This is a mono-repo that contains three services that together represent a minimal (and very quick-and-dirty) proof of concept for a system for auditing-logging data events.
The goal was to create a system that's relatively painless to use for the following purposes:
- producing the desired data mutation events (view, create, update, delete);
- persisting these data events without bogging down the system producting them; and
- querying these data events in the context of either the "actor" or the "target" object (i.e., see what a given user has done, or see who has done what to a given object).
I'd like to make it clear right up front that this was a very quick-and-dirty proof of concept. Here's what NOT to pay attention to:
- The front end (
/packages/website/*). This is an unprincipled scramble to give the user a feel for the value of the back-end system. - JSON:API typings. I used this as yet another attempt to clarify my thoughts on how to do JSON:API typings. I got some value out of that, but these types should not be thought of as valuable in their own right.
- The (not-)security mechanisms. I created a "tokens" endpoint to simply give us a JWT that we can use to simulate an OAuthed connection.
- The structure of the user objects. Again, this was a POC.
- The structure of the
DataEventAttributesand related. This represents the essential data that makes this system function effectively, and is used for everything from the MQ messages to storage in the DB to retrieval via the API. - The general architecture (see below).
Since this is a proof of concept, many things that should technically be configurable are hard-coded.
This proof of concept requires the following setup:
- RabbitMQ running on http://localhost:5672 with virtualhost
/and userdevwith passworddev. - MySQL running on http://localhost:3306. (The specific database setups are covered by the
run.shscript) - NodeJS >= 8.0.0
If you have bash, just run the ./run.sh script at repo root. That should work off a fresh clone (just verified this on Linux). That script simply does the following:
- Runs
npm installon mono-repo root to get lerna. - Runs
lerna bootstrap --hoistto set up and connect the sub-packages. - Runs
npm run buildon each sub-package (which in most cases just runstsc) - Starts each service, saving its PID to a variable.
You should be able to bring the whole system up by just running ./run.sh and then bring the whole system down by hitting ctrl-c.
Once the services are up, you can access the website at http://localhost:3002. The website accesses two distinct APIs. The api at http://localhost:3000 is the "primary" API, handling the actual data mutation events (GET user, POST user, PATCH user, etc...). Requests to that API generate various events that are picked up by the "auditor" service, accessible via its own API at http://localhost:3001. You can query that API to get information about who did what. Continue to the architecture section below for more details.
The above diagram demonstrates more or less the main ideas of the system.
- We have an API that authenticates ALL requests.
- We have a core application logic layer that authorizes the requests and forwards them to either the data layer or another API[1].
- We have a user-aware, event emitting data layer.
- We have a service that catches and logs all data events.
- That same service can then be queried for events related to a specific actor or target object.
In the system in this repo, the "primary API" is listening at 3000, the audit logger service is on 3001, and the front end is on 3002.
[1] Note that having the API work as a reverse proxy over the auditor API is not really an intentional design decision so much as a convention I've begun to lean on to solve the problem of having a single authn/authz layer. This diagram doesn't split that out, but in reality the authn/authz layer would probably be a separate service in front of the APIs, and the "primary" API and auditor API would more resemble peers below that than a parent and a child.