Accueil Explorer Aide
S'inscrire Connexion
root
/
db_view
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 77ba2d1c54
Branches Tags
db_view
/
service
/
internal
/
common
/
logger
/
middleware.go

middleware.go 4.9 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198 
  1. package logger
    2. 

  2. 

  3. import (
    4. 

  4. 	"time"
    5. 

  5. 

  6. 	"github.com/gin-gonic/gin"
    7. 

  7. 	"go.uber.org/zap"
    8. 

  8. )
    9. 

  9. 

  10. // AuditMiddleware 创建审计中间件
    11. 

  11. func AuditMiddleware(audit AuditLogger, logger Logger) gin.HandlerFunc {
    12. 

  12. 	return func(c *gin.Context) {
    13. 

  13. 		start := time.Now()
    14. 

  14. 

  15. 		// 获取用户信息(这里需要根据你的认证系统调整)
    16. 

  16. 		userID := getUserID(c)
    17. 

  17. 		username := getUsername(c)
    18. 

  18. 

  19. 		// 处理请求
    20. 

  20. 		c.Next()
    21. 

  21. 

  22. 		// 计算请求持续时间
    23. 

  23. 		duration := time.Since(start)
    24. 

  24. 

  25. 		// 记录访问日志
    26. 

  26. 		logger.Info("HTTP请求",
    27. 

  27. 			zap.String("method", c.Request.Method),
    28. 

  28. 			zap.String("path", c.Request.URL.Path),
    29. 

  29. 			zap.String("query", c.Request.URL.RawQuery),
    30. 

  30. 			zap.String("ip", c.ClientIP()),
    31. 

  31. 			zap.String("user_agent", c.Request.UserAgent()),
    32. 

  32. 			zap.Int("status", c.Writer.Status()),
    33. 

  33. 			zap.Duration("duration", duration),
    34. 

  34. 			zap.String("user_id", userID),
    35. 

  35. 		)
    36. 

  36. 

  37. 		// 记录审计事件
    38. 

  38. 		entry := &AuditEntry{
    39. 

  39. 			UserID:    userID,
    40. 

  40. 			Username:  username,
    41. 

  41. 			Action:    c.Request.Method + " " + c.Request.URL.Path,
    42. 

  42. 			Resource:  c.Request.URL.Path,
    43. 

  43. 			Details:   c.Request.URL.RawQuery,
    44. 

  44. 			IP:        c.ClientIP(),
    45. 

  45. 			UserAgent: c.Request.UserAgent(),
    46. 

  46. 			Success:   c.Writer.Status() < 400,
    47. 

  47. 		}
    48. 

  48. 

  49. 		// 如果有错误,记录错误信息
    50. 

  50. 		if len(c.Errors) > 0 {
    51. 

  51. 			entry.Error = c.Errors.String()
    52. 

  52. 			entry.Success = false
    53. 

  53. 		}
    54. 

  54. 

  55. 		// 异步记录审计,避免阻塞请求
    56. 

  56. 		go func() {
    57. 

  57. 			if err := audit.Record(entry); err != nil {
    58. 

  58. 				// 审计失败记录到日志,但不影响正常业务
    59. 

  59. 				logger.Error("审计记录失败", zap.Error(err))
    60. 

  60. 			}
    61. 

  61. 		}()
    62. 

  62. 	}
    63. 

  63. }
    64. 

  64. 

  65. // RequestLogger 创建请求日志中间件(不包含审计)
    66. 

  66. func RequestLogger(logger Logger) gin.HandlerFunc {
    67. 

  67. 	return func(c *gin.Context) {
    68. 

  68. 		start := time.Now()
    69. 

  69. 

  70. 		// 处理请求
    71. 

  71. 		c.Next()
    72. 

  72. 

  73. 		// 计算请求持续时间
    74. 

  74. 		duration := time.Since(start)
    75. 

  75. 

  76. 		// 记录请求日志
    77. 

  77. 		logger.Info("HTTP请求",
    78. 

  78. 			zap.String("method", c.Request.Method),
    79. 

  79. 			zap.String("path", c.Request.URL.Path),
    80. 

  80. 			zap.String("query", c.Request.URL.RawQuery),
    81. 

  81. 			zap.String("ip", c.ClientIP()),
    82. 

  82. 			zap.String("user_agent", c.Request.UserAgent()),
    83. 

  83. 			zap.Int("status", c.Writer.Status()),
    84. 

  84. 			zap.Duration("duration", duration),
    85. 

  85. 		)
    86. 

  86. 	}
    87. 

  87. }
    88. 

  88. 

  89. // RecoveryMiddleware 创建恢复中间件
    90. 

  90. func RecoveryMiddleware(logger Logger) gin.HandlerFunc {
    91. 

  91. 	return gin.CustomRecovery(func(c *gin.Context, recovered interface{}) {
    92. 

  92. 		if err, ok := recovered.(string); ok {
    93. 

  93. 			logger.Error("panic recovered",
    94. 

  94. 				zap.String("error", err),
    95. 

  95. 				zap.String("method", c.Request.Method),
    96. 

  96. 				zap.String("path", c.Request.URL.Path),
    97. 

  97. 				zap.String("ip", c.ClientIP()),
    98. 

  98. 			)
    99. 

  99. 		} else {
    100. 

  100. 			logger.Error("panic recovered",
    101. 

  101. 				zap.Any("error", recovered),
    102. 

  102. 				zap.String("method", c.Request.Method),
    103. 

  103. 				zap.String("path", c.Request.URL.Path),
    104. 

  104. 				zap.String("ip", c.ClientIP()),
    105. 

  105. 			)
    106. 

  106. 		}
    107. 

  107. 

  108. 		c.AbortWithStatusJSON(500, gin.H{
    109. 

  109. 			"error": "Internal Server Error",
    110. 

  110. 		})
    111. 

  111. 	})
    112. 

  112. }
    113. 

  113. 

  114. // getUserID 从请求上下文中获取用户ID
    115. 

  115. // 这里需要根据你的认证系统进行调整
    116. 

  116. func getUserID(c *gin.Context) string {
    117. 

  117. 	// 示例:从JWT token或session中获取
    118. 

  118. 	if userID, exists := c.Get("user_id"); exists {
    119. 

  119. 		if id, ok := userID.(string); ok {
    120. 

  120. 			return id
    121. 

  121. 		}
    122. 

  122. 	}
    123. 

  123. 	return ""
    124. 

  124. }
    125. 

  125. 

  126. // getUsername 从请求上下文中获取用户名
    127. 

  127. // 这里需要根据你的认证系统进行调整
    128. 

  128. func getUsername(c *gin.Context) string {
    129. 

  129. 	// 示例:从JWT token或session中获取
    130. 

  130. 	if username, exists := c.Get("username"); exists {
    131. 

  131. 		if name, ok := username.(string); ok {
    132. 

  132. 			return name
    133. 

  133. 		}
    134. 

  134. 	}
    135. 

  135. 	return ""
    136. 

  136. }
    137. 

  137. 

  138. // AuditHelper 审计助手,提供便捷的审计方法
    139. 

  139. type AuditHelper struct {
    140. 

  140. 	audit  AuditLogger
    141. 

  141. 	logger Logger
    142. 

  142. }
    143. 

  143. 

  144. // NewAuditHelper 创建审计助手
    145. 

  145. func NewAuditHelper(audit AuditLogger, logger Logger) *AuditHelper {
    146. 

  146. 	return &AuditHelper{
    147. 

  147. 		audit:  audit,
    148. 

  148. 		logger: logger,
    149. 

  149. 	}
    150. 

  150. }
    151. 

  151. 

  152. // RecordLogin 记录登录事件
    153. 

  153. func (h *AuditHelper) RecordLogin(userID, username, ip, userAgent string, success bool) {
    154. 

  154. 	entry := &AuditEntry{
    155. 

  155. 		UserID:    userID,
    156. 

  156. 		Username:  username,
    157. 

  157. 		Action:    "login",
    158. 

  158. 		Resource:  "auth",
    159. 

  159. 		IP:        ip,
    160. 

  160. 		UserAgent: userAgent,
    161. 

  161. 		Success:   success,
    162. 

  162. 	}
    163. 

  163. 

  164. 	if err := h.audit.Record(entry); err != nil {
    165. 

  165. 		h.logger.Error("记录登录审计失败", zap.Error(err))
    166. 

  166. 	}
    167. 

  167. }
    168. 

  168. 

  169. // RecordUserAction 记录用户操作
    170. 

  170. func (h *AuditHelper) RecordUserAction(userID, username, action, resource, resourceID, ip string, success bool) {
    171. 

  171. 	entry := &AuditEntry{
    172. 

  172. 		UserID:   userID,
    173. 

  173. 		Username: username,
    174. 

  174. 		Action:   action,
    175. 

  175. 		Resource: resource,
    176. 

  176. 		Details:  resourceID,
    177. 

  177. 		IP:       ip,
    178. 

  178. 		Success:  success,
    179. 

  179. 	}
    180. 

  180. 

  181. 	if err := h.audit.Record(entry); err != nil {
    182. 

  182. 		h.logger.Error("记录用户操作审计失败", zap.Error(err))
    183. 

  183. 	}
    184. 

  184. }
    185. 

  185. 

  186. // RecordSystemEvent 记录系统事件
    187. 

  187. func (h *AuditHelper) RecordSystemEvent(event, details string) {
    188. 

  188. 	entry := &AuditEntry{
    189. 

  189. 		Action:   "system_event",
    190. 

  190. 		Resource: event,
    191. 

  191. 		Details:  details,
    192. 

  192. 		Success:  true,
    193. 

  193. 	}
    194. 

  194. 

  195. 	if err := h.audit.Record(entry); err != nil {
    196. 

  196. 		h.logger.Error("记录系统事件审计失败", zap.Error(err))
    197. 

  197. 	}
    198. 

  198. }
    199.