Added request logging from #116. Includes a LogFormatter interface and its default implementation

Author: sapessi

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/LogFormatter.java

@@ -0,0 +1,24 @@
+package com.amazonaws.serverless.proxy;
+
+
+import javax.ws.rs.core.SecurityContext;
+
+
+/**
+ * Implementations of the log formatter interface are used by {@link com.amazonaws.serverless.proxy.internal.LambdaContainerHandler} class to log each request
+ * processed in the container. You can set the log formatter using the {@link com.amazonaws.serverless.proxy.internal.LambdaContainerHandler#setLogFormatter(LogFormatter)}
+ * method. The servlet implementation of the container ({@link com.amazonaws.serverless.proxy.internal.servlet.AwsLambdaServletContainerHandler} includes a
+ * default log formatter that produces Apache combined logs. {@link com.amazonaws.serverless.proxy.internal.servlet.ApacheCombinedServletLogFormatter}.
+ * @param <ContainerRequestType> The request type used by the underlying framework
+ * @param <ContainerResponseType> The response type produced by the underlying framework
+ */
+public interface LogFormatter<ContainerRequestType, ContainerResponseType> {
+    /**
+     * The format method is called by the container handler to produce the log line that should be written to the logs.
+     * @param req The incoming request
+     * @param res The completed response
+     * @param ctx The security context produced based on the request
+     * @return The log line
+     */
+    String format(ContainerRequestType req, ContainerResponseType res, SecurityContext ctx);
+}

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/internal/LambdaContainerHandler.java

@@ -13,6 +13,8 @@
 package com.amazonaws.serverless.proxy.internal;
 
 
+import com.amazonaws.serverless.proxy.LogFormatter;
+import com.amazonaws.serverless.proxy.internal.servlet.ApacheCombinedServletLogFormatter;
 import com.amazonaws.serverless.proxy.model.ContainerConfig;
 import com.amazonaws.serverless.proxy.ExceptionHandler;
 import com.amazonaws.serverless.proxy.RequestReader;
@@ -56,10 +58,12 @@ public abstract class LambdaContainerHandler<RequestType, ResponseType, Containe
     private ExceptionHandler<ResponseType> exceptionHandler;
 
     protected Context lambdaContext;
+    protected LogFormatter<ContainerRequestType, ContainerResponseType> logFormatter;
 
     private Logger log = LoggerFactory.getLogger(LambdaContainerHandler.class);
 
 
+
     //-------------------------------------------------------------
     // Variables - Private - Static
     //-------------------------------------------------------------
@@ -119,6 +123,15 @@ public void stripBasePath(String basePath) {
         config.setServiceBasePath(basePath);
     }
 
+    /**
+     * Sets the formatter used to log request data in CloudWatch. By default this is set to use an Apache
+     * combined log format based on the servlet request and response object {@link ApacheCombinedServletLogFormatter}.
+     * @param formatter The log formatter object
+     */
+    public void setLogFormatter(LogFormatter<ContainerRequestType, ContainerResponseType> formatter) {
+        this.logFormatter = formatter;
+    }
+
 
     /**
      * Proxies requests to the underlying container given the incoming Lambda request. This method returns a populated
@@ -140,6 +153,10 @@ public ResponseType proxy(RequestType request, Context context) {
 
             latch.await();
 
+            if (logFormatter != null) {
+                log.info(SecurityUtils.crlf(logFormatter.format(containerRequest, containerResponse, securityContext)));
+            }
+
             return responseWriter.writeResponse(containerResponse, context);
         } catch (Exception e) {
             log.error("Error while handling request", e);

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/internal/servlet/ApacheCombinedServletLogFormatter.java

@@ -0,0 +1,105 @@
+package com.amazonaws.serverless.proxy.internal.servlet;
+
+
+import com.amazonaws.serverless.proxy.LogFormatter;
+import com.amazonaws.serverless.proxy.model.ApiGatewayRequestContext;
+
+import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.core.SecurityContext;
+
+import java.text.SimpleDateFormat;
+import java.util.Calendar;
+import java.util.Locale;
+
+import static com.amazonaws.serverless.proxy.RequestReader.API_GATEWAY_CONTEXT_PROPERTY;
+
+
+/**
+ * Default implementation of the log formatter. Based on an <code>HttpServletRequest</code> and <code>HttpServletResponse</code> implementations produced
+ * a log line in the Apache combined log format: https://httpd.apache.org/docs/2.4/logs.html
+ * @param <ContainerRequestType> An implementation of <code>HttpServletRequest</code>
+ * @param <ContainerResponseType> An implementation of <code>HttpServletResponse</code>
+ */
+public class ApacheCombinedServletLogFormatter<ContainerRequestType extends HttpServletRequest, ContainerResponseType extends HttpServletResponse>
+        implements LogFormatter<ContainerRequestType, ContainerResponseType> {
+    SimpleDateFormat dateFormat;
+
+    public ApacheCombinedServletLogFormatter() {
+        dateFormat = new SimpleDateFormat("[dd/MM/yyyy:hh:mm:ss Z]");
+    }
+
+    @Override
+    @SuppressFBWarnings({ "SERVLET_HEADER_REFERER", "SERVLET_HEADER_USER_AGENT" })
+    public String format(ContainerRequestType servletRequest, ContainerResponseType servletResponse, SecurityContext ctx) {
+        //LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" combined
+        StringBuilder logLineBuilder = new StringBuilder();
+
+        // %h
+        logLineBuilder.append(servletRequest.getRemoteAddr());
+        logLineBuilder.append(" ");
+
+        // %l
+        if (servletRequest instanceof AwsProxyHttpServletRequest && servletRequest.getAttribute(API_GATEWAY_CONTEXT_PROPERTY) != null) {
+            ApiGatewayRequestContext gatewayContext = (ApiGatewayRequestContext)servletRequest.getAttribute(API_GATEWAY_CONTEXT_PROPERTY);
+            logLineBuilder.append(gatewayContext.getIdentity().getUserArn());
+            logLineBuilder.append(" ");
+        } else {
+            logLineBuilder.append("- ");
+        }
+
+        // %u
+        if (ctx != null) {
+            logLineBuilder.append(ctx.getUserPrincipal().getName());
+        }
+        logLineBuilder.append(" ");
+
+
+        // %t
+        logLineBuilder.append(dateFormat.format(Calendar.getInstance().getTime()));
+        logLineBuilder.append(" ");
+
+        // %r
+        logLineBuilder.append("\"");
+        logLineBuilder.append(servletRequest.getMethod().toUpperCase(Locale.ENGLISH));
+        logLineBuilder.append(" ");
+        logLineBuilder.append(servletRequest.getPathInfo());
+        logLineBuilder.append(" ");
+        logLineBuilder.append(servletRequest.getProtocol());
+        logLineBuilder.append(" \" ");
+
+        // %>s
+        logLineBuilder.append(servletResponse.getStatus());
+        logLineBuilder.append(" ");
+
+        // %b
+        if (servletResponse instanceof AwsHttpServletResponse) {
+            AwsHttpServletResponse awsResponse = (AwsHttpServletResponse)servletResponse;
+            if (awsResponse.getAwsResponseBodyBytes().length > 0) {
+                logLineBuilder.append(awsResponse.getAwsResponseBodyBytes().length);
+            } else {
+                logLineBuilder.append("-");
+            }
+        } else {
+            logLineBuilder.append("-");
+        }
+        logLineBuilder.append(" ");
+
+        // \"%{Referer}i\"
+        logLineBuilder.append("\"");
+        logLineBuilder.append(servletRequest.getHeader("referer"));
+        logLineBuilder.append("\"");
+
+        // \"%{User-agent}i\"
+        logLineBuilder.append("\"");
+        logLineBuilder.append(servletRequest.getHeader("user-agent"));
+        logLineBuilder.append("\"");
+
+        logLineBuilder.append(" combined");
+
+
+        return logLineBuilder.toString();
+    }
+}

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/internal/servlet/AwsLambdaServletContainerHandler.java

@@ -34,6 +34,7 @@
 
 import java.io.IOException;
 
+
 /**
  * Abstract extension of the code <code>LambdaContainerHandler</code> object that adds protected variables for the
  * <code>ServletContext</code> and <code>FilterChainManager</code>. This object should be extended by the framework-specific
@@ -73,6 +74,8 @@ protected AwsLambdaServletContainerHandler(RequestReader<RequestType, ContainerR
                                      SecurityContextWriter<RequestType> securityContextWriter,
                                      ExceptionHandler<ResponseType> exceptionHandler) {
         super(requestReader, responseWriter, securityContextWriter, exceptionHandler);
+        // set the default log formatter for servlet implementations
+        setLogFormatter(new ApacheCombinedServletLogFormatter<>());
     }
 
     //-------------------------------------------------------------

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/internal/servlet/AwsProxyHttpServletRequest.java

@@ -501,8 +501,7 @@ public Map<String, String[]> getParameterMap() {
 
     @Override
     public String getProtocol() {
-        // TODO: We should have a cloudfront protocol header
-        return null;
+        return request.getRequestContext().getProtocol();
     }
 
 
@@ -621,6 +620,14 @@ public AsyncContext startAsync(ServletRequest servletRequest, ServletResponse se
 
 
     private String getHeaderCaseInsensitive(String key) {
+        // special cases for referer and user agent headers
+        if ("referer".equals(key.toLowerCase(Locale.ENGLISH))) {
+            return request.getRequestContext().getIdentity().getCaller();
+        }
+        if ("user-agent".equals(key.toLowerCase(Locale.ENGLISH))) {
+            return request.getRequestContext().getIdentity().getUserAgent();
+        }
+
         if (request.getHeaders() == null) {
             return null;
         }

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/internal/testutils/AwsProxyRequestBuilder.java

@@ -68,6 +68,7 @@ public AwsProxyRequestBuilder(String path, String httpMethod) {
         this.request.setRequestContext(new ApiGatewayRequestContext());
         this.request.getRequestContext().setRequestId("test-invoke-request");
         this.request.getRequestContext().setStage("test");
+        this.request.getRequestContext().setProtocol("HTTP/1.1");
         ApiGatewayRequestIdentity identity = new ApiGatewayRequestIdentity();
         identity.setSourceIp("127.0.0.1");
         this.request.getRequestContext().setIdentity(identity);
@@ -236,6 +237,30 @@ public AwsProxyRequestBuilder serverName(String serverName) {
         return this;
     }
 
+    public AwsProxyRequestBuilder userAgent(String agent) {
+        if (request.getRequestContext() == null) {
+            request.setRequestContext(new ApiGatewayRequestContext());
+        }
+        if (request.getRequestContext().getIdentity() == null) {
+            request.getRequestContext().setIdentity(new ApiGatewayRequestIdentity());
+        }
+
+        request.getRequestContext().getIdentity().setUserAgent(agent);
+        return this;
+    }
+
+    public AwsProxyRequestBuilder referer(String referer) {
+        if (request.getRequestContext() == null) {
+            request.setRequestContext(new ApiGatewayRequestContext());
+        }
+        if (request.getRequestContext().getIdentity() == null) {
+            request.getRequestContext().setIdentity(new ApiGatewayRequestIdentity());
+        }
+
+        request.getRequestContext().getIdentity().setCaller(referer);
+        return this;
+    }
+
     public AwsProxyRequestBuilder fromJsonString(String jsonContent)
             throws IOException {
         request = LambdaContainerHandler.getObjectMapper().readValue(jsonContent, AwsProxyRequest.class);

aws-serverless-java-container-core/src/main/java/com/amazonaws/serverless/proxy/model/ApiGatewayRequestContext.java

@@ -43,6 +43,7 @@ public class ApiGatewayRequestContext {
     private ApiGatewayAuthorizerContext authorizer;
     private String stage;
     private String path;
+    private String protocol;
 
 
     //-------------------------------------------------------------
@@ -146,4 +147,14 @@ public ApiGatewayAuthorizerContext getAuthorizer() {
     public void setAuthorizer(ApiGatewayAuthorizerContext authorizer) {
         this.authorizer = authorizer;
     }
+
+
+    public String getProtocol() {
+        return protocol;
+    }
+
+
+    public void setProtocol(String protocol) {
+        this.protocol = protocol;
+    }
 }

aws-serverless-java-container-core/src/test/java/com/amazonaws/serverless/proxy/internal/servlet/AwsProxyHttpServletRequestTest.java

@@ -23,6 +23,8 @@ public class AwsProxyHttpServletRequestTest {
     private static final String FORM_PARAM_TEST = "test_cookie_param";
     private static final String QUERY_STRING_NAME_VALUE = "Bob";
     private static final String REQUEST_SCHEME_HTTP = "http";
+    private static final String USER_AGENT = "Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0";
+    private static final String REFERER = "https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/User-Agent/Firefox";
 
     private static final AwsProxyRequest REQUEST_WITH_HEADERS = new AwsProxyRequestBuilder("/hello", "GET")
             .header(CUSTOM_HEADER_KEY, CUSTOM_HEADER_VALUE)
@@ -46,6 +48,9 @@ public class AwsProxyHttpServletRequestTest {
     private static final AwsProxyRequest REQUEST_MULTIPLE_FORM_AND_QUERY = new AwsProxyRequestBuilder("/hello", "POST")
             .form(FORM_PARAM_NAME, FORM_PARAM_NAME_VALUE)
             .queryString(FORM_PARAM_TEST, QUERY_STRING_NAME_VALUE).build();
+    private static final AwsProxyRequest REQUEST_USER_AGENT_REFERER = new AwsProxyRequestBuilder("/hello", "POST")
+            .userAgent(USER_AGENT)
+            .referer(REFERER).build();
 
     private static final AwsProxyRequest REQUEST_NULL_QUERY_STRING;
     static {
@@ -66,6 +71,18 @@ public void headers_getHeader_validRequest() {
         assertEquals(MediaType.APPLICATION_JSON, request.getContentType());
     }
 
+    @Test
+    public void headers_getRefererAndUserAgent_returnsContextValues() {
+        HttpServletRequest request = new AwsProxyHttpServletRequest(REQUEST_USER_AGENT_REFERER, null, null);
+        assertNotNull(request.getHeader("Referer"));
+        assertEquals(REFERER, request.getHeader("Referer"));
+        assertEquals(REFERER, request.getHeader("referer"));
+
+        assertNotNull(request.getHeader("User-Agent"));
+        assertEquals(USER_AGENT, request.getHeader("User-Agent"));
+        assertEquals(USER_AGENT, request.getHeader("user-agent"));
+    }
+
     @Test
     public void formParams_getParameter_validForm() {
         HttpServletRequest request = new AwsProxyHttpServletRequest(REQUEST_FORM_URLENCODED, null, null);