feat: add repository debug logging (#22)

* feat: add repository debug logging

* docs: clarify repository log suppression

* chore

Author: tkxkd0159

README.md

@@ -24,6 +24,7 @@ Optional:
 ```bash
 NEXTAUTH_URL=http://localhost:3000
 NEXTAUTH_SECRET=...
+LOG_LEVEL=<trace|debug|info|warn|error|fatal|silent>
 RATE_LIMIT_PROVIDER=<disabled|memory|redis|upstash>
 RATE_LIMIT_REDIS_URL=redis://...
 UPSTASH_REDIS_REST_URL=...
@@ -99,6 +100,8 @@ pnpm dev
 
 `next dev`, `next build`, and `next start` now validate the required application environment before the app fully boots. Missing or invalid values fail fast with one aggregated error message.
 
+`LOG_LEVEL` controls server log verbosity for the shared Pino logger. It defaults to `info`. Set `LOG_LEVEL=debug` to emit repository debug logs, or `LOG_LEVEL=silent` to suppress them.
+
 When you run `npm start` or `pnpm start`, a `prestart` hook now verifies that local PostgreSQL is reachable at `localhost:54329` when `DATABASE_URL` targets the local dev database. If it is not running, start it with:
 
 ```bash

lib/auth/onboarding.ts

@@ -1,6 +1,7 @@
 import sql from "@/lib/db";
 import { AuthFlowError } from "@/lib/auth/errors";
 import { INTERNAL_AUTH_PROVIDER, resolveAppSessionIdentity } from "@/lib/auth/identity";
+import { logRepositoryOperation } from "@/lib/repository-logging";
 import {
   parseCountryCode,
   parseFavoriteGenres,
@@ -44,6 +45,8 @@ type CompleteSignupInput = {
   userId: string;
 };
 
+const REPOSITORY_MODULE = "auth.onboarding";
+
 function mapCompletedUser(row: SignupUserRow): AuthUser {
   const sessionIdentity = resolveAppSessionIdentity(row);
 
@@ -68,152 +71,169 @@ function mapCompletedUser(row: SignupUserRow): AuthUser {
 export async function completeSignup(
   input: CompleteSignupInput,
 ): Promise<AuthUser> {
-  const nickname = parseNickname(input.nickname);
-  const gender = parseUserGender(input.gender);
-  const countryCode = parseCountryCode(input.countryCode);
-  const favoriteGenres = parseFavoriteGenres(input.favoriteGenres);
-  const invitationCodeHash = hashInvitationCode(input.invitationCode);
-
-  try {
-    return await sql.begin(async (tx) => {
-      const query = tx as unknown as typeof sql;
-
-      const [user] = await query<SignupUserRow[]>`
-        select
-          id::text as id,
-          provider,
-          provider_user_id as "providerUserId",
-          email::text as email,
-          name,
-          image_url as "imageUrl",
-          nickname,
-          gender,
-          country_code as "countryCode",
-          favorite_genres as "favoriteGenres",
-          signup_completed_at as "signupCompletedAt"
-        from bookapp.users
-        where id = ${input.userId}::uuid
-        for update
-      `;
-
-      if (!user) {
-        throw new AuthFlowError("UNAUTHORIZED", "Sign in to continue.");
-      }
-
-      if (user.provider === INTERNAL_AUTH_PROVIDER) {
-        throw new AuthFlowError(
-          "FORBIDDEN",
-          "Internal admins cannot complete reader signup.",
-        );
-      }
-
-      if (user.signupCompletedAt) {
-        throw new AuthFlowError("CONFLICT", "Signup is already complete.");
-      }
-
-      const [invitationCode] = await query<InvitationCodeLookupRow[]>`
-        select
-          invitation_codes.id::text as id,
-          invitation_codes.purpose,
-          invitation_codes.is_active as "isActive",
-          invitation_codes.expires_at as "expiresAt",
-          invitation_codes.max_uses as "maxUses"
-        from bookapp.invitation_codes
-        where invitation_codes.code_hash = ${invitationCodeHash}
-          and invitation_codes.purpose = 'BETA_SIGNUP'
-        for update
-      `;
-
-      if (!invitationCode) {
-        throw new AuthFlowError(
-          "VALIDATION",
-          "Enter a valid beta invitation code.",
-        );
-      }
-
-      const [redemptionCountResult] = await query<{ redemptionCount: number }[]>`
-        select count(*)::int as "redemptionCount"
-        from bookapp.invitation_code_redemptions
-        where code_id = ${invitationCode.id}::uuid
-      `;
-
-      const invitationCodeStatus = resolveInvitationCodeStatus({
-        ...invitationCode,
-        redemptionCount: redemptionCountResult?.redemptionCount ?? 0,
-      });
-      switch (invitationCodeStatus) {
-        case "INACTIVE":
-          throw new AuthFlowError(
-            "FORBIDDEN",
-            "This invitation code is inactive.",
-          );
-        case "EXPIRED":
-          throw new AuthFlowError(
-            "FORBIDDEN",
-            "This invitation code has expired.",
-          );
-        case "EXHAUSTED":
-          throw new AuthFlowError(
-            "FORBIDDEN",
-            "This invitation code has no uses remaining.",
-          );
-        default:
-          break;
+  return logRepositoryOperation(
+    {
+      context: {
+        countryCode: input.countryCode,
+        favoriteGenreCount: input.favoriteGenres.length,
+        gender: input.gender,
+        userId: input.userId,
+      },
+      module: REPOSITORY_MODULE,
+      operation: "completeSignup",
+      transactional: true,
+    },
+    async () => {
+      const nickname = parseNickname(input.nickname);
+      const gender = parseUserGender(input.gender);
+      const countryCode = parseCountryCode(input.countryCode);
+      const favoriteGenres = parseFavoriteGenres(input.favoriteGenres);
+      const invitationCodeHash = hashInvitationCode(input.invitationCode);
+
+      try {
+        return await sql.begin(async (tx) => {
+          const query = tx as unknown as typeof sql;
+
+          const [user] = await query<SignupUserRow[]>`
+            select
+              id::text as id,
+              provider,
+              provider_user_id as "providerUserId",
+              email::text as email,
+              name,
+              image_url as "imageUrl",
+              nickname,
+              gender,
+              country_code as "countryCode",
+              favorite_genres as "favoriteGenres",
+              signup_completed_at as "signupCompletedAt"
+            from bookapp.users
+            where id = ${input.userId}::uuid
+            for update
+          `;
+
+          if (!user) {
+            throw new AuthFlowError("UNAUTHORIZED", "Sign in to continue.");
+          }
+
+          if (user.provider === INTERNAL_AUTH_PROVIDER) {
+            throw new AuthFlowError(
+              "FORBIDDEN",
+              "Internal admins cannot complete reader signup.",
+            );
+          }
+
+          if (user.signupCompletedAt) {
+            throw new AuthFlowError("CONFLICT", "Signup is already complete.");
+          }
+
+          const [invitationCode] = await query<InvitationCodeLookupRow[]>`
+            select
+              invitation_codes.id::text as id,
+              invitation_codes.purpose,
+              invitation_codes.is_active as "isActive",
+              invitation_codes.expires_at as "expiresAt",
+              invitation_codes.max_uses as "maxUses"
+            from bookapp.invitation_codes
+            where invitation_codes.code_hash = ${invitationCodeHash}
+              and invitation_codes.purpose = 'BETA_SIGNUP'
+            for update
+          `;
+
+          if (!invitationCode) {
+            throw new AuthFlowError(
+              "VALIDATION",
+              "Enter a valid beta invitation code.",
+            );
+          }
+
+          const [redemptionCountResult] = await query<
+            { redemptionCount: number }[]
+          >`
+            select count(*)::int as "redemptionCount"
+            from bookapp.invitation_code_redemptions
+            where code_id = ${invitationCode.id}::uuid
+          `;
+
+          const invitationCodeStatus = resolveInvitationCodeStatus({
+            ...invitationCode,
+            redemptionCount: redemptionCountResult?.redemptionCount ?? 0,
+          });
+          switch (invitationCodeStatus) {
+            case "INACTIVE":
+              throw new AuthFlowError(
+                "FORBIDDEN",
+                "This invitation code is inactive.",
+              );
+            case "EXPIRED":
+              throw new AuthFlowError(
+                "FORBIDDEN",
+                "This invitation code has expired.",
+              );
+            case "EXHAUSTED":
+              throw new AuthFlowError(
+                "FORBIDDEN",
+                "This invitation code has no uses remaining.",
+              );
+            default:
+              break;
+          }
+
+          const [updatedUser] = await query<SignupUserRow[]>`
+            update bookapp.users
+            set
+              nickname = ${nickname},
+              gender = ${gender},
+              country_code = ${countryCode},
+              favorite_genres = ${sql.array([...favoriteGenres])},
+              signup_completed_at = now(),
+              updated_at = now()
+            where id = ${input.userId}::uuid
+            returning
+              id::text as id,
+              provider,
+              provider_user_id as "providerUserId",
+              email::text as email,
+              name,
+              image_url as "imageUrl",
+              nickname,
+              gender,
+              country_code as "countryCode",
+              favorite_genres as "favoriteGenres",
+              signup_completed_at as "signupCompletedAt"
+          `;
+
+          await query`
+            insert into bookapp.invitation_code_redemptions (
+              code_id,
+              user_id
+            )
+            values (
+              ${invitationCode.id}::uuid,
+              ${input.userId}::uuid
+            )
+          `;
+
+          if (!updatedUser) {
+            throw new AuthFlowError("UNAUTHORIZED", "Sign in to continue.");
+          }
+
+          return mapCompletedUser(updatedUser);
+        });
+      } catch (error) {
+        if (
+          typeof error === "object" &&
+          error !== null &&
+          "code" in error &&
+          error.code === "23505" &&
+          "constraint_name" in error &&
+          error.constraint_name === "users_nickname_uniq"
+        ) {
+          throw new AuthFlowError("CONFLICT", "This nickname is already taken.");
+        }
+
+        throw error;
       }
-
-      const [updatedUser] = await query<SignupUserRow[]>`
-        update bookapp.users
-        set
-          nickname = ${nickname},
-          gender = ${gender},
-          country_code = ${countryCode},
-          favorite_genres = ${sql.array([...favoriteGenres])},
-          signup_completed_at = now(),
-          updated_at = now()
-        where id = ${input.userId}::uuid
-        returning
-          id::text as id,
-          provider,
-          provider_user_id as "providerUserId",
-          email::text as email,
-          name,
-          image_url as "imageUrl",
-          nickname,
-          gender,
-          country_code as "countryCode",
-          favorite_genres as "favoriteGenres",
-          signup_completed_at as "signupCompletedAt"
-      `;
-
-      await query`
-        insert into bookapp.invitation_code_redemptions (
-          code_id,
-          user_id
-        )
-        values (
-          ${invitationCode.id}::uuid,
-          ${input.userId}::uuid
-        )
-      `;
-
-      if (!updatedUser) {
-        throw new AuthFlowError("UNAUTHORIZED", "Sign in to continue.");
-      }
-
-      return mapCompletedUser(updatedUser);
-    });
-  } catch (error) {
-    if (
-      typeof error === "object" &&
-      error !== null &&
-      "code" in error &&
-      error.code === "23505" &&
-      "constraint_name" in error &&
-      error.constraint_name === "users_nickname_uniq"
-    ) {
-      throw new AuthFlowError("CONFLICT", "This nickname is already taken.");
-    }
-
-    throw error;
-  }
+    },
+  );
 }