alois/Verso
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c2c8b1d1f127d82ec95e07c2fbffeb93d2518883
Verso/services/web/app/src/Features/SamlLog/SamlLogHandler.mjs
T
Andrew Rumble 394c60f2cf Merge pull request #29659 from overleaf/revert-29656-revert-29521-ar-models-es-conversion 
Revert "Revert "[web] Convert models and self-referential test files to ESM ""

GitOrigin-RevId: f64000ae31d298b075a8722dfc51f294c71bc021
2025-11-18 09:04:56 +00:00

86 lines
2.3 KiB
JavaScript
Raw Blame History

import { SamlLog } from '../../models/SamlLog.mjs'
import SessionManager from '../Authentication/SessionManager.mjs'
import logger from '@overleaf/logger'
import loggerSerializers from '@overleaf/logger/serializers.js'
import { callbackify } from 'node:util'
import Settings from '@overleaf/settings'
const ALLOWED_PATHS = Settings.saml?.logAllowList || ['/saml/']
async function log(req, data, samlAssertion) {
let providerId, sessionId
data = data || {}
try {
const { path, query } = req
if (!ALLOWED_PATHS.some(allowedPath => path.startsWith(allowedPath))) {
return
}
const { saml } = req.session
const userId = SessionManager.getLoggedInUserId(req.session)
providerId = (req.session.saml?.providerId || '').toString()
sessionId = (req.sessionID || '').toString().substr(0, 8)
const samlLog = new SamlLog()
samlLog.providerId = providerId
samlLog.sessionId = sessionId
samlLog.path = path
samlLog.userId = userId
data.query = query
data.samlSession = saml
if (data.error instanceof Error) {
const errSerialized = loggerSerializers.err(data.error)
if (data.error.tryAgain) {
errSerialized.tryAgain = data.error.tryAgain
}
req.logger.addFields({ providerId, sessionId, userId })
data.error = errSerialized
}
if (samlAssertion) {
const samlAssertionForLog = {
assertionXml: samlAssertion.getAssertionXml(),
responseXml: samlAssertion.getSamlResponseXml(),
assertionJsonExtended: req.user_info,
}
samlLog.samlAssertion = JSON.stringify(samlAssertionForLog)
}
if (data.error) {
data.body = {}
if (req.body.email) {
data.body.email = req.body.email
}
if (req.body.SAMLResponse) {
data.body.SAMLResponse = req.body.SAMLResponse
}
}
try {
samlLog.jsonData = JSON.stringify(data)
} catch (err) {
// log but continue on data errors
logger.error(
{ err, sessionId, providerId },
'SamlLog JSON.stringify Error'
)
}
await samlLog.save()
} catch (err) {
logger.error({ err, sessionId, providerId }, 'SamlLog Error')
}
}
const SamlLogHandler = {
log: callbackify(log),
promises: {
log,
},
}
export default SamlLogHandler
Reference in New Issue View Git Blame Copy Permalink