feat: Logins log for Fail2Ban (danny-avila#986)

berry-13 · web-flow · commit 501f1612065a · 2023-09-24T12:18:10.000-04:00
* login logs and output

* fix(merge)

* fix(wiston) unistall

* fix(winston) installation in api

* fix(logger) new module
diff --git a/api/package.json b/api/package.json
@@ -61,6 +61,7 @@
     "sharp": "^0.32.5",
     "tiktoken": "^1.0.10",
     "ua-parser-js": "^1.0.36",
+    "winston": "^3.10.0",
     "zod": "^3.22.2"
   },
   "devDependencies": {
diff --git a/api/strategies/localStrategy.js b/api/strategies/localStrategy.js
@@ -1,7 +1,7 @@
 const { Strategy: PassportLocalStrategy } = require('passport-local');
 const User = require('../models/User');
 const { loginSchema, errorsToString } = require('./validators');
-const DebugControl = require('../utils/debug.js');
+const logger = require('../utils/logger');
 
 async function validateLoginRequest(req) {
   const { error } = loginSchema.safeParse(req.body);
@@ -28,21 +28,25 @@ async function passportLogin(req, email, password, done) {
     const validationError = await validateLoginRequest(req);
     if (validationError) {
       logError('Passport Local Strategy - Validation Error', { reqBody: req.body });
+      logger.error(`[Login] [Login failed] [Username: ${email}] [Request-IP: ${req.ip}]`);
       return done(null, false, { message: validationError });
     }
 
     const user = await findUserByEmail(email);
     if (!user) {
       logError('Passport Local Strategy - User Not Found', { email });
+      logger.error(`[Login] [Login failed] [Username: ${email}] [Request-IP: ${req.ip}]`);
       return done(null, false, { message: 'Email does not exist.' });
     }
 
     const isMatch = await comparePassword(user, password);
     if (!isMatch) {
       logError('Passport Local Strategy - Password does not match', { isMatch });
+      logger.error(`[Login] [Login failed] [Username: ${email}] [Request-IP: ${req.ip}]`);
       return done(null, false, { message: 'Incorrect password.' });
     }
 
+    logger.info(`[Login] [Login successful] [Username: ${email}] [Request-IP: ${req.ip}]`);
     return done(null, user);
   } catch (err) {
     return done(err);
@@ -51,10 +55,7 @@ async function passportLogin(req, email, password, done) {
 
 function logError(title, parameters) {
   const entries = Object.entries(parameters).map(([name, value]) => ({ name, value }));
-  DebugControl.log.functionName(title);
-  if (entries) {
-    DebugControl.log.parameters(entries);
-  }
+  logger.error(title, { parameters: entries });
 }
 
 module.exports = () =>
diff --git a/api/utils/LoggingSystem.js b/api/utils/LoggingSystem.js
@@ -1,23 +1,4 @@
-const pino = require('pino');
-
-const logger = pino({
-  level: 'info',
-  redact: {
-    paths: [
-      // List of Paths to redact from the logs (https://getpino.io/#/docs/redaction)
-      'env.OPENAI_API_KEY',
-      'env.BINGAI_TOKEN',
-      'env.CHATGPT_TOKEN',
-      'env.MEILI_MASTER_KEY',
-      'env.GOOGLE_CLIENT_SECRET',
-      'env.JWT_SECRET',
-      'env.JWT_SECRET_DEV',
-      'env.JWT_SECRET_PROD',
-      'newUser.password',
-    ], // See example to filter object class instances
-    censor: '***', // Redaction character
-  },
-});
+const logger = require('./logger');
 
 // Sanitize outside the logger paths. This is useful for sanitizing variables directly with Regex and patterns.
 const redactPatterns = [
diff --git a/api/utils/logger.js b/api/utils/logger.js
@@ -0,0 +1,12 @@
+const winston = require('winston');
+
+const logger = winston.createLogger({
+  level: 'info',
+  format: winston.format.combine(winston.format.timestamp(), winston.format.json()),
+  transports: [
+    new winston.transports.Console(),
+    new winston.transports.File({ filename: 'login-logs.log' }),
+  ],
+});
+
+module.exports = logger;
diff --git a/package-lock.json b/package-lock.json
