rails_audit_log-graphql 0.4.0 → 0.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fd228bcaff874e10bbd50927cb3bc44d22b5c860acf8dd444624eff80c7dea96
-  data.tar.gz: 29ebf0ccd63fd0827689d3cf0b5e5bd3b4c6194c12468aa347c0fadb1fe0c5f3
+  metadata.gz: f64cce54638f8999c6489e0881a1fedfcb447b0b5b8f52270a0d8247719c8f19
+  data.tar.gz: 4b1225952a5a6adce3a5a03b804360765b0c70b9ad9a9688db96ba34139430c5
 SHA512:
-  metadata.gz: 81930d3cedc11053354b5b86349d5483b326f43d774ebea49f97bc61e827c1ede95fa61c1b2671c611df266a9f7b4f4e497d472d47d86fc01b9e6863dd2b8df2
-  data.tar.gz: 158775764845a120940581a0e6c47be8ca3ba992c5195b4bb899c970d069f27dc94faf53c4dde7ee1e4752992d8de62adec09f3f20a68e8209499239e9589887
+  metadata.gz: 0b54b242a022b49d1917dd3c0370f96bde5ec210dad8959a34bc424132c7efd97aa0e1f781cebd0eaf21056b3b29c2c0c9632c08e94a4b0e2da851afe57044e5
+  data.tar.gz: fb448e67961e641eb6ce89081e832082cfa886856ccbd5f4d5de767d1bd21835d38034e6dd55a4d00b1f633f58da6a094e5d8e4e4886c24a6aece095386023f2

data/CHANGELOG.md

@@ -1,5 +1,13 @@
 ## [Unreleased]
 
+## [0.5.0] - 2026-06-04
+
+### Added
+
+- `forTenant:` argument on `auditLogEntry`, `auditLogEntries`, and `auditLogEntriesConnection` — explicitly scope results to a tenant ID; overrides auto-tenant
+- Auto-tenant scoping — when `RailsAuditLog.current_tenant` is configured, all queries automatically filter to the current tenant without requiring an explicit argument
+- `auditLogEntriesCount(event:, itemType:, since:)` — new aggregation query returning the count of matching entries; respects auto-tenant
+
 ## [0.4.0] - 2026-06-04
 
 ### Added

data/README.md

@@ -20,6 +20,8 @@ A [graphql-ruby](https://graphql-ruby.org) API layer for the [`rails_audit_log`]
     - [auditLogEntry](#auditlogentryid-id-auditlogentry)
     - [auditLogEntries](#auditlogentries-auditlogentry)
     - [auditLogEntriesConnection](#auditlogentriesconnection-auditlogentryconnection)
+    - [auditLogEntriesCount](#auditlogentriescount-int)
+    - [Tenant scoping](#tenant-scoping)
   - [Authentication](#authentication)
   - [Subscriptions](#subscriptions)
     - [AuditLogSubscriptionsMixin](#auditlogsubscriptionsmixin)
@@ -152,6 +154,7 @@ List entries with optional filters and offset pagination.
 | `until` | `ISO8601DateTime` | — | Return entries created at or before this time |
 | `touching` | `String` | — | Filter to entries that changed a specific attribute |
 | `orderBy` | `AuditLogEntrySortInput` | `CREATED_AT DESC` | Sort field and direction |
+| `forTenant` | `String` | — | Scope to a specific tenant ID; overrides auto-tenant |
 | `page` | `Int` | `1` | Page number (1-based) |
 | `perPage` | `Int` | `25` | Results per page |
 
@@ -167,6 +170,7 @@ Same filters as `auditLogEntries`, but returns a [Relay-style connection](https:
 | `itemType` | `String` | Filter by audited model class name |
 | `itemId` | `ID` | Filter by audited record ID |
 | `actorId` | `ID` | Filter by actor ID |
+| `forTenant` | `String` | Scope to a specific tenant ID; overrides auto-tenant |
 | `first` | `Int` | Return the first N edges after `after` |
 | `after` | `String` | Cursor to paginate forward from |
 | `last` | `Int` | Return the last N edges before `before` |
@@ -207,6 +211,40 @@ Results are ordered by `created_at DESC`.
 
 [↑ Back to top](#table-of-contents)
 
+#### `auditLogEntriesCount(...): Int!`
+
+Returns the count of matching audit log entries. Respects auto-tenant when `RailsAuditLog.current_tenant` is configured.
+
+| Argument | Type | Description |
+|---|---|---|
+| `event` | `String` | Filter by event type (`create`, `update`, `destroy`) |
+| `itemType` | `String` | Filter by audited model class name |
+| `since` | `ISO8601DateTime` | Count entries created at or after this time |
+
+```graphql
+{ auditLogEntriesCount(event: "update", itemType: "Post") }
+```
+
+[↑ Back to top](#table-of-contents)
+
+#### Tenant scoping
+
+When `RailsAuditLog.current_tenant` is configured, all queries automatically filter to the current tenant:
+
+```ruby
+RailsAuditLog.configure do |c|
+  c.current_tenant { Current.tenant_id }
+end
+```
+
+To override or explicitly specify a tenant per query, use the `forTenant:` argument (available on `auditLogEntry`, `auditLogEntries`, and `auditLogEntriesConnection`):
+
+```graphql
+{ auditLogEntries(forTenant: "acme") { id event } }
+```
+
+[↑ Back to top](#table-of-contents)
+
 ### Authentication
 
 If `RailsAuditLog.authenticate` is configured, the block is called with the GraphQL context before every query. Return a truthy value to allow access; return falsy to raise `GraphQL::ExecutionError` with `"Unauthorized"`.

data/ROADMAP.md

@@ -4,14 +4,6 @@ This gem adds a GraphQL API layer on top of [`rails_audit_log`](https://github.c
 
 ---
 
-## 0.5.0 — Multi-tenancy & Advanced Filtering
-
-- **Tenant scoping** — automatically scope queries via `RailsAuditLog.current_tenant` when configured
-- **`forTenant:` argument** — explicit tenant filter on `auditLogEntries`
-- **Aggregations** — `auditLogEntriesCount(event:, itemType:, since:)` for dashboard metrics
-
----
-
 ## 0.6.0 — Performance & Safety
 
 - **Dataloader batch loading** — batch-resolve polymorphic `actor` and `item` associations using graphql-ruby's `dataloader` to eliminate N+1 queries on list responses

data/lib/rails_audit_log/graphql/queries/audit_log_entries_query_mixin.rb

@@ -14,6 +14,8 @@ module RailsAuditLog
           ) do
             argument :id, GraphQL::Types::ID, required: true,
               description: "ID of the audit log entry."
+            argument :for_tenant, String, required: false,
+              description: "Scope to a specific tenant ID. Overrides auto-tenant when RailsAuditLog.current_tenant is configured."
           end
 
           base.field(
@@ -31,6 +33,8 @@ module RailsAuditLog
             argument :until, GraphQL::Types::ISO8601DateTime, required: false, as: :until_time, description: "Return entries created at or before this time."
             argument :touching, String, required: false, description: "Filter to entries that changed a specific attribute (matches object_changes keys)."
             argument :order_by, RailsAuditLog::Graphql::InputObjects::AuditLogEntrySortInput, required: false, description: "Sort order. Defaults to CREATED_AT DESC."
+            argument :for_tenant, String, required: false,
+              description: "Scope to a specific tenant ID. Overrides auto-tenant when RailsAuditLog.current_tenant is configured."
             argument :page, GraphQL::Types::Int, required: false, default_value: 1, description: "Page number (1-based)."
             argument :per_page, GraphQL::Types::Int, required: false, default_value: 25, description: "Number of results per page."
           end
@@ -50,28 +54,55 @@ module RailsAuditLog
             argument :until, GraphQL::Types::ISO8601DateTime, required: false, as: :until_time, description: "Return entries created at or before this time."
             argument :touching, String, required: false, description: "Filter to entries that changed a specific attribute (matches object_changes keys)."
             argument :order_by, RailsAuditLog::Graphql::InputObjects::AuditLogEntrySortInput, required: false, description: "Sort order. Defaults to CREATED_AT DESC."
+            argument :for_tenant, String, required: false,
+              description: "Scope to a specific tenant ID. Overrides auto-tenant when RailsAuditLog.current_tenant is configured."
+          end
+
+          base.field(
+            :audit_log_entries_count,
+            GraphQL::Types::Int,
+            null: false,
+            description: "Count audit log entries with optional filters. Respects auto-tenant when RailsAuditLog.current_tenant is configured.",
+            resolver_method: :resolve_audit_log_entries_count
+          ) do
+            argument :event, String, required: false, description: "Filter by event type (create, update, destroy)."
+            argument :item_type, String, required: false, description: "Filter by audited model class name."
+            argument :since, GraphQL::Types::ISO8601DateTime, required: false, description: "Count entries created at or after this time."
           end
         end
 
-        def resolve_audit_log_entry(id:)
+        def resolve_audit_log_entry(id:, for_tenant: nil)
           check_authentication!
-          RailsAuditLog::AuditLogEntry.find_by(id: id)
+          tenant_id = for_tenant || RailsAuditLog.current_tenant&.call
+          base = tenant_id ? RailsAuditLog::AuditLogEntry.for_tenant(tenant_id) : RailsAuditLog::AuditLogEntry
+          base.find_by(id: id)
         end
 
-        def resolve_audit_log_entries(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil, page: 1, per_page: 25)
+        def resolve_audit_log_entries(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil, for_tenant: nil, page: 1, per_page: 25)
           check_authentication!
-          scope = build_scope(event: event, item_type: item_type, item_id: item_id, actor_id: actor_id, since: since, until_time: until_time, touching: touching, order_by: order_by)
+          scope = build_scope(event: event, item_type: item_type, item_id: item_id, actor_id: actor_id, since: since, until_time: until_time, touching: touching, order_by: order_by, for_tenant: for_tenant)
           scope.limit(per_page).offset((page - 1) * per_page)
         end
 
-        def resolve_audit_log_entries_connection(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil)
+        def resolve_audit_log_entries_connection(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil, for_tenant: nil)
           check_authentication!
-          build_scope(event: event, item_type: item_type, item_id: item_id, actor_id: actor_id, since: since, until_time: until_time, touching: touching, order_by: order_by)
+          build_scope(event: event, item_type: item_type, item_id: item_id, actor_id: actor_id, since: since, until_time: until_time, touching: touching, order_by: order_by, for_tenant: for_tenant)
+        end
+
+        def resolve_audit_log_entries_count(event: nil, item_type: nil, since: nil)
+          check_authentication!
+          scope = RailsAuditLog::AuditLogEntry.all
+          scope = scope.where(event: event) if event
+          scope = scope.where(item_type: item_type) if item_type
+          scope = scope.where("created_at >= ?", since) if since
+          tenant_id = RailsAuditLog.current_tenant&.call
+          scope = scope.for_tenant(tenant_id) if tenant_id
+          scope.count
         end
 
         private
 
-        def build_scope(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil)
+        def build_scope(event: nil, item_type: nil, item_id: nil, actor_id: nil, since: nil, until_time: nil, touching: nil, order_by: nil, for_tenant: nil)
           sort_field = order_by&.field || :created_at
           sort_direction = order_by&.direction || :desc
           scope = RailsAuditLog::AuditLogEntry.order(sort_field => sort_direction)
@@ -85,6 +116,8 @@ module RailsAuditLog
             safe = ActiveRecord::Base.sanitize_sql_like(touching)
             scope = scope.where("object_changes LIKE ?", "%\"#{safe}\":%")
           end
+          tenant_id = for_tenant || RailsAuditLog.current_tenant&.call
+          scope = scope.for_tenant(tenant_id) if tenant_id
           scope
         end
 

data/lib/rails_audit_log/graphql/version.rb

@@ -2,6 +2,6 @@
 
 module RailsAuditLog
   module Graphql
-    VERSION = "0.4.0"
+    VERSION = "0.5.0"
   end
 end

data/sig/rails_audit_log/graphql.rbs

@@ -76,7 +76,7 @@ module RailsAuditLog
       module AuditLogEntriesQueryMixin
         def self.included: (untyped base) -> void
 
-        def resolve_audit_log_entry: (id: String) -> untyped
+        def resolve_audit_log_entry: (id: String, ?for_tenant: String?) -> untyped
 
         def resolve_audit_log_entries: (
           ?event: String?,
@@ -87,6 +87,7 @@ module RailsAuditLog
           ?until_time: Time?,
           ?touching: String?,
           ?order_by: InputObjects::AuditLogEntrySortInput?,
+          ?for_tenant: String?,
           ?page: Integer,
           ?per_page: Integer
         ) -> untyped
@@ -99,9 +100,16 @@ module RailsAuditLog
           ?since: Time?,
           ?until_time: Time?,
           ?touching: String?,
-          ?order_by: InputObjects::AuditLogEntrySortInput?
+          ?order_by: InputObjects::AuditLogEntrySortInput?,
+          ?for_tenant: String?
         ) -> untyped
 
+        def resolve_audit_log_entries_count: (
+          ?event: String?,
+          ?item_type: String?,
+          ?since: Time?
+        ) -> Integer
+
         private
 
         def build_scope: (
@@ -112,7 +120,8 @@ module RailsAuditLog
           ?since: Time?,
           ?until_time: Time?,
           ?touching: String?,
-          ?order_by: InputObjects::AuditLogEntrySortInput?
+          ?order_by: InputObjects::AuditLogEntrySortInput?,
+          ?for_tenant: String?
         ) -> untyped
 
         def check_authentication!: () -> void

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rails_audit_log-graphql
 version: !ruby/object:Gem::Version
-  version: 0.4.0
+  version: 0.5.0
 platform: ruby
 authors:
 - Chuck Smith