in pkg/frontend/middleware/log.go [62:191]
func (l LogMiddleware) Log(h http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
t := time.Now()
r.Body = &logReadCloser{ReadCloser: r.Body}
w = &logResponseWriter{ResponseWriter: w, statusCode: http.StatusOK}
correlationData := api.CreateCorrelationDataFromReq(r)
correlationData.RequestTime = t
if r.URL.Query().Get(api.APIVersionKey) == admin.APIVersion || isAdminOp(r) {
correlationData.ClientPrincipalName = r.Header.Get("X-Ms-Client-Principal-Name")
}
w.Header().Set("X-Ms-Request-Id", correlationData.RequestID)
if strings.EqualFold(r.Header.Get("X-Ms-Return-Client-Request-Id"), "true") {
w.Header().Set("X-Ms-Client-Request-Id", correlationData.ClientRequestID)
}
log := l.BaseLog
log = utillog.EnrichWithPath(log, r.URL.Path)
log = utillog.EnrichWithCorrelationData(log, correlationData)
ctx := r.Context()
ctx = context.WithValue(ctx, ContextKeyLog, log)
ctx = api.CtxWithCorrelationData(ctx, correlationData)
r = r.WithContext(ctx)
log = log.WithFields(logrus.Fields{
"request_method": r.Method,
"request_path": r.URL.Path,
"request_proto": r.Proto,
"request_remote_addr": r.RemoteAddr,
"request_user_agent": r.UserAgent(),
})
log.Print("read request")
var (
auditCallerIdentity = r.UserAgent()
auditCallerType = audit.CallerIdentityTypeApplicationID
)
if correlationData.ClientPrincipalName != "" {
auditCallerIdentity = correlationData.ClientPrincipalName
auditCallerType = audit.CallerIdentityTypeObjectID
}
var (
adminOp = isAdminOp(r)
logTime = time.Now().UTC().Format(time.RFC3339)
operationName = fmt.Sprintf("%s %s", r.Method, r.URL.Path)
)
auditEntry := l.AuditLog.WithFields(logrus.Fields{
audit.MetadataCreatedTime: logTime,
audit.MetadataLogKind: audit.IFXAuditLogKind,
audit.MetadataSource: audit.SourceRP,
audit.MetadataAdminOperation: adminOp,
audit.EnvKeyAppID: audit.SourceRP,
audit.EnvKeyCloudRole: audit.CloudRoleRP,
audit.EnvKeyCorrelationID: correlationData.CorrelationID,
audit.EnvKeyEnvironment: l.EnvironmentName,
audit.EnvKeyHostname: l.Hostname,
audit.EnvKeyLocation: l.Location,
audit.PayloadKeyCategory: audit.CategoryResourceManagement,
audit.PayloadKeyOperationName: operationName,
audit.PayloadKeyRequestID: correlationData.RequestID,
audit.PayloadKeyCallerIdentities: []audit.CallerIdentity{
{
CallerIdentityType: auditCallerType,
CallerIdentityValue: auditCallerIdentity,
CallerIPAddress: r.RemoteAddr,
},
},
audit.PayloadKeyTargetResources: []audit.TargetResource{
{
TargetResourceName: r.URL.Path,
TargetResourceType: auditTargetResourceType(r),
},
},
})
otelAuditMsg := audit.CreateOtelAuditMsg(log, r)
otelAuditMsg.Record.CallerIdentities = getCallerIdentitesMap(correlationData)
otelAuditMsg.Record.TargetResources = map[string][]msgs.TargetResourceEntry{
auditTargetResourceType(r): {
{
Name: r.URL.Path,
},
},
}
defer func() {
statusCode := w.(*logResponseWriter).statusCode
log.WithFields(logrus.Fields{
"body_read_bytes": r.Body.(*logReadCloser).bytes,
"body_written_bytes": w.(*logResponseWriter).bytes,
"duration": time.Since(t).Seconds(),
"response_status_code": statusCode,
}).Print("sent response")
resultType := audit.ResultTypeSuccess
if statusCode >= http.StatusBadRequest {
resultType = audit.ResultTypeFail
otelAuditMsg.Record.OperationResult = msgs.Failure
otelAuditMsg.Record.OperationResultDescription = fmt.Sprintf("Status code: %d", statusCode)
}
if r.URL.Path == "/healthz/ready" {
return
}
audit.EnsureDefaults(&otelAuditMsg.Record)
if err := l.OutelAuditClient.Send(r.Context(), otelAuditMsg); err != nil {
log.Errorf("Frontend - Error sending audit message: %v", err)
}
auditEntry.WithFields(logrus.Fields{
audit.PayloadKeyResult: audit.Result{
ResultType: resultType,
ResultDescription: fmt.Sprintf("Status code: %d", statusCode),
},
}).Info(audit.DefaultLogMessage)
}()
h.ServeHTTP(w, r)
})
}