npm - @oneuptime/common - Versions diffs - 10.5.9 → 10.5.17 - Mend

@oneuptime/common 10.5.9 → 10.5.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (106) hide show

package/Server/Types/AnalyticsDatabase/ModelPermission.ts CHANGED Viewed

@@ -807,6 +807,23 @@ export default class ModelPermission {
       }
     }
+    /*
+     * Telemetry with no owning resource (the unattributed "Unknown"
+     * bucket) is tagged with the projectId in place of a resource id. It
+     * belongs to the project, not any owner, so an Owned-scoped user
+     * (project-level catch-all access) sees it. Gated on hasOwnedGrant:
+     * a purely Labels-scoped user asked for label-matching telemetry, and
+     * the unattributed bucket carries no labels, so it stays excluded for
+     * them.
+     */
+    if (
+      hasOwnedGrant &&
+      model.ownedThrough.includeProjectScope &&
+      props.tenantId
+    ) {
+      allowedResourceIds.add(props.tenantId.toString());
+    }
     const fkColumn: string = model.ownedThrough.fkColumn;
     const idList: Array<string> =
       allowedResourceIds.size > 0
@@ -841,64 +858,73 @@ export default class ModelPermission {
     const ownerTableRegistry: Map<
       string,
-      // eslint-disable-next-line @typescript-eslint/no-explicit-any
-      { ownerUserService: any; ownerTeamService: any; fkColumn: string }
+      {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        ownerUserService: any;
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        ownerTeamService: any;
+        fkColumn: string;
+        canOwnTelemetry?: boolean;
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        modelService?: any;
+      }
     > =
       // eslint-disable-next-line @typescript-eslint/no-require-imports, @typescript-eslint/no-var-requires
       require("../Database/Permissions/OwnerTableRegistry").default;
-    const serviceEntry:
-      | {
-          // eslint-disable-next-line @typescript-eslint/no-explicit-any
-          ownerUserService: any;
-          // eslint-disable-next-line @typescript-eslint/no-explicit-any
-          ownerTeamService: any;
-          fkColumn: string;
-        }
-      | undefined = ownerTableRegistry.get("Service");
-    if (!serviceEntry) {
-      cache.ownedIds = result;
-      return result;
-    }
+    /*
+     * Telemetry serviceId is polymorphic — it can reference any resource
+     * type flagged `canOwnTelemetry` in the registry (Service, Monitor,
+     * Host, DockerHost, KubernetesCluster). Resolve ownership across all of
+     * them so a user who owns any such resource sees its telemetry, not
+     * just owned Services. The polymorphic set lives only in the registry
+     * (single source of truth); the resolved union is the same for every
+     * telemetry analytics model, so the single per-request `ownedIds`
+     * cache slot still holds it.
+     */
+    for (const entry of ownerTableRegistry.values()) {
+      if (!entry.canOwnTelemetry) {
+        continue;
+      }
+      const fkColumn: string = entry.fkColumn;
-    if (props.userId) {
-      // eslint-disable-next-line @typescript-eslint/no-explicit-any
-      const userOwnedRows: Array<any> =
-        await serviceEntry.ownerUserService.findBy({
+      if (props.userId) {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        const userOwnedRows: Array<any> = await entry.ownerUserService.findBy({
           query: {
             userId: props.userId,
             ...(props.tenantId ? { projectId: props.tenantId } : {}),
           },
-          select: { serviceId: true },
+          select: { [fkColumn]: true },
           props: { isRoot: true },
           skip: 0,
           limit: LIMIT_MAX,
         });
-      for (const row of userOwnedRows) {
-        const id: ObjectID | undefined = row.serviceId;
-        if (id) {
-          result.add(id.toString());
+        for (const row of userOwnedRows) {
+          const id: ObjectID | undefined = row[fkColumn];
+          if (id) {
+            result.add(id.toString());
+          }
         }
       }
-    }
-    if (props.userTeamIds && props.userTeamIds.length > 0) {
-      // eslint-disable-next-line @typescript-eslint/no-explicit-any
-      const teamOwnedRows: Array<any> =
-        await serviceEntry.ownerTeamService.findBy({
+      if (props.userTeamIds && props.userTeamIds.length > 0) {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        const teamOwnedRows: Array<any> = await entry.ownerTeamService.findBy({
           query: {
             teamId: QueryHelper.any(props.userTeamIds),
             ...(props.tenantId ? { projectId: props.tenantId } : {}),
           },
-          select: { serviceId: true },
+          select: { [fkColumn]: true },
           props: { isRoot: true },
           skip: 0,
           limit: LIMIT_MAX,
         });
-      for (const row of teamOwnedRows) {
-        const id: ObjectID | undefined = row.serviceId;
-        if (id) {
-          result.add(id.toString());
+        for (const row of teamOwnedRows) {
+          const id: ObjectID | undefined = row[fkColumn];
+          if (id) {
+            result.add(id.toString());
+          }
         }
       }
     }
@@ -942,50 +968,54 @@ export default class ModelPermission {
       return cached;
     }
-    const ServiceService: any =
-      // eslint-disable-next-line @typescript-eslint/no-require-imports, @typescript-eslint/no-var-requires
-      require("../../Services/ServiceService").default;
-    const MonitorService: any =
-      // eslint-disable-next-line @typescript-eslint/no-require-imports, @typescript-eslint/no-var-requires
-      require("../../Services/MonitorService").default;
     const tenantFilter: Record<string, ObjectID> = props.tenantId
       ? { projectId: props.tenantId }
       : {};
-    // eslint-disable-next-line @typescript-eslint/no-explicit-any
-    const serviceRows: Array<any> = await ServiceService.findBy({
-      query: {
-        labels: labelIds,
-        ...tenantFilter,
-      },
-      select: { _id: true },
-      props: { isRoot: true },
-      skip: 0,
-      limit: LIMIT_MAX,
-    });
-    for (const row of serviceRows) {
-      const id: ObjectID | string | undefined = row._id;
-      if (id) {
-        result.add(id.toString());
+    const ownerTableRegistry: Map<
+      string,
+      {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        ownerUserService: any;
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        ownerTeamService: any;
+        fkColumn: string;
+        canOwnTelemetry?: boolean;
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        modelService?: any;
       }
-    }
+    > =
+      // eslint-disable-next-line @typescript-eslint/no-require-imports, @typescript-eslint/no-var-requires
+      require("../Database/Permissions/OwnerTableRegistry").default;
-    // eslint-disable-next-line @typescript-eslint/no-explicit-any
-    const monitorRows: Array<any> = await MonitorService.findBy({
-      query: {
-        labels: labelIds,
-        ...tenantFilter,
-      },
-      select: { _id: true },
-      props: { isRoot: true },
-      skip: 0,
-      limit: LIMIT_MAX,
-    });
-    for (const row of monitorRows) {
-      const id: ObjectID | string | undefined = row._id;
-      if (id) {
-        result.add(id.toString());
+    /*
+     * Telemetry serviceId is polymorphic across every resource type
+     * flagged `canOwnTelemetry` in the registry (Service, Monitor, Host,
+     * DockerHost, KubernetesCluster), each of which carries labels. Find
+     * rows of each whose labels intersect the user's. Keeping this set in
+     * the registry (single source of truth) means a new telemetry-owning
+     * resource is picked up here automatically — no edits needed.
+     */
+    for (const entry of ownerTableRegistry.values()) {
+      if (!entry.canOwnTelemetry || !entry.modelService) {
+        continue;
+      }
+      // eslint-disable-next-line @typescript-eslint/no-explicit-any
+      const rows: Array<any> = await entry.modelService.findBy({
+        query: {
+          labels: labelIds,
+          ...tenantFilter,
+        },
+        select: { _id: true },
+        props: { isRoot: true },
+        skip: 0,
+        limit: LIMIT_MAX,
+      });
+      for (const row of rows) {
+        const id: ObjectID | string | undefined = row._id;
+        if (id) {
+          result.add(id.toString());
+        }
       }
     }

package/Server/Types/Database/Permissions/OwnedScopePermission.ts CHANGED Viewed

@@ -208,15 +208,23 @@ export default class OwnedScopePermission {
   ): Promise<Array<ObjectID>> {
     const model: BaseModel = new modelType();
-    // Determine which model's owner tables to consult.
-    let resolverName: string;
-    if (model.ownedThrough) {
-      // eslint-disable-next-line @typescript-eslint/no-explicit-any
-      resolverName = (model.ownedThrough.parentModel as any).name;
-    } else {
-      // eslint-disable-next-line @typescript-eslint/no-explicit-any
-      resolverName = (modelType as any).name;
-    }
+    /*
+     * Which model(s) owner tables to consult. A nested model can inherit
+     * ownership from several parent resource types when its FK is
+     * polymorphic (e.g. a telemetry serviceId that may point at a Service,
+     * Host, DockerHost or KubernetesCluster) — resolve and union the owned
+     * ids across all of them. Top-level operational resources consult
+     * their own owner tables.
+     */
+    const resolverNames: Array<string> = model.ownedThrough
+      ? model.ownedThrough.parentModels.map(
+          // eslint-disable-next-line @typescript-eslint/no-explicit-any
+          (parentModel: any) => {
+            return parentModel.name;
+          },
+        )
+      : // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        [(modelType as any).name];
     /*
      * Lazy require to avoid the circular dep cycle: this file is reachable
@@ -227,66 +235,79 @@ export default class OwnedScopePermission {
       // eslint-disable-next-line @typescript-eslint/no-require-imports, @typescript-eslint/no-var-requires
       require("./OwnerTableRegistry").default;
-    const registryEntry: OwnerTablePair | undefined =
-      ownerTableRegistry.get(resolverName);
-    if (!registryEntry) {
-      /*
-       * No registered owner tables for this model — Owned scope can't
-       * resolve, so nothing is accessible.
-       */
-      return [];
-    }
     const seen: Set<string> = new Set<string>();
-    const fkColumn: string = registryEntry.fkColumn;
-    /*
-     * User-ownership lookup. Skipped for non-user callers (API keys, Probes
-     * with no userId); those evaluate `Owned` as `All` elsewhere.
-     */
-    if (props.userId) {
-      const userOwnedRows: Array<BaseModel> =
-        await registryEntry.ownerUserService.findBy({
-          query: {
-            userId: props.userId,
-            ...(props.tenantId ? { projectId: props.tenantId } : {}),
-          },
-          select: { [fkColumn]: true },
-          props: { isRoot: true },
-          skip: 0,
-          limit: LIMIT_MAX,
-        });
-      for (const row of userOwnedRows) {
-        // eslint-disable-next-line @typescript-eslint/no-explicit-any
-        const value: ObjectID | undefined = (row as any)[fkColumn];
-        if (value) {
-          seen.add(value.toString());
+    for (const resolverName of resolverNames) {
+      const registryEntry: OwnerTablePair | undefined =
+        ownerTableRegistry.get(resolverName);
+      if (!registryEntry) {
+        /*
+         * No registered owner tables for this parent — skip it. Other
+         * parents (or includeProjectScope below) may still resolve.
+         */
+        continue;
+      }
+      const fkColumn: string = registryEntry.fkColumn;
+      /*
+       * User-ownership lookup. Skipped for non-user callers (API keys,
+       * Probes with no userId); those evaluate `Owned` as `All` elsewhere.
+       */
+      if (props.userId) {
+        const userOwnedRows: Array<BaseModel> =
+          await registryEntry.ownerUserService.findBy({
+            query: {
+              userId: props.userId,
+              ...(props.tenantId ? { projectId: props.tenantId } : {}),
+            },
+            select: { [fkColumn]: true },
+            props: { isRoot: true },
+            skip: 0,
+            limit: LIMIT_MAX,
+          });
+        for (const row of userOwnedRows) {
+          // eslint-disable-next-line @typescript-eslint/no-explicit-any
+          const value: ObjectID | undefined = (row as any)[fkColumn];
+          if (value) {
+            seen.add(value.toString());
+          }
         }
       }
-    }
-    // Team-ownership lookup.
-    if (props.userTeamIds && props.userTeamIds.length > 0) {
-      const teamOwnedRows: Array<BaseModel> =
-        await registryEntry.ownerTeamService.findBy({
-          query: {
-            teamId: QueryHelper.any(props.userTeamIds),
-            ...(props.tenantId ? { projectId: props.tenantId } : {}),
-          },
-          select: { [fkColumn]: true },
-          props: { isRoot: true },
-          skip: 0,
-          limit: LIMIT_MAX,
-        });
-      for (const row of teamOwnedRows) {
-        // eslint-disable-next-line @typescript-eslint/no-explicit-any
-        const value: ObjectID | undefined = (row as any)[fkColumn];
-        if (value) {
-          seen.add(value.toString());
+      // Team-ownership lookup.
+      if (props.userTeamIds && props.userTeamIds.length > 0) {
+        const teamOwnedRows: Array<BaseModel> =
+          await registryEntry.ownerTeamService.findBy({
+            query: {
+              teamId: QueryHelper.any(props.userTeamIds),
+              ...(props.tenantId ? { projectId: props.tenantId } : {}),
+            },
+            select: { [fkColumn]: true },
+            props: { isRoot: true },
+            skip: 0,
+            limit: LIMIT_MAX,
+          });
+        for (const row of teamOwnedRows) {
+          // eslint-disable-next-line @typescript-eslint/no-explicit-any
+          const value: ObjectID | undefined = (row as any)[fkColumn];
+          if (value) {
+            seen.add(value.toString());
+          }
         }
       }
     }
+    /*
+     * Polymorphic FK rows with no owning resource (the unattributed
+     * "Unknown" telemetry bucket) carry the projectId in the FK column.
+     * They belong to the project, not any single owner, so include the
+     * tenant id when the model opts in via includeProjectScope.
+     */
+    if (model.ownedThrough?.includeProjectScope && props.tenantId) {
+      seen.add(props.tenantId.toString());
+    }
     const result: Array<ObjectID> = [];
     for (const id of seen) {
       result.push(new ObjectID(id));

package/Server/Types/Database/Permissions/OwnerTableRegistry.ts CHANGED Viewed

@@ -14,10 +14,27 @@ import ScheduledMaintenanceOwnerTeamService from "../../../Services/ScheduledMai
 import ScheduledMaintenanceOwnerUserService from "../../../Services/ScheduledMaintenanceOwnerUserService";
 import ServiceOwnerTeamService from "../../../Services/ServiceOwnerTeamService";
 import ServiceOwnerUserService from "../../../Services/ServiceOwnerUserService";
+import HostOwnerTeamService from "../../../Services/HostOwnerTeamService";
+import HostOwnerUserService from "../../../Services/HostOwnerUserService";
+import DockerHostOwnerTeamService from "../../../Services/DockerHostOwnerTeamService";
+import DockerHostOwnerUserService from "../../../Services/DockerHostOwnerUserService";
+import KubernetesClusterOwnerTeamService from "../../../Services/KubernetesClusterOwnerTeamService";
+import KubernetesClusterOwnerUserService from "../../../Services/KubernetesClusterOwnerUserService";
 import StatusPageOwnerTeamService from "../../../Services/StatusPageOwnerTeamService";
 import StatusPageOwnerUserService from "../../../Services/StatusPageOwnerUserService";
 import WorkflowOwnerTeamService from "../../../Services/WorkflowOwnerTeamService";
 import WorkflowOwnerUserService from "../../../Services/WorkflowOwnerUserService";
+/*
+ * The resources whose ids can appear in a telemetry row's polymorphic
+ * serviceId also expose their own service (for label-scope resolution).
+ * Imported here so the registry is the single source of truth for the
+ * telemetry serviceId polymorphism — see canOwnTelemetry / modelService.
+ */
+import ServiceService from "../../../Services/ServiceService";
+import MonitorService from "../../../Services/MonitorService";
+import HostService from "../../../Services/HostService";
+import DockerHostService from "../../../Services/DockerHostService";
+import KubernetesClusterService from "../../../Services/KubernetesClusterService";
 /*
  * Maps an operational model name (e.g. "Monitor") to the two services that
@@ -35,6 +52,22 @@ export interface OwnerTablePair {
   // eslint-disable-next-line @typescript-eslint/no-explicit-any
   ownerTeamService: any;
   fkColumn: string;
+  /*
+   * True when a telemetry row's serviceId (polymorphic, discriminated by
+   * serviceType) can reference this resource type. The analytics
+   * owned/labels scope resolution iterates the entries flagged here, so
+   * the telemetry serviceId polymorphism lives only in this registry —
+   * adding a new telemetry-owning resource needs just an entry here, with
+   * no edits in ModelPermission.
+   */
+  canOwnTelemetry?: boolean;
+  /*
+   * The resource's own service, used by labels-scope resolution to find
+   * resources whose labels match the user's. Set for canOwnTelemetry
+   * types (they all carry labels).
+   */
+  // eslint-disable-next-line @typescript-eslint/no-explicit-any
+  modelService?: any;
 }
 const ownerTableRegistry: Map<string, OwnerTablePair> = new Map<
@@ -47,6 +80,8 @@ const ownerTableRegistry: Map<string, OwnerTablePair> = new Map<
       ownerUserService: MonitorOwnerUserService,
       ownerTeamService: MonitorOwnerTeamService,
       fkColumn: "monitorId",
+      canOwnTelemetry: true,
+      modelService: MonitorService,
     },
   ],
   [
@@ -111,6 +146,38 @@ const ownerTableRegistry: Map<string, OwnerTablePair> = new Map<
       ownerUserService: ServiceOwnerUserService,
       ownerTeamService: ServiceOwnerTeamService,
       fkColumn: "serviceId",
+      canOwnTelemetry: true,
+      modelService: ServiceService,
+    },
+  ],
+  [
+    "Host",
+    {
+      ownerUserService: HostOwnerUserService,
+      ownerTeamService: HostOwnerTeamService,
+      fkColumn: "hostId",
+      canOwnTelemetry: true,
+      modelService: HostService,
+    },
+  ],
+  [
+    "DockerHost",
+    {
+      ownerUserService: DockerHostOwnerUserService,
+      ownerTeamService: DockerHostOwnerTeamService,
+      fkColumn: "dockerHostId",
+      canOwnTelemetry: true,
+      modelService: DockerHostService,
+    },
+  ],
+  [
+    "KubernetesCluster",
+    {
+      ownerUserService: KubernetesClusterOwnerUserService,
+      ownerTeamService: KubernetesClusterOwnerTeamService,
+      fkColumn: "kubernetesClusterId",
+      canOwnTelemetry: true,
+      modelService: KubernetesClusterService,
     },
   ],
   [

package/Server/Utils/Logger.ts CHANGED Viewed

@@ -1,5 +1,6 @@
 import { LogLevel } from "../EnvironmentConfig";
 import OneUptimeTelemetry, { TelemetryLogger } from "./Telemetry";
+import TelemetryContext from "./Telemetry/TelemetryContext";
 import { SeverityNumber } from "@opentelemetry/api-logs";
 import Exception from "../../Types/Exception/Exception";
 import { JSONObject } from "../../Types/JSON";
@@ -171,9 +172,19 @@ export default class logger {
         return;
       }
+      /*
+       * Merge ambient TelemetryContext attributes (projectId, userId,
+       * monitorId, requestId, ...) into every log record. Attributes passed
+       * explicitly to the log call take precedence over the ambient context.
+       */
+      const mergedAttributes: LogAttributes = {
+        ...TelemetryContext.getAttributes(),
+        ...(data.attributes || {}),
+      };
       const sanitizedAttributes:
         | Record<string, string | number | boolean>
-        | undefined = this.sanitizeAttributes(data.attributes);
+        | undefined = this.sanitizeAttributes(mergedAttributes);
       logger.emit({
         body: this.serializeLogBody(data.body),

package/Server/Utils/StartServer.ts CHANGED Viewed

@@ -29,6 +29,7 @@ import logger, {
 import "./Process";
 import Response from "./Response";
 import SpanUtil from "./Telemetry/SpanUtil";
+import TelemetryContext from "./Telemetry/TelemetryContext";
 import { api } from "@opentelemetry/sdk-node";
 import StatusCode from "../../Types/API/StatusCode";
 import HTTPErrorResponse from "../../Types/API/HTTPErrorResponse";
@@ -213,12 +214,19 @@ app.use((req: ExpressRequest, _res: ExpressResponse, next: NextFunction) => {
   const requestId: string = crypto.randomUUID();
   (req as OneUptimeRequest).requestId = requestId;
-  // Tag the current span with requestId so all downstream spans inherit context
-  SpanUtil.addAttributesToCurrentSpan({
-    requestId: requestId,
-  });
+  /*
+   * Open a telemetry-context scope for the entire request. requestId is seeded
+   * here; projectId/userId are added later by the auth middleware. Because
+   * ContextSpanProcessor and Logger read this ambient context, every span and
+   * log produced downstream inherits it automatically.
+   */
+  TelemetryContext.runWithContext({ requestId: requestId }, () => {
+    SpanUtil.addAttributesToCurrentSpan({
+      requestId: requestId,
+    });
-  next();
+    next();
+  });
 });
 export interface InitFuctionOptions {

package/Server/Utils/Telemetry/ContextSpanProcessor.ts ADDED Viewed

@@ -0,0 +1,48 @@
+import TelemetryContext from "./TelemetryContext";
+import type { Context } from "@opentelemetry/api";
+import type {
+  ReadableSpan,
+  Span,
+  SpanProcessor,
+} from "@opentelemetry/sdk-trace-base";
+/**
+ * Copies the ambient {@link TelemetryContext} attributes (projectId, userId,
+ * monitorId, incidentId, requestId, ...) onto every span at creation time.
+ *
+ * Combined with `TelemetryContext` scopes seeded at each entry point (HTTP
+ * request, worker job, probe check, cron run), this makes the full
+ * tenant/business context queryable on all spans — including the ~1958
+ * attribute-less `@CaptureSpan` spans — without touching any of those call
+ * sites.
+ */
+export default class ContextSpanProcessor implements SpanProcessor {
+  public onStart(span: Span, _parentContext: Context): void {
+    try {
+      const attributes: Record<string, string | number | boolean> =
+        TelemetryContext.getAttributes();
+      for (const key in attributes) {
+        const value: string | number | boolean | undefined = attributes[key];
+        if (value !== undefined && value !== null) {
+          span.setAttribute(key, value);
+        }
+      }
+    } catch {
+      // Context enrichment must never break span creation.
+    }
+  }
+  public onEnd(_span: ReadableSpan): void {
+    // no-op: enrichment happens entirely in onStart.
+  }
+  public shutdown(): Promise<void> {
+    return Promise.resolve();
+  }
+  public forceFlush(): Promise<void> {
+    return Promise.resolve();
+  }
+}

package/Server/Utils/Telemetry/SpanUtil.ts CHANGED Viewed

@@ -1,5 +1,6 @@
-import OpenTelemetryAPI, { Span } from "@opentelemetry/api";
 import { DisableTelemetry } from "../../EnvironmentConfig";
+import TelemetryContext from "./TelemetryContext";
+import OpenTelemetryAPI, { Span } from "@opentelemetry/api";
 export interface SpanAttributes {
   userId?: string | undefined;
@@ -21,14 +22,26 @@ export interface SpanAttributes {
 export default class SpanUtil {
   /**
-   * Add attributes to the currently active span.
-   * Safe to call even when there is no active span or telemetry is disabled.
+   * Add attributes to the current unit of work.
+   *
+   * This does two things:
+   *  1. Merges the attributes into the ambient {@link TelemetryContext} so that
+   *     every span and log produced later in this request/job/check inherits
+   *     them (OTel span attributes do NOT propagate parent -> child on their
+   *     own, so this is what actually makes context flow downstream).
+   *  2. Tags the currently active span immediately, if there is one.
+   *
+   * Safe to call even when there is no active span or scope, or when telemetry
+   * is disabled.
    */
   public static addAttributesToCurrentSpan(attributes: SpanAttributes): void {
     if (DisableTelemetry) {
       return;
     }
+    // Propagate to all downstream spans + logs via the ambient context.
+    TelemetryContext.setAttributes(attributes);
     const span: Span | undefined = OpenTelemetryAPI.trace.getActiveSpan();
     if (!span) {
@@ -55,36 +68,4 @@ export default class SpanUtil {
       }
     }
   }
-  /**
-   * Build span attributes from a request-like object.
-   * Similar to getLogAttributesFromRequest in Logger but for spans.
-   */
-  public static getSpanAttributesFromRequest(
-    req?: {
-      requestId?: string;
-      tenantId?: { toString(): string };
-      userAuthorization?: { userId?: { toString(): string } };
-    } | null,
-  ): SpanAttributes {
-    if (!req) {
-      return {};
-    }
-    const attributes: SpanAttributes = {};
-    if (req.requestId) {
-      attributes["requestId"] = req.requestId;
-    }
-    if (req.tenantId) {
-      attributes["projectId"] = req.tenantId.toString();
-    }
-    if (req.userAuthorization?.userId) {
-      attributes["userId"] = req.userAuthorization.userId.toString();
-    }
-    return attributes;
-  }
 }