Merge pull request #22 from ReLive27/main

feat(audit): add audit log handler and AuditEventRepository abstraction

Author: ReLive27

audit/build.gradle

@@ -6,5 +6,8 @@ jar {
 
 dependencies {
     implementation libraries.springBootStarterAop
+    implementation libraries.springBootStarterWeb
+    implementation libraries.userAgentUtils
+    implementation libraries.reactor
     implementation project(':simpleauth0-core')
 }

audit/src/main/java/io/github/simpleauth0/audit/AuditLogMethodInterceptor.java

@@ -0,0 +1,170 @@
+package io.github.simpleauth0.audit;
+
+import io.github.simpleauth0.audit.annotation.AuditLog;
+import io.github.simpleauth0.audit.expression.ExpressionAttribute;
+import io.github.simpleauth0.audit.handler.AuditLogStorageHandler;
+import io.github.simpleauth0.core.utils.AnnotationUtils;
+import org.aopalliance.aop.Advice;
+import org.aopalliance.intercept.MethodInterceptor;
+import org.aopalliance.intercept.MethodInvocation;
+import org.springframework.aop.Pointcut;
+import org.springframework.aop.PointcutAdvisor;
+import org.springframework.aop.framework.AopInfrastructureBean;
+import org.springframework.aop.support.AopUtils;
+import org.springframework.core.LocalVariableTableParameterNameDiscoverer;
+import org.springframework.core.Ordered;
+import org.springframework.core.ParameterNameDiscoverer;
+import org.springframework.expression.Expression;
+import org.springframework.expression.ExpressionParser;
+import org.springframework.expression.spel.standard.SpelExpressionParser;
+import org.springframework.lang.NonNull;
+import org.springframework.util.Assert;
+
+import java.lang.reflect.Method;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/25 22:54
+ */
+public class AuditLogMethodInterceptor implements Ordered, MethodInterceptor, PointcutAdvisor, AopInfrastructureBean {
+
+    private final AuditLogExpressionAttributeRegistry registry = new AuditLogExpressionAttributeRegistry();
+
+    private int order = 100;
+
+    private final Pointcut pointcut;
+
+    private AuditLogStorageHandler auditLogStorageHandler;
+
+    public AuditLogMethodInterceptor(AuditLogStorageHandler<? extends ExpressionAttribute> auditLogStorageHandler) {
+        Assert.notNull(auditLogStorageHandler, "auditLogStorageHandler cannot be null");
+        this.auditLogStorageHandler = auditLogStorageHandler;
+        this.pointcut = AuditLogMethodPointcuts.forAnnotations(AuditLog.class);
+    }
+
+    private ParameterNameDiscoverer discoverer = new LocalVariableTableParameterNameDiscoverer();
+
+
+    @Override
+    public Object invoke(MethodInvocation mi) throws Throwable {
+        Object returnedObject = null;
+        Boolean success = true;
+        try {
+            returnedObject = mi.proceed();
+            return returnedObject;
+        } catch (Exception e) {
+            returnedObject = e.getMessage();
+            success = false;
+            throw e;
+        } finally {
+            AuditLogExpressionAttribute attribute = this.registry.getAttribute(mi);
+            if (attribute != ExpressionAttribute.NULL_ATTRIBUTE) {
+                String[] parameterNames = discoverer.getParameterNames(mi.getMethod());
+                if (parameterNames != null && parameterNames.length > 0) {
+                    attribute.setParams(parameterNames);
+                    attribute.setArgs(mi.getArguments());
+                }
+                attribute.setResult(returnedObject);
+                attribute.setSuccess(success);
+                this.auditLogStorageHandler.handler(attribute);
+            }
+        }
+
+    }
+
+    @Override
+    public Pointcut getPointcut() {
+        return this.pointcut;
+    }
+
+    @Override
+    public Advice getAdvice() {
+        return this;
+    }
+
+    @Override
+    public boolean isPerInstance() {
+        return true;
+    }
+
+    @Override
+    public int getOrder() {
+        return this.order;
+    }
+
+    public void setOrder(int ordering) {
+        this.order = ordering;
+    }
+
+    public void setAuditLogStorageHandler(AuditLogStorageHandler auditLogStorageHandler) {
+        this.auditLogStorageHandler = auditLogStorageHandler;
+    }
+
+    private final class AuditLogExpressionAttributeRegistry {
+
+        private final ExpressionParser parser = new SpelExpressionParser();
+
+        public final AuditLogExpressionAttribute getAttribute(MethodInvocation mi) {
+            Method method = mi.getMethod();
+            Object target = mi.getThis();
+            Class<?> targetClass = (target != null) ? target.getClass() : null;
+            return resolveAttribute(method, targetClass);
+        }
+
+        @NonNull
+        AuditLogExpressionAttribute resolveAttribute(Method method, Class<?> targetClass) {
+            Method specificMethod = AopUtils.getMostSpecificMethod(method, targetClass);
+            AuditLog auditLog = findPostFilterAnnotation(specificMethod);
+            if (auditLog == null) {
+                return AuditLogExpressionAttribute.NULL_ATTRIBUTE;
+            }
+            Expression operatorExpression = parser.parseExpression(auditLog.operator());
+            return new AuditLogExpressionAttribute(operatorExpression, auditLog);
+        }
+
+        private AuditLog findPostFilterAnnotation(Method method) {
+            AuditLog auditLog = AnnotationUtils.findUniqueAnnotation(method, AuditLog.class);
+            return (auditLog != null) ? auditLog
+                    : AnnotationUtils.findUniqueAnnotation(method.getDeclaringClass(), AuditLog.class);
+        }
+
+    }
+
+    public static final class AuditLogExpressionAttribute extends ExpressionAttribute {
+
+        private static final AuditLogExpressionAttribute NULL_ATTRIBUTE = new AuditLogExpressionAttribute(null, null);
+
+        private final AuditLog auditLog;
+
+        private Object result;
+
+        private Boolean success;
+
+        private AuditLogExpressionAttribute(Expression expression, AuditLog auditLog) {
+            super(expression);
+            this.auditLog = auditLog;
+        }
+
+        public void setResult(Object result) {
+            this.result = result;
+        }
+
+        public void setSuccess(Boolean success) {
+            this.success = success;
+        }
+
+        public Object getResult() {
+            return result;
+        }
+
+        public Boolean getSuccess() {
+            return success;
+        }
+
+        public AuditLog getAuditLog() {
+            return auditLog;
+        }
+    }
+}
+
+

audit/src/main/java/io/github/simpleauth0/audit/AuditLogMethodPointcuts.java

@@ -0,0 +1,33 @@
+package io.github.simpleauth0.audit;
+
+import org.springframework.aop.Pointcut;
+import org.springframework.aop.support.ComposablePointcut;
+import org.springframework.aop.support.Pointcuts;
+import org.springframework.aop.support.annotation.AnnotationMatchingPointcut;
+
+import java.lang.annotation.Annotation;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/26 22:45
+ */
+public class AuditLogMethodPointcuts {
+    @SafeVarargs
+    static Pointcut forAnnotations(Class<? extends Annotation>... annotations) {
+        ComposablePointcut pointcut = null;
+        for (Class<? extends Annotation> annotation : annotations) {
+            if (pointcut == null) {
+                pointcut = new ComposablePointcut(classOrMethod(annotation));
+            }
+            else {
+                pointcut.union(classOrMethod(annotation));
+            }
+        }
+        return pointcut;
+    }
+
+    private static Pointcut classOrMethod(Class<? extends Annotation> annotation) {
+        return Pointcuts.union(new AnnotationMatchingPointcut(null, annotation, true),
+                new AnnotationMatchingPointcut(annotation, true));
+    }
+}

audit/src/main/java/io/github/simpleauth0/audit/annotation/AuditLog.java

@@ -0,0 +1,37 @@
+package io.github.simpleauth0.audit.annotation;
+
+import java.lang.annotation.*;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/26 22:46
+ */
+@Target(ElementType.METHOD)
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+public @interface AuditLog {
+    /**
+     * 操作名称，比如 "用户登录"、"创建角色"，支持 SpEL 表达式。
+     */
+    String actionName();
+
+    /**
+     * 资源类型，比如 "用户"、"角色"、"菜单"、"接口"。
+     */
+    String resourceType();
+
+    /**
+     * 是否记录请求参数。
+     */
+    boolean recordRequest() default false;
+
+    /**
+     * 是否记录响应结果。
+     */
+    boolean recordResponse() default true;
+
+    /**
+     * 当前操作用户，支持 SpEL 表达式，比如 "#{#user.username}" 或 "#{@securityContext.getCurrentUser()}"。
+     */
+    String operator() default "";
+}

audit/src/main/java/io/github/simpleauth0/audit/configuration/AuditLogMethodConfiguration.java

@@ -0,0 +1,30 @@
+package io.github.simpleauth0.audit.configuration;
+
+import io.github.simpleauth0.audit.AuditLogMethodInterceptor;
+import io.github.simpleauth0.audit.handler.AuditLogStorageHandler;
+import io.github.simpleauth0.audit.handler.DefaultAuditLogStorageHandler;
+import io.github.simpleauth0.audit.repository.AuditLogEventRepository;
+import org.springframework.aop.Advisor;
+import org.springframework.boot.autoconfigure.condition.ConditionalOnMissingBean;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/26 22:32
+ */
+@Configuration(proxyBeanMethods = false)
+public class AuditLogMethodConfiguration {
+
+    @Bean("auditLogAdvisor")
+    @ConditionalOnMissingBean(name = "auditLogAdvisor")
+    Advisor auditLogAdvisor(AuditLogStorageHandler auditLogStorageHandler) {
+        return new AuditLogMethodInterceptor(auditLogStorageHandler);
+    }
+
+    @Bean
+    @ConditionalOnMissingBean(AuditLogStorageHandler.class)
+    AuditLogStorageHandler auditLogStorageHandler(AuditLogEventRepository auditLogRepository) {
+        return new DefaultAuditLogStorageHandler(auditLogRepository);
+    }
+}

audit/src/main/java/io/github/simpleauth0/audit/configuration/AuditLogMethodSelector.java

@@ -0,0 +1,28 @@
+package io.github.simpleauth0.audit.configuration;
+
+import org.springframework.context.annotation.ImportSelector;
+import org.springframework.core.type.AnnotationMetadata;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/26 22:29
+ */
+public class AuditLogMethodSelector implements ImportSelector {
+    @Override
+    public String[] selectImports(AnnotationMetadata importMetadata) {
+        if (!importMetadata.hasAnnotation(EnableAuditLog.class.getName())) {
+            return new String[0];
+        }
+        EnableAuditLog annotation = importMetadata.getAnnotations().get(EnableAuditLog.class).synthesize();
+        List<String> imports = new ArrayList<>();
+        if (annotation.method()) {
+            imports.add(AuditLogMethodConfiguration.class.getName());
+        }
+
+        return imports.toArray(new String[0]);
+    }
+
+}

audit/src/main/java/io/github/simpleauth0/audit/configuration/EnableAuditLog.java

@@ -0,0 +1,20 @@
+package io.github.simpleauth0.audit.configuration;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Import;
+
+import java.lang.annotation.*;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/4/25 23:20
+ */
+@Retention(RetentionPolicy.RUNTIME)
+@Target(ElementType.TYPE)
+@Documented
+@Import(AuditLogMethodSelector.class)
+@Configuration
+public @interface EnableAuditLog {
+
+    boolean method() default true;
+}

…core/expression/ExpressionAttribute.java …udit/expression/ExpressionAttribute.javacore/src/main/java/io/github/simpleauth0/core/expression/ExpressionAttribute.java renamed to audit/src/main/java/io/github/simpleauth0/audit/expression/ExpressionAttribute.java core/src/main/java/io/github/simpleauth0/core/expression/ExpressionAttribute.java renamed to audit/src/main/java/io/github/simpleauth0/audit/expression/ExpressionAttribute.java

@@ -1,4 +1,4 @@
-package io.github.simpleauth0.core.expression;
+package io.github.simpleauth0.audit.expression;
 
 import lombok.Data;
 import org.springframework.expression.Expression;
@@ -14,7 +14,19 @@ public class ExpressionAttribute {
 
     private final Expression expression;
 
+    private Object[] args;
+
+    private String[] params;
+
     public ExpressionAttribute(Expression expression) {
         this.expression = expression;
     }
+
+    public void setArgs(Object[] args) {
+        this.args = args;
+    }
+
+    public void setParams(String[] params) {
+        this.params = params;
+    }
 }

audit/src/main/java/io/github/simpleauth0/audit/handler/AuditLogStorageHandler.java

@@ -0,0 +1,12 @@
+package io.github.simpleauth0.audit.handler;
+
+import io.github.simpleauth0.audit.expression.ExpressionAttribute;
+
+/**
+ * @author: ReLive27
+ * @date: 2025/5/23 22:06
+ */
+public interface AuditLogStorageHandler<T extends ExpressionAttribute> {
+
+    void handler(T expressionAttribute);
+}