Notify superusers based on records in action log

[pdurbin]

Original suggestion:

"Have a record in the audit log of the requested password resets with the system notifying the administrator of suspicious behavior when there appears to be an attack going on." -- @eaquigley at #2030 (comment)

This is a great idea but needs further clarification and design.

• The action log is quite chatty. How much of it should we expose to superusers via notifications?

Also, only "commands" are logged to the action log so we would have to convert password reset to use the Command pattern. This can be done but is non-trivial.

[pdurbin]

Also, only "commands" are logged to the action log so we would have to convert password reset to use the Command pattern.

@scolapasta explained that this is not the case. Password reset actions, even though they don't use the Command pattern, are logged. You can find them with select * from actionlogrecord where actiontype = 'BuiltinUser'; as I mentioned at #2879 (comment)

[pdurbin]

@bmckinney you seem interested in making good use of the actionlogrecord table. Do you or @pameyer have opinions on this issue? Is it something you'd like to tackle? @pameyer and I chatted a bit about this at http://irclog.iq.harvard.edu/dataverse/2016-06-14#i_36923

[pdurbin]

This seem related to #2130 and I wonder these notifications would make sense to add to the dashboard being designed at https://trello.com/c/kDSgIVVS/8-administrative-dashboard-4-7 as part of #840.

[pdurbin]

I'm talking to myself in this issue. 😄 If anyone wants this, please let me know. Closing.