import * as winston from 'winston'; import morgan from 'morgan'; import path from 'path'; import fs from 'fs'; import os from 'os'; import { AsyncLocalStorage } from 'async_hooks'; import 'winston-cloudwatch'; import { v4 as uuidv4 } from 'uuid'; import { Request, Response, NextFunction } from 'express'; import { validateLoggerContext, validateServiceName, sanitizeForLogging } from './validation'; import { checkRateLimit } from './rate-limiting'; import { setCloudWatchTransport, shutdownLogger } from './graceful-shutdown'; // Types (interface) for CloudWatch transport interface CloudWatchTransportOptions { logGroupName: string; logStreamName: string; awsRegion: string; messageFormatter?: (info: any) => string; format?: winston.Logform.Format; } // Types (interface) for logger context interface LoggerContext { traceId?: string; requestId?: string; operationId?: string; deviceId?: string; userId?: string; [key: string]: any; } // Interface extension for winston.Logger interface ExtendedLogger extends winston.Logger { setContext: (context: LoggerContext) => void; getContext: () => LoggerContext; clearContext: () => void; generateTraceId: () => string; withOperationContext: (contextData?: LoggerContext, callback?: () => void) => any; shutdown: () => Promise; } // Options (interface) for creation of the logger. interface LoggerOptions { [key: string]: any; } // Options (interface) for the HTTP logger middleware. interface HttpLoggerOptions { format?: string; logOnlyAuthErrors?: boolean; skipLogging?: boolean; } // Creating AsyncLocalStorage for storing the logging context const asyncLocalStorage = new AsyncLocalStorage(); const levels = { critical: 0, alert: 1, error: 2, warn: 3, info: 4, http: 5, debug: 6, }; const colors = { critical: 'red', alert: 'red', error: 'magenta', warn: 'yellow', info: 'green', http: 'cyan', debug: 'blue', }; winston.addColors(colors); const level = (): string => { const env = process.env.NODE_ENV || 'development'; return env === 'development' ? 'debug' : 'info'; }; /** * Generates a unique identifier for tracking requests * @returns {string} Unique identifier */ function generateTraceId(): string { return uuidv4(); } /** * Sets the context for the current request or operation. * @param {LoggerContext} context - Object with context data. */ function setContext(context: LoggerContext): void { // Validate and sanitize context data const validatedContext = validateLoggerContext(context); const currentContext = asyncLocalStorage.getStore() || {}; asyncLocalStorage.enterWith({ ...currentContext, ...validatedContext }); } /** * Gets the current logging context. * @returns {LoggerContext} Current logging context */ function getContext(): LoggerContext { return asyncLocalStorage.getStore() || {}; } /** * Clears the context for the current request */ function clearContext(): void { asyncLocalStorage.enterWith({}); } /** * Sets the log format based on an environment variable * @returns {string} 'text' OR 'json' */ const logFormat = (): string => { // By default, use text format for development and json for production. const defaultFormat = process.env.NODE_ENV === 'development' ? 'text' : 'json'; // but it possible to customize that via LOG_FORMAT variable return process.env.LOG_FORMAT || defaultFormat; }; /** * @param {string} service * @param {string|null} customLogDir * @param {LoggerOptions} options - Additional options for the logger * @returns {ExtendedLogger} */ function createLoggerFunction(service: string, customLogDir: string | null = null, options: LoggerOptions = {}): ExtendedLogger { // Validate service name const validatedServiceName = validateServiceName(service); if (!service) { service = 'default'; console.warn('Logger service name not provided, using "default".'); } const env = process.env.NODE_ENV || 'development'; const hostname = os.hostname(); let baseDir: string; if (customLogDir && path.isAbsolute(customLogDir)) { baseDir = customLogDir; } else if (customLogDir) { baseDir = path.resolve(process.cwd(), customLogDir); } else { baseDir = path.resolve(process.cwd(), 'logs'); } const logDir = path.join(baseDir, service); if (!fs.existsSync(logDir)) { try { fs.mkdirSync(logDir, { recursive: true }); } catch (err) { console.error(`Failed to create log directory ${logDir}:`, err); } } const consoleFormat = logFormat() === 'text' ? winston.format.combine( winston.format.timestamp({ format: 'YYYY-MM-DD HH:mm:ss:ms' }), winston.format.colorize({ all: true }), winston.format.printf( (info: any) => { const context = getContext(); const traceId = context.traceId || '-'; const requestId = context.requestId || '-'; // Sanitize message to prevent log injection const sanitizedMessage = sanitizeForLogging(info.message); return `${info.timestamp} [${service}] ${info.level} [${traceId}] [${requestId}]: ${sanitizedMessage}${info.stack ? '\n' + info.stack : ''}`; } ) ) : winston.format.json(); const fileFormat = logFormat() === 'text' ? winston.format.combine( winston.format.timestamp({ format: 'YYYY-MM-DD HH:mm:ss:ms' }), winston.format.printf( (info: any) => { const context = getContext(); const traceId = context.traceId || '-'; const requestId = context.requestId || '-'; const operationId = context.operationId || '-'; const deviceId = context.deviceId || '-'; const userId = context.userId || '-'; let contextStr = `[trace:${traceId}]`; if (operationId !== '-') contextStr += ` [op:${operationId}]`; if (deviceId !== '-') contextStr += ` [device:${deviceId}]`; if (userId !== '-') contextStr += ` [user:${userId}]`; // Sanitize message to prevent log injection const sanitizedMessage = sanitizeForLogging(info.message); return `${info.timestamp} [${info.service}] ${info.level.toUpperCase()} ${contextStr}: ${sanitizedMessage}${info.stack ? '\n' + info.stack : ''}`; } ) ) : winston.format.json(); const cloudwatchFormat = winston.format.combine( winston.format.timestamp(), winston.format.json() ); const addMetadata = winston.format((info: any) => { const context = getContext(); info.service = service; info.hostname = hostname; info.environment = env; if (context.traceId) info.traceId = context.traceId; if (context.requestId) info.requestId = context.requestId; if (context.userId) info.userId = context.userId; if (context.deviceId) info.deviceId = context.deviceId; // Sanitize metadata to prevent log injection if (info.message) { info.message = sanitizeForLogging(info.message); } return info; }); const transports: winston.Transports[] = [ new winston.transports.Console({ format: consoleFormat, }), ]; // Adding file transports transports.push( new winston.transports.File({ filename: path.join(logDir, 'error.log'), level: 'error', format: winston.format.combine( addMetadata(), fileFormat ), maxsize: 10 * 1024 * 1024, // 10MB maxFiles: 5, tailable: true, zippedArchive: true }) ); transports.push( new winston.transports.File({ filename: path.join(logDir, 'combined.log'), format: winston.format.combine( addMetadata(), fileFormat ), maxsize: 10 * 1024 * 1024, // 10MB maxFiles: 5, tailable: true, zippedArchive: true }) ); // Add CloudWatch transport if configured if (process.env.AWS_CLOUDWATCH_ENABLED === 'true') { try { transports.push( new winston.transports.CloudWatch({ logGroupName: process.env.AWS_CLOUDWATCH_GROUP || `IoTMonSys-${service}`, logStreamName: process.env.AWS_CLOUDWATCH_STREAM || `${hostname}-${new Date().toISOString().slice(0, 10)}`, awsRegion: process.env.AWS_REGION || 'us-east-1', messageFormatter: ({ level, message, ...meta }: { level: string; message: string; [key: string]: any }) => { return JSON.stringify({ level, message, ...meta, timestamp: new Date().toISOString() }); }, format: winston.format.combine( addMetadata(), cloudwatchFormat ), }) ); } catch (err) { console.error('Failed to initialize CloudWatch transport:', err); } } const logger = winston.createLogger({ level: level(), levels, format: winston.format.combine( winston.format.errors({ stack: true }), addMetadata() ), transports, exitOnError: false, }) as ExtendedLogger; // Extending the logger with methods for working with context logger.setContext = setContext; logger.getContext = getContext; logger.clearContext = clearContext; logger.generateTraceId = generateTraceId; // Adding a convenient method for creating an operational context logger.withOperationContext = function(contextData: LoggerContext = {}, callback?: () => any): any { // Validate and sanitize context data const validatedContext = validateLoggerContext(contextData); const operationId = validatedContext.operationId || uuidv4(); const previousContext = getContext(); let callbackResult = undefined; // Run the callback within the new context asyncLocalStorage.run({ ...previousContext, ...validatedContext, operationId }, () => { if (callback) { try { callbackResult = callback(); } finally { // Restore the previous context after callback execution asyncLocalStorage.enterWith(previousContext); } } }); return callbackResult ?? operationId; }; return logger; } /** * Creates middleware for logging HTTP requests. * Using Morgan for logging HTTP-requests, sends output to the provided Winston-logger. * @param {ExtendedLogger} loggerInstance - Instance of Winston logger, built by createLogger. * @param {HttpLoggerOptions} [options={}] - Options. * @returns {Function} - Morgan middleware. */ function createHttpLoggerMiddleware(loggerInstance: ExtendedLogger, options: HttpLoggerOptions = {}): (req: Request, res: Response, next: NextFunction) => void { const env = process.env.NODE_ENV || 'development'; const defaultFormat = env === 'development' ? 'dev' : 'combined'; const format = options.format || defaultFormat; const logOnlyAuthErrors = options.logOnlyAuthErrors || false; const skipLogging = options.skipLogging || false; if (skipLogging) { return (req: Request, res: Response, next: NextFunction) => next(); } // Creating middleware to add traceId and requestId to the request const traceMiddleware = (req: Request, res: Response, next: NextFunction): void => { // Sanitize headers to prevent log injection const traceId = sanitizeForLogging(req.headers['x-trace-id'] as string) || loggerInstance.generateTraceId(); const requestId = sanitizeForLogging(req.headers['x-request-id'] as string) || loggerInstance.generateTraceId(); // Run the rest of the middleware chain within the context asyncLocalStorage.run({ traceId, requestId }, () => { res.setHeader('X-Trace-ID', traceId); res.setHeader('X-Request-ID', requestId); res.on('finish', () => { clearContext(); }); next(); }); }; interface ExtendedMorganOptions { stream: { write: (message: string) => void; }; skip?: (req: Request, res: Response) => boolean; } const morganOptions: ExtendedMorganOptions = { stream: { write: (message: string) => { const level = logOnlyAuthErrors ? 'warn' : 'http'; loggerInstance[level](message.trim()); }, }, }; if (logOnlyAuthErrors && env === 'production') { morganOptions.skip = (req: Request, res: Response) => res.statusCode !== 401 && res.statusCode !== 403; } else if (logOnlyAuthErrors && env !== 'production') { return (req: Request, res: Response, next: NextFunction) => next(); } // Combining middleware for tracing with morgan return (req: Request, res: Response, next: NextFunction): void => { traceMiddleware(req, res, () => { morgan(format, morganOptions)(req, res, next); }); }; } /** * Creates middleware for error handling and logging * @param {ExtendedLogger} loggerInstance - Instance of Winston logger * @returns {Function} - Error handling middleware */ function createErrorLoggerMiddleware(loggerInstance: ExtendedLogger): (err: Error, req: Request, res: Response, next: NextFunction) => void { return (err: Error, req: Request, res: Response, next: NextFunction): void => { const context = loggerInstance.getContext(); const traceId = context.traceId || '-'; const requestId = context.requestId || '-'; loggerInstance.error(`Error processing request: ${err.message}`, { error: err.stack, url: req.originalUrl, method: req.method, body: req.body, params: req.params, query: req.query, traceId, requestId }); next(err); }; } const loggerLibrary = { createLogger: createLoggerFunction, createHttpLoggerMiddleware: createHttpLoggerMiddleware, createErrorLoggerMiddleware: createErrorLoggerMiddleware, setContext, getContext, clearContext, generateTraceId, shutdownLogger }; export const createLogger = loggerLibrary.createLogger; export const createHttpLogger = loggerLibrary.createHttpLoggerMiddleware; export const createErrorLogger = loggerLibrary.createErrorLoggerMiddleware; export const getLoggerContext = loggerLibrary.getContext; export const setLoggerContext = loggerLibrary.setContext; export const clearLoggerContext = loggerLibrary.clearContext; export const generateLoggerTraceId = loggerLibrary.generateTraceId; export const shutdown = loggerLibrary.shutdownLogger; export default loggerLibrary;