@uoa/lambda-tracing 2.1.2 → 2.2.1

package/ReleaseSteps.md

@@ -1,8 +1,9 @@
 # Steps to release package to npm
 1. `npm login`
 2. `npm version <new version>`
-3. Push to git to sync new tags
-4. `npm publish --access=public --otp=<2FA code>`
+3. Update changelog.md & commit the changes
+4. Push to git to sync new tags
+5. `npm publish --access=public --otp=<2FA code>`
 
 # Testing locally before release
 1. `npm pack`

package/UoaLogger.ts

@@ -0,0 +1,103 @@
+import winston, {Logger, LoggerOptions} from "winston";
+
+/**
+ * Audit information to describe who is accessing a sensitive or confidential resource.
+ */
+export interface AuditInformation {
+    /**
+     * Application name that groups different physical systems into a single logical group.
+     * For example, this may be the front end system name so that multiple backend system logs can be grouped together.
+     */
+    application?: string;
+    /**
+     * The ID of the user who is accessing the resource.
+     */
+    accessedBy: string;
+    /**
+     * The action taken on the resource.
+     */
+    action: 'read' | 'update' | 'create' | 'delete';
+    /**
+     * The ID of the owner of the resource information.
+     */
+    ownerId: string;
+    /**
+     * The type of resource accessed. For example, "application" or "enrolment".
+     * By convention this value should be singular.
+     */
+    resourceType: string;
+    /**
+     * The unique resource identifier. For example, the application number.
+     * This is not required if the resource identifier is the same as the owner.
+     */
+    resourceId?: string;
+}
+
+export class UoaLogger {
+    logger: Logger;
+
+    constructor(options: LoggerOptions) {
+        this.logger = winston.createLogger(options);
+    }
+
+    /**
+     * Function to log debug level messages.
+     * @param {string} message - Debug message.
+     */
+    public debug(message: string) {
+        this.logger.debug(message);
+    }
+
+    /**
+     * Function to log info level messages.
+     * @param {string} message - Information message.
+     */
+    public info(message: string) {
+        this.logger.info(message);
+    }
+
+    /**
+     * Function to log audit level messages.
+     * @param {AuditInformation} auditInformation - Audit Information object containing relevant details.
+     * @param {string=} message - Audit message (optional).
+     */
+    public audit(auditInformation: AuditInformation, message?: string): void {
+        // Initialize logMessage with mandatory fields
+        let logMessage: string =
+            `accessedBy:${auditInformation.accessedBy.replace(/\s/g, '')} ` +
+            `action:${auditInformation.action.toString().replace(/\s/g, '')} ` +
+            `owner:${auditInformation.ownerId.replace(/\s/g, '')} ` +
+            `resourceType:${auditInformation.resourceType.replace(/\s/g, '')}`;
+
+        // Add optional fields if they exist
+        if (auditInformation.application) {
+            logMessage = `application:${auditInformation.application.replace(/\s/g, '')} ` + logMessage;
+        }
+        if (auditInformation.resourceId) {
+            logMessage += ` resourceId:${auditInformation.resourceId.replace(/\s/g, '')}`;
+        }
+
+        // Append additional message if provided
+        if (message) {
+            logMessage += ` ${message}`;
+        }
+
+        this.logger.log("audit", logMessage);
+    }
+
+    /**
+     * Function to log warn level messages.
+     * @param {string} message - Warn message.
+     */
+    public warn(message: string) {
+        this.logger.warn(message);
+    }
+
+    /**
+     * Function to log error level messages.
+     * @param {string} message - Error message.
+     */
+    public error(message: string) {
+        this.logger.error(message);
+    }
+}

package/changelog.md

@@ -1,5 +1,12 @@
 # Changelog
 
+## 2.2.1
+- Fix formatting in readme
+
+## 2.2.0
+- Added audit level to logger
+- The logger debug, info, warn, and error functions now require a string input
+
 ## 2.1.2
 - Updated XML response parsing to include attribute tags
 

package/dist/UoaLogger.d.ts

@@ -0,0 +1,63 @@
+import { Logger, LoggerOptions } from "winston";
+/**
+ * Audit information to describe who is accessing a sensitive or confidential resource.
+ */
+export interface AuditInformation {
+    /**
+     * Application name that groups different physical systems into a single logical group.
+     * For example, this may be the front end system name so that multiple backend system logs can be grouped together.
+     */
+    application?: string;
+    /**
+     * The ID of the user who is accessing the resource.
+     */
+    accessedBy: string;
+    /**
+     * The action taken on the resource.
+     */
+    action: 'read' | 'update' | 'create' | 'delete';
+    /**
+     * The ID of the owner of the resource information.
+     */
+    ownerId: string;
+    /**
+     * The type of resource accessed. For example, "application" or "enrolment".
+     * By convention this value should be singular.
+     */
+    resourceType: string;
+    /**
+     * The unique resource identifier. For example, the application number.
+     * This is not required if the resource identifier is the same as the owner.
+     */
+    resourceId?: string;
+}
+export declare class UoaLogger {
+    logger: Logger;
+    constructor(options: LoggerOptions);
+    /**
+     * Function to log debug level messages.
+     * @param {string} message - Debug message.
+     */
+    debug(message: string): void;
+    /**
+     * Function to log info level messages.
+     * @param {string} message - Information message.
+     */
+    info(message: string): void;
+    /**
+     * Function to log audit level messages.
+     * @param {AuditInformation} auditInformation - Audit Information object containing relevant details.
+     * @param {string=} message - Audit message (optional).
+     */
+    audit(auditInformation: AuditInformation, message?: string): void;
+    /**
+     * Function to log warn level messages.
+     * @param {string} message - Warn message.
+     */
+    warn(message: string): void;
+    /**
+     * Function to log error level messages.
+     * @param {string} message - Error message.
+     */
+    error(message: string): void;
+}

package/dist/UoaLogger.js

@@ -0,0 +1,65 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UoaLogger = void 0;
+const winston_1 = __importDefault(require("winston"));
+class UoaLogger {
+    constructor(options) {
+        this.logger = winston_1.default.createLogger(options);
+    }
+    /**
+     * Function to log debug level messages.
+     * @param {string} message - Debug message.
+     */
+    debug(message) {
+        this.logger.debug(message);
+    }
+    /**
+     * Function to log info level messages.
+     * @param {string} message - Information message.
+     */
+    info(message) {
+        this.logger.info(message);
+    }
+    /**
+     * Function to log audit level messages.
+     * @param {AuditInformation} auditInformation - Audit Information object containing relevant details.
+     * @param {string=} message - Audit message (optional).
+     */
+    audit(auditInformation, message) {
+        // Initialize logMessage with mandatory fields
+        let logMessage = `accessedBy:${auditInformation.accessedBy.replace(/\s/g, '')} ` +
+            `action:${auditInformation.action.toString().replace(/\s/g, '')} ` +
+            `owner:${auditInformation.ownerId.replace(/\s/g, '')} ` +
+            `resourceType:${auditInformation.resourceType.replace(/\s/g, '')}`;
+        // Add optional fields if they exist
+        if (auditInformation.application) {
+            logMessage = `application:${auditInformation.application.replace(/\s/g, '')} ` + logMessage;
+        }
+        if (auditInformation.resourceId) {
+            logMessage += ` resourceId:${auditInformation.resourceId.replace(/\s/g, '')}`;
+        }
+        // Append additional message if provided
+        if (message) {
+            logMessage += ` ${message}`;
+        }
+        this.logger.log("audit", logMessage);
+    }
+    /**
+     * Function to log warn level messages.
+     * @param {string} message - Warn message.
+     */
+    warn(message) {
+        this.logger.warn(message);
+    }
+    /**
+     * Function to log error level messages.
+     * @param {string} message - Error message.
+     */
+    error(message) {
+        this.logger.error(message);
+    }
+}
+exports.UoaLogger = UoaLogger;

package/dist/logging.js

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 const UoaB3Propagator_1 = require("./UoaB3Propagator");
 const tracing_1 = require("./tracing");
+const UoaLogger_1 = require("./UoaLogger");
 const winston = require('winston');
 const moment = require('moment');
 const path = require('path');
@@ -10,8 +11,9 @@ const defaultLogPattern = '%date [%thread] %level %class - [[[%traceId,%spanId,%
 const uoaLogLevels = {
     error: 0,
     warn: 1,
-    info: 2,
-    debug: 3
+    audit: 2,
+    info: 3,
+    debug: 4
 };
 const uoaLoggingFormat = function (callingModule) {
     return winston.format.printf((logInfo) => {
@@ -58,7 +60,7 @@ function getLogReplacementValues(callingModule, logInfo) {
     return logReplacements;
 }
 module.exports = function (callingModule) {
-    return winston.createLogger({
+    return new UoaLogger_1.UoaLogger({
         levels: uoaLogLevels,
         transports: [
             new winston.transports.Console({

package/logging.ts

@@ -1,5 +1,6 @@
 import {B3_INFO_KEY, B3_TRACE_ID_LENGTH_KEY} from "./UoaB3Propagator";
 import {getTraceInfoHeader} from "./tracing";
+import {UoaLogger} from "./UoaLogger";
 
 const winston = require('winston');
 const moment = require('moment');
@@ -10,8 +11,9 @@ const defaultLogPattern = '%date [%thread] %level %class - [[[%traceId,%spanId,%
 const uoaLogLevels = {
     error: 0,
     warn: 1,
-    info: 2,
-    debug: 3
+    audit: 2,
+    info: 3,
+    debug: 4
 }
 
 const uoaLoggingFormat = function(callingModule: NodeModule) {
@@ -68,7 +70,7 @@ function getLogReplacementValues(callingModule: NodeModule, logInfo: any): Map<s
 }
 
 module.exports = function (callingModule: NodeModule) {
-    return winston.createLogger({
+    return new UoaLogger({
         levels: uoaLogLevels,
         transports: [
             new winston.transports.Console({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@uoa/lambda-tracing",
-  "version": "2.1.2",
+  "version": "2.2.1",
   "description": "Library for logging & distributed tracing in UoA Lambda projects",
   "repository": {
     "type": "git",
@@ -36,7 +36,7 @@
     "@opentelemetry/sdk-trace-node": "^1.8.0",
     "fast-xml-parser": "^4.3.4",
     "moment": "^2.29.3",
-    "winston": "^3.7.2"
+    "winston": "^3.13.0"
   },
   "devDependencies": {
     "@types/node": "^17.0.35",

package/readme.md

@@ -47,14 +47,15 @@ logger.info('Hello Logger!');
 
 **Logging Levels**
 
-At UoA, we have four logging levels available to use. Ordered by decreasing priority, these are:
+At UoA, we have five logging levels available to use. Ordered by decreasing priority, these are:
 
-|Level|    Logger usage    |
-|-----|--------------------|
-|ERROR|```logger.error()```|
-|WARN |```logger.warn()``` |
-|INFO |```logger.info()``` |
-|DEBUG|```logger.debug()```|
+| Level | Logger usage         |
+|-------|----------------------|
+| ERROR | ```logger.error()``` |
+| WARN  | ```logger.warn()```  |
+| AUDIT | ```logger.audit()``` |
+| INFO  | ```logger.info()```  |
+| DEBUG | ```logger.debug()``` |
 
 By default, any log at the `INFO` level or higher will be logged. However, this can be changed by adding another
 environment variable `loggingLevel` in the lambda properties map of the environment.yml file. The value of this
@@ -68,6 +69,7 @@ lambda:
 ```
 logger.debug('Will not be logged');
 logger.info('Will not be logged');
+logger.audit({...}, 'Will not be logged');
 logger.warn('Will be logged');
 logger.error('Will be logged');
 ```
@@ -89,16 +91,43 @@ lambda:
 ```
 Valid logging pattern placeholders are as follows:
 
-|Placeholder|Replacement value|Example value|
-|-----------|-----------------|-----|
-|%date|Date time when the message is logged in ISO8601 format|2022-05-29T21:31:11.250Z|
-|%thread|Unused, this is only present in the default pattern to match with UoA logging standards. Value will always be ```-```|-|
-|%level|Log level|INFO|
-|%class|The module which logged the message|src.handle-service|
-|%traceId|Unique Id for the request|5c0c783c965a684842608f10422fdf2c|
-|%spanId|Unique Id for the current lambda invocation|6a8b025511ac1191|
-|%info|Extra information to help with filtering the logs|usefulCode=12345|
-|%message|The logged message|Hello Logger!|
+| Placeholder | Replacement value                                                                                                     | Example value                    |
+|-------------|-----------------------------------------------------------------------------------------------------------------------|----------------------------------|
+| %date       | Date time when the message is logged in ISO8601 format                                                                | 2022-05-29T21:31:11.250Z         |
+| %thread     | Unused, this is only present in the default pattern to match with UoA logging standards. Value will always be ```-``` | -                                |
+| %level      | Log level                                                                                                             | INFO                             |
+| %class      | The module which logged the message                                                                                   | src.handle-service               |
+| %traceId    | Unique Id for the request                                                                                             | 5c0c783c965a684842608f10422fdf2c |
+| %spanId     | Unique Id for the current lambda invocation                                                                           | 6a8b025511ac1191                 |
+| %info       | Extra information to help with filtering the logs                                                                     | usefulCode=12345                 |
+| %message    | The logged message                                                                                                    | Hello Logger!                    |
+
+**Audit Logs**
+
+All logger functions **_except_** `logger.audit()` take a single string as the message to be logged. The audit() function
+takes an `AuditInformation` object as a parameter. A second `message` parameter of type string is optional. Using the
+values passed in the `AuditInformation` parameter, the audit log message will be standardised so that logstash can
+correctly ingest and send the logs to the _uoa-app-audit-logs-*_ index on Kibana.
+
+The `AuditInformation` parameter has the below required properties:
+
+| Property     | Type                                                   | Description                                        |
+|--------------|--------------------------------------------------------|----------------------------------------------------|
+| application (optional)   | string | Application name that groups different physical systems into a single logical group. For example, this may be the front end system name so that multiple backend system logs can be grouped together.        |
+| action       | 'read' | 'update' | 'create' | 'delete' | The CRUD action being performed on the resource.    |
+| resourceId (optional)   | string                                                 | The ID of the resource being actioned upon.         |
+| resourceType | string                                                 | The name/type of the resource being actioned upon.  |
+| ownerId | string                                                 | The ID of the owner of the resource information.  |
+| accessedBy   | string                                                 | The ID of the person/system accessing the resource. |
+
+Calling the `logger.audit()` function as below:
+```typescript
+logger.audit({application: "applicationName", action: "read", resourceId: "123456789", resourceType: "personalDetails", accessedBy: "upi1234", ownerId: "upi5678"}, "Additional useful info");
+```
+Will produce the following log message:
+```text
+2024-04-12T00:58:05.321Z [-] AUDIT src.controller.person-controller - [[[TraceId,SpanId,Info]]] application:applicationName accessedBy:upi1234 action:read owner:upi5678 resourceType:personalDetails resourceId:123456789 Additional useful info
+```
 
 ### Distributed Tracing
 There are two headers that can be passed in API calls to your lambda project using this library: ```X-B3-TraceId``` and ```X-B3-Info```.