@webiny/api-audit-logs 0.0.0-unstable.06b2ede40f

package/subscriptions/i18n/locales.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","onLocaleAfterCreateHook","context","i18n","locales","onLocaleAfterCreate","subscribe","locale","createAuditLog","getAuditConfig","AUDIT","I18N","LOCALE","CREATE","code","error","WebinyError","from","message","exports","onLocaleAfterUpdateHook","onLocaleAfterUpdate","original","UPDATE","before","after","onLocaleAfterDeleteHook","onLocaleAfterDelete","DELETE"],"sources":["locales.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const onLocaleAfterCreateHook = (context: AuditLogsContext) => {\n    context.i18n.locales.onLocaleAfterCreate.subscribe(async ({ locale }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.I18N.LOCALE.CREATE);\n\n            await createAuditLog(\"Locale created\", locale, locale.code, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onLocaleAfterCreateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_LOCALE_CREATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onLocaleAfterUpdateHook = (context: AuditLogsContext) => {\n    context.i18n.locales.onLocaleAfterUpdate.subscribe(async ({ locale, original }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.I18N.LOCALE.UPDATE);\n\n            await createAuditLog(\n                \"Locale updated\",\n                { before: original, after: locale },\n                locale.code,\n                context\n            );\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onLocaleAfterUpdateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_LOCALE_UPDATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onLocaleAfterDeleteHook = (context: AuditLogsContext) => {\n    context.i18n.locales.onLocaleAfterDelete.subscribe(async ({ locale }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.I18N.LOCALE.DELETE);\n\n            await createAuditLog(\"Locale deleted\", locale, locale.code, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onLocaleAfterDeleteHook hook\",\n                code: \"AUDIT_LOGS_AFTER_LOCALE_DELETE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAGO,MAAMG,uBAAuB,GAAIC,OAAyB,IAAK;EAClEA,OAAO,CAACC,IAAI,CAACC,OAAO,CAACC,mBAAmB,CAACC,SAAS,CAAC,OAAO;IAAEC;EAAO,CAAC,KAAK;IACrE,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,IAAI,CAACC,MAAM,CAACC,MAAM,CAAC;MAE/D,MAAML,cAAc,CAAC,gBAAgB,EAAED,MAAM,EAAEA,MAAM,CAACO,IAAI,EAAEZ,OAAO,CAAC;IACxE,CAAC,CAAC,OAAOa,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DJ,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACK,OAAA,CAAAlB,uBAAA,GAAAA,uBAAA;AAEK,MAAMmB,uBAAuB,GAAIlB,OAAyB,IAAK;EAClEA,OAAO,CAACC,IAAI,CAACC,OAAO,CAACiB,mBAAmB,CAACf,SAAS,CAAC,OAAO;IAAEC,MAAM;IAAEe;EAAS,CAAC,KAAK;IAC/E,IAAI;MACA,MAAMd,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,IAAI,CAACC,MAAM,CAACW,MAAM,CAAC;MAE/D,MAAMf,cAAc,CAChB,gBAAgB,EAChB;QAAEgB,MAAM,EAAEF,QAAQ;QAAEG,KAAK,EAAElB;MAAO,CAAC,EACnCA,MAAM,CAACO,IAAI,EACXZ,OACJ,CAAC;IACL,CAAC,CAAC,OAAOa,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DJ,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACK,OAAA,CAAAC,uBAAA,GAAAA,uBAAA;AAEK,MAAMM,uBAAuB,GAAIxB,OAAyB,IAAK;EAClEA,OAAO,CAACC,IAAI,CAACC,OAAO,CAACuB,mBAAmB,CAACrB,SAAS,CAAC,OAAO;IAAEC;EAAO,CAAC,KAAK;IACrE,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,IAAI,CAACC,MAAM,CAACgB,MAAM,CAAC;MAE/D,MAAMpB,cAAc,CAAC,gBAAgB,EAAED,MAAM,EAAEA,MAAM,CAACO,IAAI,EAAEZ,OAAO,CAAC;IACxE,CAAC,CAAC,OAAOa,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DJ,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACK,OAAA,CAAAO,uBAAA,GAAAA,uBAAA","ignoreList":[]}

package/subscriptions/index.d.ts

@@ -0,0 +1,2 @@
+import type { AuditLogsContext } from "../types";
+export declare const createSubscriptionHooks: (context: AuditLogsContext) => void;

package/subscriptions/index.js

@@ -0,0 +1,25 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.createSubscriptionHooks = void 0;
+var _fileManager = require("./fileManager");
+var _headlessCms = require("./headlessCms");
+var _security = require("./security");
+var _i18n = require("./i18n");
+var _mailer = require("./mailer");
+var _aco = require("./aco");
+var _apw = require("./apw");
+const createSubscriptionHooks = context => {
+  (0, _fileManager.createFileManagerHooks)(context);
+  (0, _headlessCms.createHeadlessCmsHooks)(context);
+  (0, _security.createSecurityHooks)(context);
+  (0, _i18n.createI18NHooks)(context);
+  (0, _mailer.createMailerHooks)(context);
+  (0, _aco.createAcoHooks)(context);
+  context.wcp.canUseFeature("advancedPublishingWorkflow") && (0, _apw.createApwHooks)(context);
+};
+exports.createSubscriptionHooks = createSubscriptionHooks;
+
+//# sourceMappingURL=index.js.map

package/subscriptions/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_fileManager","require","_headlessCms","_security","_i18n","_mailer","_aco","_apw","createSubscriptionHooks","context","createFileManagerHooks","createHeadlessCmsHooks","createSecurityHooks","createI18NHooks","createMailerHooks","createAcoHooks","wcp","canUseFeature","createApwHooks","exports"],"sources":["index.ts"],"sourcesContent":["import { createFileManagerHooks } from \"./fileManager\";\nimport { createHeadlessCmsHooks } from \"./headlessCms\";\nimport { createSecurityHooks } from \"./security\";\nimport { createI18NHooks } from \"./i18n\";\nimport { createMailerHooks } from \"./mailer\";\nimport { createAcoHooks } from \"./aco\";\nimport { createApwHooks } from \"./apw\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const createSubscriptionHooks = (context: AuditLogsContext) => {\n    createFileManagerHooks(context);\n    createHeadlessCmsHooks(context);\n    createSecurityHooks(context);\n    createI18NHooks(context);\n    createMailerHooks(context);\n    createAcoHooks(context);\n    context.wcp.canUseFeature(\"advancedPublishingWorkflow\") && createApwHooks(context);\n};\n"],"mappings":";;;;;;AAAA,IAAAA,YAAA,GAAAC,OAAA;AACA,IAAAC,YAAA,GAAAD,OAAA;AACA,IAAAE,SAAA,GAAAF,OAAA;AACA,IAAAG,KAAA,GAAAH,OAAA;AACA,IAAAI,OAAA,GAAAJ,OAAA;AACA,IAAAK,IAAA,GAAAL,OAAA;AACA,IAAAM,IAAA,GAAAN,OAAA;AAGO,MAAMO,uBAAuB,GAAIC,OAAyB,IAAK;EAClE,IAAAC,mCAAsB,EAACD,OAAO,CAAC;EAC/B,IAAAE,mCAAsB,EAACF,OAAO,CAAC;EAC/B,IAAAG,6BAAmB,EAACH,OAAO,CAAC;EAC5B,IAAAI,qBAAe,EAACJ,OAAO,CAAC;EACxB,IAAAK,yBAAiB,EAACL,OAAO,CAAC;EAC1B,IAAAM,mBAAc,EAACN,OAAO,CAAC;EACvBA,OAAO,CAACO,GAAG,CAACC,aAAa,CAAC,4BAA4B,CAAC,IAAI,IAAAC,mBAAc,EAACT,OAAO,CAAC;AACtF,CAAC;AAACU,OAAA,CAAAX,uBAAA,GAAAA,uBAAA","ignoreList":[]}

package/subscriptions/mailer/index.d.ts

@@ -0,0 +1,2 @@
+import type { AuditLogsContext } from "../../types";
+export declare const createMailerHooks: (context: AuditLogsContext) => void;

package/subscriptions/mailer/index.js

@@ -0,0 +1,13 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.createMailerHooks = void 0;
+var _settings = require("./settings");
+const createMailerHooks = context => {
+  (0, _settings.onSettingsAfterUpdateHook)(context);
+};
+exports.createMailerHooks = createMailerHooks;
+
+//# sourceMappingURL=index.js.map

package/subscriptions/mailer/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_settings","require","createMailerHooks","context","onSettingsAfterUpdateHook","exports"],"sources":["index.ts"],"sourcesContent":["import { onSettingsAfterUpdateHook } from \"./settings\";\n\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const createMailerHooks = (context: AuditLogsContext) => {\n    onSettingsAfterUpdateHook(context);\n};\n"],"mappings":";;;;;;AAAA,IAAAA,SAAA,GAAAC,OAAA;AAIO,MAAMC,iBAAiB,GAAIC,OAAyB,IAAK;EAC5D,IAAAC,mCAAyB,EAACD,OAAO,CAAC;AACtC,CAAC;AAACE,OAAA,CAAAH,iBAAA,GAAAA,iBAAA","ignoreList":[]}

package/subscriptions/mailer/settings.d.ts

@@ -0,0 +1,2 @@
+import type { AuditLogsContext } from "../../types";
+export declare const onSettingsAfterUpdateHook: (context: AuditLogsContext) => void;

package/subscriptions/mailer/settings.js

@@ -0,0 +1,32 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault").default;
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.onSettingsAfterUpdateHook = void 0;
+var _error = _interopRequireDefault(require("@webiny/error"));
+var _config = require("../../config");
+var _getAuditConfig = require("../../utils/getAuditConfig");
+const onSettingsAfterUpdateHook = context => {
+  context.mailer.onSettingsAfterUpdate.subscribe(async ({
+    settings,
+    original
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.MAILER.SETTINGS.UPDATE);
+      await createAuditLog("Settings updated", {
+        before: original,
+        after: settings
+      }, "-", context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onSettingsAfterUpdateHook hook",
+        code: "AUDIT_LOGS_AFTER_SETTINGS_UPDATE_HOOK"
+      });
+    }
+  });
+};
+exports.onSettingsAfterUpdateHook = onSettingsAfterUpdateHook;
+
+//# sourceMappingURL=settings.js.map

package/subscriptions/mailer/settings.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","onSettingsAfterUpdateHook","context","mailer","onSettingsAfterUpdate","subscribe","settings","original","createAuditLog","getAuditConfig","AUDIT","MAILER","SETTINGS","UPDATE","before","after","error","WebinyError","from","message","code","exports"],"sources":["settings.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const onSettingsAfterUpdateHook = (context: AuditLogsContext) => {\n    context.mailer.onSettingsAfterUpdate.subscribe(async ({ settings, original }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.MAILER.SETTINGS.UPDATE);\n\n            await createAuditLog(\n                \"Settings updated\",\n                { before: original, after: settings },\n                \"-\",\n                context\n            );\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onSettingsAfterUpdateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_SETTINGS_UPDATE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAGO,MAAMG,yBAAyB,GAAIC,OAAyB,IAAK;EACpEA,OAAO,CAACC,MAAM,CAACC,qBAAqB,CAACC,SAAS,CAAC,OAAO;IAAEC,QAAQ;IAAEC;EAAS,CAAC,KAAK;IAC7E,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,MAAM,CAACC,QAAQ,CAACC,MAAM,CAAC;MAEnE,MAAML,cAAc,CAChB,kBAAkB,EAClB;QAAEM,MAAM,EAAEP,QAAQ;QAAEQ,KAAK,EAAET;MAAS,CAAC,EACrC,GAAG,EACHJ,OACJ,CAAC;IACL,CAAC,CAAC,OAAOc,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,sDAAsD;QAC/DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAApB,yBAAA,GAAAA,yBAAA","ignoreList":[]}

package/subscriptions/security/apiKeys.d.ts

@@ -0,0 +1,4 @@
+import type { AuditLogsContext } from "../../types";
+export declare const onApiKeyAfterCreateHook: (context: AuditLogsContext) => void;
+export declare const onApiKeyAfterUpdateHook: (context: AuditLogsContext) => void;
+export declare const onApiKeyAfterDeleteHook: (context: AuditLogsContext) => void;

package/subscriptions/security/apiKeys.js

@@ -0,0 +1,85 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault").default;
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.onApiKeyAfterUpdateHook = exports.onApiKeyAfterDeleteHook = exports.onApiKeyAfterCreateHook = void 0;
+var _error = _interopRequireDefault(require("@webiny/error"));
+var _config = require("../../config");
+var _getAuditConfig = require("../../utils/getAuditConfig");
+/**
+ * We need to remove the token from the API Key object, as it is a security risk.
+ *
+ * We assign the API Key object explicitly, so we do not miss any new properties that might be added in the future - and they should not be in the log.
+ */
+const cleanupApiKey = apiKey => {
+  return {
+    id: apiKey.id,
+    createdBy: apiKey.createdBy,
+    createdOn: apiKey.createdOn,
+    description: apiKey.description,
+    name: apiKey.name,
+    permissions: apiKey.permissions,
+    tenant: apiKey.tenant,
+    webinyVersion: apiKey.webinyVersion
+  };
+};
+const onApiKeyAfterCreateHook = context => {
+  context.security.onApiKeyAfterCreate.subscribe(async ({
+    apiKey: initialApiKey
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.API_KEY.CREATE);
+      const apiKey = cleanupApiKey(initialApiKey);
+      await createAuditLog("API key created", apiKey, apiKey.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onApiKeyAfterCreateHook hook",
+        code: "AUDIT_LOGS_AFTER_API_KEY_CREATE_HOOK"
+      });
+    }
+  });
+};
+exports.onApiKeyAfterCreateHook = onApiKeyAfterCreateHook;
+const onApiKeyAfterUpdateHook = context => {
+  context.security.onApiKeyAfterUpdate.subscribe(async ({
+    apiKey: initialApiKey,
+    original: initialOriginalApiKey
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.API_KEY.UPDATE);
+      const apiKey = cleanupApiKey(initialApiKey);
+      const original = cleanupApiKey(initialOriginalApiKey);
+      await createAuditLog("API key updated", {
+        before: original,
+        after: apiKey
+      }, apiKey.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onApiKeyAfterUpdateHook hook",
+        code: "AUDIT_LOGS_AFTER_API_KEY_UPDATE_HOOK"
+      });
+    }
+  });
+};
+exports.onApiKeyAfterUpdateHook = onApiKeyAfterUpdateHook;
+const onApiKeyAfterDeleteHook = context => {
+  context.security.onApiKeyAfterDelete.subscribe(async ({
+    apiKey: initialApiKey
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.API_KEY.DELETE);
+      const apiKey = cleanupApiKey(initialApiKey);
+      await createAuditLog("API key deleted", apiKey, apiKey.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onApiKeyAfterDeleteHook hook",
+        code: "AUDIT_LOGS_AFTER_API_KEY_DELETE_HOOK"
+      });
+    }
+  });
+};
+exports.onApiKeyAfterDeleteHook = onApiKeyAfterDeleteHook;
+
+//# sourceMappingURL=apiKeys.js.map

package/subscriptions/security/apiKeys.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","cleanupApiKey","apiKey","id","createdBy","createdOn","description","name","permissions","tenant","webinyVersion","onApiKeyAfterCreateHook","context","security","onApiKeyAfterCreate","subscribe","initialApiKey","createAuditLog","getAuditConfig","AUDIT","SECURITY","API_KEY","CREATE","error","WebinyError","from","message","code","exports","onApiKeyAfterUpdateHook","onApiKeyAfterUpdate","original","initialOriginalApiKey","UPDATE","before","after","onApiKeyAfterDeleteHook","onApiKeyAfterDelete","DELETE"],"sources":["apiKeys.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\nimport type { ApiKey } from \"@webiny/api-security/types\";\n\n/**\n * We need to remove the token from the API Key object, as it is a security risk.\n *\n * We assign the API Key object explicitly, so we do not miss any new properties that might be added in the future - and they should not be in the log.\n */\nconst cleanupApiKey = (apiKey: ApiKey): Omit<ApiKey, \"token\"> => {\n    return {\n        id: apiKey.id,\n        createdBy: apiKey.createdBy,\n        createdOn: apiKey.createdOn,\n        description: apiKey.description,\n        name: apiKey.name,\n        permissions: apiKey.permissions,\n        tenant: apiKey.tenant,\n        webinyVersion: apiKey.webinyVersion\n    };\n};\n\nexport const onApiKeyAfterCreateHook = (context: AuditLogsContext) => {\n    context.security.onApiKeyAfterCreate.subscribe(async ({ apiKey: initialApiKey }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.API_KEY.CREATE);\n\n            const apiKey = cleanupApiKey(initialApiKey);\n\n            await createAuditLog(\"API key created\", apiKey, apiKey.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onApiKeyAfterCreateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_API_KEY_CREATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onApiKeyAfterUpdateHook = (context: AuditLogsContext) => {\n    context.security.onApiKeyAfterUpdate.subscribe(\n        async ({ apiKey: initialApiKey, original: initialOriginalApiKey }) => {\n            try {\n                const createAuditLog = getAuditConfig(AUDIT.SECURITY.API_KEY.UPDATE);\n\n                const apiKey = cleanupApiKey(initialApiKey);\n                const original = cleanupApiKey(initialOriginalApiKey);\n\n                await createAuditLog(\n                    \"API key updated\",\n                    {\n                        before: original,\n                        after: apiKey\n                    },\n                    apiKey.id,\n                    context\n                );\n            } catch (error) {\n                throw WebinyError.from(error, {\n                    message: \"Error while executing onApiKeyAfterUpdateHook hook\",\n                    code: \"AUDIT_LOGS_AFTER_API_KEY_UPDATE_HOOK\"\n                });\n            }\n        }\n    );\n};\n\nexport const onApiKeyAfterDeleteHook = (context: AuditLogsContext) => {\n    context.security.onApiKeyAfterDelete.subscribe(async ({ apiKey: initialApiKey }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.API_KEY.DELETE);\n\n            const apiKey = cleanupApiKey(initialApiKey);\n\n            await createAuditLog(\"API key deleted\", apiKey, apiKey.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onApiKeyAfterDeleteHook hook\",\n                code: \"AUDIT_LOGS_AFTER_API_KEY_DELETE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAIA;AACA;AACA;AACA;AACA;AACA,MAAMG,aAAa,GAAIC,MAAc,IAA4B;EAC7D,OAAO;IACHC,EAAE,EAAED,MAAM,CAACC,EAAE;IACbC,SAAS,EAAEF,MAAM,CAACE,SAAS;IAC3BC,SAAS,EAAEH,MAAM,CAACG,SAAS;IAC3BC,WAAW,EAAEJ,MAAM,CAACI,WAAW;IAC/BC,IAAI,EAAEL,MAAM,CAACK,IAAI;IACjBC,WAAW,EAAEN,MAAM,CAACM,WAAW;IAC/BC,MAAM,EAAEP,MAAM,CAACO,MAAM;IACrBC,aAAa,EAAER,MAAM,CAACQ;EAC1B,CAAC;AACL,CAAC;AAEM,MAAMC,uBAAuB,GAAIC,OAAyB,IAAK;EAClEA,OAAO,CAACC,QAAQ,CAACC,mBAAmB,CAACC,SAAS,CAAC,OAAO;IAAEb,MAAM,EAAEc;EAAc,CAAC,KAAK;IAChF,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,OAAO,CAACC,MAAM,CAAC;MAEpE,MAAMpB,MAAM,GAAGD,aAAa,CAACe,aAAa,CAAC;MAE3C,MAAMC,cAAc,CAAC,iBAAiB,EAAEf,MAAM,EAAEA,MAAM,CAACC,EAAE,EAAES,OAAO,CAAC;IACvE,CAAC,CAAC,OAAOW,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAjB,uBAAA,GAAAA,uBAAA;AAEK,MAAMkB,uBAAuB,GAAIjB,OAAyB,IAAK;EAClEA,OAAO,CAACC,QAAQ,CAACiB,mBAAmB,CAACf,SAAS,CAC1C,OAAO;IAAEb,MAAM,EAAEc,aAAa;IAAEe,QAAQ,EAAEC;EAAsB,CAAC,KAAK;IAClE,IAAI;MACA,MAAMf,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,OAAO,CAACY,MAAM,CAAC;MAEpE,MAAM/B,MAAM,GAAGD,aAAa,CAACe,aAAa,CAAC;MAC3C,MAAMe,QAAQ,GAAG9B,aAAa,CAAC+B,qBAAqB,CAAC;MAErD,MAAMf,cAAc,CAChB,iBAAiB,EACjB;QACIiB,MAAM,EAAEH,QAAQ;QAChBI,KAAK,EAAEjC;MACX,CAAC,EACDA,MAAM,CAACC,EAAE,EACTS,OACJ,CAAC;IACL,CAAC,CAAC,OAAOW,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CACJ,CAAC;AACL,CAAC;AAACC,OAAA,CAAAC,uBAAA,GAAAA,uBAAA;AAEK,MAAMO,uBAAuB,GAAIxB,OAAyB,IAAK;EAClEA,OAAO,CAACC,QAAQ,CAACwB,mBAAmB,CAACtB,SAAS,CAAC,OAAO;IAAEb,MAAM,EAAEc;EAAc,CAAC,KAAK;IAChF,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,OAAO,CAACiB,MAAM,CAAC;MAEpE,MAAMpC,MAAM,GAAGD,aAAa,CAACe,aAAa,CAAC;MAE3C,MAAMC,cAAc,CAAC,iBAAiB,EAAEf,MAAM,EAAEA,MAAM,CAACC,EAAE,EAAES,OAAO,CAAC;IACvE,CAAC,CAAC,OAAOW,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,oDAAoD;QAC7DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAQ,uBAAA,GAAAA,uBAAA","ignoreList":[]}

package/subscriptions/security/index.d.ts

@@ -0,0 +1,2 @@
+import type { AuditLogsContext } from "../../types";
+export declare const createSecurityHooks: (context: AuditLogsContext) => void;

package/subscriptions/security/index.js

@@ -0,0 +1,27 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.createSecurityHooks = void 0;
+var _apiKeys = require("./apiKeys");
+var _roles = require("./roles");
+var _teams = require("./teams");
+var _users = require("./users");
+const createSecurityHooks = context => {
+  (0, _apiKeys.onApiKeyAfterCreateHook)(context);
+  (0, _apiKeys.onApiKeyAfterUpdateHook)(context);
+  (0, _apiKeys.onApiKeyAfterDeleteHook)(context);
+  (0, _roles.onRoleAfterCreateHook)(context);
+  (0, _roles.onRoleAfterUpdateHook)(context);
+  (0, _roles.onRoleAfterDeleteHook)(context);
+  (0, _teams.onTeamAfterCreateHook)(context);
+  (0, _teams.onTeamAfterUpdateHook)(context);
+  (0, _teams.onTeamAfterDeleteHook)(context);
+  (0, _users.onUserAfterCreateHook)(context);
+  (0, _users.onUserAfterUpdateHook)(context);
+  (0, _users.onUserAfterDeleteHook)(context);
+};
+exports.createSecurityHooks = createSecurityHooks;
+
+//# sourceMappingURL=index.js.map

package/subscriptions/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_apiKeys","require","_roles","_teams","_users","createSecurityHooks","context","onApiKeyAfterCreateHook","onApiKeyAfterUpdateHook","onApiKeyAfterDeleteHook","onRoleAfterCreateHook","onRoleAfterUpdateHook","onRoleAfterDeleteHook","onTeamAfterCreateHook","onTeamAfterUpdateHook","onTeamAfterDeleteHook","onUserAfterCreateHook","onUserAfterUpdateHook","onUserAfterDeleteHook","exports"],"sources":["index.ts"],"sourcesContent":["import {\n    onApiKeyAfterCreateHook,\n    onApiKeyAfterUpdateHook,\n    onApiKeyAfterDeleteHook\n} from \"./apiKeys\";\nimport { onRoleAfterCreateHook, onRoleAfterUpdateHook, onRoleAfterDeleteHook } from \"./roles\";\nimport { onTeamAfterCreateHook, onTeamAfterUpdateHook, onTeamAfterDeleteHook } from \"./teams\";\nimport { onUserAfterCreateHook, onUserAfterUpdateHook, onUserAfterDeleteHook } from \"./users\";\n\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const createSecurityHooks = (context: AuditLogsContext) => {\n    onApiKeyAfterCreateHook(context);\n    onApiKeyAfterUpdateHook(context);\n    onApiKeyAfterDeleteHook(context);\n    onRoleAfterCreateHook(context);\n    onRoleAfterUpdateHook(context);\n    onRoleAfterDeleteHook(context);\n    onTeamAfterCreateHook(context);\n    onTeamAfterUpdateHook(context);\n    onTeamAfterDeleteHook(context);\n    onUserAfterCreateHook(context);\n    onUserAfterUpdateHook(context);\n    onUserAfterDeleteHook(context);\n};\n"],"mappings":";;;;;;AAAA,IAAAA,QAAA,GAAAC,OAAA;AAKA,IAAAC,MAAA,GAAAD,OAAA;AACA,IAAAE,MAAA,GAAAF,OAAA;AACA,IAAAG,MAAA,GAAAH,OAAA;AAIO,MAAMI,mBAAmB,GAAIC,OAAyB,IAAK;EAC9D,IAAAC,gCAAuB,EAACD,OAAO,CAAC;EAChC,IAAAE,gCAAuB,EAACF,OAAO,CAAC;EAChC,IAAAG,gCAAuB,EAACH,OAAO,CAAC;EAChC,IAAAI,4BAAqB,EAACJ,OAAO,CAAC;EAC9B,IAAAK,4BAAqB,EAACL,OAAO,CAAC;EAC9B,IAAAM,4BAAqB,EAACN,OAAO,CAAC;EAC9B,IAAAO,4BAAqB,EAACP,OAAO,CAAC;EAC9B,IAAAQ,4BAAqB,EAACR,OAAO,CAAC;EAC9B,IAAAS,4BAAqB,EAACT,OAAO,CAAC;EAC9B,IAAAU,4BAAqB,EAACV,OAAO,CAAC;EAC9B,IAAAW,4BAAqB,EAACX,OAAO,CAAC;EAC9B,IAAAY,4BAAqB,EAACZ,OAAO,CAAC;AAClC,CAAC;AAACa,OAAA,CAAAd,mBAAA,GAAAA,mBAAA","ignoreList":[]}

package/subscriptions/security/roles.d.ts

@@ -0,0 +1,4 @@
+import type { AuditLogsContext } from "../../types";
+export declare const onRoleAfterCreateHook: (context: AuditLogsContext) => void;
+export declare const onRoleAfterUpdateHook: (context: AuditLogsContext) => void;
+export declare const onRoleAfterDeleteHook: (context: AuditLogsContext) => void;

package/subscriptions/security/roles.js

@@ -0,0 +1,64 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault").default;
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.onRoleAfterUpdateHook = exports.onRoleAfterDeleteHook = exports.onRoleAfterCreateHook = void 0;
+var _error = _interopRequireDefault(require("@webiny/error"));
+var _config = require("../../config");
+var _getAuditConfig = require("../../utils/getAuditConfig");
+const onRoleAfterCreateHook = context => {
+  context.security.onGroupAfterCreate.subscribe(async ({
+    group
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.ROLE.CREATE);
+      await createAuditLog("Role created", group, group.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onRoleAfterCreateHook hook",
+        code: "AUDIT_LOGS_AFTER_ROLE_CREATE_HOOK"
+      });
+    }
+  });
+};
+exports.onRoleAfterCreateHook = onRoleAfterCreateHook;
+const onRoleAfterUpdateHook = context => {
+  context.security.onGroupAfterUpdate.subscribe(async ({
+    group,
+    original
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.ROLE.UPDATE);
+      await createAuditLog("Role updated", {
+        before: original,
+        after: group
+      }, group.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onRoleAfterUpdateHook hook",
+        code: "AUDIT_LOGS_AFTER_ROLE_UPDATE_HOOK"
+      });
+    }
+  });
+};
+exports.onRoleAfterUpdateHook = onRoleAfterUpdateHook;
+const onRoleAfterDeleteHook = context => {
+  context.security.onGroupAfterDelete.subscribe(async ({
+    group
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.ROLE.DELETE);
+      await createAuditLog("Role deleted", group, group.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onRoleAfterDeleteHook hook",
+        code: "AUDIT_LOGS_AFTER_ROLE_DELETE_HOOK"
+      });
+    }
+  });
+};
+exports.onRoleAfterDeleteHook = onRoleAfterDeleteHook;
+
+//# sourceMappingURL=roles.js.map

package/subscriptions/security/roles.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","onRoleAfterCreateHook","context","security","onGroupAfterCreate","subscribe","group","createAuditLog","getAuditConfig","AUDIT","SECURITY","ROLE","CREATE","id","error","WebinyError","from","message","code","exports","onRoleAfterUpdateHook","onGroupAfterUpdate","original","UPDATE","before","after","onRoleAfterDeleteHook","onGroupAfterDelete","DELETE"],"sources":["roles.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const onRoleAfterCreateHook = (context: AuditLogsContext) => {\n    context.security.onGroupAfterCreate.subscribe(async ({ group }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.ROLE.CREATE);\n\n            await createAuditLog(\"Role created\", group, group.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onRoleAfterCreateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_ROLE_CREATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onRoleAfterUpdateHook = (context: AuditLogsContext) => {\n    context.security.onGroupAfterUpdate.subscribe(async ({ group, original }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.ROLE.UPDATE);\n\n            await createAuditLog(\n                \"Role updated\",\n                { before: original, after: group },\n                group.id,\n                context\n            );\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onRoleAfterUpdateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_ROLE_UPDATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onRoleAfterDeleteHook = (context: AuditLogsContext) => {\n    context.security.onGroupAfterDelete.subscribe(async ({ group }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.ROLE.DELETE);\n\n            await createAuditLog(\"Role deleted\", group, group.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onRoleAfterDeleteHook hook\",\n                code: \"AUDIT_LOGS_AFTER_ROLE_DELETE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAGO,MAAMG,qBAAqB,GAAIC,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACC,kBAAkB,CAACC,SAAS,CAAC,OAAO;IAAEC;EAAM,CAAC,KAAK;IAC/D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACC,MAAM,CAAC;MAEjE,MAAML,cAAc,CAAC,cAAc,EAAED,KAAK,EAAEA,KAAK,CAACO,EAAE,EAAEX,OAAO,CAAC;IAClE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAlB,qBAAA,GAAAA,qBAAA;AAEK,MAAMmB,qBAAqB,GAAIlB,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACkB,kBAAkB,CAAChB,SAAS,CAAC,OAAO;IAAEC,KAAK;IAAEgB;EAAS,CAAC,KAAK;IACzE,IAAI;MACA,MAAMf,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACY,MAAM,CAAC;MAEjE,MAAMhB,cAAc,CAChB,cAAc,EACd;QAAEiB,MAAM,EAAEF,QAAQ;QAAEG,KAAK,EAAEnB;MAAM,CAAC,EAClCA,KAAK,CAACO,EAAE,EACRX,OACJ,CAAC;IACL,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAC,qBAAA,GAAAA,qBAAA;AAEK,MAAMM,qBAAqB,GAAIxB,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACwB,kBAAkB,CAACtB,SAAS,CAAC,OAAO;IAAEC;EAAM,CAAC,KAAK;IAC/D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACiB,MAAM,CAAC;MAEjE,MAAMrB,cAAc,CAAC,cAAc,EAAED,KAAK,EAAEA,KAAK,CAACO,EAAE,EAAEX,OAAO,CAAC;IAClE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAO,qBAAA,GAAAA,qBAAA","ignoreList":[]}

package/subscriptions/security/teams.d.ts

@@ -0,0 +1,4 @@
+import type { AuditLogsContext } from "../../types";
+export declare const onTeamAfterCreateHook: (context: AuditLogsContext) => void;
+export declare const onTeamAfterUpdateHook: (context: AuditLogsContext) => void;
+export declare const onTeamAfterDeleteHook: (context: AuditLogsContext) => void;

package/subscriptions/security/teams.js

@@ -0,0 +1,64 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault").default;
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.onTeamAfterUpdateHook = exports.onTeamAfterDeleteHook = exports.onTeamAfterCreateHook = void 0;
+var _error = _interopRequireDefault(require("@webiny/error"));
+var _config = require("../../config");
+var _getAuditConfig = require("../../utils/getAuditConfig");
+const onTeamAfterCreateHook = context => {
+  context.security.onTeamAfterCreate.subscribe(async ({
+    team
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.TEAM.CREATE);
+      await createAuditLog("Team created", team, team.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onTeamAfterCreateHook hook",
+        code: "AUDIT_LOGS_AFTER_TEAM_CREATE_HOOK"
+      });
+    }
+  });
+};
+exports.onTeamAfterCreateHook = onTeamAfterCreateHook;
+const onTeamAfterUpdateHook = context => {
+  context.security.onTeamAfterUpdate.subscribe(async ({
+    team,
+    original
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.TEAM.UPDATE);
+      await createAuditLog("Team updated", {
+        before: original,
+        after: team
+      }, team.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onTeamAfterUpdateHook hook",
+        code: "AUDIT_LOGS_AFTER_TEAM_UPDATE_HOOK"
+      });
+    }
+  });
+};
+exports.onTeamAfterUpdateHook = onTeamAfterUpdateHook;
+const onTeamAfterDeleteHook = context => {
+  context.security.onTeamAfterDelete.subscribe(async ({
+    team
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.TEAM.DELETE);
+      await createAuditLog("Team deleted", team, team.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onTeamAfterDeleteHook hook",
+        code: "AUDIT_LOGS_AFTER_TEAM_DELETE_HOOK"
+      });
+    }
+  });
+};
+exports.onTeamAfterDeleteHook = onTeamAfterDeleteHook;
+
+//# sourceMappingURL=teams.js.map

package/subscriptions/security/teams.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","onTeamAfterCreateHook","context","security","onTeamAfterCreate","subscribe","team","createAuditLog","getAuditConfig","AUDIT","SECURITY","TEAM","CREATE","id","error","WebinyError","from","message","code","exports","onTeamAfterUpdateHook","onTeamAfterUpdate","original","UPDATE","before","after","onTeamAfterDeleteHook","onTeamAfterDelete","DELETE"],"sources":["teams.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const onTeamAfterCreateHook = (context: AuditLogsContext) => {\n    context.security.onTeamAfterCreate.subscribe(async ({ team }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.TEAM.CREATE);\n\n            await createAuditLog(\"Team created\", team, team.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onTeamAfterCreateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_TEAM_CREATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onTeamAfterUpdateHook = (context: AuditLogsContext) => {\n    context.security.onTeamAfterUpdate.subscribe(async ({ team, original }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.TEAM.UPDATE);\n\n            await createAuditLog(\n                \"Team updated\",\n                { before: original, after: team },\n                team.id,\n                context\n            );\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onTeamAfterUpdateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_TEAM_UPDATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onTeamAfterDeleteHook = (context: AuditLogsContext) => {\n    context.security.onTeamAfterDelete.subscribe(async ({ team }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.TEAM.DELETE);\n\n            await createAuditLog(\"Team deleted\", team, team.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onTeamAfterDeleteHook hook\",\n                code: \"AUDIT_LOGS_AFTER_TEAM_DELETE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAGO,MAAMG,qBAAqB,GAAIC,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACC,iBAAiB,CAACC,SAAS,CAAC,OAAO;IAAEC;EAAK,CAAC,KAAK;IAC7D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACC,MAAM,CAAC;MAEjE,MAAML,cAAc,CAAC,cAAc,EAAED,IAAI,EAAEA,IAAI,CAACO,EAAE,EAAEX,OAAO,CAAC;IAChE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAlB,qBAAA,GAAAA,qBAAA;AAEK,MAAMmB,qBAAqB,GAAIlB,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACkB,iBAAiB,CAAChB,SAAS,CAAC,OAAO;IAAEC,IAAI;IAAEgB;EAAS,CAAC,KAAK;IACvE,IAAI;MACA,MAAMf,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACY,MAAM,CAAC;MAEjE,MAAMhB,cAAc,CAChB,cAAc,EACd;QAAEiB,MAAM,EAAEF,QAAQ;QAAEG,KAAK,EAAEnB;MAAK,CAAC,EACjCA,IAAI,CAACO,EAAE,EACPX,OACJ,CAAC;IACL,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAC,qBAAA,GAAAA,qBAAA;AAEK,MAAMM,qBAAqB,GAAIxB,OAAyB,IAAK;EAChEA,OAAO,CAACC,QAAQ,CAACwB,iBAAiB,CAACtB,SAAS,CAAC,OAAO;IAAEC;EAAK,CAAC,KAAK;IAC7D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACiB,MAAM,CAAC;MAEjE,MAAMrB,cAAc,CAAC,cAAc,EAAED,IAAI,EAAEA,IAAI,CAACO,EAAE,EAAEX,OAAO,CAAC;IAChE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAO,qBAAA,GAAAA,qBAAA","ignoreList":[]}

package/subscriptions/security/users.d.ts

@@ -0,0 +1,4 @@
+import type { AuditLogsContext } from "../../types";
+export declare const onUserAfterCreateHook: (context: AuditLogsContext) => void;
+export declare const onUserAfterUpdateHook: (context: AuditLogsContext) => void;
+export declare const onUserAfterDeleteHook: (context: AuditLogsContext) => void;

package/subscriptions/security/users.js

@@ -0,0 +1,64 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault").default;
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.onUserAfterUpdateHook = exports.onUserAfterDeleteHook = exports.onUserAfterCreateHook = void 0;
+var _error = _interopRequireDefault(require("@webiny/error"));
+var _config = require("../../config");
+var _getAuditConfig = require("../../utils/getAuditConfig");
+const onUserAfterCreateHook = context => {
+  context.adminUsers.onUserAfterCreate.subscribe(async ({
+    user
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.USER.CREATE);
+      await createAuditLog("User created", user, user.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onUserAfterCreateHook hook",
+        code: "AUDIT_LOGS_AFTER_USER_CREATE_HOOK"
+      });
+    }
+  });
+};
+exports.onUserAfterCreateHook = onUserAfterCreateHook;
+const onUserAfterUpdateHook = context => {
+  context.adminUsers.onUserAfterUpdate.subscribe(async ({
+    updatedUser,
+    originalUser
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.USER.UPDATE);
+      await createAuditLog("User updated", {
+        before: originalUser,
+        after: updatedUser
+      }, updatedUser.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onUserAfterUpdateHook hook",
+        code: "AUDIT_LOGS_AFTER_USER_UPDATE_HOOK"
+      });
+    }
+  });
+};
+exports.onUserAfterUpdateHook = onUserAfterUpdateHook;
+const onUserAfterDeleteHook = context => {
+  context.adminUsers.onUserAfterDelete.subscribe(async ({
+    user
+  }) => {
+    try {
+      const createAuditLog = (0, _getAuditConfig.getAuditConfig)(_config.AUDIT.SECURITY.USER.DELETE);
+      await createAuditLog("User deleted", user, user.id, context);
+    } catch (error) {
+      throw _error.default.from(error, {
+        message: "Error while executing onUserAfterDeleteHook hook",
+        code: "AUDIT_LOGS_AFTER_USER_DELETE_HOOK"
+      });
+    }
+  });
+};
+exports.onUserAfterDeleteHook = onUserAfterDeleteHook;
+
+//# sourceMappingURL=users.js.map

package/subscriptions/security/users.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_error","_interopRequireDefault","require","_config","_getAuditConfig","onUserAfterCreateHook","context","adminUsers","onUserAfterCreate","subscribe","user","createAuditLog","getAuditConfig","AUDIT","SECURITY","USER","CREATE","id","error","WebinyError","from","message","code","exports","onUserAfterUpdateHook","onUserAfterUpdate","updatedUser","originalUser","UPDATE","before","after","onUserAfterDeleteHook","onUserAfterDelete","DELETE"],"sources":["users.ts"],"sourcesContent":["import WebinyError from \"@webiny/error\";\n\nimport { AUDIT } from \"~/config\";\nimport { getAuditConfig } from \"~/utils/getAuditConfig\";\nimport type { AuditLogsContext } from \"~/types\";\n\nexport const onUserAfterCreateHook = (context: AuditLogsContext) => {\n    context.adminUsers.onUserAfterCreate.subscribe(async ({ user }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.USER.CREATE);\n\n            await createAuditLog(\"User created\", user, user.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onUserAfterCreateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_USER_CREATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onUserAfterUpdateHook = (context: AuditLogsContext) => {\n    context.adminUsers.onUserAfterUpdate.subscribe(async ({ updatedUser, originalUser }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.USER.UPDATE);\n\n            await createAuditLog(\n                \"User updated\",\n                { before: originalUser, after: updatedUser },\n                updatedUser.id,\n                context\n            );\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onUserAfterUpdateHook hook\",\n                code: \"AUDIT_LOGS_AFTER_USER_UPDATE_HOOK\"\n            });\n        }\n    });\n};\n\nexport const onUserAfterDeleteHook = (context: AuditLogsContext) => {\n    context.adminUsers.onUserAfterDelete.subscribe(async ({ user }) => {\n        try {\n            const createAuditLog = getAuditConfig(AUDIT.SECURITY.USER.DELETE);\n\n            await createAuditLog(\"User deleted\", user, user.id, context);\n        } catch (error) {\n            throw WebinyError.from(error, {\n                message: \"Error while executing onUserAfterDeleteHook hook\",\n                code: \"AUDIT_LOGS_AFTER_USER_DELETE_HOOK\"\n            });\n        }\n    });\n};\n"],"mappings":";;;;;;;AAAA,IAAAA,MAAA,GAAAC,sBAAA,CAAAC,OAAA;AAEA,IAAAC,OAAA,GAAAD,OAAA;AACA,IAAAE,eAAA,GAAAF,OAAA;AAGO,MAAMG,qBAAqB,GAAIC,OAAyB,IAAK;EAChEA,OAAO,CAACC,UAAU,CAACC,iBAAiB,CAACC,SAAS,CAAC,OAAO;IAAEC;EAAK,CAAC,KAAK;IAC/D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACC,MAAM,CAAC;MAEjE,MAAML,cAAc,CAAC,cAAc,EAAED,IAAI,EAAEA,IAAI,CAACO,EAAE,EAAEX,OAAO,CAAC;IAChE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAlB,qBAAA,GAAAA,qBAAA;AAEK,MAAMmB,qBAAqB,GAAIlB,OAAyB,IAAK;EAChEA,OAAO,CAACC,UAAU,CAACkB,iBAAiB,CAAChB,SAAS,CAAC,OAAO;IAAEiB,WAAW;IAAEC;EAAa,CAAC,KAAK;IACpF,IAAI;MACA,MAAMhB,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACa,MAAM,CAAC;MAEjE,MAAMjB,cAAc,CAChB,cAAc,EACd;QAAEkB,MAAM,EAAEF,YAAY;QAAEG,KAAK,EAAEJ;MAAY,CAAC,EAC5CA,WAAW,CAACT,EAAE,EACdX,OACJ,CAAC;IACL,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAC,qBAAA,GAAAA,qBAAA;AAEK,MAAMO,qBAAqB,GAAIzB,OAAyB,IAAK;EAChEA,OAAO,CAACC,UAAU,CAACyB,iBAAiB,CAACvB,SAAS,CAAC,OAAO;IAAEC;EAAK,CAAC,KAAK;IAC/D,IAAI;MACA,MAAMC,cAAc,GAAG,IAAAC,8BAAc,EAACC,aAAK,CAACC,QAAQ,CAACC,IAAI,CAACkB,MAAM,CAAC;MAEjE,MAAMtB,cAAc,CAAC,cAAc,EAAED,IAAI,EAAEA,IAAI,CAACO,EAAE,EAAEX,OAAO,CAAC;IAChE,CAAC,CAAC,OAAOY,KAAK,EAAE;MACZ,MAAMC,cAAW,CAACC,IAAI,CAACF,KAAK,EAAE;QAC1BG,OAAO,EAAE,kDAAkD;QAC3DC,IAAI,EAAE;MACV,CAAC,CAAC;IACN;EACJ,CAAC,CAAC;AACN,CAAC;AAACC,OAAA,CAAAQ,qBAAA,GAAAA,qBAAA","ignoreList":[]}

package/types.d.ts

@@ -0,0 +1,53 @@
+import type { AcoContext } from "@webiny/api-aco/types";
+import type { MailerContext } from "@webiny/api-mailer/types";
+import type { SecurityContext } from "@webiny/api-security/types";
+import type { ApwContext } from "@webiny/api-apw/types";
+import type { Context as BaseContext } from "@webiny/handler/types";
+export * from "./app/types";
+export interface Action {
+    type: string;
+    displayName: string;
+    /**
+     * Delay in seconds before a new audit log can be created.
+     * During this delay actions will update existing audit log instead of creating new ones.
+     */
+    newEntryDelay?: number;
+}
+export interface Entity {
+    type: string;
+    displayName: string;
+    linkToEntity?: (id: string) => string;
+    actions: Action[];
+}
+export interface App {
+    app: string;
+    displayName: string;
+    entities: Entity[];
+}
+export interface AuditLog {
+    id: string;
+    message: string;
+    app: string;
+    entity: string;
+    entityId: string;
+    action: string;
+    data: JSON;
+    timestamp: Date;
+    initiator: string;
+}
+export interface AuditLogsContext extends BaseContext, AcoContext, MailerContext, SecurityContext, ApwContext {
+}
+export interface AuditObject {
+    [app: string]: EntityObject;
+}
+export interface EntityObject {
+    [entity: string]: ActionObject;
+}
+export interface ActionObject {
+    [action: string]: AuditAction;
+}
+export interface AuditAction {
+    app: App;
+    entity: Entity;
+    action: Action;
+}

package/types.js

@@ -0,0 +1,18 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _types = require("./app/types");
+Object.keys(_types).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _types[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _types[key];
+    }
+  });
+});
+
+//# sourceMappingURL=types.js.map

package/types.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_types","require","Object","keys","forEach","key","exports","defineProperty","enumerable","get"],"sources":["types.ts"],"sourcesContent":["import type { AcoContext } from \"@webiny/api-aco/types\";\nimport type { MailerContext } from \"@webiny/api-mailer/types\";\nimport type { SecurityContext } from \"@webiny/api-security/types\";\nimport type { ApwContext } from \"@webiny/api-apw/types\";\nimport type { Context as BaseContext } from \"@webiny/handler/types\";\n\nexport * from \"~/app/types\";\n\nexport interface Action {\n    type: string;\n    displayName: string;\n    /**\n     * Delay in seconds before a new audit log can be created.\n     * During this delay actions will update existing audit log instead of creating new ones.\n     */\n    newEntryDelay?: number;\n}\n\nexport interface Entity {\n    type: string;\n    displayName: string;\n    linkToEntity?: (id: string) => string;\n    actions: Action[];\n}\n\nexport interface App {\n    app: string;\n    displayName: string;\n    entities: Entity[];\n}\n\nexport interface AuditLog {\n    id: string;\n    message: string;\n    app: string;\n    entity: string;\n    entityId: string;\n    action: string;\n    data: JSON;\n    timestamp: Date;\n    initiator: string;\n}\n\nexport interface AuditLogsContext\n    extends BaseContext,\n        AcoContext,\n        MailerContext,\n        SecurityContext,\n        ApwContext {}\n\nexport interface AuditObject {\n    [app: string]: EntityObject;\n}\n\nexport interface EntityObject {\n    [entity: string]: ActionObject;\n}\n\nexport interface ActionObject {\n    [action: string]: AuditAction;\n}\n\nexport interface AuditAction {\n    app: App;\n    entity: Entity;\n    action: Action;\n}\n"],"mappings":";;;;;AAMA,IAAAA,MAAA,GAAAC,OAAA;AAAAC,MAAA,CAAAC,IAAA,CAAAH,MAAA,EAAAI,OAAA,WAAAC,GAAA;EAAA,IAAAA,GAAA,kBAAAA,GAAA;EAAA,IAAAA,GAAA,IAAAC,OAAA,IAAAA,OAAA,CAAAD,GAAA,MAAAL,MAAA,CAAAK,GAAA;EAAAH,MAAA,CAAAK,cAAA,CAAAD,OAAA,EAAAD,GAAA;IAAAG,UAAA;IAAAC,GAAA,WAAAA,CAAA;MAAA,OAAAT,MAAA,CAAAK,GAAA;IAAA;EAAA;AAAA","ignoreList":[]}

package/utils/getAuditConfig.d.ts

@@ -0,0 +1,36 @@
+import type { AuditAction, AuditLogsContext } from "../types";
+export declare const getAuditConfig: (audit: AuditAction) => (message: string, data: Record<string, any>, entityId: string, context: AuditLogsContext) => Promise<string | {
+    id: string;
+    title: string;
+    content: string;
+    tags: never[];
+    type: string;
+    location: {
+        folderId: string;
+    };
+    data: {
+        data: string;
+        message: string;
+        action: string;
+        timestamp: Date;
+        app: string;
+        entity: string;
+        entityId: string;
+        initiator: string;
+    };
+} | {
+    data: string;
+    type: string;
+    title: string;
+    content?: string | undefined;
+    location: import("@webiny/api-aco/types").Location;
+    tags: string[];
+    id: string;
+    entryId: string;
+    createdOn: string;
+    modifiedOn: string | null;
+    savedOn: string;
+    createdBy: import("@webiny/api-aco/types").User;
+    modifiedBy: import("@webiny/api-aco/types").User | null;
+    savedBy: import("@webiny/api-aco/types").User;
+} | undefined>;