Skip to content

Commit

Permalink
Write migration for audit logs table
Browse files Browse the repository at this point in the history 
This commit contains the migration for the audit logs table. It contains
a mirrored Rust struct with an insertion method. None of the Rust code
replaces what exists in "si-frontend-types" or "si-events" but may do
so in the future.

Signed-off-by: Nick Gerace <[email protected]>
  • Loading branch information
@nickgerace
nickgerace committed Nov 19, 2024
1 parent 257e517 commit f3b0e34
Show file tree
Hide file tree
Showing 6 changed files with 184 additions and 0 deletions.
1 change: 1 addition & 0 deletions Cargo.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

1 change: 1 addition & 0 deletions lib/audit-logs/BUCK
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ rust_library(
"//third-party/rust:remain",
"//third-party/rust:serde",
"//third-party/rust:serde_json",
"//third-party/rust:strum",
"//third-party/rust:thiserror",
],
srcs = glob([
Expand Down
1 change: 1 addition & 0 deletions lib/audit-logs/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,4 +19,5 @@ refinery = { workspace = true }
remain = { workspace = true }
serde = { workspace = true }
serde_json = { workspace = true }
strum = { workspace = true }
thiserror = { workspace = true }
162 changes: 162 additions & 0 deletions lib/audit-logs/src/lib.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,5 +28,167 @@
pub mod pg;
mod stream;

use pg::AuditDatabaseContext;
use serde::Deserialize;
use serde::Serialize;
use si_data_pg::PgError;
use si_data_pg::PgPoolError;
use si_events::Actor;
use si_events::ChangeSetId;
use si_events::ChangeSetStatus;
use si_events::UserPk;
use si_events::WorkspacePk;
use strum::Display;
use strum::EnumDiscriminants;
use telemetry::prelude::*;
use thiserror::Error;

pub use stream::AuditLogsStream;
pub use stream::AuditLogsStreamError;

#[allow(missing_docs)]
#[derive(Debug, Error)]
pub enum AuditLogError {
#[error("pg error: {0}")]
Pg(#[from] PgError),
#[error("pg pool error: {0}")]
PgPool(#[from] PgPoolError),
#[error("serde json error: {0}")]
SerdeJson(#[from] serde_json::Error),
}

type Result<T> = std::result::Result<T, AuditLogError>;

// FIXME(nick): delete this once accessor patterns are in place.
// impl TryFrom<PgRow> for AuditLogRow {
// type Error = AuditLogError;
//
// fn try_from(value: PgRow) -> std::result::Result<Self, Self::Error> {
// Ok(Self {
// actor: todo!(),
// kind: AuditLogKind::CreateChangeSet,
// entity_name: todo!(),
// timestamp: todo!(),
// change_set_id: todo!(),
// })
// let status_string: String = value.try_get("status")?;
// let status = ChangeSetStatus::try_from(status_string.as_str())?;
// Ok(Self {
// id: value.try_get("id")?,
// created_at: value.try_get("created_at")?,
// updated_at: value.try_get("updated_at")?,
// name: value.try_get("name")?,
// status,
// base_change_set_id: value.try_get("base_change_set_id")?,
// workspace_snapshot_address: value.try_get("workspace_snapshot_address")?,
// workspace_id: value.try_get("workspace_id")?,
// merge_requested_by_user_id: value.try_get("merge_requested_by_user_id")?,
// merge_requested_at: value.try_get("merge_requested_at")?,
// reviewed_by_user_id: value.try_get("reviewed_by_user_id")?,
// reviewed_at: value.try_get("reviewed_at")?,
// })
// }
// }

#[allow(missing_docs)]
#[remain::sorted]
#[derive(Debug, Deserialize, Serialize, Clone, PartialEq, Eq, Display, EnumDiscriminants)]
pub enum AuditLogKind {
#[allow(missing_docs)]
AbandonChangeSet { from_status: ChangeSetStatus },
#[allow(missing_docs)]
CreateChangeSet,
}

#[allow(missing_docs)]
#[remain::sorted]
#[derive(Debug, Serialize, Deserialize, EnumDiscriminants)]
#[serde(untagged, rename_all = "camelCase")]
pub enum AuditLogMetadata {
#[allow(missing_docs)]
#[serde(rename_all = "camelCase")]
AbandonChangeSet { from_status: ChangeSetStatus },
#[allow(missing_docs)]
#[serde(rename_all = "camelCase")]
CreateChangeSet,
}

impl From<AuditLogKind> for AuditLogMetadata {
fn from(value: AuditLogKind) -> Self {
match value {
AuditLogKind::AbandonChangeSet { from_status } => {
Self::AbandonChangeSet { from_status }
}
AuditLogKind::CreateChangeSet => Self::CreateChangeSet,
}
}
}

#[allow(clippy::too_many_arguments, missing_docs)]
#[instrument(
name = "audit_log.insert",
level = "debug",
skip_all,
fields(
si.workspace.id = %workspace_id,
),
)]
pub async fn insert(
context: &AuditDatabaseContext,
workspace_id: WorkspacePk,
kind: AuditLogKind,
timestamp: String,
title: String,
change_set_id: Option<ChangeSetId>,
actor: Actor,
entity_name: Option<String>,
entity_type: Option<String>,
) -> Result<()> {
let kind_as_string = kind.to_string();
let user_id: Option<UserPk> = match actor {
Actor::System => None,
Actor::User(user_id) => Some(user_id),
};
let serialized_metadata = serde_json::to_value(AuditLogMetadata::from(kind))?;

let _ = context
.pg_pool()
.get()
.await?
.query_one(
"INSERT INTO audit_logs (
workspace_id,
kind,
timestamp,
title,
change_set_id,
user_id,
entity_name,
entity_type,
metadata
) VALUES (
$1,
$2,
$3,
$4,
$5,
$6,
$7,
$8,
$9
)",
&[
&workspace_id,
&kind_as_string,
&timestamp,
&title,
&change_set_id,
&user_id,
&entity_name,
&entity_type,
&serialized_metadata,
],
)
.await?;
Ok(())
}
14 changes: 14 additions & 0 deletions lib/audit-logs/src/migrations/U0002__audit_logs.sql
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
CREATE TABLE audit_logs (
pk bigserial PRIMARY KEY,
workspace_id text NOT NULL,
kind text NOT NULL,
timestamp timestamp with time zone NOT NULL,
title text NOT NULL,
change_set_id text,
user_id text,
entity_name text,
entity_type text,
metadata jsonb
);

CREATE INDEX audit_logs_workspace_and_change_set ON audit_logs (workspace_id, change_set_id);
5 changes: 5 additions & 0 deletions lib/audit-logs/src/pg.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,11 @@ impl AuditDatabaseContext {
pg_pool: PgPool::new(&config.pg).await?,
})
}

/// Returns a reference to the [`PgPool`].
pub fn pg_pool(&self) -> &PgPool {
&self.pg_pool
}
}

/// The configuration used for communicating with and setting up the audit database.
Expand Down

0 comments on commit f3b0e34

Please sign in to comment.