Chore: introduce logger

till · till · commit 7eb8e6e0c421 · 2022-02-10T11:03:22.000+01:00
diff --git a/driver/configuration/provider_viper_public_test.go b/driver/configuration/provider_viper_public_test.go
@@ -258,7 +258,7 @@ func TestViperProvider(t *testing.T) {
 		})
 
 		t.Run("authenticator=cookie_session", func(t *testing.T) {
-			a := authn.NewAuthenticatorCookieSession(p)
+			a := authn.NewAuthenticatorCookieSession(p, logger)
 			assert.True(t, p.AuthenticatorIsEnabled(a.GetID()))
 			require.NoError(t, a.Validate(nil))
 
diff --git a/driver/registry_memory.go b/driver/registry_memory.go
@@ -365,8 +365,8 @@ func (r *RegistryMemory) prepareAuthn() {
 	if r.authenticators == nil {
 		interim := []authn.Authenticator{
 			authn.NewAuthenticatorAnonymous(r.c),
-			authn.NewAuthenticatorCookieSession(r.c),
-			authn.NewAuthenticatorBearerToken(r.c),
+			authn.NewAuthenticatorCookieSession(r.c, r.Logger()),
+			authn.NewAuthenticatorBearerToken(r.c, r.Logger()),
 			authn.NewAuthenticatorJWT(r.c, r),
 			authn.NewAuthenticatorNoOp(r.c),
 			authn.NewAuthenticatorOAuth2ClientCredentials(r.c),
diff --git a/pipeline/authn/authenticator_bearer_token.go b/pipeline/authn/authenticator_bearer_token.go
@@ -12,6 +12,8 @@ import (
 	"github.com/ory/oathkeeper/driver/configuration"
 	"github.com/ory/oathkeeper/helper"
 	"github.com/ory/oathkeeper/pipeline"
+
+	"github.com/ory/x/logrusx"
 )
 
 func init() {
@@ -36,12 +38,14 @@ type AuthenticatorBearerTokenConfiguration struct {
 }
 
 type AuthenticatorBearerToken struct {
-	c configuration.Provider
+	c      configuration.Provider
+	logger *logrusx.Logger
 }
 
-func NewAuthenticatorBearerToken(c configuration.Provider) *AuthenticatorBearerToken {
+func NewAuthenticatorBearerToken(c configuration.Provider, logger *logrusx.Logger) *AuthenticatorBearerToken {
 	return &AuthenticatorBearerToken{
-		c: c,
+		c:      c,
+		logger: logger,
 	}
 }
 
@@ -86,7 +90,7 @@ func (a *AuthenticatorBearerToken) Authenticate(r *http.Request, session *Authen
 		return errors.WithStack(ErrAuthenticatorNotResponsible)
 	}
 
-	body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod)
+	body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod, a.logger)
 	if err != nil {
 		return err
 	}
diff --git a/pipeline/authn/authenticator_cookie_session.go b/pipeline/authn/authenticator_cookie_session.go
@@ -16,6 +16,8 @@ import (
 	"github.com/ory/oathkeeper/driver/configuration"
 	"github.com/ory/oathkeeper/helper"
 	"github.com/ory/oathkeeper/pipeline"
+
+	"github.com/ory/x/logrusx"
 )
 
 func init() {
@@ -40,12 +42,14 @@ type AuthenticatorCookieSessionConfiguration struct {
 }
 
 type AuthenticatorCookieSession struct {
-	c configuration.Provider
+	c      configuration.Provider
+	logger *logrusx.Logger
 }
 
-func NewAuthenticatorCookieSession(c configuration.Provider) *AuthenticatorCookieSession {
+func NewAuthenticatorCookieSession(c configuration.Provider, logger *logrusx.Logger) *AuthenticatorCookieSession {
 	return &AuthenticatorCookieSession{
-		c: c,
+		c:      c,
+		logger: logger,
 	}
 }
 
@@ -89,7 +93,7 @@ func (a *AuthenticatorCookieSession) Authenticate(r *http.Request, session *Auth
 		return errors.WithStack(ErrAuthenticatorNotResponsible)
 	}
 
-	body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod)
+	body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod, a.logger)
 	if err != nil {
 		return err
 	}
@@ -129,7 +133,7 @@ func cookieSessionResponsible(r *http.Request, only []string) bool {
 	return false
 }
 
-func forwardRequestToSessionStore(r *http.Request, checkSessionURL string, preserveQuery bool, preservePath bool, preserveHost bool, setHeaders map[string]string, m string) (json.RawMessage, error) {
+func forwardRequestToSessionStore(r *http.Request, checkSessionURL string, preserveQuery bool, preservePath bool, preserveHost bool, setHeaders map[string]string, m string, logger *logrusx.Logger) (json.RawMessage, error) {
 	reqUrl, err := url.Parse(checkSessionURL)
 	if err != nil {
 		return nil, errors.WithStack(herodot.ErrInternalServerError.WithReasonf("Unable to parse session check URL: %s", err))
@@ -177,12 +181,14 @@ func forwardRequestToSessionStore(r *http.Request, checkSessionURL string, prese
 
 	body, err := ioutil.ReadAll(res.Body)
 	if err != nil {
+		logger.Tracef("Error reading response from remote: %v", err)
 		return json.RawMessage{}, errors.WithStack(herodot.ErrInternalServerError.WithReasonf("Unable to read response from remote: %s", err))
 	}
 
 	if res.StatusCode == 200 {
 		return body, nil
 	}
 
+	logger.Tracef("Remote returned non-200 status code '%d' with body: %s", res.StatusCode, body)
 	return json.RawMessage{}, errors.WithStack(helper.ErrUnauthorized.WithReasonf("Remote returned non 200 status code: %d", res.StatusCode))
 }

Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,8 @@ import (`
`12`	`12`	`"github.com/ory/oathkeeper/driver/configuration"`
`13`	`13`	`"github.com/ory/oathkeeper/helper"`
`14`	`14`	`"github.com/ory/oathkeeper/pipeline"`
	`15`	`+`
	`16`	`+ "github.com/ory/x/logrusx"`
`15`	`17`	`)`
`16`	`18`
`17`	`19`	`func init() {`
`@@ -36,12 +38,14 @@ type AuthenticatorBearerTokenConfiguration struct {`
`36`	`38`	`}`
`37`	`39`
`38`	`40`	`type AuthenticatorBearerToken struct {`
`39`		`- c configuration.Provider`
	`41`	`+ c configuration.Provider`
	`42`	`+ logger *logrusx.Logger`
`40`	`43`	`}`
`41`	`44`
`42`		`-func NewAuthenticatorBearerToken(c configuration.Provider) *AuthenticatorBearerToken {`
	`45`	`+func NewAuthenticatorBearerToken(c configuration.Provider, logger logrusx.Logger) AuthenticatorBearerToken {`
`43`	`46`	`return &AuthenticatorBearerToken{`
`44`		`- c: c,`
	`47`	`+ c: c,`
	`48`	`+ logger: logger,`
`45`	`49`	`}`
`46`	`50`	`}`
`47`	`51`
`@@ -86,7 +90,7 @@ func (a AuthenticatorBearerToken) Authenticate(r http.Request, session *Authen`
`86`	`90`	`return errors.WithStack(ErrAuthenticatorNotResponsible)`
`87`	`91`	`}`
`88`	`92`
`89`		`- body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod)`
	`93`	`+ body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod, a.logger)`
`90`	`94`	`if err != nil {`
`91`	`95`	`return err`
`92`	`96`	`}`
Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,8 @@ import (`
`16`	`16`	`"github.com/ory/oathkeeper/driver/configuration"`
`17`	`17`	`"github.com/ory/oathkeeper/helper"`
`18`	`18`	`"github.com/ory/oathkeeper/pipeline"`
	`19`	`+`
	`20`	`+ "github.com/ory/x/logrusx"`
`19`	`21`	`)`
`20`	`22`
`21`	`23`	`func init() {`
`@@ -40,12 +42,14 @@ type AuthenticatorCookieSessionConfiguration struct {`
`40`	`42`	`}`
`41`	`43`
`42`	`44`	`type AuthenticatorCookieSession struct {`
`43`		`- c configuration.Provider`
	`45`	`+ c configuration.Provider`
	`46`	`+ logger *logrusx.Logger`
`44`	`47`	`}`
`45`	`48`
`46`		`-func NewAuthenticatorCookieSession(c configuration.Provider) *AuthenticatorCookieSession {`
	`49`	`+func NewAuthenticatorCookieSession(c configuration.Provider, logger logrusx.Logger) AuthenticatorCookieSession {`
`47`	`50`	`return &AuthenticatorCookieSession{`
`48`		`- c: c,`
	`51`	`+ c: c,`
	`52`	`+ logger: logger,`
`49`	`53`	`}`
`50`	`54`	`}`
`51`	`55`
`@@ -89,7 +93,7 @@ func (a AuthenticatorCookieSession) Authenticate(r http.Request, session *Auth`
`89`	`93`	`return errors.WithStack(ErrAuthenticatorNotResponsible)`
`90`	`94`	`}`
`91`	`95`
`92`		`- body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod)`
	`96`	`+ body, err := forwardRequestToSessionStore(r, cf.CheckSessionURL, cf.PreserveQuery, cf.PreservePath, cf.PreserveHost, cf.SetHeaders, cf.ForceMethod, a.logger)`
`93`	`97`	`if err != nil {`
`94`	`98`	`return err`
`95`	`99`	`}`
`@@ -129,7 +133,7 @@ func cookieSessionResponsible(r *http.Request, only []string) bool {`
`129`	`133`	`return false`
`130`	`134`	`}`
`131`	`135`
`132`		`-func forwardRequestToSessionStore(r *http.Request, checkSessionURL string, preserveQuery bool, preservePath bool, preserveHost bool, setHeaders map[string]string, m string) (json.RawMessage, error) {`
	`136`	`+func forwardRequestToSessionStore(r http.Request, checkSessionURL string, preserveQuery bool, preservePath bool, preserveHost bool, setHeaders map[string]string, m string, logger logrusx.Logger) (json.RawMessage, error) {`
`133`	`137`	`reqUrl, err := url.Parse(checkSessionURL)`
`134`	`138`	`if err != nil {`
`135`	`139`	`return nil, errors.WithStack(herodot.ErrInternalServerError.WithReasonf("Unable to parse session check URL: %s", err))`
`@@ -177,12 +181,14 @@ func forwardRequestToSessionStore(r *http.Request, checkSessionURL string, prese`
`177`	`181`
`178`	`182`	`body, err := ioutil.ReadAll(res.Body)`
`179`	`183`	`if err != nil {`
	`184`	`+ logger.Tracef("Error reading response from remote: %v", err)`
`180`	`185`	`return json.RawMessage{}, errors.WithStack(herodot.ErrInternalServerError.WithReasonf("Unable to read response from remote: %s", err))`
`181`	`186`	`}`
`182`	`187`
`183`	`188`	`if res.StatusCode == 200 {`
`184`	`189`	`return body, nil`
`185`	`190`	`}`
`186`	`191`
	`192`	`+ logger.Tracef("Remote returned non-200 status code '%d' with body: %s", res.StatusCode, body)`
`187`	`193`	`return json.RawMessage{}, errors.WithStack(helper.ErrUnauthorized.WithReasonf("Remote returned non 200 status code: %d", res.StatusCode))`
`188`	`194`	`}`