| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186 |
- #!/usr/bin/env python3
- # -*- coding: utf-8 -*-
- from asyncio import create_task
- from asgiref.sync import sync_to_async
- from fastapi import Response
- from starlette.datastructures import UploadFile
- from starlette.middleware.base import BaseHTTPMiddleware
- from starlette.requests import Request
- from common.dataclasses import RequestCallNextReturn
- from common.enums import OperaLogCipherType, StatusType
- from common.log import log
- from core.conf import settings
- from utils.encrypt import AESCipher, ItsDCipher, Md5Cipher
- from utils.request_parse import parse_ip_info, parse_user_agent_info
- from utils.timezone import timezone
- class OperaLogMiddleware(BaseHTTPMiddleware):
- """操作日志中间件"""
- async def dispatch(self, request: Request, call_next) -> Response:
- # 排除记录白名单
- path = request.url.path
- if path in settings.OPERA_LOG_EXCLUDE or not path.startswith(f'{settings.API_V1_STR}'):
- return await call_next(request)
- # 请求解析
- ip_info = await parse_ip_info(request)
- ua_info = await parse_user_agent_info(request)
- try:
- # 此信息依赖于 jwt 中间件
- username = request.user.username
- except AttributeError:
- username = None
- method = request.method
- args = await self.get_request_args(request)
- args = await self.desensitization(args)
- # 设置附加请求信息
- request.state.ip = ip_info.ip
- request.state.country = ip_info.country
- request.state.region = ip_info.region
- request.state.city = ip_info.city
- request.state.user_agent = ua_info.user_agent
- request.state.os = ua_info.os
- request.state.browser = ua_info.browser
- request.state.device = ua_info.device
- # 执行请求
- start_time = timezone.now()
- res = await self.execute_request(request, call_next)
- end_time = timezone.now()
- cost_time = (end_time - start_time).total_seconds() * 1000.0
- # 此信息只能在请求后获取
- _route = request.scope.get('route')
- summary = getattr(_route, 'summary', None) or ''
- # 日志创建
- # opera_log_in = CreateOperaLogParam(
- # username=username,
- # method=method,
- # title=summary,
- # path=path,
- # ip=request.state.ip,
- # country=request.state.country,
- # region=request.state.region,
- # city=request.state.city,
- # user_agent=request.state.user_agent,
- # os=request.state.os,
- # browser=request.state.browser,
- # device=request.state.device,
- # args=args,
- # status=res.status,
- # code=res.code,
- # msg=res.msg,
- # cost_time=cost_time,
- # opera_time=start_time,
- # )
- # create_task(OperaLogService.create(obj_in=opera_log_in)) # noqa: ignore
- # 错误抛出
- err = res.err
- if err:
- raise err from None
- return res.response
- async def execute_request(self, request: Request, call_next) -> RequestCallNextReturn:
- """执行请求"""
- code = 200
- msg = 'Success'
- status = StatusType.enable
- err = None
- response = None
- try:
- response = await call_next(request)
- except Exception as e:
- log.exception(e)
- code, msg = await self.request_exception_handler(request, code, msg)
- # code 处理包含 SQLAlchemy 和 Pydantic
- code = getattr(e, 'code', None) or code
- msg = getattr(e, 'msg', None) or msg
- status = StatusType.disable
- err = e
- return RequestCallNextReturn(code=str(code), msg=msg, status=status, err=err, response=response)
- @staticmethod
- @sync_to_async
- def request_exception_handler(request: Request, code: int, msg: str) -> tuple[str, str]:
- """请求异常处理器"""
- try:
- http_exception = request.state.__request_http_exception__
- except AttributeError:
- pass
- else:
- code = http_exception.get('code', 500)
- msg = http_exception.get('msg', 'Internal Server Error')
- try:
- validation_exception = request.state.__request_validation_exception__
- except AttributeError:
- pass
- else:
- code = validation_exception.get('code', 400)
- msg = validation_exception.get('msg', 'Bad Request')
- return code, msg
- @staticmethod
- async def get_request_args(request: Request) -> dict:
- """获取请求参数"""
- args = dict(request.query_params)
- args.update(request.path_params)
- # Tip: .body() 必须在 .form() 之前获取
- # https://github.com/encode/starlette/discussions/1933
- body_data = await request.body()
- form_data = await request.form()
- if len(form_data) > 0:
- args.update({k: v.filename if isinstance(v, UploadFile) else v for k, v in form_data.items()})
- else:
- if body_data:
- json_data = await request.json()
- if not isinstance(json_data, dict):
- json_data = {
- f'{type(json_data)}_to_dict_data': json_data.decode('utf-8')
- if isinstance(json_data, bytes)
- else json_data
- }
- args.update(json_data)
- return args
- @staticmethod
- @sync_to_async
- def desensitization(args: dict) -> dict | None:
- """
- 脱敏处理
- :param args:
- :return:
- """
- if not args:
- args = None
- else:
- match settings.OPERA_LOG_ENCRYPT:
- case OperaLogCipherType.aes:
- for key in args.keys():
- if key in settings.OPERA_LOG_ENCRYPT_INCLUDE:
- args[key] = (AESCipher(settings.OPERA_LOG_ENCRYPT_SECRET_KEY).encrypt(args[key])).hex()
- case OperaLogCipherType.md5:
- for key in args.keys():
- if key in settings.OPERA_LOG_ENCRYPT_INCLUDE:
- args[key] = Md5Cipher.encrypt(args[key])
- case OperaLogCipherType.itsdangerous:
- for key in args.keys():
- if key in settings.OPERA_LOG_ENCRYPT_INCLUDE:
- args[key] = ItsDCipher(settings.OPERA_LOG_ENCRYPT_SECRET_KEY).encrypt(args[key])
- case OperaLogCipherType.plan:
- pass
- case _:
- for key in args.keys():
- if key in settings.OPERA_LOG_ENCRYPT_INCLUDE:
- args[key] = '******'
- return args
|
