shengyudong/ai_wht_B
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
ai_wht_B/ver_25121621/log_utils.py
“shengyudong” 5a384b694e 2026-1-6
2026-01-06 14:18:39 +08:00

230 lines
7.9 KiB
Python
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# -*- coding: utf-8 -*-
"""
业务日志记录工具
用于记录所有 POST/PUT/DELETE 操作到 ai_logs 表
"""
import logging
import json
from datetime import datetime
from flask import request, g
from database_config import get_db_manager
from auth_utils import AuthUtils
logger = logging.getLogger(__name__)
class BusinessLogger:
"""业务日志记录器"""
@staticmethod
def log_operation(
action,
target_type=None,
target_id=None,
description=None,
request_data=None,
response_data=None,
status='success',
error_message=None
):
"""
记录业务操作日志到 ai_logs 表
Args:
action: 操作动作create_enterprise, update_product, delete_image
target_type: 目标类型enterprise, product, employee
target_id: 目标ID
description: 操作描述
request_data: 请求数据dict
response_data: 响应数据dict
status: 状态success/error/warning
error_message: 错误消息
"""
try:
# 获取当前用户信息
current_user = AuthUtils.get_current_user()
user_id = current_user.get('user_id') if current_user else None
# 获取IP地址
ip_address = request.environ.get('HTTP_X_FORWARDED_FOR',
request.environ.get('REMOTE_ADDR', '未知'))
# 处理多个代理的情况
if ip_address and ',' in ip_address:
ip_address = ip_address.split(',')[0].strip()
# 获取User-Agent
user_agent = request.headers.get('User-Agent', '未知')
# 转换数据为JSON格式过滤敏感信息
request_json = None
if request_data:
# 过滤密码等敏感字段
filtered_request = BusinessLogger._filter_sensitive_data(request_data)
request_json = json.dumps(filtered_request, ensure_ascii=False)
response_json = None
if response_data:
# 过滤敏感响应数据
filtered_response = BusinessLogger._filter_sensitive_data(response_data)
response_json = json.dumps(filtered_response, ensure_ascii=False)
# 插入日志记录
db_manager = get_db_manager()
sql = """
INSERT INTO ai_logs
(user_id, action, target_type, target_id, description,
ip_address, user_agent, request_data, response_data,
status, error_message, created_at)
VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, NOW())
"""
params = (
user_id,
action,
target_type,
target_id,
description,
ip_address[:45] if ip_address else None, # 限制长度
user_agent[:500] if user_agent else None, # 限制长度
request_json,
response_json,
status,
error_message[:1000] if error_message else None # 限制长度
)
log_id = db_manager.execute_insert(sql, params)
# 记录到应用日志
logger.info(
f"[业务日志] 操作: {action} | "
f"用户ID: {user_id} | "
f"目标: {target_type}#{target_id} | "
f"状态: {status} | "
f"IP: {ip_address} | "
f"日志ID: {log_id}"
)
return log_id
except Exception as e:
# 日志记录失败不应影响业务流程
logger.error(f"[业务日志] 记录失败: {e}", exc_info=True)
return None
@staticmethod
def _filter_sensitive_data(data):
"""过滤敏感数据"""
if not isinstance(data, dict):
return data
sensitive_fields = [
'password', 'old_password', 'new_password',
'confirm_password', 'token', 'secret', 'key'
]
filtered = {}
for key, value in data.items():
if key.lower() in sensitive_fields:
filtered[key] = '***' # 隐藏敏感信息
elif isinstance(value, dict):
filtered[key] = BusinessLogger._filter_sensitive_data(value)
else:
filtered[key] = value
return filtered
@staticmethod
def log_create(target_type, target_id, description=None, request_data=None, response_data=None):
"""记录创建操作"""
return BusinessLogger.log_operation(
action=f'create_{target_type}',
target_type=target_type,
target_id=target_id,
description=description or f'创建{target_type}',
request_data=request_data,
response_data=response_data,
status='success'
)
@staticmethod
def log_update(target_type, target_id, description=None, request_data=None, response_data=None):
"""记录更新操作"""
return BusinessLogger.log_operation(
action=f'update_{target_type}',
target_type=target_type,
target_id=target_id,
description=description or f'更新{target_type}',
request_data=request_data,
response_data=response_data,
status='success'
)
@staticmethod
def log_delete(target_type, target_id, description=None, request_data=None):
"""记录删除操作"""
return BusinessLogger.log_operation(
action=f'delete_{target_type}',
target_type=target_type,
target_id=target_id,
description=description or f'删除{target_type}',
request_data=request_data,
status='success'
)
@staticmethod
def log_error(action, target_type=None, target_id=None, error_message=None, request_data=None):
"""记录错误操作"""
return BusinessLogger.log_operation(
action=action,
target_type=target_type,
target_id=target_id,
description=f'{action} 失败',
request_data=request_data,
status='error',
error_message=error_message
)
@staticmethod
def log_login(user_id, username, success=True, error_message=None):
"""记录登录操作"""
return BusinessLogger.log_operation(
action='user_login',
target_type='user',
target_id=user_id,
description=f'用户登录: {username}',
status='success' if success else 'error',
error_message=error_message
)
@staticmethod
def log_logout(user_id, username):
"""记录登出操作"""
return BusinessLogger.log_operation(
action='user_logout',
target_type='user',
target_id=user_id,
description=f'用户登出: {username}',
status='success'
)
# 快捷方法
def log_create(target_type, target_id, **kwargs):
"""快捷记录创建操作"""
return BusinessLogger.log_create(target_type, target_id, **kwargs)
def log_update(target_type, target_id, **kwargs):
"""快捷记录更新操作"""
return BusinessLogger.log_update(target_type, target_id, **kwargs)
def log_delete(target_type, target_id, **kwargs):
"""快捷记录删除操作"""
return BusinessLogger.log_delete(target_type, target_id, **kwargs)
def log_error(action, **kwargs):
"""快捷记录错误操作"""
return BusinessLogger.log_error(action, **kwargs)
def log_operation(**kwargs):
"""快捷记录通用操作"""
return BusinessLogger.log_operation(**kwargs)
Reference in New Issue View Git Blame Copy Permalink