2018-06-27 16:11:32 +03:00
|
|
|
-- This is taken from wai-logger and customised for our use
|
|
|
|
|
|
|
|
module Hasura.Server.Logging
|
2019-01-02 14:24:17 +03:00
|
|
|
( StartupLog(..)
|
|
|
|
, mkAccessLog
|
2018-07-20 10:22:46 +03:00
|
|
|
, getRequestHeader
|
2018-08-03 11:43:35 +03:00
|
|
|
, WebHookLog(..)
|
2018-09-27 14:22:49 +03:00
|
|
|
, WebHookLogger
|
2018-12-13 10:26:15 +03:00
|
|
|
, HttpException
|
2018-07-20 10:22:46 +03:00
|
|
|
) where
|
|
|
|
|
2018-10-25 12:37:57 +03:00
|
|
|
import Crypto.Hash (Digest, SHA1, hash)
|
2018-06-27 16:11:32 +03:00
|
|
|
import Data.Aeson
|
2018-10-25 12:37:57 +03:00
|
|
|
import Data.Bits (shift, (.&.))
|
|
|
|
import Data.ByteString.Char8 (ByteString)
|
|
|
|
import qualified Data.ByteString.Lazy as BL
|
|
|
|
import Data.Int (Int64)
|
|
|
|
import Data.List (find)
|
|
|
|
import qualified Data.TByteString as TBS
|
|
|
|
import qualified Data.Text as T
|
|
|
|
import qualified Data.Text.Encoding as TE
|
2018-06-27 16:11:32 +03:00
|
|
|
import Data.Time.Clock
|
2018-10-25 12:37:57 +03:00
|
|
|
import Data.Word (Word32)
|
|
|
|
import Network.Socket (SockAddr (..))
|
|
|
|
import Network.Wai (Request (..))
|
|
|
|
import System.ByteOrder (ByteOrder (..), byteOrder)
|
|
|
|
import Text.Printf (printf)
|
|
|
|
|
|
|
|
import qualified Data.ByteString.Char8 as BS
|
|
|
|
import qualified Data.CaseInsensitive as CI
|
|
|
|
import qualified Network.HTTP.Types as N
|
|
|
|
|
2019-01-02 14:24:17 +03:00
|
|
|
import Hasura.HTTP
|
2018-10-25 12:37:57 +03:00
|
|
|
import qualified Hasura.Logging as L
|
2018-06-27 16:11:32 +03:00
|
|
|
import Hasura.Prelude
|
2018-07-20 10:22:46 +03:00
|
|
|
import Hasura.RQL.Types.Error
|
2018-10-25 12:37:57 +03:00
|
|
|
import Hasura.RQL.Types.Permission
|
2018-07-17 16:23:23 +03:00
|
|
|
import Hasura.Server.Utils
|
2019-01-02 14:24:17 +03:00
|
|
|
|
|
|
|
data StartupLog
|
|
|
|
= StartupLog
|
|
|
|
{ slLogLevel :: !L.LogLevel
|
|
|
|
, slKind :: !T.Text
|
|
|
|
, slInfo :: !Value
|
|
|
|
} deriving (Show, Eq)
|
|
|
|
|
|
|
|
instance ToJSON StartupLog where
|
|
|
|
toJSON (StartupLog _ k info) =
|
|
|
|
object [ "kind" .= k
|
|
|
|
, "info" .= info
|
|
|
|
]
|
|
|
|
|
|
|
|
instance L.ToEngineLog StartupLog where
|
|
|
|
toEngineLog startupLog =
|
|
|
|
(slLogLevel startupLog, "startup", toJSON startupLog)
|
2018-09-27 14:22:49 +03:00
|
|
|
|
2018-08-03 11:43:35 +03:00
|
|
|
data WebHookLog
|
|
|
|
= WebHookLog
|
|
|
|
{ whlLogLevel :: !L.LogLevel
|
|
|
|
, whlStatusCode :: !(Maybe N.Status)
|
|
|
|
, whlUrl :: !T.Text
|
2018-12-03 14:19:08 +03:00
|
|
|
, whlMethod :: !N.StdMethod
|
2018-12-13 10:26:15 +03:00
|
|
|
, whlError :: !(Maybe HttpException)
|
2018-08-03 11:43:35 +03:00
|
|
|
, whlResponse :: !(Maybe T.Text)
|
|
|
|
} deriving (Show)
|
|
|
|
|
|
|
|
instance L.ToEngineLog WebHookLog where
|
|
|
|
toEngineLog webHookLog =
|
|
|
|
(whlLogLevel webHookLog, "webhook-log", toJSON webHookLog)
|
|
|
|
|
|
|
|
instance ToJSON WebHookLog where
|
2018-12-13 10:26:15 +03:00
|
|
|
toJSON whl =
|
|
|
|
object [ "status_code" .= (N.statusCode <$> whlStatusCode whl)
|
|
|
|
, "url" .= whlUrl whl
|
|
|
|
, "method" .= show (whlMethod whl)
|
|
|
|
, "http_error" .= whlError whl
|
|
|
|
, "response" .= whlResponse whl
|
|
|
|
]
|
2018-08-03 11:43:35 +03:00
|
|
|
|
2018-09-27 14:22:49 +03:00
|
|
|
type WebHookLogger = WebHookLog -> IO ()
|
|
|
|
|
2018-07-20 10:22:46 +03:00
|
|
|
data AccessLog
|
|
|
|
= AccessLog
|
2018-12-03 14:19:08 +03:00
|
|
|
{ alStatus :: !N.Status
|
|
|
|
, alMethod :: !T.Text
|
|
|
|
, alSource :: !T.Text
|
|
|
|
, alPath :: !T.Text
|
|
|
|
, alHttpVersion :: !N.HttpVersion
|
|
|
|
, alDetail :: !(Maybe Value)
|
|
|
|
, alRequestId :: !(Maybe T.Text)
|
|
|
|
, alHasuraUser :: !(Maybe UserVars)
|
|
|
|
, alQueryHash :: !(Maybe T.Text)
|
|
|
|
, alResponseSize :: !(Maybe Int64)
|
|
|
|
, alResponseTime :: !(Maybe Double)
|
2018-06-27 16:11:32 +03:00
|
|
|
} deriving (Show, Eq)
|
|
|
|
|
2018-07-20 10:22:46 +03:00
|
|
|
instance L.ToEngineLog AccessLog where
|
|
|
|
toEngineLog accessLog =
|
|
|
|
(L.LevelInfo, "http-log", toJSON accessLog)
|
|
|
|
|
|
|
|
instance ToJSON AccessLog where
|
2018-10-25 12:37:57 +03:00
|
|
|
toJSON (AccessLog st met src path hv det reqId hUser qh rs rt) =
|
2018-06-27 16:11:32 +03:00
|
|
|
object [ "status" .= N.statusCode st
|
|
|
|
, "method" .= met
|
|
|
|
, "ip" .= src
|
|
|
|
, "url" .= path
|
|
|
|
, "http_version" .= show hv
|
|
|
|
, "detail" .= det
|
|
|
|
, "request_id" .= reqId
|
2018-10-25 12:37:57 +03:00
|
|
|
, "user" .= hUser
|
2018-06-27 16:11:32 +03:00
|
|
|
, "query_hash" .= qh
|
|
|
|
, "response_size" .= rs
|
|
|
|
, "query_execution_time" .= rt
|
|
|
|
]
|
|
|
|
|
|
|
|
data LogDetail
|
|
|
|
= LogDetail
|
2018-07-20 10:22:46 +03:00
|
|
|
{ _ldQuery :: !TBS.TByteString
|
|
|
|
, _ldError :: !Value
|
2018-06-27 16:11:32 +03:00
|
|
|
} deriving (Show, Eq)
|
|
|
|
|
|
|
|
instance ToJSON LogDetail where
|
|
|
|
toJSON (LogDetail q e) =
|
|
|
|
object [ "request" .= q
|
|
|
|
, "error" .= e
|
|
|
|
]
|
|
|
|
|
2018-07-20 10:22:46 +03:00
|
|
|
ravenLogGen
|
|
|
|
:: (BL.ByteString, Either QErr BL.ByteString)
|
|
|
|
-> (N.Status, Maybe Value, Maybe T.Text, Maybe Int64)
|
|
|
|
ravenLogGen (reqBody, res) =
|
|
|
|
(status, toJSON <$> logDetail, Just qh, Just size)
|
2018-06-27 16:11:32 +03:00
|
|
|
where
|
2018-07-20 10:22:46 +03:00
|
|
|
status = either qeStatus (const N.status200) res
|
|
|
|
logDetail = either (Just . qErrToLogDetail) (const Nothing) res
|
|
|
|
reqBodyTxt = TBS.fromLBS reqBody
|
|
|
|
qErrToLogDetail qErr =
|
|
|
|
LogDetail reqBodyTxt $ toJSON qErr
|
|
|
|
size = BL.length $ either encode id res
|
|
|
|
qh = T.pack . show $ sha1 reqBody
|
|
|
|
sha1 :: BL.ByteString -> Digest SHA1
|
|
|
|
sha1 = hash . BL.toStrict
|
|
|
|
|
|
|
|
mkAccessLog
|
2018-10-25 12:37:57 +03:00
|
|
|
:: Maybe UserInfo -- may not have been resolved
|
|
|
|
-> Request
|
2018-07-20 10:22:46 +03:00
|
|
|
-> (BL.ByteString, Either QErr BL.ByteString)
|
2018-06-27 16:11:32 +03:00
|
|
|
-> Maybe (UTCTime, UTCTime)
|
2018-07-20 10:22:46 +03:00
|
|
|
-> AccessLog
|
2018-10-25 12:37:57 +03:00
|
|
|
mkAccessLog userInfoM req r mTimeT =
|
2018-07-20 10:22:46 +03:00
|
|
|
AccessLog
|
2018-10-25 12:37:57 +03:00
|
|
|
{ alStatus = status
|
|
|
|
, alMethod = bsToTxt $ requestMethod req
|
|
|
|
, alSource = bsToTxt $ getSourceFromFallback req
|
|
|
|
, alPath = bsToTxt $ rawPathInfo req
|
|
|
|
, alHttpVersion = httpVersion req
|
|
|
|
, alDetail = mDetail
|
|
|
|
, alRequestId = bsToTxt <$> getRequestId req
|
|
|
|
, alHasuraUser = userVars <$> userInfoM
|
2018-07-20 10:22:46 +03:00
|
|
|
, alResponseSize = size
|
2018-09-27 15:32:21 +03:00
|
|
|
, alResponseTime = realToFrac <$> diffTime
|
2018-10-25 12:37:57 +03:00
|
|
|
, alQueryHash = queryHash
|
2018-06-27 16:11:32 +03:00
|
|
|
}
|
|
|
|
where
|
2018-07-20 10:22:46 +03:00
|
|
|
(status, mDetail, queryHash, size) = ravenLogGen r
|
2018-06-27 16:11:32 +03:00
|
|
|
diffTime = case mTimeT of
|
|
|
|
Nothing -> Nothing
|
|
|
|
Just (t1, t2) -> Just $ diffUTCTime t2 t1
|
|
|
|
|
|
|
|
getSourceFromSocket :: Request -> ByteString
|
|
|
|
getSourceFromSocket = BS.pack . showSockAddr . remoteHost
|
|
|
|
|
|
|
|
getSourceFromFallback :: Request -> ByteString
|
|
|
|
getSourceFromFallback req = fromMaybe (getSourceFromSocket req) $ getSource req
|
|
|
|
|
|
|
|
getSource :: Request -> Maybe ByteString
|
|
|
|
getSource req = addr
|
|
|
|
where
|
|
|
|
maddr = find (\x -> fst x `elem` ["x-real-ip", "x-forwarded-for"]) hdrs
|
|
|
|
addr = fmap snd maddr
|
|
|
|
hdrs = requestHeaders req
|
|
|
|
|
|
|
|
requestIdHeader :: T.Text
|
|
|
|
requestIdHeader = "x-request-id"
|
|
|
|
|
|
|
|
getRequestId :: Request -> Maybe ByteString
|
|
|
|
getRequestId = getRequestHeader $ TE.encodeUtf8 requestIdHeader
|
|
|
|
|
|
|
|
getRequestHeader :: ByteString -> Request -> Maybe ByteString
|
|
|
|
getRequestHeader hdrName req = snd <$> mHeader
|
|
|
|
where
|
|
|
|
mHeader = find (\h -> fst h == CI.mk hdrName) hdrs
|
|
|
|
hdrs = requestHeaders req
|
|
|
|
|
|
|
|
-- | A type for IP address in numeric string representation.
|
|
|
|
type NumericAddress = String
|
|
|
|
|
|
|
|
showIPv4 :: Word32 -> Bool -> NumericAddress
|
|
|
|
showIPv4 w32 little
|
|
|
|
| little = show b1 ++ "." ++ show b2 ++ "." ++ show b3 ++ "." ++ show b4
|
|
|
|
| otherwise = show b4 ++ "." ++ show b3 ++ "." ++ show b2 ++ "." ++ show b1
|
|
|
|
where
|
|
|
|
t1 = w32
|
|
|
|
t2 = shift t1 (-8)
|
|
|
|
t3 = shift t2 (-8)
|
|
|
|
t4 = shift t3 (-8)
|
|
|
|
b1 = t1 .&. 0x000000ff
|
|
|
|
b2 = t2 .&. 0x000000ff
|
|
|
|
b3 = t3 .&. 0x000000ff
|
|
|
|
b4 = t4 .&. 0x000000ff
|
|
|
|
|
|
|
|
showIPv6 :: (Word32,Word32,Word32,Word32) -> String
|
|
|
|
showIPv6 (w1,w2,w3,w4) =
|
|
|
|
printf "%x:%x:%x:%x:%x:%x:%x:%x" s1 s2 s3 s4 s5 s6 s7 s8
|
|
|
|
where
|
|
|
|
(s1,s2) = split16 w1
|
|
|
|
(s3,s4) = split16 w2
|
|
|
|
(s5,s6) = split16 w3
|
|
|
|
(s7,s8) = split16 w4
|
|
|
|
split16 w = (h1,h2)
|
|
|
|
where
|
|
|
|
h1 = shift w (-16) .&. 0x0000ffff
|
|
|
|
h2 = w .&. 0x0000ffff
|
|
|
|
|
|
|
|
-- | Convert 'SockAddr' to 'NumericAddress'. If the address is
|
|
|
|
-- IPv4-embedded IPv6 address, the IPv4 is extracted.
|
|
|
|
showSockAddr :: SockAddr -> NumericAddress
|
|
|
|
-- HostAddr is network byte order.
|
|
|
|
showSockAddr (SockAddrInet _ addr4) = showIPv4 addr4 (byteOrder == LittleEndian)
|
|
|
|
-- HostAddr6 is host byte order.
|
|
|
|
showSockAddr (SockAddrInet6 _ _ (0,0,0x0000ffff,addr4) _) = showIPv4 addr4 False
|
|
|
|
showSockAddr (SockAddrInet6 _ _ (0,0,0,1) _) = "::1"
|
|
|
|
showSockAddr (SockAddrInet6 _ _ addr6 _) = showIPv6 addr6
|
|
|
|
showSockAddr _ = "unknownSocket"
|