Refactor server logs into diagnostics structured logs#7440
Merged
sfmskywalker merged 10 commits intoMay 10, 2026
Conversation
…del handler registration.
…er registration for MySql, Sqlite, and Oracle providers.
|
| GitGuardian id | GitGuardian status | Secret | Commit | Filename | |
|---|---|---|---|---|---|
| 32583717 | Triggered | Generic Password | ea9ed76 | test/unit/Elsa.Diagnostics.StructuredLogs.UnitTests/Logging/StructuredLogLoggerProviderTests.cs | View secret |
🛠 Guidelines to remediate hardcoded secrets
- Understand the implications of revoking this secret by investigating where it is used in your code.
- Replace and store your secret safely. Learn here the best practices.
- Revoke and rotate this secret.
- If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.
To avoid such incidents in the future consider
- following these best practices for managing and storing secrets including API keys and other credentials
- install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.
🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.
…ngs, and updating project references.
…e, update appsettings configuration.
sfmskywalker
added a commit
that referenced
this pull request
May 10, 2026
* Add live server logs Spec Kit plan * Implement live server logs diagnostics module * Add server log sources and redaction hardening * Add diagnostics unit tests * Harden server log hub subscriptions * Secure server log hub permissions * Validate server log filter updates * Add diagnostics logger and source tests * Add diagnostics integration test project * Add multi-source diagnostics provider coverage * Broadcast server log source changes * Document diagnostics server log streaming * Add diagnostics sample host wiring * Record diagnostics validation results * Address server log PR feedback * Rename diagnostics module to server logs * Add server logs shell feature * Make server logs shell options bindable * Accept read wildcard for server logs * Align server logs authorization with API patterns * Update CShells structure and logging levels, add diagnostics module * Rename PostgreSql shell feature classes for consistency * Switch from Sqlite to PostgreSQL for workflow and identity persistence, add QuartzPostgreSql configuration * Refactor server logs into diagnostics structured logs (#7440) * Specify diagnostics structured logs refactor * docs: clarify structured logs spec * docs: plan diagnostics structured logs * docs: add diagnostics structured logs tasks * refactor: rename server logs to diagnostics structured logs * Refactor PostgreSql persistence features to use centralized entity model handler registration. * Refactor EFCore persistence features to centralize entity model handler registration for MySql, Sqlite, and Oracle providers. * Integrate structured logs by renaming server logs, adjusting appsettings, and updating project references. * Switch from PostgreSQL to Sqlite for workflow and identity persistence, update appsettings configuration.
Contributor
Greptile SummaryThis PR renames
Confidence Score: 4/5Safe to merge; the rename is thorough and the new capabilities are well-implemented with sound concurrency. The core ring buffer, subscriber channel management, redactor, and filter evaluator are all solid. The two open points — reflection in TryAddKeyValueScope and the fire-and-forget PublishAsync discard — are contained to the logger and do not affect correctness for the current in-memory provider. The hub's weaker [Authorize] guard is a documented design choice carried over from Elsa.ServerLogs. src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs and src/modules/Elsa.Diagnostics.StructuredLogs/RealTime/StructuredLogsHub.cs
|
| Filename | Overview |
|---|---|
| src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs | New logger implementation; reflection used in TryAddKeyValueScope hot path and PublishAsync ValueTask is discarded without error handling. |
| src/modules/Elsa.Diagnostics.StructuredLogs/RealTime/StructuredLogsHub.cs | SignalR hub uses plain [Authorize] while REST endpoints enforce the specific read:diagnostics:structured-logs permission — intentional per README but creates an authorization gap for the streaming path. |
| src/modules/Elsa.Diagnostics.StructuredLogs/Providers/InMemory/InMemoryStructuredLogProvider.cs | Solid ring-buffer + subscriber channel implementation; manual capacity enforcement via _pendingItemCount is correct; dropped-event summary re-queuing logic is sound. |
| src/modules/Elsa.Diagnostics.StructuredLogs/RealTime/StructuredLogSubscriptionManager.cs | Concurrent subscription lifecycle management is correctly handled via ConcurrentDictionary and ICollection.Remove atomic key+value comparison; fire-and-forget StreamAsync exceptions are properly caught. |
| src/modules/Elsa.Diagnostics.StructuredLogs/Services/StructuredLogFilterEvaluator.cs | Clean static evaluator covering all filter dimensions including MessageTemplate, Properties, and Scopes for text search; no issues found. |
| src/modules/Elsa.Diagnostics.StructuredLogs/Services/StructuredLogRedactor.cs | Pre-compiled regex patterns and HashSet-based sensitive name lookup are correctly applied to messages, templates, exceptions, properties, and scopes. |
| src/modules/Elsa.Diagnostics.StructuredLogs/Providers/InMemory/RingBuffer.cs | Thread-safe bounded ring buffer using Queue + lock; Snapshot returns a copy; DroppedCount incremented atomically within the lock. |
| src/modules/Elsa.Diagnostics.StructuredLogs/ShellFeatures/StructuredLogsFeature.cs | Shell feature correctly copies all bindable option properties; implements both IFastEndpointsShellFeature and IWebShellFeature as expected. |
Sequence Diagram
sequenceDiagram
participant App as Application Code
participant SLL as StructuredLogLogger
participant Red as StructuredLogRedactor
participant IMLP as InMemoryStructuredLogProvider
participant RB as RingBuffer
participant Sub as StructuredLogSubscriber
participant SM as SubscriptionManager
participant Client as Studio Client
App->>SLL: ILogger.Log(level, state, exception)
SLL->>SLL: ExtractProperties + ExtractScopes
SLL->>Red: Redact(logEvent)
Red-->>SLL: redacted logEvent
SLL->>IMLP: PublishAsync(redacted) [fire-and-forget]
IMLP->>RB: Add(logEvent)
IMLP->>Sub: TryWrite(logEvent, capacity)
Sub-->>IMLP: item enqueued / dropped summary queued
Client->>SM: SubscribeAsync(filter) via Hub
SM->>IMLP: SubscribeWithDroppedEventsAsync(filter)
IMLP-->>SM: IAsyncEnumerable stream
SM->>Client: ReceiveLogEventAsync / ReceiveDroppedEventsAsync
Client->>IMLP: GET /diagnostics/structured-logs/recent
IMLP->>RB: Snapshot()
RB-->>IMLP: filtered + ordered list
IMLP-->>Client: RecentStructuredLogsResult
Prompt To Fix All With AI
Fix the following 3 code review issues. Work through them one at a time, proposing concise fixes.
---
### Issue 1 of 3
src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs:106-138
**Reflection on the hot logging path**
`TryAddKeyValueScope` iterates over the scope as a bare `IEnumerable`, then uses `GetType().GetProperty("Key").GetValue(value)` to extract each `KeyValuePair`'s key and value. This reflection runs for every log entry that carries a structured scope (e.g. `BeginScope(new Dictionary<string, object?>{...})`). The common path — a `Dictionary<string, object?>` scope — produces `KeyValuePair<string, object?>` elements; a direct pattern-match to `IEnumerable<KeyValuePair<string, object?>>` at the scope level (before iterating) would cover that case without any reflection. The current approach also silently produces null for `KeyValuePair<string, string>` scopes because the value cast `as string` fails for non-`object?` value types rather than calling `ToString`.
### Issue 2 of 3
src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs:59-60
**`PublishAsync` ValueTask is silently discarded**
`ILogger.Log` is synchronous so fire-and-forget publishing is unavoidable here, but the discard (`_ = logProvider.PublishAsync(...)`) swallows any exception the provider might throw — including synchronous throws. For the current `InMemoryStructuredLogProvider` this is safe (it always completes synchronously), but a future provider that performs async work or throws on the synchronous path would fail silently.
```suggestion
var redacted = redactor.Redact(logEvent);
var publishTask = logProvider.PublishAsync(redacted);
if (!publishTask.IsCompletedSuccessfully)
_ = publishTask.AsTask().ContinueWith(
static t => { _ = t.Exception; },
TaskContinuationOptions.OnlyOnFaulted | TaskContinuationOptions.ExecuteSynchronously);
```
### Issue 3 of 3
src/modules/Elsa.Diagnostics.StructuredLogs/RealTime/StructuredLogsHub.cs:8-9
**Hub authorization does not enforce the `read:diagnostics:structured-logs` permission**
The hub uses `[Authorize]` (any authenticated user) while both REST endpoints use `ConfigurePermissions(StructuredLogsPermissions.Read)` which enforces the `read:diagnostics:structured-logs` permission. Any authenticated user — including those explicitly denied that permission — can open a SignalR connection and receive the full live log stream. The README explicitly documents this as an intentional match to the existing Elsa workflow hub pattern, but it does mean the REST permission grant has no effect on real-time streaming. If the intent is that `read:diagnostics:structured-logs` controls access to all log data, the hub attribute should be updated to require the same policy.
Reviews (1): Last reviewed commit: "Switch from PostgreSQL to Sqlite for wor..." | Re-trigger Greptile
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
Comment on lines
+106
to
+138
|
|
||
| private static void AddScope(IDictionary<string, string?> scopes, object? scope, int index) | ||
| { | ||
| if (scope == null) | ||
| return; | ||
|
|
||
| if (TryAddKeyValueScope(scopes, scope)) | ||
| return; | ||
|
|
||
| var key = index == 0 ? "Scope" : $"Scope{index + 1}"; | ||
| AddValue(scopes, key, scope); | ||
| } | ||
|
|
||
| private static bool TryAddKeyValueScope(IDictionary<string, string?> scopes, object scope) | ||
| { | ||
| if (scope is not IEnumerable values) | ||
| return false; | ||
|
|
||
| var added = false; | ||
| foreach (var value in values) | ||
| { | ||
| if (value == null) | ||
| continue; | ||
|
|
||
| var type = value.GetType(); | ||
| if (!type.IsGenericType || type.GetGenericTypeDefinition() != typeof(KeyValuePair<,>)) | ||
| continue; | ||
|
|
||
| var key = type.GetProperty(nameof(KeyValuePair<string, object?>.Key))?.GetValue(value) as string; | ||
| if (key is null or "{OriginalFormat}") | ||
| continue; | ||
|
|
||
| var itemValue = type.GetProperty(nameof(KeyValuePair<string, object?>.Value))?.GetValue(value); |
Contributor
There was a problem hiding this comment.
TryAddKeyValueScope iterates over the scope as a bare IEnumerable, then uses GetType().GetProperty("Key").GetValue(value) to extract each KeyValuePair's key and value. This reflection runs for every log entry that carries a structured scope (e.g. BeginScope(new Dictionary<string, object?>{...})). The common path — a Dictionary<string, object?> scope — produces KeyValuePair<string, object?> elements; a direct pattern-match to IEnumerable<KeyValuePair<string, object?>> at the scope level (before iterating) would cover that case without any reflection. The current approach also silently produces null for KeyValuePair<string, string> scopes because the value cast as string fails for non-object? value types rather than calling ToString.
Prompt To Fix With AI
This is a comment left during a code review.
Path: src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs
Line: 106-138
Comment:
**Reflection on the hot logging path**
`TryAddKeyValueScope` iterates over the scope as a bare `IEnumerable`, then uses `GetType().GetProperty("Key").GetValue(value)` to extract each `KeyValuePair`'s key and value. This reflection runs for every log entry that carries a structured scope (e.g. `BeginScope(new Dictionary<string, object?>{...})`). The common path — a `Dictionary<string, object?>` scope — produces `KeyValuePair<string, object?>` elements; a direct pattern-match to `IEnumerable<KeyValuePair<string, object?>>` at the scope level (before iterating) would cover that case without any reflection. The current approach also silently produces null for `KeyValuePair<string, string>` scopes because the value cast `as string` fails for non-`object?` value types rather than calling `ToString`.
How can I resolve this? If you propose a fix, please make it concise.
Comment on lines
+59
to
+60
| var redacted = redactor.Redact(logEvent); | ||
| _ = logProvider.PublishAsync(redacted); |
Contributor
There was a problem hiding this comment.
PublishAsync ValueTask is silently discarded
ILogger.Log is synchronous so fire-and-forget publishing is unavoidable here, but the discard (_ = logProvider.PublishAsync(...)) swallows any exception the provider might throw — including synchronous throws. For the current InMemoryStructuredLogProvider this is safe (it always completes synchronously), but a future provider that performs async work or throws on the synchronous path would fail silently.
Suggested change
| var redacted = redactor.Redact(logEvent); | |
| _ = logProvider.PublishAsync(redacted); | |
| var redacted = redactor.Redact(logEvent); | |
| var publishTask = logProvider.PublishAsync(redacted); | |
| if (!publishTask.IsCompletedSuccessfully) | |
| _ = publishTask.AsTask().ContinueWith( | |
| static t => { _ = t.Exception; }, | |
| TaskContinuationOptions.OnlyOnFaulted | TaskContinuationOptions.ExecuteSynchronously); |
Prompt To Fix With AI
This is a comment left during a code review.
Path: src/modules/Elsa.Diagnostics.StructuredLogs/Logging/StructuredLogLogger.cs
Line: 59-60
Comment:
**`PublishAsync` ValueTask is silently discarded**
`ILogger.Log` is synchronous so fire-and-forget publishing is unavoidable here, but the discard (`_ = logProvider.PublishAsync(...)`) swallows any exception the provider might throw — including synchronous throws. For the current `InMemoryStructuredLogProvider` this is safe (it always completes synchronously), but a future provider that performs async work or throws on the synchronous path would fail silently.
```suggestion
var redacted = redactor.Redact(logEvent);
var publishTask = logProvider.PublishAsync(redacted);
if (!publishTask.IsCompletedSuccessfully)
_ = publishTask.AsTask().ContinueWith(
static t => { _ = t.Exception; },
TaskContinuationOptions.OnlyOnFaulted | TaskContinuationOptions.ExecuteSynchronously);
```
How can I resolve this? If you propose a fix, please make it concise.
Comment on lines
8
to
+9
| [Authorize] | ||
| public class ServerLogsHub(ServerLogSubscriptionManager subscriptionManager) : Hub<IServerLogsClient> | ||
| public class StructuredLogsHub(StructuredLogSubscriptionManager subscriptionManager) : Hub<IStructuredLogsClient> |
Contributor
There was a problem hiding this comment.
read:diagnostics:structured-logs permission
The hub uses [Authorize] (any authenticated user) while both REST endpoints use ConfigurePermissions(StructuredLogsPermissions.Read) which enforces the read:diagnostics:structured-logs permission. Any authenticated user — including those explicitly denied that permission — can open a SignalR connection and receive the full live log stream. The README explicitly documents this as an intentional match to the existing Elsa workflow hub pattern, but it does mean the REST permission grant has no effect on real-time streaming. If the intent is that read:diagnostics:structured-logs controls access to all log data, the hub attribute should be updated to require the same policy.
Prompt To Fix With AI
This is a comment left during a code review.
Path: src/modules/Elsa.Diagnostics.StructuredLogs/RealTime/StructuredLogsHub.cs
Line: 8-9
Comment:
**Hub authorization does not enforce the `read:diagnostics:structured-logs` permission**
The hub uses `[Authorize]` (any authenticated user) while both REST endpoints use `ConfigurePermissions(StructuredLogsPermissions.Read)` which enforces the `read:diagnostics:structured-logs` permission. Any authenticated user — including those explicitly denied that permission — can open a SignalR connection and receive the full live log stream. The README explicitly documents this as an intentional match to the existing Elsa workflow hub pattern, but it does mean the REST permission grant has no effect on real-time streaming. If the intent is that `read:diagnostics:structured-logs` controls access to all log data, the hub attribute should be updated to require the same policy.
How can I resolve this? If you propose a fix, please make it concise.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Refactors the server logs feature into the diagnostics structured logs module:
Elsa.ServerLogstoElsa.Diagnostics.StructuredLogs{OriginalFormat}ISupportExternalScopeWhy
We decided to split diagnostics into separate modules:
ILoggerrecordsThis PR makes the current implementation accurately represent the Structured Logs module before adding the other diagnostics surfaces.
Validation
dotnet build src/modules/Elsa.Diagnostics.StructuredLogs/Elsa.Diagnostics.StructuredLogs.csprojdotnet test test/unit/Elsa.Diagnostics.StructuredLogs.UnitTests/Elsa.Diagnostics.StructuredLogs.UnitTests.csprojdotnet test test/integration/Elsa.Diagnostics.StructuredLogs.IntegrationTests/Elsa.Diagnostics.StructuredLogs.IntegrationTests.csprojrg "Elsa\\.ServerLogs|ServerLogStreaming|server-logs|read:server-logs" src testResidual warnings are existing repo warnings, including
NU1903, ILLink analyzer exceptions, and unrelated nullable/unread-parameter warnings.