miteruzo
/
nizika_video
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
ニジカ投稿局 https://tv.nizika.tv
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13 Commits
1 Branch
24 MiB
 
 
 
 
 
Branch: main
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'main'
${ noResults }
nizika_video/server/core/helpers/audit-logger.ts

298 lines
6.8 KiB
Raw Permalink Blame History 

  1. import {

  2.   AdminAbuse,

  3.   CustomConfig,

  4.   User,

  5.   VideoChannel,

  6.   VideoChannelSync,

  7.   VideoComment,

  8.   VideoDetails,

  9.   VideoImport

  10. } from '@peertube/peertube-models'

  11. import { AUDIT_LOG_FILENAME } from '@server/initializers/constants.js'

  12. import { diff } from 'deep-object-diff'

  13. import express from 'express'

  14. import { flatten } from 'flat'

  15. import { join } from 'path'

  16. import { addColors, config, createLogger, format, transports } from 'winston'

  17. import { CONFIG } from '../initializers/config.js'

  18. import { jsonLoggerFormat, labelFormatter } from './logger.js'

  19. 

  20. function getAuditIdFromRes (res: express.Response) {

  21.   return res.locals.oauth.token.User.username

  22. }

  23. 

  24. enum AUDIT_TYPE {

  25.   CREATE = 'create',

  26.   UPDATE = 'update',

  27.   DELETE = 'delete'

  28. }

  29. 

  30. const colors = config.npm.colors

  31. colors.audit = config.npm.colors.info

  32. 

  33. addColors(colors)

  34. 

  35. const auditLogger = createLogger({

  36.   levels: { audit: 0 },

  37.   transports: [

  38.     new transports.File({

  39.       filename: join(CONFIG.STORAGE.LOG_DIR, AUDIT_LOG_FILENAME),

  40.       level: 'audit',

  41.       maxsize: 5242880,

  42.       maxFiles: 5,

  43.       format: format.combine(

  44.         format.timestamp(),

  45.         labelFormatter(),

  46.         format.splat(),

  47.         jsonLoggerFormat

  48.       )

  49.     })

  50.   ],

  51.   exitOnError: true

  52. })

  53. 

  54. function auditLoggerWrapper (domain: string, user: string, action: AUDIT_TYPE, entity: EntityAuditView, oldEntity: EntityAuditView = null) {

  55.   let entityInfos: object

  56. 

  57.   if (action === AUDIT_TYPE.UPDATE && oldEntity) {

  58.     const oldEntityKeys = oldEntity.toLogKeys()

  59.     const diffObject = diff(oldEntityKeys, entity.toLogKeys())

  60.     const diffKeys = Object.entries(diffObject).reduce((newKeys, entry) => {

  61.       newKeys[`new-${entry[0]}`] = entry[1]

  62.       return newKeys

  63.     }, {})

  64.     entityInfos = { ...oldEntityKeys, ...diffKeys }

  65.   } else {

  66.     entityInfos = { ...entity.toLogKeys() }

  67.   }

  68. 

  69.   auditLogger.log('audit', JSON.stringify({

  70.     user,

  71.     domain,

  72.     action,

  73.     ...entityInfos

  74.   }))

  75. }

  76. 

  77. function auditLoggerFactory (domain: string) {

  78.   return {

  79.     create (user: string, entity: EntityAuditView) {

  80.       auditLoggerWrapper(domain, user, AUDIT_TYPE.CREATE, entity)

  81.     },

  82.     update (user: string, entity: EntityAuditView, oldEntity: EntityAuditView) {

  83.       auditLoggerWrapper(domain, user, AUDIT_TYPE.UPDATE, entity, oldEntity)

  84.     },

  85.     delete (user: string, entity: EntityAuditView) {

  86.       auditLoggerWrapper(domain, user, AUDIT_TYPE.DELETE, entity)

  87.     }

  88.   }

  89. }

  90. 

  91. abstract class EntityAuditView {

  92.   constructor (private readonly keysToKeep: Set<string>, private readonly prefix: string, private readonly entityInfos: object) { }

  93. 

  94.   toLogKeys (): object {

  95.     const obj = flatten<object, any>(this.entityInfos, { delimiter: '-', safe: true })

  96. 

  97.     return Object.keys(obj)

  98.       .filter(key => this.keysToKeep.has(key))

  99.       .reduce((p, k) => ({ ...p, [`${this.prefix}-${k}`]: obj[k] }), {})

  100.   }

  101. }

  102. 

  103. const videoKeysToKeep = new Set([

  104.   'tags',

  105.   'uuid',

  106.   'id',

  107.   'uuid',

  108.   'createdAt',

  109.   'updatedAt',

  110.   'publishedAt',

  111.   'category',

  112.   'licence',

  113.   'language',

  114.   'privacy',

  115.   'description',

  116.   'duration',

  117.   'isLocal',

  118.   'name',

  119.   'thumbnailPath',

  120.   'previewPath',

  121.   'nsfw',

  122.   'waitTranscoding',

  123.   'account-id',

  124.   'account-uuid',

  125.   'account-name',

  126.   'channel-id',

  127.   'channel-uuid',

  128.   'channel-name',

  129.   'support',

  130.   'commentsPolicy',

  131.   'downloadEnabled'

  132. ])

  133. class VideoAuditView extends EntityAuditView {

  134.   constructor (video: VideoDetails) {

  135.     super(videoKeysToKeep, 'video', video)

  136.   }

  137. }

  138. 

  139. const videoImportKeysToKeep = new Set([

  140.   'id',

  141.   'targetUrl',

  142.   'video-name'

  143. ])

  144. class VideoImportAuditView extends EntityAuditView {

  145.   constructor (videoImport: VideoImport) {

  146.     super(videoImportKeysToKeep, 'video-import', videoImport)

  147.   }

  148. }

  149. 

  150. const commentKeysToKeep = new Set([

  151.   'id',

  152.   'text',

  153.   'threadId',

  154.   'inReplyToCommentId',

  155.   'videoId',

  156.   'createdAt',

  157.   'updatedAt',

  158.   'totalReplies',

  159.   'account-id',

  160.   'account-uuid',

  161.   'account-name'

  162. ])

  163. class CommentAuditView extends EntityAuditView {

  164.   constructor (comment: VideoComment) {

  165.     super(commentKeysToKeep, 'comment', comment)

  166.   }

  167. }

  168. 

  169. const userKeysToKeep = new Set([

  170.   'id',

  171.   'username',

  172.   'email',

  173.   'nsfwPolicy',

  174.   'autoPlayVideo',

  175.   'role',

  176.   'videoQuota',

  177.   'createdAt',

  178.   'account-id',

  179.   'account-uuid',

  180.   'account-name',

  181.   'account-followingCount',

  182.   'account-followersCount',

  183.   'account-createdAt',

  184.   'account-updatedAt',

  185.   'account-avatar-path',

  186.   'account-avatar-createdAt',

  187.   'account-avatar-updatedAt',

  188.   'account-displayName',

  189.   'account-description',

  190.   'videoChannels'

  191. ])

  192. class UserAuditView extends EntityAuditView {

  193.   constructor (user: User) {

  194.     super(userKeysToKeep, 'user', user)

  195.   }

  196. }

  197. 

  198. const channelKeysToKeep = new Set([

  199.   'id',

  200.   'uuid',

  201.   'name',

  202.   'followingCount',

  203.   'followersCount',

  204.   'createdAt',

  205.   'updatedAt',

  206.   'avatar-path',

  207.   'avatar-createdAt',

  208.   'avatar-updatedAt',

  209.   'displayName',

  210.   'description',

  211.   'support',

  212.   'isLocal',

  213.   'ownerAccount-id',

  214.   'ownerAccount-uuid',

  215.   'ownerAccount-name',

  216.   'ownerAccount-displayedName'

  217. ])

  218. class VideoChannelAuditView extends EntityAuditView {

  219.   constructor (channel: VideoChannel) {

  220.     super(channelKeysToKeep, 'channel', channel)

  221.   }

  222. }

  223. 

  224. const abuseKeysToKeep = new Set([

  225.   'id',

  226.   'reason',

  227.   'reporterAccount',

  228.   'createdAt'

  229. ])

  230. class AbuseAuditView extends EntityAuditView {

  231.   constructor (abuse: AdminAbuse) {

  232.     super(abuseKeysToKeep, 'abuse', abuse)

  233.   }

  234. }

  235. 

  236. const customConfigKeysToKeep = new Set([

  237.   'instance-name',

  238.   'instance-shortDescription',

  239.   'instance-description',

  240.   'instance-terms',

  241.   'instance-defaultClientRoute',

  242.   'instance-defaultNSFWPolicy',

  243.   'instance-customizations-javascript',

  244.   'instance-customizations-css',

  245.   'services-twitter-username',

  246.   'cache-previews-size',

  247.   'cache-captions-size',

  248.   'signup-enabled',

  249.   'signup-limit',

  250.   'signup-requiresEmailVerification',

  251.   'admin-email',

  252.   'user-videoQuota',

  253.   'transcoding-enabled',

  254.   'transcoding-threads',

  255.   'transcoding-resolutions'

  256. ])

  257. class CustomConfigAuditView extends EntityAuditView {

  258.   constructor (customConfig: CustomConfig) {

  259.     const infos: any = customConfig

  260.     const resolutionsDict = infos.transcoding.resolutions

  261.     const resolutionsArray = []

  262. 

  263.     Object.entries(resolutionsDict)

  264.           .forEach(([ resolution, isEnabled ]) => {

  265.             if (isEnabled) resolutionsArray.push(resolution)

  266.           })

  267. 

  268.     Object.assign({}, infos, { transcoding: { resolutions: resolutionsArray } })

  269.     super(customConfigKeysToKeep, 'config', infos)

  270.   }

  271. }

  272. 

  273. const channelSyncKeysToKeep = new Set([

  274.   'id',

  275.   'externalChannelUrl',

  276.   'channel-id',

  277.   'channel-name'

  278. ])

  279. class VideoChannelSyncAuditView extends EntityAuditView {

  280.   constructor (channelSync: VideoChannelSync) {

  281.     super(channelSyncKeysToKeep, 'channelSync', channelSync)

  282.   }

  283. }

  284. 

  285. export {

  286.   getAuditIdFromRes,

  287. 

  288.   auditLoggerFactory,

  289.   VideoImportAuditView,

  290.   VideoChannelAuditView,

  291.   CommentAuditView,

  292.   UserAuditView,

  293.   VideoAuditView,

  294.   AbuseAuditView,

  295.   CustomConfigAuditView,

  296.   VideoChannelSyncAuditView

  297. }