Add handling for audit logs feature

Author: aq-ikhwa-tech

server/api-service/lowcoder-infra/src/main/java/org/lowcoder/infra/event/APICallEvent.java

@@ -0,0 +1,21 @@
+package org.lowcoder.infra.event;
+
+import lombok.Getter;
+import lombok.experimental.SuperBuilder;
+import org.springframework.util.MultiValueMap;
+
+@Getter
+@SuperBuilder
+public class APICallEvent extends AbstractEvent {
+
+    private final EventType type;
+    private final String httpMethod;
+    private final String requestUri;
+    private final MultiValueMap<String, String> headers;
+    private final MultiValueMap<String, String> queryParams;
+
+    @Override
+    public EventType getEventType() {
+        return EventType.API_CALL_EVENT;
+    }
+}

server/api-service/lowcoder-infra/src/main/java/org/lowcoder/infra/event/AbstractEvent.java

@@ -1,5 +1,6 @@
 package org.lowcoder.infra.event;
 
+import java.lang.reflect.Field;
 import java.util.HashMap;
 import java.util.Map;
 
@@ -14,9 +15,11 @@ public abstract class AbstractEvent implements LowcoderEvent
 {
     protected final String orgId;
     protected final String userId;
-    protected Map<String, String> details;
+	protected final String sessionHash;
+	protected final Boolean isAnonymous;
+    protected Map<String, Object> details;
 
-    public Map<String, String> details()
+    public Map<String, Object> details()
     {
     	return this.details;
     }
@@ -33,4 +36,20 @@ public B detail(String name, String value)
     		return self();
     	}
     }
+
+	public void populateDetails() {
+		if (details == null) {
+			details = new HashMap<>();
+		}
+		for(Field f : getClass().getDeclaredFields()){
+			Object value = null;
+			try {
+				f.setAccessible(Boolean.TRUE);
+				value = f.get(this);
+				details.put(f.getName(), value);
+			} catch (Exception e) {
+            }
+
+		}
+	}
 }

server/api-service/lowcoder-server/pom.xml

@@ -215,6 +215,10 @@
             <version>0.11.5</version>
             <scope>runtime</scope>
         </dependency>
+        <dependency>
+            <groupId>org.springframework</groupId>
+            <artifactId>spring-aspects</artifactId>
+        </dependency>
 
     </dependencies>
 

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/framework/filter/ReactiveRequestContextFilter.java

@@ -0,0 +1,18 @@
+package org.lowcoder.api.framework.filter;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.http.server.reactive.ServerHttpRequest;
+import org.springframework.web.server.ServerWebExchange;
+import org.springframework.web.server.WebFilter;
+import org.springframework.web.server.WebFilterChain;
+import reactor.core.publisher.Mono;
+
+@Configuration
+public class ReactiveRequestContextFilter implements WebFilter {
+    @Override
+    public Mono<Void> filter(ServerWebExchange exchange, WebFilterChain chain) {
+        ServerHttpRequest request = exchange.getRequest();
+        return chain.filter(exchange)
+                .contextWrite(ctx -> ctx.put(ReactiveRequestContextHolder.SERVER_HTTP_REQUEST, request));
+    }
+}

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/framework/filter/ReactiveRequestContextHolder.java

@@ -0,0 +1,13 @@
+package org.lowcoder.api.framework.filter;
+
+import org.springframework.http.server.reactive.ServerHttpRequest;
+import reactor.core.publisher.Mono;
+
+public class ReactiveRequestContextHolder {
+    public static final Class<ServerHttpRequest> SERVER_HTTP_REQUEST = ServerHttpRequest.class;
+
+    public static Mono<ServerHttpRequest> getRequest() {
+        return Mono.subscriberContext()
+                .map(ctx -> ctx.get(SERVER_HTTP_REQUEST));
+    }
+}

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/framework/plugin/data/PluginServerRequest.java

@@ -1,5 +1,13 @@
 package org.lowcoder.api.framework.plugin.data;
 
+import org.lowcoder.plugin.api.PluginEndpoint;
+import org.lowcoder.plugin.api.PluginEndpoint.Method;
+import org.lowcoder.plugin.api.data.EndpointRequest;
+import org.springframework.http.HttpCookie;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.HttpMethod;
+import org.springframework.web.reactive.function.server.ServerRequest;
+
 import java.net.URI;
 import java.security.Principal;
 import java.util.AbstractMap.SimpleEntry;
@@ -10,14 +18,6 @@
 import java.util.Map.Entry;
 import java.util.concurrent.CompletableFuture;
 
-import org.lowcoder.plugin.api.PluginEndpoint;
-import org.lowcoder.plugin.api.PluginEndpoint.Method;
-import org.lowcoder.plugin.api.data.EndpointRequest;
-import org.springframework.http.HttpCookie;
-import org.springframework.http.HttpHeaders;
-import org.springframework.http.HttpMethod;
-import org.springframework.web.reactive.function.server.ServerRequest;
-
 public class PluginServerRequest implements EndpointRequest 
 {
 	private URI uri;
@@ -27,6 +27,8 @@ public class PluginServerRequest implements EndpointRequest
 	private Map<String, List<Map.Entry<String, String>>> cookies;
 	private Map<String, Object> attributes;
 	private Map<String, String> pathVariables;
+
+	private Map<String, List<String>> queryParams;
 	private CompletableFuture<? extends Principal> principal;
 
 
@@ -36,6 +38,7 @@ public PluginServerRequest()
 		cookies = new HashMap<>();
 		attributes = new HashMap<>();
 		pathVariables = new HashMap<>();
+		queryParams = new HashMap<>();
 	}
 
 	public static PluginServerRequest fromServerRequest(ServerRequest request)
@@ -74,6 +77,14 @@ public static PluginServerRequest fromServerRequest(ServerRequest request)
 					psr.pathVariables.put(entry.getKey(), entry.getValue());
 				});
 		}
+
+		if (request.queryParams() != null)
+		{
+			request.queryParams().entrySet()
+					.forEach(entry -> {
+						psr.queryParams.put(entry.getKey(), entry.getValue());
+					});
+		}
 
 		psr.principal =  request.principal().toFuture();
 
@@ -125,6 +136,11 @@ public Map<String, Object> attributes() {
 	public Map<String, String> pathVariables() {
 		return pathVariables;
 	}
+
+	@Override
+	public Map<String, List<String>> queryParams() {
+		return queryParams;
+	}
 	@Override
 	public CompletableFuture<? extends Principal> principal() {
 		return principal;

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/home/SessionUserService.java

@@ -18,6 +18,8 @@ public interface SessionUserService {
     @NonEmptyMono
     Mono<OrgMember> getVisitorOrgMemberCache();
 
+    Mono<OrgMember> getVisitorOrgMemberCacheSilent();
+
     Mono<OrgMember> getVisitorOrgMember();
 
     Mono<Boolean> isAnonymousUser();
@@ -33,4 +35,6 @@ public interface SessionUserService {
     Mono<User> resolveSessionUserForJWT(Claims claims, String token);
 
     Mono<Boolean> tokenExist(String token);
+
+    Mono<String> getVisitorToken();
 }

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/home/SessionUserServiceImpl.java

@@ -1,6 +1,7 @@
 package org.lowcoder.api.home;
 
 import static org.lowcoder.sdk.constants.GlobalContext.CURRENT_ORG_MEMBER;
+import static org.lowcoder.sdk.constants.GlobalContext.VISITOR_TOKEN;
 import static org.lowcoder.sdk.exception.BizError.UNABLE_TO_FIND_VALID_ORG;
 import static org.lowcoder.sdk.util.ExceptionUtils.deferredError;
 import static org.lowcoder.sdk.util.JsonUtils.fromJsonQuietly;
@@ -74,6 +75,17 @@ public Mono<OrgMember> getVisitorOrgMemberCache() {
                 .switchIfEmpty(deferredError(UNABLE_TO_FIND_VALID_ORG, "UNABLE_TO_FIND_VALID_ORG"));
     }
 
+    @Override
+    public Mono<OrgMember> getVisitorOrgMemberCacheSilent() {
+        return Mono.deferContextual(contextView -> (Mono<OrgMember>) contextView.get(CURRENT_ORG_MEMBER))
+                .delayUntil(Mono::just);
+    }
+
+    @Override
+    public Mono<String> getVisitorToken() {
+        return Mono.deferContextual(contextView -> Mono.just(contextView.get(VISITOR_TOKEN)));
+    }
+
     @Override
     public Mono<OrgMember> getVisitorOrgMember() {
         return getVisitorId()

server/api-service/lowcoder-server/src/main/java/org/lowcoder/api/util/ApiCallEventPublisher.java

@@ -0,0 +1,89 @@
+package org.lowcoder.api.util;
+
+import com.google.common.hash.Hashing;
+import lombok.extern.slf4j.Slf4j;
+import org.aspectj.lang.ProceedingJoinPoint;
+import org.aspectj.lang.annotation.Around;
+import org.aspectj.lang.annotation.Aspect;
+import org.aspectj.lang.annotation.Pointcut;
+import org.lowcoder.api.framework.filter.ReactiveRequestContextHolder;
+import org.lowcoder.api.home.SessionUserService;
+import org.lowcoder.domain.organization.model.OrgMember;
+import org.lowcoder.infra.event.APICallEvent;
+import org.lowcoder.plugin.api.event.LowcoderEvent.EventType;
+import org.lowcoder.sdk.constants.Authentication;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationEventPublisher;
+import org.springframework.http.server.reactive.ServerHttpRequest;
+import org.springframework.stereotype.Component;
+import org.springframework.util.MultiValueMap;
+import reactor.core.publisher.Mono;
+
+import java.nio.charset.StandardCharsets;
+
+import static org.springframework.http.HttpHeaders.writableHttpHeaders;
+
+@Slf4j
+@Aspect
+@Component
+public class ApiCallEventPublisher {
+
+    @Autowired
+    private ApplicationEventPublisher applicationEventPublisher;
+    @Autowired
+    private SessionUserService sessionUserService;
+
+    @Pointcut("@annotation(org.springframework.web.bind.annotation.GetMapping)")
+    public void getMapping(){}
+
+    @Pointcut("@annotation(org.springframework.web.bind.annotation.PostMapping)")
+    public void postMapping(){}
+
+    @Pointcut("@annotation(org.springframework.web.bind.annotation.PutMapping)")
+    public void putMapping(){}
+
+    @Pointcut("@annotation(org.springframework.web.bind.annotation.DeleteMapping)")
+    public void deleteMapping(){}
+
+    @Pointcut("@annotation(org.springframework.web.bind.annotation.PatchMapping)")
+    public void patchMapping(){}
+
+    @Around("(getMapping() || postMapping() || putMapping() || deleteMapping() || patchMapping())")
+    public Object handleAPICallEvent(ProceedingJoinPoint joinPoint) throws Throwable {
+
+        return sessionUserService.getVisitorToken()
+                .zipWith(sessionUserService.getVisitorOrgMemberCacheSilent().defaultIfEmpty(OrgMember.NOT_EXIST))
+                .zipWith(ReactiveRequestContextHolder.getRequest())
+                .doOnNext(
+                        tuple -> {
+                            String token = tuple.getT1().getT1();
+                            OrgMember orgMember = tuple.getT1().getT2();
+                            ServerHttpRequest request = tuple.getT2();
+                            if (orgMember == OrgMember.NOT_EXIST) {
+                                return;
+                            }
+                            MultiValueMap<String, String> headers = writableHttpHeaders(request.getHeaders());
+                            headers.remove("Cookie");
+                            headers.remove("X-Real-IP");
+                            APICallEvent event = APICallEvent.builder()
+                                    .userId(orgMember.getUserId())
+                                    .orgId(orgMember.getOrgId())
+                                    .type(EventType.API_CALL_EVENT)
+                                    .isAnonymous(Authentication.isAnonymousUser(orgMember.getUserId()))
+                                    .sessionHash(Hashing.sha512().hashString(token, StandardCharsets.UTF_8).toString())
+                                    .httpMethod(request.getMethod().name())
+                                    .requestUri(request.getURI().getPath())
+                                    .headers(headers)
+                                    .queryParams(request.getQueryParams())
+                                    .build();
+                            event.populateDetails();
+                            applicationEventPublisher.publishEvent(event);
+                        })
+                .onErrorResume(throwable -> {
+                    log.error("handleAPICallEvent error {} for: {} ", joinPoint.getSignature().getName(), EventType.API_CALL_EVENT, throwable);
+                    return Mono.empty();
+                })
+                .then((Mono) joinPoint.proceed());
+    }
+
+}