IMPORTANT: When migrating from
0.4
(or earlier) to0.5
, configuration and usage has changed slightly:
- When used outside of this package,
AuditService
can now be accessed asWhiteDigital\Audit\Contracts\AuditServiceInterface
instead ofWhiteDigital\Audit\Service\AuditServiceLocator
.AuditServiceLocator
class has been removed.- Configuration has changed and now it is one level higher:
Old version:whitedigital: audit: enable: true audit_entity_manager: audit default_entity_manager: defaultuse Symfony\Config\WhitedigitalConfig; return static function (WhitedigitalConfig $config): void { $config ->audit() ->enabled(true) ->auditEntityManager('audit') ->defaultEntityManager('default'); };New version:
audit: audit_entity_manager: audit default_entity_manager: defaultIf used in php config, it is now
AuditConfig
instead ofWhitedigitalConfig
use Symfony\Config\AuditConfig; return static function (AuditConfig $config): void { $config ->auditEntityManager('audit') ->defaultEntityManager('default'); };As this bundle now comes enabled,
enabled
parameter has been removed
Audit is service needed to audit (log) events into database. For now package only ships with doctrine implementation to save data, but you can easily extend functionality (see below) to use other means of storage.
PHP 8.1+
Symfony 6.3+
2 separate Doctrine entity managers (if using provided AuditService)
The recommended way to install is via Composer:
composer require whitedigital-eu/audit-service
Configuration differs between default setup and overridden one. If you are interested in configuration for overriding part of package, scroll down to appropriate section.
audit:
audit_entity_manager: audit
default_entity_manager: default
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->auditEntityManager('audit')
->defaultEntityManager('default');
};
audit_entity_manager
is entity manager used for audit
default_entity_manager
is entity manager you use for database operations
Logic is split between 2 managers because it is easier to audit database exception this way. If done with one entity manager, a lot extra steps need to be taken (opening closed entity manager, checking status of operations, etc.)
After this, you need to update your database schema to use Audit entity.
If using migrations:
bin/console doctrine:migrations:diff
bin/console doctrine:migrations:migrate
If by schema update:
bin/console doctrine:schema:update --force
This is it, now you can use audit. It is configured and autowired as AuditServiceInterface
.
use WhiteDigital\Audit\Contracts\AuditType;
use WhiteDigital\Audit\Contracts\AuditServiceInterface;
public function __construct(private AuditServiceInterface $audit){}
$this->audit->audit(AuditType::EXCEPTION, 'something happened');
try {
somefunction();
} catch (Exception $exception){
$this->audit->auditException($exception);
}
Audit service comes with 2 event subscribers: one for exceptions and one for database events.
Exception subscriber:
By default exception subscriber audits all exceptions, except 404 response code. you can override this logic by:
audit:
excluded:
response_codes:
- 404
- 405
use Symfony\Config\AuditConfig;
use Symfony\Component\HttpFoundation\Response;
return static function (AuditConfig $config): void {
$config
->excluded()
->responseCodes([
Response::HTTP_NOT_FOUND,
Response::HTTP_METHOD_NOT_ALLOWED,
]);
};
By default exception subscriber audits all exceptions on all routes and paths. you can override this logic by: Path:
audit:
excluded:
paths:
- '/test'
use Symfony\Config\AuditConfig;
use Symfony\Component\HttpFoundation\Response;
return static function (AuditConfig $config): void {
$config
->excluded()
->paths([
'/test',
]);
};
Route:
audit:
excluded:
routes:
- 'app_test'
use Symfony\Config\AuditConfig;
use Symfony\Component\HttpFoundation\Response;
return static function (AuditConfig $config): void {
$config
->excluded()
->routes([
'app_test',
]);
};
To not to create chaos within audit records, it is only allowed to use specified audit types.
Default values are: AUTHENTICATION
, DATABASE
, ETL_PIPELINE
, EXCEPTION
and EXTERNAL_CALL
.
If you don't have any custom types, you can use
WhiteDigital\Audit\Contracts\AuditType
class for default constants.
If you wish to add more types, configure new types as so:
audit:
additional_audit_types:
- test1
- test2
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->additionalAuditTypes([
'test1',
'test2',
]);
};
It is possible to run symfony command that generates interface based on default and added types for easier code complete:
bin/console make:audit-types
This command will generate new file based on package configuration. By default, this command will make
App\Audit\AuditType
class. You can override this name in configuration:
audit:
audit_type_interface_namespace: 'App\Audit'
audit_type_interface_class_name: 'AuditType'
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->auditTypeInterfaceNamespace('App\Audit')
->auditTypeInterfaceClassName('AuditType');
};
If you have this defined interface and want to add more allowed types, you can just add new types to it without adding types to package configuration. Allowed types will be merged from configuration and interface.
This package comes with AuditResource for api-platform, it's iri is /api/audits
.
Overriding audit service
If you wish not to use audit service this package comes with, you can override it with your own.
To do so, implement AuditServiceInterface
into your service:
use WhiteDigital\Audit\Contracts\AuditServiceInterface;
class YourAuditService implements AuditServiceInterface {
public function audit(string $type, string $message, array $data = [], string $class = ''): void
{
}
public function auditException(Throwable $exception, ?string $url = null, string $class = ''): void
{
}
public static function getDefaultPriority(): int
{
return 2;
}
}
AuditService in this package comes with priority of 1. To override it, make sure to add priority higher than that.
If your custom AuditService does not use database as an audit storage, you need to disable part of this package that requires 2 entity managers. You can do it like this:
audit:
custom_configuration: true
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->customConfiguration(true);
};
Overriding default api resource (and therefore api endpoints)
By default, Audit resource is based on AuditResource
If you wish not to use this resource and not expose the api endpoints it provides, just set a custom api resource path
with a configuration value. If you set it as null
, api platform will not register api resource located within this
package.
audit:
custom_api_resource_path: '%kernel.project_dir%/src/MyCustomPath'
# custom_api_resource_path: null
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->customApiResourcePath('%kernel.project_dir%/src/MyCustomPath')
// or ->customApiResourcePath(null);
};
After overriding default api resource, do not forget to update ClassMapperConfigurator configuration that is used for
resource <-> entity mapping in whitedigital-eu/entity-resource-mapper-bundle
use App\ApiResource\Admin\AuditResource;
use WhiteDigital\Audit\Entity\Audit;
use WhiteDigital\EntityResourceMapper\Mapper\ClassMapper;
use WhiteDigital\EntityResourceMapper\Mapper\ClassMapperConfiguratorInterface;
final class ClassMapperConfigurator implements ClassMapperConfiguratorInterface
{
public function __invoke(ClassMapper $classMapper): void
{
$classMapper->registerMapping(AuditResource::class, Audit::class);
}
}
Overriding default entity
By default, Audit entity is based on BaseEntity
that comes from whitedigital-eu/entity-resource-mapper-bundle
.
If you wish not to use this base at all, you need to create new Entity and implement AuditEntityInterface
into it:
use Doctrine\ORM\Mapping as ORM;
use WhiteDigital\Audit\Contracts\AuditEntityInterface;
#[ORM\Entity]
class AuditEntity implements AuditEntityInterface {}
or you can use Model from package:
use Doctrine\ORM\Mapping as ORM;
use WhiteDigital\Audit\Model\Audit;
#[ORM\Entity]
class AuditEntity extends Audit {}
If you wish to add new properties or, maybe, use different name for Audit entity that comes from package:
use Doctrine\ORM\Mapping as ORM;
use WhiteDigital\Audit\Entity\Audit as BaseAudit;
#[ORM\Entity]
#[ORM\Table('new_audit_table_name')]
class AuditEntity extends BaseAudit {}
Now when you use audit()
or auditException()
functions in your project, you need to tell service to
use your entity:
use WhiteDigital\Audit\Contracts\AuditType;
use WhiteDigital\Audit\Contracts\AuditServiceInterface;
use App\Entity\AuditEntity; // example
public function __construct(private AuditServiceInterface $audit){}
$this->audit->audit(AuditType::EXTERNAL, 'something happened', [], AuditEntity::class);
$this->audit->audit(AuditType::ETL, 'something happened', class: AuditEntity::class);
try {
somefunction();
} catch (Exception $exception){
$this->audit->auditException($exception, '', AuditEntity::class);
$this->audit->auditException($exception, class: AuditEntity::class);
}
This bundle automatically adds WhiteDigital\Audit\Entity
namespace to both given entity managers.
If you wish to not it to do it, for example, if you don't use default entity or maybe don't store
audits in database at all, you need to configure this to disable it:
audit:
set_doctrine_mappings: false
use Symfony\Config\AuditConfig;
return static function (AuditConfig $config): void {
$config
->setDoctrineMappings(false);
};
Overriding auditing of entity events
You can disable entity event auditing in runtime by calling setIsEnabled setter for entity event subscriber
use WhiteDigital\Audit\EventSubscriber\AuditDoctrineEventSubscriber;
public function __construct(private AuditDoctrineEventSubscriber $subscriber){}
$this->subscriber->setIsEnabled(false);
someFunction();
$this->subscriber->setIsEnabled(true);
IMPORTANT: When running php-cs-fixer, make sure not to format files in
skeleton
folder. Otherwise maker command will stop working.