databuddy-analytics
diff --git a/‎apps/basket/package.json‎
Lines changed: 18 additions & 6 deletions b/‎apps/basket/package.json‎
Lines changed: 18 additions & 6 deletions
diff --git a/‎apps/basket/src/index.ts‎
Lines changed: 21 additions & 1 deletion b/‎apps/basket/src/index.ts‎
Lines changed: 21 additions & 1 deletion
diff --git a/‎apps/basket/src/lib/blocked-traffic.ts‎
Lines changed: 107 additions & 0 deletions b/‎apps/basket/src/lib/blocked-traffic.ts‎
Lines changed: 107 additions & 0 deletions
@@ -1,23 +1,34 @@
 {
-  "name": "basket",
+  "name": "@databuddy/basket",
   "version": "1.0.50",
-  "packageManager": "bun@1.2.12",
+  "packageManager": "bun@1.3.0",
   "scripts": {
-    "dev": "bun --watch run src/index.ts --port 3002",
-    "start": "bun run src/index.ts --port 3002",
+    "dev": "bun --watch run src/index.ts",
+    "start": "bun run src/index.ts",
     "test": "bun test",
     "test:watch": "bun test --watch",
     "test:routes": "bun test src/routes/*.test.ts",
     "test:utils": "bun test src/utils/*.test.ts",
-    "test:coverage": "bun test --coverage"
+    "test:kafka": "bun test src/lib/kafka.test.ts src/lib/producer.test.ts",
+    "test:coverage": "bun test --coverage",
+    "test:stress": "bun test src/lib/kafka-stress.test.ts",
+    "stress:light": "bun run src/lib/kafka-stress-cli.ts 1000 10 100 1",
+    "stress:medium": "bun run src/lib/kafka-stress-cli.ts 5000 10 250 1",
+    "stress:heavy": "bun run src/lib/kafka-stress-cli.ts 10000 10 500 1",
+    "stress:extreme": "bun run src/lib/kafka-stress-cli.ts 25000 10 1000 1",
+    "stress:burst": "bun run src/lib/kafka-stress-cli.ts 50000 1 1000 1",
+    "stress:sustained": "bun run src/lib/kafka-stress-cli.ts 10000 30 500 1",
+    "stress:concurrent": "bun run src/lib/kafka-stress-cli.ts 5000 10 250 5",
+    "stress:monitor": "bun run src/lib/kafka-monitor.ts",
+    "stress:run": "bun run src/lib/run-stress-test.ts"
   },
   "dependencies": {
     "@clickhouse/client": "catalog:",
     "@clickhouse/client-web": "catalog:",
     "@databuddy/auth": "workspace:*",
+    "@databuddy/db": "workspace:*",
     "@databuddy/redis": "workspace:*",
     "@databuddy/shared": "workspace:*",
-    "@databuddy/db": "workspace:*",
     "@databuddy/validation": "workspace:*",
     "@elysiajs/cors": "^1.3.3",
     "@elysiajs/server-timing": "^1.3.0",
@@ -29,6 +40,7 @@
     "autumn-js": "catalog:",
     "dayjs": "catalog:",
     "elysia": "catalog:",
+    "kafkajs": "^2.2.4",
     "pino": "catalog:",
     "stripe": "catalog:",
     "tldts": "^7.0.7",
 
@@ -2,6 +2,7 @@
 
 import { Elysia } from 'elysia';
 import { logger } from './lib/logger';
+import { disconnectProducer } from './lib/producer';
 import basketRouter from './routes/basket';
 import emailRouter from './routes/email';
 import stripeRouter from './routes/stripe';
@@ -38,7 +39,26 @@ const app = new Elysia()
 	.use(emailRouter)
 	.get('/health', () => ({ status: 'ok', version: '1.0.0' }));
 
+const port = process.env.PORT || 4000;
+
+await new Promise(resolve => setTimeout(resolve, 400));
+
+console.log(`Starting basket service on port ${port}`);
+console.log(`Basket service running on http://localhost:${port}`);
+
+process.on('SIGINT', async () => {
+	console.log('Received SIGINT, shutting down...');
+	await disconnectProducer();
+	process.exit(0);
+});
+
+process.on('SIGTERM', async () => {
+	console.log('Received SIGTERM, shutting down...');
+	await disconnectProducer();
+	process.exit(0);
+});
+
 export default {
-	port: process.env.PORT || 4000,
 	fetch: app.fetch,
+	port: parseInt(port.toString()),
 };
@@ -0,0 +1,107 @@
+import { randomUUID } from 'node:crypto';
+import {
+	type AnalyticsEvent,
+	type BlockedTraffic,
+	clickHouse,
+} from '@databuddy/db';
+import { extractIpFromRequest, getGeo } from '../utils/ip-geo';
+import { parseUserAgent } from '../utils/user-agent';
+import { sanitizeString, VALIDATION_LIMITS } from '../utils/validation';
+
+/**
+ * Log blocked traffic for security and monitoring purposes
+ */
+export async function logBlockedTraffic(
+	request: Request,
+	body: any,
+	_query: any,
+	blockReason: string,
+	blockCategory: string,
+	botName?: string,
+	clientId?: string
+): Promise<void> {
+	try {
+		const ip = extractIpFromRequest(request);
+		const userAgent =
+			sanitizeString(
+				request.headers.get('user-agent'),
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			) || '';
+
+		const { anonymizedIP, country, region, city } = await getGeo(ip);
+		const { browserName, browserVersion, osName, osVersion, deviceType } =
+			parseUserAgent(userAgent);
+
+		const now = Date.now();
+
+		const blockedEvent: BlockedTraffic = {
+			id: randomUUID(),
+			client_id: clientId || '',
+			timestamp: now,
+
+			path: sanitizeString(body?.path, VALIDATION_LIMITS.STRING_MAX_LENGTH),
+			url: sanitizeString(
+				body?.url || body?.href,
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			),
+			referrer: sanitizeString(
+				body?.referrer || request.headers.get('referer'),
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			),
+			method: 'POST',
+			origin: sanitizeString(
+				request.headers.get('origin'),
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			),
+
+			ip: anonymizedIP || ip,
+			user_agent: userAgent || '',
+			accept_header: sanitizeString(
+				request.headers.get('accept'),
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			),
+			language: sanitizeString(
+				request.headers.get('accept-language'),
+				VALIDATION_LIMITS.STRING_MAX_LENGTH
+			),
+
+			block_reason: blockReason,
+			block_category: blockCategory,
+			bot_name: botName || '',
+
+			country: country || '',
+			region: region || '',
+			city: city || '',
+			browser_name: browserName || '',
+			browser_version: browserVersion || '',
+			os_name: osName || '',
+			os_version: osVersion || '',
+			device_type: deviceType || '',
+
+			payload_size:
+				blockReason === 'payload_too_large'
+					? JSON.stringify(body || {}).length
+					: undefined,
+
+			created_at: now,
+		};
+
+		clickHouse
+			.insert({
+				table: 'analytics.blocked_traffic',
+				values: [blockedEvent],
+				format: 'JSONEachRow',
+			})
+			.then(() => {
+				// Successfully logged blocked traffic
+			})
+			.catch((err) => {
+				console.error('Failed to log blocked traffic', { error: err as Error });
+				throw err;
+			});
+	} catch (error) {
+		console.error('Failed to log blocked traffic', { error: error as Error });
+		throw error;
+	}
+}
+