at /users/audit/security/") print(" 5. Review permission analytics at /users/audit/permissions/") return True except Exception as e: print(f"โŒ Error during audit reporting test: {str(e)}") import traceback traceback.print_exc() return False if __name__ == '__main__': success = test_audit_reporting() sys.exit(0 if success else 1)