long-agent
5ca3633be4
后端: - 新增全局设备管理 API(DeviceHandler.GetAllDevices) - 新增登录日志导出功能(LogHandler.ExportLoginLogs, CSV/XLSX) - 新增设置服务(SettingsService)和设置页面 API - 设备管理支持多条件筛选(状态/信任状态/关键词) - 登录日志支持流式导出防 OOM - 操作日志支持按方法/时间范围搜索 - 主题配置服务(ThemeService) - 增强监控健康检查(Prometheus metrics + SLO) - 移除旧 ratelimit.go(已迁移至 robustness) - 修复 SocialAccount NULL 扫描问题 - 新增 API 契约测试、Handler 测试、Settings 测试 前端: - 新增管理员设备管理页面(DevicesPage) - 新增管理员登录日志导出功能 - 新增系统设置页面(SettingsPage) - 设备管理支持筛选和分页 - 增强 HTTP 响应类型 测试: - 业务逻辑测试 68 个(含并发 CONC_001~003) - 规模测试 16 个(P99 百分位统计) - E2E 测试、集成测试、契约测试 - 性能基准测试、鲁棒性测试 全面测试通过(38 个测试包)
86 lines
1.6 KiB
Go
86 lines
1.6 KiB
Go
package middleware
|
|
|
|
import (
|
|
"log"
|
|
"net/url"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
var sensitiveQueryKeys = map[string]struct{}{
|
|
"token": {},
|
|
"access_token": {},
|
|
"refresh_token": {},
|
|
"code": {},
|
|
"secret": {},
|
|
}
|
|
|
|
func Logger() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
start := time.Now()
|
|
path := c.Request.URL.Path
|
|
raw := sanitizeQuery(c.Request.URL.RawQuery)
|
|
|
|
c.Next()
|
|
|
|
latency := time.Since(start)
|
|
status := c.Writer.Status()
|
|
method := c.Request.Method
|
|
ip := c.ClientIP()
|
|
userAgent := c.Request.UserAgent()
|
|
userID, _ := c.Get("user_id")
|
|
traceID := GetTraceID(c)
|
|
|
|
log.Printf("[API] %s %s %s | status: %d | latency: %v | ip: %s | user_id: %v | trace_id: %s | ua: %s",
|
|
time.Now().Format("2006-01-02 15:04:05"),
|
|
method,
|
|
path,
|
|
status,
|
|
latency,
|
|
ip,
|
|
userID,
|
|
traceID,
|
|
userAgent,
|
|
)
|
|
|
|
if len(c.Errors) > 0 {
|
|
for _, err := range c.Errors {
|
|
log.Printf("[Error] trace_id: %s | %v", traceID, err)
|
|
}
|
|
}
|
|
|
|
if raw != "" {
|
|
log.Printf("[Query] %s?%s", path, raw)
|
|
}
|
|
}
|
|
}
|
|
|
|
func sanitizeQuery(raw string) string {
|
|
if raw == "" {
|
|
return ""
|
|
}
|
|
|
|
values, err := url.ParseQuery(raw)
|
|
if err != nil {
|
|
return ""
|
|
}
|
|
|
|
for key := range values {
|
|
if isSensitiveQueryKey(key) {
|
|
values.Set(key, "***")
|
|
}
|
|
}
|
|
|
|
return values.Encode()
|
|
}
|
|
|
|
func isSensitiveQueryKey(key string) bool {
|
|
normalized := strings.ToLower(strings.TrimSpace(key))
|
|
if _, ok := sensitiveQueryKeys[normalized]; ok {
|
|
return true
|
|
}
|
|
return strings.Contains(normalized, "token") || strings.Contains(normalized, "secret")
|
|
}
|