github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-02-14 17:49:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
paralus/pkg/audit/events.go
Dhruv Jain ca4e2c6131 refactor: remove unused func/var/methods (#315) 
Signed-off-by: Dhruv Jain <92215138+jaydee029@users.noreply.github.com>
2024-04-25 12:16:15 +05:30

318 lines
7.4 KiB
Go
Raw Permalink Blame History

package audit
import (
"context"
"fmt"
"net/http"
"strings"
"time"
commonv3 "github.com/paralus/paralus/proto/types/commonpb/v3"
"go.uber.org/zap"
"google.golang.org/grpc/metadata"
)
type (
// EventVersion is the version of event
EventVersion string
// EventOrigin is the origin of the event
EventOrigin string
// EventCategory is the category of the event
EventCategory string
// EventTopic is the topic to which event has to be published
EventTopic string
)
// Audit events constants
const (
RawLogsEventsTopic EventTopic = "dp-raw-logs-events"
VersionV1 EventVersion = "1.0"
OriginCore EventOrigin = "core"
OriginCluster EventOrigin = "cluster"
AuditCategory EventCategory = "AUDIT"
)
// EventActorAccount Event's initiator account
type EventActorAccount struct {
Username string `json:"username"`
}
// EventActor Event's initiator
type EventActor struct {
Type string `json:"type"`
// Add org and partner id once we have multi-org support
// PartnerID string `json:"partner_id"`
// OrganizationID string `json:"organization_id"`
Account EventActorAccount `json:"account"`
Groups []string `json:"groups"`
}
// EventClient Event's client
type EventClient struct {
Type string `json:"type"`
IP string `json:"ip"`
UserAgent string `json:"user_agent"`
Host string `json:"host"`
}
// EventDetail Event's detail
type EventDetail struct {
Message string `json:"message"`
Meta map[string]string `json:"meta"`
}
// Event is struct to hold event data
type Event struct {
Version EventVersion `json:"version"`
Category EventCategory `json:"category"`
Origin EventOrigin `json:"origin"`
Portal string `json:"portal"`
Type string `json:"type"`
Project string `json:"project"`
Actor *EventActor `json:"actor"`
Client *EventClient `json:"client"`
Detail *EventDetail `json:"detail"`
Timestamp string `json:"timestamp"`
}
type createEventOptions struct {
version EventVersion
origin EventOrigin
category EventCategory
topic EventTopic
project string
ctx context.Context
accountID string
username string
groups []string
}
// WithVersion sets version for audit event
func WithVersion(version EventVersion) CreateEventOption {
return func(opts *createEventOptions) {
opts.version = version
}
}
// WithOrigin sets origin for audit event
func WithOrigin(origin EventOrigin) CreateEventOption {
return func(opts *createEventOptions) {
opts.origin = origin
}
}
// WithCategory sets category for audit event
func WithCategory(category EventCategory) CreateEventOption {
return func(opts *createEventOptions) {
opts.category = category
}
}
// WithTopic sets topic for audit event
func WithTopic(topic EventTopic) CreateEventOption {
return func(opts *createEventOptions) {
opts.topic = topic
}
}
// WithProject sets project id for audit event
func WithProject(project string) CreateEventOption {
return func(opts *createEventOptions) {
opts.project = project
}
}
// WithContext sets context for audit event
func WithContext(ctx context.Context) CreateEventOption {
return func(opts *createEventOptions) {
opts.ctx = ctx
}
}
// WithAccountID sets account id for audit event
func WithAccountID(accountID string) CreateEventOption {
return func(opts *createEventOptions) {
opts.accountID = accountID
}
}
// WithUsername sets username for audit event
func WithUsername(username string) CreateEventOption {
return func(opts *createEventOptions) {
opts.username = username
}
}
// WithGroups sets groups for audit event
func WithGroups(groups []string) CreateEventOption {
return func(opts *createEventOptions) {
opts.groups = groups
}
}
// CreateEventOption is the functional arg for creating audit event
type CreateEventOption func(opts *createEventOptions)
// CreateEvent creates an event
func CreateEvent(al *zap.Logger, event *Event, opts ...CreateEventOption) error {
cOpts := createEventOptions{}
for _, opt := range opts {
opt(&cOpts)
}
t := time.Now()
dateArray := strings.Fields(t.String())
timestamp := fmt.Sprintf("%d-%02d-%02dT%02d:%02d:%02d.%06d%s",
t.Year(), t.Month(), t.Day(),
t.Hour(), t.Minute(), t.Second(), t.Nanosecond(), dateArray[2])
event.Timestamp = timestamp
event.Version = cOpts.version
event.Category = cOpts.category
event.Origin = cOpts.origin
event.Project = cOpts.project
if event.Client == nil {
event.Client = getEventClientFromContext(cOpts.ctx)
}
if event.Actor == nil {
event.Actor = getActor(cOpts)
}
go WriteEvent(event, al)
return nil
}
func getEventClientFromContext(ctx context.Context) *EventClient {
if ctx == nil {
return nil
}
md, _ := metadata.FromIncomingContext(ctx)
var ua, h, ip, requestType string
userAgents := md.Get("grpcgateway-user-agent")
if len(userAgents) > 0 {
ua = userAgents[0]
if strings.HasPrefix(ua, "RCTL") {
requestType = "CLI"
} else {
requestType = "BROWSER"
}
} else {
ua = "-" // Not available
requestType = "-" // Not available
}
hosts := md.Get("x-forwarded-host")
if len(hosts) > 0 {
h = hosts[0]
} else {
h = "-" // Not available
}
ips := md.Get("x-forwarded-for")
if len(ips) > 0 {
ip = ips[0]
} else {
ip = "-" // Not available
}
return &EventClient{
Type: requestType,
UserAgent: ua,
Host: h,
IP: ip,
}
}
func getActor(cOpts createEventOptions) *EventActor {
account := EventActorAccount{
Username: cOpts.username,
}
return &EventActor{
Type: "USER",
Account: account,
Groups: cOpts.groups,
}
}
func GetActorFromSessionData(sd *commonv3.SessionData) *EventActor {
username := sd.GetUsername()
account := EventActorAccount{
Username: username,
}
groups := sd.Groups
return &EventActor{
Type: "USER",
Account: account,
Groups: groups,
}
}
func GetClientFromRequest(r *http.Request) *EventClient {
return &EventClient{
Type: "BROWSER",
IP: r.Header.Get("X-Forwarded-For"),
UserAgent: r.UserAgent(),
Host: r.Host,
}
}
func GetClientFromSessionData(sd *commonv3.SessionData) *EventClient {
return &EventClient{
Type: "BROWSER",
IP: sd.GetClientIp(),
UserAgent: sd.GetClientUa(),
Host: sd.GetClientHost(),
}
}
func GetEvent(r *http.Request, sd *commonv3.SessionData, detail *EventDetail, eventType string, project string) *Event {
event := &Event{
Actor: GetActorFromSessionData(sd),
Client: GetClientFromRequest(r),
Detail: detail,
Type: eventType,
Portal: "OPS",
Project: project,
}
return event
}
func CreateV1Event(al *zap.Logger, sd *commonv3.SessionData, detail *EventDetail, eventType string, project string) error {
actor := GetActorFromSessionData(sd)
client := GetClientFromSessionData(sd)
event := &Event{
Version: VersionV1,
Category: AuditCategory,
Origin: OriginCore,
Actor: actor,
Client: client,
Detail: detail,
Type: eventType,
Portal: "OPS",
Project: project,
}
go WriteEvent(event, al)
return nil
}
func WriteEvent(event *Event, al *zap.Logger) {
al.Info(
"audit",
zap.String("version", string(event.Version)),
zap.String("category", string(event.Category)),
zap.String("origin", string(event.Origin)),
zap.Reflect("actor", event.Actor),
zap.Reflect("client", event.Client),
zap.Reflect("detail", event.Detail),
zap.String("type", event.Type),
zap.String("portal", event.Portal),
zap.String("project", event.Project),
)
}
Reference in New Issue View Git Blame Copy Permalink