feat: [PL-63942]: Implement MCP Server Tool for Audit Trail. (#31)

* fix: [PL-63942]: Removed unused imports

* fix: [PL-63942]: Reused Date Conversion Method

* fix: [PL-63942]: Reused Date Conversion Method

* fix: [PL-63942]: Resolved Conflicts

* fix: [PL-63942]: Added Time in the Response

* fix: [PL-63942]: Registered The Audit Tool

* fix: [PL-63942]: Removed Comments

* fix: [PL-63942]: Added Internal Mode Support, Date/Time Filter

* fix: [PL-63942]: Updated README.md

* fix: [PL-63942]: Updated README.md, resolved conflicts

* feat: [PL-63942]: Added Audit Trail Tool.

Author: abhishekSingh1007

README.md

@@ -142,6 +142,13 @@ Toolset Name: `idp`
 - `get_score_summary`: Get Score Summary for Scorecards in the Harness Internal Developer Portal Catalog.
 - `get_scores`: Get Scores for Scorecards in the Harness Internal Developer Portal Catalog.
 
+#### Audit Trail Toolset
+
+Toolset Name: `audit`
+
+- `list_user_audits`: Retrieve the complete audit trail for a specified user.
+
+
 ## Prerequisites
 
 1. You will need to have Go 1.23 or later installed on your system.

client/audit.go

@@ -0,0 +1,59 @@
+package client
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/harness/harness-mcp/client/dto"
+)
+
+const (
+	auditPath = "/api/audits/list"
+)
+
+type AuditService struct {
+	Client *Client
+}
+
+// ListUserAuditTrail fetches the audit trail.
+func (a *AuditService) ListUserAuditTrail(ctx context.Context, scope dto.Scope, userID string, page int, size int, startTime int64, endTime int64, opts *dto.ListAuditEventsFilter) (*dto.AuditOutput[dto.AuditListItem], error) {
+	if opts == nil {
+		opts = &dto.ListAuditEventsFilter{}
+	}
+
+	params := make(map[string]string)
+	params["accountIdentifier"] = scope.AccountID
+	params["pageIndex"] = fmt.Sprintf("%d", page)
+	params["pageSize"] = fmt.Sprintf("%d", size)
+
+	addScope(scope, params)
+
+	// Required fields
+	opts.FilterType = "Audit"
+	opts.Principals = []dto.AuditPrincipal{{
+		Type:       "USER",
+		Identifier: userID,
+	}}
+
+	opts.Scopes = []dto.AuditResourceScope{{
+		AccountIdentifier: scope.AccountID,
+		OrgIdentifier:     scope.OrgID,
+		ProjectIdentifier: scope.ProjectID,
+	}}
+
+	opts.StartTime = startTime
+	opts.EndTime = endTime
+
+	resp := &dto.AuditOutput[dto.AuditListItem]{}
+	err := a.Client.Post(ctx, auditPath, params, opts, resp)
+	if err != nil {
+		return nil, fmt.Errorf("failed to list the audit trail: %w", err)
+	}
+
+	for i := range resp.Data.Content {
+		timestamp := resp.Data.Content[i].Timestamp
+		resp.Data.Content[i].Time = dto.FormatUnixMillisToRFC3339(timestamp)
+	}
+
+	return resp, nil
+}

client/dto/audit.go

@@ -0,0 +1,69 @@
+package dto
+
+type AuditPrincipal struct {
+	Type       string `json:"type"`
+	Identifier string `json:"identifier"`
+}
+
+type AuditResourceScope struct {
+	AccountIdentifier string `json:"accountIdentifier"`
+	OrgIdentifier     string `json:"orgIdentifier,omitempty"`
+	ProjectIdentifier string `json:"projectIdentifier,omitempty"`
+}
+
+type ListAuditEventsFilter struct {
+	Scopes     []AuditResourceScope `json:"scopes,omitempty"`
+	Principals []AuditPrincipal     `json:"principals,omitempty"`
+	Actions    []string             `json:"actions,omitempty"`
+	FilterType string               `json:"filterType,omitempty"`
+	StartTime  int64                `json:"startTime,omitempty"`
+	EndTime    int64                `json:"endTime,omitempty"`
+}
+
+type AuditOutput[T any] struct {
+	Status string             `json:"status,omitempty"`
+	Data   AuditOutputData[T] `json:"data,omitempty"`
+}
+
+type AuditOutputData[T any] struct {
+	PageItemCount int    `json:"pageItemCount,omitempty"`
+	PageSize      int    `json:"pageSize,omitempty"`
+	Content       []T    `json:"content,omitempty"`
+	PageIndex     int    `json:"pageIndex,omitempty"`
+	HasNext       bool   `json:"hasNext,omitempty"`
+	PageToken     string `json:"pageToken,omitempty"`
+	TotalItems    int    `json:totalItems, omitempty`
+	TotalPages    int    `json:totalPages, omitempty`
+}
+
+type AuditListItem struct {
+	AuditID            string                  `json:"auditId,omitempty"`
+	InsertId           string                  `json:"insertId,omitempty"`
+	Resource           AuditResource           `json:"resource,omitempty"`
+	Action             string                  `json:"action,omitempty"`
+	Module             string                  `json:"module,omitempty"`
+	Timestamp          int64                   `json:"timestamp,omitempty"`
+	AuthenticationInfo AuditAuthenticationInfo `json:"authenticationInfo,omitempty"`
+	ResourceScope      AuditResourceScope      `json:"resourceScope,omitempty"`
+	Time               string
+}
+
+type AuditResource struct {
+	Type       string              `json:"type"`
+	Identifier string              `json:"identifier"`
+	Labels     AuditResourceLabels `json:"labels,omitempty"`
+}
+
+type AuditResourceLabels struct {
+	ResourceName string `json:"resourceName,omitempty"`
+}
+
+type AuditAuthenticationInfo struct {
+	Principal AuditPrincipal                `json:"principal"`
+	Labels    AuditAuthenticationInfoLabels `json:"labels,omitempty"`
+}
+
+type AuditAuthenticationInfoLabels struct {
+	UserID   string `json:"userId,omitempty"`
+	Username string `json:"username,omitempty"`
+}

cmd/harness-mcp-server/config/config.go

@@ -48,4 +48,6 @@ type Config struct {
 	SCSSvcBaseURL           string // Added for SCS toolset
 	STOSvcSecret            string // Added for STO toolset
 	STOSvcBaseURL           string // Added for STO toolset
+	AuditSvcBaseURL         string
+	AuditSvcSecret          string
 }

cmd/harness-mcp-server/main.go

@@ -160,6 +160,8 @@ var (
 				SCSSvcBaseURL:           viper.GetString("scs_svc_base_url"),
 				STOSvcSecret:            viper.GetString("sto_svc_secret"),
 				STOSvcBaseURL:           viper.GetString("sto_svc_base_url"),
+				AuditSvcBaseURL:         viper.GetString("audit_svc_base_url"),
+				AuditSvcSecret:          viper.GetString("audit_svc_secret"),
 			}
 
 			if err := runStdioServer(ctx, cfg); err != nil {
@@ -217,6 +219,8 @@ func init() {
 	internalCmd.Flags().String("scs-svc-base-url", "", "Base URL for SCS service")
 	internalCmd.Flags().String("sto-svc-secret", "", "Secret for STO service")
 	internalCmd.Flags().String("sto-svc-base-url", "", "Base URL for STO service")
+	internalCmd.Flags().String("audit-svc-base-url", "", "Base URL for audit service")
+	internalCmd.Flags().String("audit-svc-secret", "", "Secret for audit service")
 
 	// Bind global flags to viper
 	_ = viper.BindPFlag("toolsets", rootCmd.PersistentFlags().Lookup("toolsets"))
@@ -259,6 +263,8 @@ func init() {
 	_ = viper.BindPFlag("scs_svc_base_url", internalCmd.Flags().Lookup("scs-svc-base-url"))
 	_ = viper.BindPFlag("sto_svc_secret", internalCmd.Flags().Lookup("sto-svc-secret"))
 	_ = viper.BindPFlag("sto_svc_base_url", internalCmd.Flags().Lookup("sto-svc-base-url"))
+	_ = viper.BindPFlag("audit_svc_base_url", internalCmd.Flags().Lookup("audit-svc-base-url"))
+	_ = viper.BindPFlag("audit_svc_secret", internalCmd.Flags().Lookup("audit-svc-secret"))
 
 	// Add subcommands
 	rootCmd.AddCommand(stdioCmd)

pkg/harness/audit.go

@@ -0,0 +1,111 @@
+package harness
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"math"
+	"time"
+
+	"github.com/harness/harness-mcp/client"
+	"github.com/harness/harness-mcp/cmd/harness-mcp-server/config"
+	"github.com/mark3labs/mcp-go/mcp"
+	"github.com/mark3labs/mcp-go/server"
+)
+
+const (
+	minPage = 0
+	maxPage = 1000
+	minSize = 1
+	maxSize = 1000
+)
+
+func convertDateToMilliseconds(timestamp string) int64 {
+	t, err := time.Parse(time.RFC3339, timestamp)
+	if err != nil {
+		panic(err)
+	}
+
+	year := t.Year()
+	month := int(t.Month())
+	day := t.Day()
+	hour := t.Hour()
+	minute := t.Minute()
+	second := t.Second()
+
+	t = time.Date(year, time.Month(month), day, hour, minute, second, 0, time.Local)
+
+	// Convert to Unix milliseconds
+	unixMillis := t.UnixNano() / int64(time.Millisecond)
+
+	return unixMillis
+
+}
+
+func getCurrentTime() string {
+	now := time.Now().UTC().Format(time.RFC3339)
+	return now
+}
+
+func previousWeek() string {
+	oneWeekAgo := time.Now().AddDate(0, 0, -7).UTC().Format(time.RFC3339)
+	return oneWeekAgo
+}
+
+// ListAuditsOfUser creates a tool for listing the audit trail.
+func ListUserAuditTrailTool(config *config.Config, auditClient *client.AuditService) (tool mcp.Tool, handler server.ToolHandlerFunc) {
+	return mcp.NewTool("list_user_audits",
+			mcp.WithDescription("List the audit trail of the user."),
+			mcp.WithString("user_id",
+				mcp.Required(),
+				mcp.Description("The user id(emailId) used to retrieve the audit trail."),
+			),
+			mcp.WithString("start_time",
+				mcp.Description("Optional start time in ISO 8601 format (e.g., '2025-07-10T08:00:00Z')"),
+				mcp.DefaultString(previousWeek()),
+			),
+			mcp.WithString("end_time",
+				mcp.Description("Optional end time in ISO 8601 format (e.g., '2025-07-10T08:00:00Z')"),
+				mcp.DefaultString(getCurrentTime()),
+			),
+			WithScope(config, false),
+			WithPagination(),
+		),
+		func(ctx context.Context, request mcp.CallToolRequest) (*mcp.CallToolResult, error) {
+			userID, err := requiredParam[string](request, "user_id")
+			if err != nil {
+				return mcp.NewToolResultError(err.Error()), nil
+			}
+
+			scope, err := fetchScope(config, request, false)
+			if err != nil {
+				return mcp.NewToolResultError(err.Error()), nil
+			}
+
+			page, size, err := fetchPagination(request)
+			if err != nil {
+				return mcp.NewToolResultError(err.Error()), nil
+			}
+
+			page = int(math.Min(math.Max(float64(page), float64(minPage)), float64(maxPage)))
+			size = int(math.Min(math.Max(float64(size), float64(minSize)), float64(maxSize)))
+
+			startTime, _ := OptionalParam[string](request, "start_time")
+			endTime, _ := OptionalParam[string](request, "end_time")
+
+			startTimeMilliseconds := convertDateToMilliseconds(startTime)
+			endTimeMilliseconds := convertDateToMilliseconds(endTime)
+
+			data, err := auditClient.ListUserAuditTrail(ctx, scope, userID, page, size, startTimeMilliseconds, endTimeMilliseconds, nil)
+			if err != nil {
+				return nil, fmt.Errorf("failed to list the audit logs: %w", err)
+			}
+
+			r, err := json.Marshal(data)
+			if err != nil {
+				return nil, fmt.Errorf("failed to marshal the audit logs: %w", err)
+			}
+
+			return mcp.NewToolResultText(string(r)), nil
+		}
+}

pkg/harness/tools.go

@@ -110,6 +110,10 @@ func InitToolsets(config *config.Config) (*toolsets.ToolsetGroup, error) {
 		return nil, err
 	}
 
+	if err := registerAudit(config, tsg); err != nil {
+		return nil, err
+	}
+
 	// Enable requested toolsets
 	if err := tsg.EnableToolsets(config.Toolsets); err != nil {
 		return nil, err
@@ -122,7 +126,7 @@ func buildServiceURL(config *config.Config, internalBaseURL, externalBaseURL str
 	if config.Internal {
 		return internalBaseURL
 	}
-	return externalBaseURL + externalPathPrefix
+	return externalBaseURL + "/" + externalPathPrefix
 }
 
 // createClient creates a client with the appropriate authentication method based on the config
@@ -716,3 +720,22 @@ func registerInternalDeveloperPortal(config *config.Config, tsg *toolsets.Toolse
 	tsg.AddToolset(idp)
 	return nil
 }
+func registerAudit(config *config.Config, tsg *toolsets.ToolsetGroup) error {
+	// Determine the base URL and secret for audit service
+	baseURL := buildServiceURL(config, config.AuditSvcBaseURL, config.BaseURL, "audit")
+	secret := config.AuditSvcSecret
+
+	c, err := createClient(baseURL, config, secret)
+	if err != nil {
+		return err
+	}
+	auditService := &client.AuditService{Client: c}
+	audit := toolsets.NewToolset("audit", "Audit log related tools").
+		AddReadTools(
+			toolsets.NewServerTool(ListUserAuditTrailTool(config, auditService)),
+		)
+
+	// Add toolset to the group
+	tsg.AddToolset(audit)
+	return nil
+}

prompts.txt

@@ -0,0 +1,18 @@
+<audits>
+
+### 1. Audit Search Logic
+
+- When the user requests a specific audit or action **without specifying a page number or size**:
+    - Use the default page size.
+    - If no matching audit is found, increment the page size by 10 and continue searching.
+    - Before continuing with further searches, ask the user for permission to keep checking.
+
+---
+
+### 2. Output Formatting
+
+- For all audit outputs:
+    - Provide results in **both JSON format and tabular format**.
+    - Ensure every entry includes timestamps, unless the user specifically requests to exclude certain entries.
+
+---