EdgeAPI/internal/rpc/services/service_http_access_log.go

package services

import (
	"context"
	"github.com/TeaOSLab/EdgeAPI/internal/accesslogs"
	"github.com/TeaOSLab/EdgeAPI/internal/db/models"
	rpcutils "github.com/TeaOSLab/EdgeAPI/internal/rpc/utils"
	"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
)

// HTTPAccessLogService 访问日志相关服务
type HTTPAccessLogService struct {
	BaseService
}

// CreateHTTPAccessLogs 创建访问日志
func (this *HTTPAccessLogService) CreateHTTPAccessLogs(ctx context.Context, req *pb.CreateHTTPAccessLogsRequest) (*pb.CreateHTTPAccessLogsResponse, error) {
	// 校验请求
	_, _, _, err := rpcutils.ValidateRequest(ctx, rpcutils.UserTypeNode)
	if err != nil {
		return nil, err
	}

	if len(req.HttpAccessLogs) == 0 {
		return &pb.CreateHTTPAccessLogsResponse{}, nil
	}

	tx := this.NullTx()

	err = models.SharedHTTPAccessLogDAO.CreateHTTPAccessLogs(tx, req.HttpAccessLogs)
	if err != nil {
		return nil, err
	}

	// 发送到访问日志策略
	policyId, err := models.SharedHTTPAccessLogPolicyDAO.FindCurrentPublicPolicyId(tx)
	if err != nil {
		return nil, err
	}
	if policyId > 0 {
		err = accesslogs.SharedStorageManager.Write(policyId, req.HttpAccessLogs)
		if err != nil {
			return nil, err
		}
	}

	return &pb.CreateHTTPAccessLogsResponse{}, nil
}

// ListHTTPAccessLogs 列出单页访问日志
func (this *HTTPAccessLogService) ListHTTPAccessLogs(ctx context.Context, req *pb.ListHTTPAccessLogsRequest) (*pb.ListHTTPAccessLogsResponse, error) {
	// 校验请求
	_, userId, err := this.ValidateAdminAndUser(ctx, 0, 0)
	if err != nil {
		return nil, err
	}

	tx := this.NullTx()

	// 检查服务ID
	if userId > 0 {
		if req.UserId > 0 && userId != req.UserId {
			return nil, this.PermissionError()
		}

		// 这里不用担心serverId <= 0 的情况，因为如果userId>0，则只会查询当前用户下的服务，不会产生安全问题
		if req.ServerId > 0 {
			err = models.SharedServerDAO.CheckUserServer(tx, userId, req.ServerId)
			if err != nil {
				return nil, err
			}
		}
	}

	accessLogs, requestId, hasMore, err := models.SharedHTTPAccessLogDAO.ListAccessLogs(tx, req.RequestId, req.Size, req.Day, req.HourFrom, req.HourTo, req.NodeClusterId, req.NodeId, req.ServerId, req.Reverse, req.HasError, req.FirewallPolicyId, req.FirewallRuleGroupId, req.FirewallRuleSetId, req.HasFirewallPolicy, req.UserId, req.Keyword, req.Ip, req.Domain)
	if err != nil {
		return nil, err
	}

	result := []*pb.HTTPAccessLog{}
	var pbNodeMap = map[int64]*pb.Node{}
	var pbClusterMap = map[int64]*pb.NodeCluster{}
	for _, accessLog := range accessLogs {
		a, err := accessLog.ToPB()
		if err != nil {
			return nil, err
		}

		// 节点 & 集群
		pbNode, ok := pbNodeMap[a.NodeId]
		if ok {
			a.Node = pbNode
		} else {
			node, err := models.SharedNodeDAO.FindEnabledNode(tx, a.NodeId)
			if err != nil {
				return nil, err
			}
			if node != nil {
				pbNode = &pb.Node{Id: int64(node.Id), Name: node.Name}

				var clusterId = int64(node.ClusterId)
				pbCluster, ok := pbClusterMap[clusterId]
				if ok {
					pbNode.NodeCluster = pbCluster
				} else {
					cluster, err := models.SharedNodeClusterDAO.FindEnabledNodeCluster(tx, clusterId)
					if err != nil {
						return nil, err
					}
					if cluster != nil {
						pbCluster = &pb.NodeCluster{
							Id:   int64(cluster.Id),
							Name: cluster.Name,
						}
						pbNode.NodeCluster = pbCluster
						pbClusterMap[clusterId] = pbCluster
					}
				}

				pbNodeMap[a.NodeId] = pbNode
				a.Node = pbNode
			}
		}

		result = append(result, a)
	}

	return &pb.ListHTTPAccessLogsResponse{
		HttpAccessLogs: result,
		AccessLogs:     result, // TODO 仅仅为了兼容，当用户节点版本大于0.0.8时可以删除
		HasMore:        hasMore,
		RequestId:      requestId,
	}, nil
}

// FindHTTPAccessLog 查找单个日志
func (this *HTTPAccessLogService) FindHTTPAccessLog(ctx context.Context, req *pb.FindHTTPAccessLogRequest) (*pb.FindHTTPAccessLogResponse, error) {
	// 校验请求
	_, userId, err := this.ValidateAdminAndUser(ctx, 0, 0)
	if err != nil {
		return nil, err
	}

	tx := this.NullTx()

	accessLog, err := models.SharedHTTPAccessLogDAO.FindAccessLogWithRequestId(tx, req.RequestId)
	if err != nil {
		return nil, err
	}
	if accessLog == nil {
		return &pb.FindHTTPAccessLogResponse{HttpAccessLog: nil}, nil
	}

	// 检查权限
	if userId > 0 {
		err = models.SharedServerDAO.CheckUserServer(tx, userId, int64(accessLog.ServerId))
		if err != nil {
			return nil, err
		}
	}

	a, err := accessLog.ToPB()
	if err != nil {
		return nil, err
	}
	return &pb.FindHTTPAccessLogResponse{HttpAccessLog: a}, nil
}
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+								package services
 								import (
 									"context"
-												实现基本的访问日志策略

											
										
										
											2021-07-29 16:50:59 +08:00
+									"github.com/TeaOSLab/EdgeAPI/internal/accesslogs"
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+									"github.com/TeaOSLab/EdgeAPI/internal/db/models"
 									rpcutils "github.com/TeaOSLab/EdgeAPI/internal/rpc/utils"
 									"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
 								)
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+								// HTTPAccessLogService 访问日志相关服务
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+								type HTTPAccessLogService struct {
-												[API节点]支持HTTP API

											
										
										
											2021-01-01 20:49:09 +08:00
+									BaseService
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+								}
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+								// CreateHTTPAccessLogs 创建访问日志
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+								func (this *HTTPAccessLogService) CreateHTTPAccessLogs(ctx context.Context, req *pb.CreateHTTPAccessLogsRequest) (*pb.CreateHTTPAccessLogsResponse, error) {
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+									// 校验请求
-												实现数据看板--用户

											
										
										
											2021-07-11 18:05:57 +08:00
+									_, _, _, err := rpcutils.ValidateRequest(ctx, rpcutils.UserTypeNode)
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+									if err != nil {
 										return nil, err
 									}
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+									if len(req.HttpAccessLogs) == 0 {
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+										return &pb.CreateHTTPAccessLogsResponse{}, nil
 									}
-												所有数据库相关的操作支持事务

											
										
										
											2021-01-01 23:31:30 +08:00
+									tx := this.NullTx()
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+									err = models.SharedHTTPAccessLogDAO.CreateHTTPAccessLogs(tx, req.HttpAccessLogs)
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+									if err != nil {
 										return nil, err
 									}
-												实现基本的访问日志策略

											
										
										
											2021-07-29 16:50:59 +08:00
+									// 发送到访问日志策略
 									policyId, err := models.SharedHTTPAccessLogPolicyDAO.FindCurrentPublicPolicyId(tx)
 									if err != nil {
 										return nil, err
 									}
 									if policyId > 0 {
 										err = accesslogs.SharedStorageManager.Write(policyId, req.HttpAccessLogs)
 										if err != nil {
 											return nil, err
 										}
 									}
-												实现请求日志写入

											
										
										
											2020-10-10 11:49:21 +08:00
+									return &pb.CreateHTTPAccessLogsResponse{}, nil
 								}
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+								// ListHTTPAccessLogs 列出单页访问日志
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+								func (this *HTTPAccessLogService) ListHTTPAccessLogs(ctx context.Context, req *pb.ListHTTPAccessLogsRequest) (*pb.ListHTTPAccessLogsResponse, error) {
 									// 校验请求
-												[API节点]支持HTTP API

											
										
										
											2021-01-01 20:49:09 +08:00
+									_, userId, err := this.ValidateAdminAndUser(ctx, 0, 0)
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+									if err != nil {
 										return nil, err
 									}
-												所有数据库相关的操作支持事务

											
										
										
											2021-01-01 23:31:30 +08:00
+									tx := this.NullTx()
-												[API节点]支持HTTP API

											
										
										
											2021-01-01 20:49:09 +08:00
+									// 检查服务ID
 									if userId > 0 {
-												为用户提供查询WAF日志的接口

											
										
										
											2021-01-20 16:46:19 +08:00
+										if req.UserId > 0 && userId != req.UserId {
 											return nil, this.PermissionError()
-												[API节点]支持HTTP API

											
										
										
											2021-01-01 20:49:09 +08:00
+										}
-												为用户提供查询WAF日志的接口

											
										
										
											2021-01-20 16:46:19 +08:00
+										// 这里不用担心serverId <= 0 的情况，因为如果userId>0，则只会查询当前用户下的服务，不会产生安全问题
 										if req.ServerId > 0 {
 											err = models.SharedServerDAO.CheckUserServer(tx, userId, req.ServerId)
 											if err != nil {
 												return nil, err
 											}
-												[API节点]支持HTTP API

											
										
										
											2021-01-01 20:49:09 +08:00
+										}
 									}
-												支持使用小时筛选访问日志

											
										
										
											2022-03-09 11:00:54 +08:00
+									accessLogs, requestId, hasMore, err := models.SharedHTTPAccessLogDAO.ListAccessLogs(tx, req.RequestId, req.Size, req.Day, req.HourFrom, req.HourTo, req.NodeClusterId, req.NodeId, req.ServerId, req.Reverse, req.HasError, req.FirewallPolicyId, req.FirewallRuleGroupId, req.FirewallRuleSetId, req.HasFirewallPolicy, req.UserId, req.Keyword, req.Ip, req.Domain)
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+									if err != nil {
 										return nil, err
 									}
 									result := []*pb.HTTPAccessLog{}
-												访问日志显示节点信息

											
										
										
											2021-08-10 11:15:15 +08:00
+									var pbNodeMap = map[int64]*pb.Node{}
 									var pbClusterMap = map[int64]*pb.NodeCluster{}
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+									for _, accessLog := range accessLogs {
 										a, err := accessLog.ToPB()
 										if err != nil {
 											return nil, err
 										}
-												访问日志显示节点信息

											
										
										
											2021-08-10 11:15:15 +08:00
 										// 节点 & 集群
 										pbNode, ok := pbNodeMap[a.NodeId]
 										if ok {
 											a.Node = pbNode
 										} else {
 											node, err := models.SharedNodeDAO.FindEnabledNode(tx, a.NodeId)
 											if err != nil {
 												return nil, err
 											}
 											if node != nil {
 												pbNode = &pb.Node{Id: int64(node.Id), Name: node.Name}
 												var clusterId = int64(node.ClusterId)
 												pbCluster, ok := pbClusterMap[clusterId]
 												if ok {
 													pbNode.NodeCluster = pbCluster
 												} else {
 													cluster, err := models.SharedNodeClusterDAO.FindEnabledNodeCluster(tx, clusterId)
 													if err != nil {
 														return nil, err
 													}
 													if cluster != nil {
 														pbCluster = &pb.NodeCluster{
 															Id:   int64(cluster.Id),
 															Name: cluster.Name,
 														}
 														pbNode.NodeCluster = pbCluster
 														pbClusterMap[clusterId] = pbCluster
 													}
 												}
 												pbNodeMap[a.NodeId] = pbNode
 												a.Node = pbNode
 											}
 										}
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+										result = append(result, a)
 									}
 									return &pb.ListHTTPAccessLogsResponse{
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+										HttpAccessLogs: result,
-												兼容部分API老命名

											
										
										
											2021-06-04 11:41:50 +08:00
+										AccessLogs:     result, // TODO 仅仅为了兼容，当用户节点版本大于0.0.8时可以删除
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+										HasMore:        hasMore,
 										RequestId:      requestId,
-												实现实时展示访问日志

											
										
										
											2020-10-10 19:21:32 +08:00
+									}, nil
 								}
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+								// FindHTTPAccessLog 查找单个日志
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+								func (this *HTTPAccessLogService) FindHTTPAccessLog(ctx context.Context, req *pb.FindHTTPAccessLogRequest) (*pb.FindHTTPAccessLogResponse, error) {
 									// 校验请求
-												用户可以查看访问日志

											
										
										
											2021-01-14 18:01:00 +08:00
+									_, userId, err := this.ValidateAdminAndUser(ctx, 0, 0)
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+									if err != nil {
 										return nil, err
 									}
-												所有数据库相关的操作支持事务

											
										
										
											2021-01-01 23:31:30 +08:00
+									tx := this.NullTx()
 									accessLog, err := models.SharedHTTPAccessLogDAO.FindAccessLogWithRequestId(tx, req.RequestId)
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+									if err != nil {
 										return nil, err
 									}
 									if accessLog == nil {
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+										return &pb.FindHTTPAccessLogResponse{HttpAccessLog: nil}, nil
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+									}
-												用户可以查看访问日志

											
										
										
											2021-01-14 18:01:00 +08:00
 									// 检查权限
 									if userId > 0 {
-												增加节点同步状态提示和任务列表

											
										
										
											2021-01-17 16:48:00 +08:00
+										err = models.SharedServerDAO.CheckUserServer(tx, userId, int64(accessLog.ServerId))
-												用户可以查看访问日志

											
										
										
											2021-01-14 18:01:00 +08:00
+										if err != nil {
 											return nil, err
 										}
 									}
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+									a, err := accessLog.ToPB()
 									if err != nil {
 										return nil, err
 									}
-												域名服务增加访问日志

											
										
										
											2021-06-02 11:53:24 +08:00
+									return &pb.FindHTTPAccessLogResponse{HttpAccessLog: a}, nil
-												实现点击访问日志显示详情窗口

											
										
										
											2020-11-02 21:15:31 +08:00
+								}