Add RequestAudit component and related API endpoints: Implement audit logging features in the frontend and backend, including new routes for fetching recent audit entries and aggregated audit stats, enhancing user navigation with a sidebar entry for request audits.

Yohan-Christmith · Yohan-Christmith · commit 4fc2ed921427 · 2026-03-09T00:50:27.000+05:30
diff --git a/backend/src/server.ts b/backend/src/server.ts
@@ -8,6 +8,7 @@ app.use(cors({ origin: process.env.CORS_ORIGIN || "http://129.212.238.68:5173" }
 app.use(express.json({ limit: "512kb" }));
 
 const LIFECYCLE_SERVICE_URL = process.env.LIFECYCLE_SERVICE_URL || "http://129.212.238.68:3003";
+const GATEWAY_URL = process.env.GATEWAY_URL || "http://129.212.238.68:3000";
 
 app.get("/health", (_req: Request, res: Response) => {
   res.json({ service: "security-admin-dashboard-backend", status: "active" });
@@ -48,6 +49,45 @@ app.get("/api/sla/metrics", async (_req: Request, res: Response) => {
   }
 });
 
+/** Proxy to Gateway request audit log (who requested what, granted/denied) */
+app.get("/api/audit/recent", async (req: Request, res: Response) => {
+  try {
+    const params = new URLSearchParams();
+    if (req.query.limit) params.set("limit", String(req.query.limit));
+    if (req.query.page) params.set("page", String(req.query.page));
+    const qs = params.toString() ? `?${params.toString()}` : "";
+    const r = await fetch(`${GATEWAY_URL}/api/audit/recent${qs}`, {
+      headers: { Accept: "application/json" },
+    });
+    const text = await r.text();
+    if (!r.ok) {
+      try {
+        return res.status(r.status).json(JSON.parse(text));
+      } catch {
+        return res.status(r.status).json({ error: "Gateway error", body: text.slice(0, 200) });
+      }
+    }
+    try {
+      const data = JSON.parse(text);
+      res.json(data);
+    } catch {
+      console.error("Audit proxy: Gateway returned non-JSON (check GATEWAY_URL)");
+      res.status(503).json({
+        error: "Gateway returned invalid response; ensure GATEWAY_URL points to the Gateway API",
+        entries: [],
+        timestamp: new Date().toISOString(),
+      });
+    }
+  } catch (e) {
+    console.error("Audit proxy error:", e);
+    res.status(503).json({
+      error: "Gateway unavailable",
+      entries: [],
+      timestamp: new Date().toISOString(),
+    });
+  }
+});
+
 app.get("/api/did/ids", async (req: Request, res: Response) => {
   try {
     const type = (req.query.type as string) || "client";
diff --git a/frontend/src/App.tsx b/frontend/src/App.tsx
@@ -6,6 +6,7 @@ import {
   IssueVC,
   RevokeVC,
   AvailabilityMetrics,
+  RequestAudit,
 } from "./components";
 import "./styles/layout.css";
 
@@ -19,6 +20,7 @@ export default function App() {
       {activeNav === "issue-vc" && <IssueVC />}
       {activeNav === "revoke-vc" && <RevokeVC />}
       {activeNav === "availability" && <AvailabilityMetrics />}
+      {activeNav === "request-audit" && <RequestAudit />}
     </MainLayout>
   );
 }
diff --git a/frontend/src/api/dashboard.ts b/frontend/src/api/dashboard.ts
@@ -30,6 +30,42 @@ export async function fetchSlaMetrics(): Promise<SlaMetricsResponse | null> {
   }
 }
 
+/** Request audit entry (Gateway: who requested what, granted/denied) */
+export interface AuditEntry {
+  did: string | null;
+  method: string;
+  path: string;
+  granted: boolean;
+  reason?: string;
+  timestamp: string;
+}
+
+export interface AuditRecentResponse {
+  entries: AuditEntry[];
+  count: number;
+  total: number;
+  page: number;
+  limit: number;
+  totalPages: number;
+  timestamp: string;
+  hint?: string;
+}
+
+export async function fetchAuditRecent(
+  limit = 10,
+  page = 1
+): Promise<AuditRecentResponse | null> {
+  try {
+    const params = new URLSearchParams({ limit: String(limit), page: String(page) });
+    const res = await fetch(`${BASE}/api/audit/recent?${params.toString()}`);
+    const data = (await res.json()) as AuditRecentResponse & { error?: string };
+    if (!res.ok) return null;
+    return data;
+  } catch {
+    return null;
+  }
+}
+
 /** Fetch IDs from did-documents repo for the given type (clients/, servers/, or core). */
 export async function fetchDidIds(type: DidDocumentType): Promise<string[]> {
   try {
diff --git a/frontend/src/components/RequestAudit.tsx b/frontend/src/components/RequestAudit.tsx
@@ -0,0 +1,195 @@
+import { useEffect, useState, useCallback } from "react";
+import { RefreshCw, ChevronLeft, ChevronRight } from "lucide-react";
+import { fetchAuditRecent, type AuditEntry } from "../api/dashboard";
+import "../styles/layout.css";
+
+const PAGE_SIZES = [10, 25, 50, 100];
+
+// Row padding by page size: 10 = bigger rows, 25 = medium, 50/100 = compact
+function getRowPadding(pageSize: number): string {
+  if (pageSize <= 10) return "0.85rem 1rem";
+  if (pageSize <= 25) return "0.65rem 0.85rem";
+  return "0.5rem 0.75rem";
+}
+
+export function RequestAudit() {
+  const [entries, setEntries] = useState<AuditEntry[]>([]);
+  const [loading, setLoading] = useState(true);
+  const [error, setError] = useState<string | null>(null);
+  const [timestamp, setTimestamp] = useState<string | null>(null);
+  const [hint, setHint] = useState<string | null>(null);
+  const [page, setPage] = useState(1);
+  const [pageSize, setPageSize] = useState(10);
+  const [total, setTotal] = useState(0);
+  const [totalPages, setTotalPages] = useState(0);
+
+  const load = useCallback(async (pageNum: number, size: number) => {
+    setLoading(true);
+    setError(null);
+    setHint(null);
+    const result = await fetchAuditRecent(size, pageNum);
+    if (result) {
+      setEntries(result.entries);
+      setTimestamp(result.timestamp);
+      const t = result.total ?? 0;
+      setTotal(t);
+      setTotalPages(result.totalPages ?? Math.max(1, Math.ceil(t / size)));
+      if (result.hint) setHint(result.hint);
+    } else {
+      setError("Could not load audit log. Is the Gateway running and REDIS_URL set?");
+      setEntries([]);
+      setTotal(0);
+      setTotalPages(0);
+    }
+    setLoading(false);
+  }, []);
+
+  useEffect(() => {
+    load(page, pageSize);
+  }, [page, pageSize, load]);
+
+  useEffect(() => {
+    const interval = setInterval(() => load(page, pageSize), 15_000);
+    return () => clearInterval(interval);
+  }, [page, pageSize, load]);
+
+  return (
+    <div>
+      <h1 style={{ marginBottom: "0.5rem", fontSize: "1.5rem" }}>Request Audit</h1>
+      <p style={{ color: "var(--text-muted)", marginBottom: "1.5rem" }}>
+        Recent requests through the Gateway: who (DID) requested what (method + path) and whether access was granted or denied. Data is stored in Gateway Redis and does not affect the request path.
+      </p>
+
+      {loading && entries.length === 0 && (
+        <div className="card">
+          <p style={{ color: "var(--text-muted)" }}>Loading audit log…</p>
+        </div>
+      )}
+
+      {error && entries.length === 0 && (
+        <div className="card" style={{ borderColor: "var(--danger)" }}>
+          <p style={{ color: "var(--danger)" }}>{error}</p>
+          <button type="button" className="btn btn-secondary" onClick={() => load(page, pageSize)} style={{ marginTop: "0.75rem" }}>
+            <RefreshCw size={16} /> Retry
+          </button>
+        </div>
+      )}
+
+      {(entries.length > 0 || (!loading && timestamp)) && (
+        <div className="card">
+          <div style={{ display: "flex", alignItems: "center", justifyContent: "space-between", marginBottom: "1rem", flexWrap: "wrap", gap: "0.75rem" }}>
+            <h2 className="card-title" style={{ margin: 0 }}>Recent requests</h2>
+            <div style={{ display: "flex", alignItems: "center", gap: "0.75rem" }}>
+              <label style={{ fontSize: "0.85rem", color: "var(--text-muted)", display: "flex", alignItems: "center", gap: "0.35rem" }}>
+                Per page
+                <select
+                  value={pageSize}
+                  onChange={(e) => { setPageSize(Number(e.target.value)); setPage(1); }}
+                  style={{ padding: "0.35rem 0.5rem", borderRadius: "6px", border: "1px solid var(--border)", background: "var(--input-bg)", color: "var(--text-primary)", fontSize: "0.85rem" }}
+                >
+                  {PAGE_SIZES.map((n) => (
+                    <option key={n} value={n}>{n}</option>
+                  ))}
+                </select>
+              </label>
+              <button type="button" className="btn btn-secondary" onClick={() => load(page, pageSize)} disabled={loading}>
+                <RefreshCw size={16} /> Refresh
+              </button>
+            </div>
+          </div>
+          {timestamp && (
+            <p style={{ fontSize: "0.85rem", color: "var(--text-muted)", marginBottom: "1rem" }}>
+              Last updated: {timestamp}
+            </p>
+          )}
+          {total > 0 && (
+            <p style={{ fontSize: "0.85rem", color: "var(--text-muted)", marginBottom: "0.75rem" }}>
+              Showing {((page - 1) * pageSize) + 1}–{Math.min(page * pageSize, total)} of {total}
+            </p>
+          )}
+
+          <div style={{ overflowX: "auto" }}>
+            <table style={{ width: "100%", borderCollapse: "collapse", fontSize: pageSize <= 10 ? "0.95rem" : pageSize <= 25 ? "0.9rem" : "0.875rem" }}>
+              <thead>
+                <tr style={{ borderBottom: "1px solid var(--border)", textAlign: "left" }}>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>Time</th>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>From (DID)</th>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>Method</th>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>Path</th>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>Result</th>
+                  <th style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontWeight: 600 }}>Reason</th>
+                </tr>
+              </thead>
+              <tbody>
+                {entries.map((e, i) => (
+                  <tr key={`${e.timestamp}-${i}`} style={{ borderBottom: "1px solid var(--border)" }}>
+                    <td style={{ padding: getRowPadding(pageSize), color: "var(--text-secondary)", whiteSpace: "nowrap" }}>
+                      {new Date(e.timestamp).toLocaleString()}
+                    </td>
+                    <td style={{ padding: getRowPadding(pageSize), color: "var(--text-primary)", wordBreak: "break-all", maxWidth: "200px" }}>
+                      {e.did ?? "—"}
+                    </td>
+                    <td style={{ padding: getRowPadding(pageSize) }}>
+                      <code style={{ fontSize: "0.8em", background: "var(--input-bg)", padding: "0.2rem 0.4rem", borderRadius: "4px" }}>
+                        {e.method}
+                      </code>
+                    </td>
+                    <td style={{ padding: getRowPadding(pageSize), color: "var(--text-secondary)", wordBreak: "break-all", maxWidth: "280px" }}>
+                      {e.path}
+                    </td>
+                    <td style={{ padding: getRowPadding(pageSize) }}>
+                      <span className={`pill ${e.granted ? "pill-success" : "pill-error"}`}>
+                        {e.granted ? "Granted" : "Denied"}
+                      </span>
+                    </td>
+                    <td style={{ padding: getRowPadding(pageSize), color: "var(--text-muted)", fontSize: "0.8rem", maxWidth: "180px" }}>
+                      {e.reason ?? "—"}
+                    </td>
+                  </tr>
+                ))}
+              </tbody>
+            </table>
+          </div>
+          {entries.length === 0 && !loading && (
+            <div style={{ marginTop: "1rem" }}>
+              <p style={{ color: "var(--text-muted)" }}>No audit entries yet.</p>
+              {hint && (
+                <p style={{ color: "var(--text-muted)", fontSize: "0.85rem", marginTop: "0.5rem" }}>{hint}</p>
+              )}
+              <p style={{ color: "var(--text-muted)", fontSize: "0.85rem", marginTop: "0.5rem" }}>
+                Only requests to protected routes are logged: <code style={{ fontSize: "0.8em" }}>/api/farmer/*</code>, <code style={{ fontSize: "0.8em" }}>/api/agents/*</code>, <code style={{ fontSize: "0.8em" }}>/api/data</code>. Check Gateway logs for &quot;Audit:&quot; if Redis write fails.
+              </p>
+            </div>
+          )}
+
+          {/* Bottom pagination: Back / Page N of M / Next */}
+          {(entries.length > 0 || total > 0) && (
+            <nav style={{ display: "flex", alignItems: "center", justifyContent: "space-between", marginTop: "1rem", paddingTop: "1rem", borderTop: "1px solid var(--border)", flexWrap: "wrap", gap: "0.5rem" }} aria-label="Audit pagination">
+              <button
+                type="button"
+                className="btn btn-secondary"
+                onClick={() => setPage((p) => Math.max(1, p - 1))}
+                disabled={loading || page <= 1}
+                aria-label="Previous page"
+              >
+                <ChevronLeft size={16} /> Back
+              </button>
+              <span style={{ fontSize: "0.9rem", color: "var(--text-muted)" }}>
+                Page {page} of {Math.max(1, totalPages)}
+              </span>
+              <button
+                type="button"
+                className="btn btn-secondary"
+                onClick={() => setPage((p) => Math.min(Math.max(1, totalPages), p + 1))}
+                disabled={loading || page >= Math.max(1, totalPages)}
+                aria-label="Next page"
+              >
+                Next <ChevronRight size={16} />
+              </button>
+            </nav>
+          )}
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/frontend/src/components/index.ts b/frontend/src/components/index.ts
@@ -3,3 +3,4 @@ export { IssueVC } from "./IssueVC";
 export { RevokeVC } from "./RevokeVC";
 export { DashboardHome } from "./DashboardHome";
 export { AvailabilityMetrics } from "./AvailabilityMetrics";
+export { RequestAudit } from "./RequestAudit";
diff --git a/frontend/src/layout/Sidebar.tsx b/frontend/src/layout/Sidebar.tsx
@@ -1,6 +1,6 @@
-import { LayoutDashboard, KeyRound, FileBadge, FileX, Activity, Menu } from "lucide-react";
+import { LayoutDashboard, KeyRound, FileBadge, FileX, Activity, ClipboardList, Menu } from "lucide-react";
 
-export type NavId = "dashboard" | "key-did" | "issue-vc" | "revoke-vc" | "availability";
+export type NavId = "dashboard" | "key-did" | "issue-vc" | "revoke-vc" | "availability" | "request-audit";
 
 interface SidebarProps {
   active: NavId;
@@ -13,6 +13,7 @@ const navItems: { id: NavId; label: string; Icon: typeof LayoutDashboard }[] = [
   { id: "issue-vc", label: "Issue VC", Icon: FileBadge },
   { id: "revoke-vc", label: "Revoke VC", Icon: FileX },
   { id: "availability", label: "Availability", Icon: Activity },
+  { id: "request-audit", label: "Request Audit", Icon: ClipboardList },
 ];
 
 export function Sidebar({ active, onNavigate }: SidebarProps) {
