Initiate AuditParams() inside the middleware

cYKatherine · cYKatherine · commit e02b247f185c · 2025-06-03T10:16:02.000+10:00
diff --git a/src/main/java/com/uid2/optout/auth/InternalAuthMiddleware.java b/src/main/java/com/uid2/optout/auth/InternalAuthMiddleware.java
@@ -65,14 +65,10 @@ public InternalAuthMiddleware(String internalApiToken, String auditSource) {
         this.audit = new Audit(auditSource);
     }
 
-    public Handler<RoutingContext> handleWithAudit(Handler<RoutingContext> handler, AuditParams auditParams, Boolean enableAuditLog) {
+    public Handler<RoutingContext> handleWithAudit(Handler<RoutingContext> handler) {
         InternalAuthHandler h;
-        if (enableAuditLog) {
-            final Handler<RoutingContext> loggedHandler = logAndHandle(handler, auditParams);
-            h = new InternalAuthHandler(loggedHandler, this.internalApiToken);
-        } else {
-            h = new InternalAuthHandler(handler, this.internalApiToken);
-        }
+        final Handler<RoutingContext> loggedHandler = logAndHandle(handler, new AuditParams());
+        h = new InternalAuthHandler(loggedHandler, this.internalApiToken);
         return h::handle;
     }
 }
diff --git a/src/main/java/com/uid2/optout/vertx/OptOutServiceVerticle.java b/src/main/java/com/uid2/optout/vertx/OptOutServiceVerticle.java
@@ -7,7 +7,6 @@
 import com.uid2.shared.attest.AttestationTokenService;
 import com.uid2.shared.attest.IAttestationTokenService;
 import com.uid2.shared.attest.JwtService;
-import com.uid2.shared.audit.AuditParams;
 import com.uid2.shared.auth.IAuthorizableProvider;
 import com.uid2.shared.auth.OperatorKey;
 import com.uid2.shared.auth.Role;
@@ -36,6 +35,7 @@
 import java.net.URL;
 import java.time.Instant;
 import java.util.ArrayList;
+import java.util.Arrays;
 import java.util.Collection;
 import java.util.List;
 import java.util.concurrent.atomic.AtomicReference;
@@ -170,11 +170,11 @@ private Router createRouter() {
                 .allowedHeader("Content-Type"));
 
         router.route(Endpoints.OPTOUT_WRITE.toString())
-                .handler(internalAuth.handleWithAudit(this::handleWrite, new AuditParams(), this.enableAuditLogging));
+                .handler(internalAuth.handleWithAudit(this::handleWrite));
         router.route(Endpoints.OPTOUT_REPLICATE.toString())
-                .handler(auth.handleWithAudit(this::handleReplicate, new AuditParams(), this.enableAuditLogging, Role.OPTOUT));
+                .handler(auth.handleWithAudit(this::handleReplicate, Arrays.asList(Role.OPTOUT)));
         router.route(Endpoints.OPTOUT_REFRESH.toString())
-                .handler(auth.handleWithAudit(attest.handle(this::handleRefresh, Role.OPERATOR), new AuditParams(), this.enableAuditLogging, Role.OPERATOR));
+                .handler(auth.handleWithAudit(attest.handle(this::handleRefresh, Role.OPERATOR), Arrays.asList(Role.OPERATOR)));
         router.get(Endpoints.OPS_HEALTHCHECK.toString())
                 .handler(this::handleHealthCheck);
 
diff --git a/src/test/java/com/uid2/optout/auth/InternalAuthMiddlewareTest.java b/src/test/java/com/uid2/optout/auth/InternalAuthMiddlewareTest.java
@@ -34,7 +34,7 @@ public void setup(){
 
     @Test
     public void internalAuthHandlerNoAuthorizationHeader() {
-        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler, new AuditParams(), true);
+        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler);
         handler.handle(routingContext);
         verifyNoInteractions(nextHandler);
         verify(routingContext).fail(401);
@@ -43,7 +43,7 @@ public void internalAuthHandlerNoAuthorizationHeader() {
 
     @Test public void authHandlerInvalidAuthorizationHeader() {
         when(request.getHeader("Authorization")).thenReturn("Bogus Header Value");
-        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler, new AuditParams(), true);
+        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler);
         handler.handle(routingContext);
         verifyNoInteractions(nextHandler);
         verify(routingContext).fail(401);
@@ -52,7 +52,7 @@ public void internalAuthHandlerNoAuthorizationHeader() {
 
     @Test public void authHandlerUnknownKey() {
         when(request.getHeader("Authorization")).thenReturn("Bearer unknown-key");
-        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler, new AuditParams(), true);
+        Handler<RoutingContext> handler = internalAuth.handleWithAudit(nextHandler);
         handler.handle(routingContext);
         verifyNoInteractions(nextHandler);
         verify(routingContext).fail(401);

Original file line number	Diff line number	Diff line change
`@@ -65,14 +65,10 @@ public InternalAuthMiddleware(String internalApiToken, String auditSource) {`
`65`	`65`	`this.audit = new Audit(auditSource);`
`66`	`66`	`}`
`67`	`67`
`68`		`- public Handler<RoutingContext> handleWithAudit(Handler<RoutingContext> handler, AuditParams auditParams, Boolean enableAuditLog) {`
	`68`	`+ public Handler<RoutingContext> handleWithAudit(Handler<RoutingContext> handler) {`
`69`	`69`	`InternalAuthHandler h;`
`70`		`- if (enableAuditLog) {`
`71`		`- final Handler<RoutingContext> loggedHandler = logAndHandle(handler, auditParams);`
`72`		`- h = new InternalAuthHandler(loggedHandler, this.internalApiToken);`
`73`		`- } else {`
`74`		`- h = new InternalAuthHandler(handler, this.internalApiToken);`
`75`		`- }`
	`70`	`+ final Handler<RoutingContext> loggedHandler = logAndHandle(handler, new AuditParams());`
	`71`	`+ h = new InternalAuthHandler(loggedHandler, this.internalApiToken);`
`76`	`72`	`return h::handle;`
`77`	`73`	`}`
`78`	`74`	`}`