audit

package
v0.41.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 26, 2026 License: Apache-2.0 Imports: 6 Imported by: 0

README

Audit Service

The Audit service consumes Redis Stream events published by all other Mainflux services, persists them in its own PostgreSQL database, and exposes an HTTP API for authorized users to query the recorded audit trail.

Configuration

The service is configured using the environment variables presented in the following table. Note that any unset variables will be replaced with their default values.

Variable Description Default
MF_AUDIT_LOG_LEVEL Service log level (debug, info, warn, error) error
MF_AUDIT_DB_HOST Database host address localhost
MF_AUDIT_DB_PORT Database host port 5432
MF_AUDIT_DB_USER Database user mainflux
MF_AUDIT_DB_PASS Database password mainflux
MF_AUDIT_DB Name of the database used by the service audit
MF_AUDIT_DB_SSL_MODE Database connection SSL mode (disable, require, verify-ca, verify-full) disable
MF_AUDIT_DB_SSL_CERT Path to the PEM encoded certificate file
MF_AUDIT_DB_SSL_KEY Path to the PEM encoded key file
MF_AUDIT_DB_SSL_ROOT_CERT Path to the PEM encoded root certificate file
MF_AUDIT_HTTP_PORT Audit service HTTP port 9030
MF_AUDIT_SERVER_CERT Path to server certificate in PEM format
MF_AUDIT_SERVER_KEY Path to server key in PEM format
MF_AUDIT_ES_URL Event store (Redis) URL the service subscribes to redis://localhost:6379/0
MF_JAEGER_URL Jaeger server URL for distributed tracing. Leave empty to disable tracing.
MF_AUTH_GRPC_URL Auth service gRPC URL localhost:8181
MF_AUTH_GRPC_TIMEOUT Timeout for outgoing Auth gRPC calls 1s
MF_AUTH_CLIENT_TLS Enable TLS for Auth gRPC connection false
MF_AUTH_CA_CERTS Path to trusted CAs in PEM format for Auth gRPC TLS
MF_THINGS_AUTH_GRPC_URL Things service auth gRPC URL localhost:8183
MF_THINGS_GRPC_TIMEOUT Timeout for outgoing Things gRPC calls 1s
MF_THINGS_CLIENT_TLS Enable TLS for Things gRPC connection false
MF_THINGS_CA_CERTS Path to trusted CAs in PEM format for Things gRPC TLS

Deployment

The service is shipped as part of the standard Mainflux Docker stack. After populating docker/.env, start the platform with:

make run

Or build and run the binary directly:

make audit
MF_AUDIT_HTTP_PORT=9030 \
MF_AUDIT_ES_URL=redis://localhost:6379/0 \
MF_AUTH_GRPC_URL=localhost:8181 \
MF_THINGS_AUTH_GRPC_URL=localhost:8183 \
./build/mainfluxlabs-audit

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var AllowedOrders = map[string]string{
	"id":          "id",
	"occurred_at": "occurred_at",
	"operation":   "operation",
	"actor_email": "actor_email",
	"org_id":      "org_id",
	"group_id":    "group_id",
}

Functions

This section is empty.

Types

type Event 

type Event struct {
	ID         string
	OccurredAt time.Time
	Operation  string
	Actor      domain.Identity
	OrgID      string
	GroupID    string
	ActionData map[string]any
}

type EventRepository 

type EventRepository interface {
	// SaveEvent persists a single event to the database.
	SaveEvent(ctx context.Context, e Event) error

	// RetrieveEvents retrieves events from the database
	RetrieveEvents(ctx context.Context, pm PageMetadata) (EventsPage, error)

	// RetrieveEventsByOrg retrieves events belonging to a specific organization from the database
	RetrieveEventsByOrg(ctx context.Context, orgID string, pm PageMetadata) (EventsPage, error)

	// RetrieveEventsByGroup retrieves events belonging to a specific group from the database
	RetrieveEventsByGroup(ctx context.Context, groupID string, pm PageMetadata) (EventsPage, error)
}

type EventsPage 

type EventsPage struct {
	Total  uint64  `json:"total"`
	Events []Event `json:"events"`
}

type PageMetadata 

type PageMetadata struct {
	Total      uint64         `json:"total,omitempty"`
	Offset     uint64         `json:"offset,omitempty"`
	Limit      uint64         `json:"limit,omitempty"`
	Order      string         `json:"order,omitempty"`
	Dir        string         `json:"dir,omitempty"`
	Email      string         `json:"email,omitempty"`
	Operation  string         `json:"operation,omitempty"`
	ActionData map[string]any `json:"action_data,omitempty"`
	From       time.Time      `json:"from,omitzero"`
	To         time.Time      `json:"to,omitzero"`
}

func (PageMetadata) Validate 

func (pm PageMetadata) Validate(maxLimitSize int) error

type Service 

type Service interface {
	// RecordEvent records a single event.
	RecordEvent(ctx context.Context, e events.Event) error

	// ListEvents retrieves a list of audit events across all organizations.
	// The user authenticated by `token` must be a platform (root) admin.
	ListEvents(ctx context.Context, token string, pm PageMetadata) (EventsPage, error)

	// ListEventsByOrg retrieves a list of audit events occurred in a specific organization denoted by its ID.
	// The user authenticated by `token` must possess "admin" or higher privileges within the target organization.
	ListEventsByOrg(ctx context.Context, token string, orgID string, pm PageMetadata) (EventsPage, error)

	// ListEventsByGroup retrieves a list of audit events occurred in a specific group denoted by its ID.
	// The user authenticated by `token` must possess "admin" or higher privileges within the target group.
	ListEventsByGroup(ctx context.Context, token string, groupID string, pm PageMetadata) (EventsPage, error)
}

func New 

func New(events EventRepository, auth domain.AuthClient, things domain.ThingsClient, idp uuid.IDProvider) Service

Source Files

View all Source files

Directories

Path Synopsis
api
http

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.