From 0d4f348f174cb5bef4ba4af5859b59a113d221f3 Mon Sep 17 00:00:00 2001
From: jim-p <jimp@pfsense.org>
Date: Wed, 10 Aug 2011 10:39:21 -0400
Subject: Log when a user tries to access an unauthorized page.

---
 etc/inc/authgui.inc | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/etc/inc/authgui.inc b/etc/inc/authgui.inc
index 9b1b8f0..d491927 100644
--- a/etc/inc/authgui.inc
+++ b/etc/inc/authgui.inc
@@ -62,6 +62,12 @@ if (!isAllowedPage($_SERVER['SCRIPT_NAME'])) {
 		$_SESSION['Post_Login'] = true;
 		require_once("functions.inc");
 		pfSenseHeader("/{$page}");
+
+		$username = empty($_SESSION["Username"]) ? "(system)" : $_SESSION['Username'];
+		if (!empty($_SERVER['REMOTE_ADDR']))
+			$username .= '@' . $_SERVER['REMOTE_ADDR'];
+		log_error("{$username} attempted to access {$_SERVER['SCRIPT_NAME']} but does not have access to that page. Redirecting to {$page}.");
+
 		exit;
 	} else {
 		display_error_form("201", gettext("No page assigned to this user! Click here to logout."));
-- 
cgit v1.1