option for a seperate audit log file

[blizzz]

solves #9166

• log classes are not static anymore
• apps can have their own log file with code reuse
• admin audit makes use of it
• check rotating magic
• logreader reads old, static, private classes 😮 → adjust to changes from server/#9293 logreader#71
• log to seperate file by default
• evaluate gui for changing log location for admin_audit we don't have this for the general log file either, can be controlled via config:app:set admin_audit logfile --value="/var/log/nextcloud/audit.log" rotation file size follows general setting

[codecov]

Codecov Report

Merging #9293 into master will increase coverage by <.01%.
The diff coverage is 32.12%.

@@             Coverage Diff              @@
##             master    #9293      +/-   ##
============================================
+ Coverage     51.93%   51.93%   +<.01%     
- Complexity    25388    25402      +14     
============================================
  Files          1608     1609       +1     
  Lines         95429    95470      +41     
  Branches       1394     1394              
============================================
+ Hits          49559    49584      +25     
- Misses        45870    45886      +16

Impacted Files	Coverage Δ	Complexity Δ
apps/federation/lib/SyncJob.php	33.33% <0%> (ø)	3 <0> (ø)	⬇️
apps/files_trashbin/lib/Storage.php	76.72% <0%> (ø)	35 <0> (ø)	⬇️
lib/private/legacy/app.php	62.63% <0%> (ø)	196 <0> (ø)	⬇️
...e/AppFramework/DependencyInjection/DIContainer.php	82.8% <0%> (ø)	54 <0> (ø)	⬇️
lib/private/User/Database.php	79.47% <0%> (ø)	43 <0> (ø)	⬇️
lib/public/Util.php	60.19% <0%> (ø)	45 <1> (ø)	⬇️
lib/private/Preview/SVG.php	56% <0%> (ø)	6 <0> (ø)	⬇️
settings/ajax/enableapp.php	0% <0%> (ø)	0 <0> (ø)	⬇️
lib/private/Setup/MySQL.php	0% <0%> (ø)	4 <0> (ø)	⬇️
lib/private/Files/Storage/Wrapper/Encryption.php	71.22% <0%> (ø)	143 <0> (ø)	⬇️
... and 67 more

[nickvergessen]

This breaks logging while installing?!

[icewind1991]

Fairly sure switching from systemconfig to config will break yes

[blizzz]

gnah :(

[nickvergessen]

Should move those consts to ILogger?

[icewind1991]

you can use class constant arrays with the currently supported php versions for a bit cleaner code

[blizzz]

missed that one, thanks for the hint. What do you have in mind with class constants however?

[icewind1991]

do this with a destructor now?

[icewind1991]

Fairly sure switching from systemconfig to config will break yes

[blizzz]

✓ reverted change to IConfig in Log
✓ moved Log constants to ILogger and depracted them in Util
✓ polished Syslog a bit

[codecov]

Codecov Report

Merging #9293 into master will increase coverage by <.01%.
The diff coverage is 46.66%.

@@             Coverage Diff              @@
##             master    #9293      +/-   ##
============================================
+ Coverage     51.93%   51.93%   +<.01%     
- Complexity    25388    25407      +19     
============================================
  Files          1608     1611       +3     
  Lines         95440    95484      +44     
  Branches       1394     1394              
============================================
+ Hits          49564    49588      +24     
- Misses        45876    45896      +20

Impacted Files	Coverage Δ	Complexity Δ
.../admin_audit/composer/composer/autoload_static.php	0% <ø> (ø)	1 <0> (ø)	⬇️
...dmin_audit/composer/composer/autoload_classmap.php	0% <0%> (ø)	0 <0> (ø)	⬇️
lib/private/Log/Errorlog.php	0% <0%> (ø)	1 <1> (-1)	⬇️
lib/public/Log/RotationTrait.php	0% <0%> (ø)	4 <4> (?)
lib/private/Log/Rotate.php	0% <0%> (ø)	2 <0> (-2)	⬇️
lib/private/Log/Syslog.php	0% <0%> (ø)	3 <3> (+1)	⬆️
lib/private/Log/LogFactory.php	100% <100%> (ø)	11 <11> (?)
apps/admin_audit/lib/BackgroundJobs/Rotate.php	18.18% <18.18%> (ø)	4 <4> (?)
apps/admin_audit/lib/AppInfo/Application.php	13.57% <26.53%> (+5.17%)	22 <18> (+2)	⬆️
lib/private/Log.php	73.07% <50%> (-4.46%)	35 <5> (-5)
... and 7 more

[MorrisJobke]

✓ moved Log constants to ILogger and depracted them in Util

Moved to a separate PR: #9308

[MorrisJobke]

Moved to a separate PR: #9308

Let me rebase and fix the conflicts in this PR as the other one was merged.

[rullzer]

string $message?

[blizzz]

File takes arrays when logging exceptions :( and this needs to match the Interface

[rullzer]

fair enough

[rullzer]

Not needed

[rullzer]

You can just query for ILogFactory::class

Or you remove this function in general and just query for the class where you need it

[rullzer]

Any reason to require IConfig over SystemConfig here? It is internal. And the systemconfig doesn't need DB stuff etc. So less change of cyclic dependencies.

[blizzz]

Probably i had in mind back then making to adding API for it, but went another path… anyway, using SystemConfig makes sense. I'll adapt.

Fixed.

[MorrisJobke]

Tested and works 👍

[eniac111]

Hey, do you have any documentation on this?

[blizzz]

@eniac111 in the description ↑ 🙊

config:app:set admin_audit logfile --value="/var/log/nextcloud/audit.log"

[MorrisJobke]

@eniac111 in the description ↑ 🙊

Could you add it to the documentation/manual?

[j-ed]

@MorrisJobke I just stumbled over the missing documentation of the audit log function too. To be able to improve the documentation I would need some more information about this function, which is enabled by activating the admin_audit app.
I wonder if it is correct that only audit information (logins/logoffs) is being logged or if other applications should use it too (I also saw "trashbin:expire" log entries in this file)?

[MorrisJobke]

@MorrisJobke I just stumbled over the missing documentation of the audit log function too. To be able to improve the documentation I would need some more information about this function, which is enabled by activating the admin_audit app.

This separate log file is already used, but with this there is a way to customize the path of this file via:

config:app:set admin_audit logfile --value="/var/log/nextcloud/audit.log"

I wonder if it is correct that only audit information (logins/logoffs) is being logged or if other applications should use it too (I also saw "trashbin:expire" log entries in this file)?

Only admin_audit entries are logged and we should not use settings of apps in other apps. So this then needs to be implemented in the trash bin as well.

[j-ed]

@MorrisJobke I've createds the following pull request for the documentation change: nextcloud/documentation#1300

Do I understand you correct that it is an error that "trashbin:expire" messages are logged in the audit.log? If yes, I would create a separate issue ticket to get that fixed:

{"reqId":"1qxu8bvbtOn53RyaB3S4","level":1,"time":"2019-03-12 15:56:04+01:00","remoteAddr":"","user":"--","app":"admin_audit","method":"","url":"\/nextcloud\/occ","message":"Console command executed: trashbin:expire --quiet","userAgent":"--","version":"15.0.5.3"}

[nickvergessen]

Do I understand you correct that it is an error that "trashbin:expire" messages are logged in the audit.log? If yes, I would create a separate issue ticket to get that fixed:

All occ calls are logged to the auditing and have to be. Since they allowed to disabled apps (e.g. the logging app) it would be crucial to not log that.