frostfs-node/internal/audit/request.go

package audit

import (
	"git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/session"
	crypto "git.frostfs.info/TrueCloudLab/frostfs-crypto"
	"git.frostfs.info/TrueCloudLab/frostfs-node/internal/logs"
	"git.frostfs.info/TrueCloudLab/frostfs-node/pkg/util/logger"
	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
	"go.uber.org/zap"
)

type Request interface {
	GetVerificationHeader() *session.RequestVerificationHeader
}

type Target interface {
	String() string
}

func LogRequest(log *logger.Logger, operation string, req Request, target Target, status bool) {
	var key []byte
	if req != nil {
		key = req.GetVerificationHeader().GetBodySignature().GetKey()
	}
	LogRequestWithKey(log, operation, key, target, status)
}

func LogRequestWithKey(log *logger.Logger, operation string, key []byte, target Target, status bool) {
	object, subject := NotDefined, NotDefined

	publicKey := crypto.UnmarshalPublicKey(key)
	if publicKey != nil {
		subject = ((*keys.PublicKey)(publicKey)).StringCompressed()
	}

	if target != nil {
		object = target.String()
	}

	log.Info(logs.AuditEventLogRecord,
		zap.String("operation", operation),
		zap.String("object", object),
		zap.String("subject", subject),
		zap.Bool("success", status))
}
[#1184] node: Add audit package Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com> 2024-06-18 09:38:39 +00:00			`package audit`

			`import (`
			`"git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/session"`
			`crypto "git.frostfs.info/TrueCloudLab/frostfs-crypto"`
			`"git.frostfs.info/TrueCloudLab/frostfs-node/internal/logs"`
			`"git.frostfs.info/TrueCloudLab/frostfs-node/pkg/util/logger"`
			`"github.com/nspcc-dev/neo-go/pkg/crypto/keys"`
			`"go.uber.org/zap"`
			`)`

			`type Request interface {`
			`GetVerificationHeader() *session.RequestVerificationHeader`
			`}`

			`type Target interface {`
			`String() string`
			`}`

			`func LogRequest(log *logger.Logger, operation string, req Request, target Target, status bool) {`
[#1258] audit: Fix panic in LogRequest method * Make `LogRequest` process `req=nil` to avoid panic. Signed-off-by: Airat Arifullin <a.arifullin@yadro.com> 2024-07-19 08:23:02 +00:00			`var key []byte`
			`if req != nil {`
			`key = req.GetVerificationHeader().GetBodySignature().GetKey()`
			`}`
			`LogRequestWithKey(log, operation, key, target, status)`
[#1184] node: Add audit package Signed-off-by: Dmitrii Stepanov <d.stepanov@yadro.com> 2024-06-18 09:38:39 +00:00			`}`

			`func LogRequestWithKey(log *logger.Logger, operation string, key []byte, target Target, status bool) {`
			`object, subject := NotDefined, NotDefined`

			`publicKey := crypto.UnmarshalPublicKey(key)`
			`if publicKey != nil {`
			`subject = ((*keys.PublicKey)(publicKey)).StringCompressed()`
			`}`

			`if target != nil {`
			`object = target.String()`
			`}`

			`log.Info(logs.AuditEventLogRecord,`
			`zap.String("operation", operation),`
			`zap.String("object", object),`
			`zap.String("subject", subject),`
			`zap.Bool("success", status))`
			`}`