add audit events

Author: rawdaGastan

server/app/admin_handler.go

@@ -169,6 +169,11 @@ func (a *App) SetPricesHandler(req *http.Request) (interface{}, Response) {
 		a.config.PricesPerMonth.PublicIP = input.PublicIP
 	}
 
+	if err := a.logVMsPriceUpdate(req, a.config.PricesPerMonth); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "New prices are set",
 		Data:    nil,
@@ -314,6 +319,11 @@ func (a *App) DeleteAllDeploymentsHandler(req *http.Request) (interface{}, Respo
 		}
 	}
 
+	if err := a.logAllDeploymentsDelete(req); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "Deployments are deleted successfully",
 	}, Ok()
@@ -416,6 +426,11 @@ func (a *App) UpdateMaintenanceHandler(req *http.Request) (interface{}, Response
 		return nil, InternalServerError(errors.New(internalServerErrorMsg))
 	}
 
+	if err := a.logMaintenanceUpdate(req, input.ON); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "Maintenance is updated successfully",
 		Data:    nil,
@@ -477,6 +492,11 @@ func (a *App) SetAdminHandler(req *http.Request) (interface{}, Response) {
 		return nil, InternalServerError(errors.New(internalServerErrorMsg))
 	}
 
+	if err := a.logAdminSet(req, user.ID.String(), input.Admin); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "User is updated successfully",
 	}, Ok()
@@ -537,6 +557,11 @@ func (a *App) CreateNewAnnouncementHandler(req *http.Request) (interface{}, Resp
 		}
 	}
 
+	if err := a.logAnnouncementCreate(req, adminAnnouncement.Subject); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "new announcement is sent successfully",
 	}, Created()
@@ -598,6 +623,11 @@ func (a *App) SendEmailHandler(req *http.Request) (interface{}, Response) {
 		return nil, InternalServerError(errors.New(internalServerErrorMsg))
 	}
 
+	if err := a.logEmailSent(req, user.ID.String(), emailUser.Subject); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "new email is sent successfully",
 	}, Created()
@@ -636,6 +666,11 @@ func (a *App) UpdateNextLaunchHandler(req *http.Request) (interface{}, Response)
 		return nil, InternalServerError(errors.New(internalServerErrorMsg))
 	}
 
+	if err := a.logNextLaunchUpdate(req, input.Launched); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return ResponseMsg{
 		Message: "Next Launch is updated successfully",
 		Data:    nil,

server/app/app.go

@@ -119,6 +119,7 @@ func (a *App) registerHandlers() {
 	invoiceRouter := authRouter.PathPrefix("/invoice").Subrouter()
 	cardRouter := userRouter.PathPrefix("/card").Subrouter()
 	logRouter := userRouter.PathPrefix("/log").Subrouter()
+	eventRouter := userRouter.PathPrefix("/event").Subrouter()
 	notificationRouter := authRouter.PathPrefix("/notification").Subrouter()
 	vmRouter := authRouter.PathPrefix("/vm").Subrouter()
 	k8sRouter := authRouter.PathPrefix("/k8s").Subrouter()
@@ -159,6 +160,8 @@ func (a *App) registerHandlers() {
 
 	logRouter.HandleFunc("", WrapFunc(a.ListLogsHandler)).Methods("GET", "OPTIONS")
 
+	eventRouter.HandleFunc("", WrapFunc(a.ListEventsHandler)).Methods("GET", "OPTIONS")
+
 	invoiceRouter.HandleFunc("", WrapFunc(a.ListInvoicesHandler)).Methods("GET", "OPTIONS")
 	invoiceRouter.HandleFunc("/{id}", WrapFunc(a.GetInvoiceHandler)).Methods("GET", "OPTIONS")
 	invoiceRouter.HandleFunc("/download/{id}", WrapFunc(a.DownloadInvoiceHandler)).Methods("GET", "OPTIONS")

server/app/audit_handler.go

@@ -42,3 +42,37 @@ func (a *App) ListLogsHandler(req *http.Request) (interface{}, Response) {
 		Data:    logs,
 	}, Ok()
 }
+
+// Example endpoint: List user's events
+// @Summary List user's events
+// @Description List user's events
+// @Tags Audit
+// @Accept  json
+// @Produce  json
+// @Security BearerAuth
+// @Success 200 {object} []models.AuditEvent
+// @Failure 400 {object} Response
+// @Failure 401 {object} Response
+// @Failure 404 {object} Response
+// @Failure 500 {object} Response
+// @Router /user/event [get]
+func (a *App) ListEventsHandler(req *http.Request) (interface{}, Response) {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	events, err := a.db.GetUserEvents(userID)
+	if err == gorm.ErrRecordNotFound || len(events) == 0 {
+		return ResponseMsg{
+			Message: "no events found",
+			Data:    events,
+		}, Ok()
+	}
+	if err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
+	return ResponseMsg{
+		Message: "Events are found",
+		Data:    events,
+	}, Ok()
+}

server/app/events.go

@@ -0,0 +1,202 @@
+package app
+
+import (
+	"fmt"
+	"net/http"
+	"time"
+
+	"github.com/codescalers/cloud4students/internal"
+	"github.com/codescalers/cloud4students/middlewares"
+	"github.com/codescalers/cloud4students/models"
+	"github.com/pkg/errors"
+)
+
+func (a *App) logInvoicePayment(userID, currency string, invoiceTotal float64, paymentDetails models.PaymentDetails) error {
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "pay_invoice",
+		Role:      "User",
+		Timestamp: time.Now(),
+		Metadata: fmt.Sprintf(
+			"Invoice %v with value: %v %v is paid using: {balance: %v, vouchers: %v, card:%v}",
+			paymentDetails.InvoiceID, invoiceTotal, currency,
+			paymentDetails.Balance, paymentDetails.VoucherBalance, paymentDetails.Card,
+		),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logInvoicePDFUpdate(req *http.Request, invoiceID int) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "update_invoice",
+		Role:      "User",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("Invoice %v pdf data is updated", invoiceID),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logInvoiceDownload(req *http.Request, invoiceID int) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "download_invoice",
+		Role:      "User",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("Invoice %v is downloaded", invoiceID),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logEmailSent(req *http.Request, targetUserID, subject string) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "send_email",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("An email is sent to: %v, with subject: %v", targetUserID, subject),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logAnnouncementCreate(req *http.Request, subject string) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "create_announcement",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("An announcement is created with subject: %v", subject),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logAdminSet(req *http.Request, adminID string, admin bool) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	metaData := fmt.Sprintf("A new admin %v is added", adminID)
+	if !admin {
+		metaData = fmt.Sprintf("An admin %v is removed", adminID)
+	}
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "set_admin",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  metaData,
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logNextLaunchUpdate(req *http.Request, on bool) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "update_next_launch",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("Next launch value is updated to: %v", on),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logMaintenanceUpdate(req *http.Request, on bool) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "update_maintenance",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  fmt.Sprintf("Maintenance value is updated to: %v", on),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logAllDeploymentsDelete(req *http.Request) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "delete_all_deployments",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata:  "All virtual machines are deleted",
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}
+
+func (a *App) logVMsPriceUpdate(req *http.Request, prices internal.Prices) error {
+	userID := req.Context().Value(middlewares.UserIDKey("UserID")).(string)
+
+	event := models.AuditEvent{
+		UserID:    userID,
+		Action:    "update_vms_prices",
+		Role:      "Admin",
+		Timestamp: time.Now(),
+		Metadata: fmt.Sprintf(
+			"Virtual machines prices are updated {small: %v, medium: %v, large: %v, public IPs: %v}",
+			prices.SmallVM, prices.MediumVM, prices.LargeVM, prices.PublicIP,
+		),
+	}
+
+	if err := a.db.CreateAuditEvent(&event); err != nil {
+		return errors.Wrapf(err, "Failed to log audit event: %s", event.Action)
+	}
+
+	return nil
+}

server/app/invoice_handler.go

@@ -174,12 +174,22 @@ func (a *App) DownloadInvoiceHandler(req *http.Request) (interface{}, Response)
 			log.Error().Err(err).Send()
 			return nil, InternalServerError(errors.New(internalServerErrorMsg))
 		}
+
+		if err := a.logInvoicePDFUpdate(req, invoice.ID); err != nil {
+			log.Error().Err(err).Send()
+			return nil, InternalServerError(errors.New(internalServerErrorMsg))
+		}
 	}
 
 	if userID != invoice.UserID {
 		return nil, NotFound(errors.New("invoice is not found"))
 	}
 
+	if err := a.logInvoiceDownload(req, invoice.ID); err != nil {
+		log.Error().Err(err).Send()
+		return nil, InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return invoice.FileData, Ok().
 		WithHeader("Content-Disposition", fmt.Sprintf("attachment; filename=%s", fmt.Sprintf("invoice-%s-%d.pdf", invoice.UserID, invoice.ID))).
 		WithHeader("Content-Type", "application/pdf")
@@ -689,6 +699,11 @@ func (a *App) payInvoice(user *models.User, cardPaymentID string, method method,
 		return InternalServerError(errors.New(internalServerErrorMsg))
 	}
 
+	if err := a.logInvoicePayment(user.ID.String(), a.config.Currency, invoiceTotal, paymentDetails); err != nil {
+		log.Error().Err(err).Send()
+		return InternalServerError(errors.New(internalServerErrorMsg))
+	}
+
 	return nil
 }