mporwoll/cms.c2sgmbh
1
0
Fork 0
mirror of https://github.com/complexcaresolutions/cms.c2sgmbh.git synced 2026-03-18 01:34:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
cms.c2sgmbh/src/migrations/20251207_205727_audit_logs_collection.ts
Martin Porwoll 6bbbea52fc feat: implement monitoring & alerting system 
- Add AuditLogs collection for tracking critical system actions
  - User changes (create, update, delete)
  - Tenant changes with sensitive data masking
  - Login events tracking

- Add Alert Service with multi-channel support
  - Email, Slack, Discord, Console channels
  - Configurable alert levels (info, warning, error, critical)
  - Environment-based configuration

- Add Email failure alerting
  - Automatic alerts on repeated failed emails
  - Per-tenant failure counting with hourly reset

- Add Email-Logs API endpoints
  - GET /api/email-logs/export (CSV/JSON export)
  - GET /api/email-logs/stats (statistics with filters)

- Add audit hooks for Users and Tenants collections
- Update TODO.md with completed monitoring tasks

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-12-07 20:58:20 +00:00

49 lines
2.9 KiB
TypeScript
Raw Blame History

import { MigrateUpArgs, MigrateDownArgs, sql } from '@payloadcms/db-postgres'
export async function up({ db, payload, req }: MigrateUpArgs): Promise<void> {
await db.execute(sql`
CREATE TYPE "public"."enum_audit_logs_action" AS ENUM('login_success', 'login_failed', 'logout', 'password_changed', 'password_reset', 'create', 'update', 'delete', 'config_changed', 'email_failed', 'access_denied', 'rate_limit');
CREATE TYPE "public"."enum_audit_logs_severity" AS ENUM('info', 'warning', 'error', 'critical');
CREATE TYPE "public"."enum_audit_logs_entity_type" AS ENUM('users', 'tenants', 'pages', 'posts', 'media', 'forms', 'email', 'global', 'system');
CREATE TABLE "audit_logs" (
"id" serial PRIMARY KEY NOT NULL,
"action" "enum_audit_logs_action" NOT NULL,
"severity" "enum_audit_logs_severity" DEFAULT 'info' NOT NULL,
"entity_type" "enum_audit_logs_entity_type",
"entity_id" varchar,
"user_id" integer,
"user_email" varchar,
"tenant_id" integer,
"ip_address" varchar,
"user_agent" varchar,
"description" varchar,
"previous_value" jsonb,
"new_value" jsonb,
"metadata" jsonb,
"updated_at" timestamp(3) with time zone DEFAULT now() NOT NULL,
"created_at" timestamp(3) with time zone DEFAULT now() NOT NULL
);
ALTER TABLE "payload_locked_documents_rels" ADD COLUMN "audit_logs_id" integer;
ALTER TABLE "audit_logs" ADD CONSTRAINT "audit_logs_user_id_users_id_fk" FOREIGN KEY ("user_id") REFERENCES "public"."users"("id") ON DELETE set null ON UPDATE no action;
ALTER TABLE "audit_logs" ADD CONSTRAINT "audit_logs_tenant_id_tenants_id_fk" FOREIGN KEY ("tenant_id") REFERENCES "public"."tenants"("id") ON DELETE set null ON UPDATE no action;
CREATE INDEX "audit_logs_user_idx" ON "audit_logs" USING btree ("user_id");
CREATE INDEX "audit_logs_tenant_idx" ON "audit_logs" USING btree ("tenant_id");
CREATE INDEX "audit_logs_updated_at_idx" ON "audit_logs" USING btree ("updated_at");
CREATE INDEX "audit_logs_created_at_idx" ON "audit_logs" USING btree ("created_at");
ALTER TABLE "payload_locked_documents_rels" ADD CONSTRAINT "payload_locked_documents_rels_audit_logs_fk" FOREIGN KEY ("audit_logs_id") REFERENCES "public"."audit_logs"("id") ON DELETE cascade ON UPDATE no action;
CREATE INDEX "payload_locked_documents_rels_audit_logs_id_idx" ON "payload_locked_documents_rels" USING btree ("audit_logs_id");`)
}
export async function down({ db, payload, req }: MigrateDownArgs): Promise<void> {
await db.execute(sql`
ALTER TABLE "audit_logs" DISABLE ROW LEVEL SECURITY;
DROP TABLE "audit_logs" CASCADE;
ALTER TABLE "payload_locked_documents_rels" DROP CONSTRAINT "payload_locked_documents_rels_audit_logs_fk";
DROP INDEX "payload_locked_documents_rels_audit_logs_id_idx";
ALTER TABLE "payload_locked_documents_rels" DROP COLUMN "audit_logs_id";
DROP TYPE "public"."enum_audit_logs_action";
DROP TYPE "public"."enum_audit_logs_severity";
DROP TYPE "public"."enum_audit_logs_entity_type";`)
}
Reference in a new issue View git blame Copy permalink