Move metrics into separate service and add clientAddress to PostVerifyRequest

Author: Fabinatix97

captchaservice-backend/src/main/java/de/muenchen/captchaservice/controller/captcha/CaptchaController.java

@@ -45,7 +45,8 @@ public PostVerifyResponse postVerify(@Valid @RequestBody final PostVerifyRequest
             throw new UnauthorizedException("Wrong credentials.");
         }
 
-        final boolean isValid = captchaService.verify(request.getSiteKey(), request.getPayload());
+        final SourceAddress sourceAddress = sourceAddressService.parse(request.getSiteKey(), request.getClientAddress());
+        final boolean isValid = captchaService.verify(request.getSiteKey(), request.getPayload(), sourceAddress);
         return new PostVerifyResponse(isValid);
     }
 }

captchaservice-backend/src/main/java/de/muenchen/captchaservice/controller/captcha/request/PostVerifyRequest.java

@@ -1,5 +1,6 @@
 package de.muenchen.captchaservice.controller.captcha.request;
 
+import de.muenchen.captchaservice.validation.ValidSourceAddress;
 import jakarta.validation.constraints.NotBlank;
 import jakarta.validation.constraints.NotNull;
 import lombok.AllArgsConstructor;
@@ -21,6 +22,11 @@ public class PostVerifyRequest {
     @NotBlank
     private String siteSecret;
 
+    @NotNull
+    @NotBlank
+    @ValidSourceAddress
+    private String clientAddress;
+
     @NotNull
     private ExtendedPayload payload;
 

captchaservice-backend/src/main/java/de/muenchen/captchaservice/service/captcha/CaptchaService.java

@@ -8,11 +8,6 @@
 import de.muenchen.captchaservice.repository.InvalidatedPayloadRepository;
 import de.muenchen.captchaservice.service.difficulty.DifficultyService;
 import edu.umd.cs.findbugs.annotations.SuppressFBWarnings;
-import io.micrometer.core.instrument.MeterRegistry;
-import io.micrometer.core.instrument.Counter;
-import io.micrometer.core.instrument.DistributionSummary;
-import io.micrometer.core.instrument.Gauge;
-import java.util.concurrent.atomic.AtomicLong;
 import lombok.extern.slf4j.Slf4j;
 import org.altcha.altcha.Altcha;
 import org.apache.commons.codec.digest.DigestUtils;
@@ -27,39 +22,24 @@ public class CaptchaService {
     private final CaptchaProperties captchaProperties;
     private final InvalidatedPayloadRepository invalidatedPayloadRepository;
     private final DifficultyService difficultyService;
-    private final Counter challengeCounter;
-    private final Counter verifySuccessCounter;
-    private final DistributionSummary tookTimeSummary;
-    private final AtomicLong invalidatedPayloadCount = new AtomicLong(0);
+    private final MetricsService metricsService;
 
     @SuppressFBWarnings(value = { "EI_EXPOSE_REP2" }, justification = "Dependency Injection")
     public CaptchaService(final CaptchaProperties captchaProperties, final DifficultyService difficultyService,
-            final InvalidatedPayloadRepository invalidatedPayloadRepository, MeterRegistry registry) {
+            final InvalidatedPayloadRepository invalidatedPayloadRepository, MetricsService metricsService) {
         this.captchaProperties = captchaProperties;
         this.invalidatedPayloadRepository = invalidatedPayloadRepository;
         this.difficultyService = difficultyService;
+        this.metricsService = metricsService;
 
-        // Initialize counter with current count from database
-        this.invalidatedPayloadCount.set(invalidatedPayloadRepository.countByExpiresAtGreaterThan(Instant.now()));
-
-        // Initialize metrics
-        this.challengeCounter = Counter.builder("captcha.challenge.requests")
-                .description("Counter for captcha challenge requests")
-                .register(registry);
-        this.verifySuccessCounter = Counter.builder("captcha.verify.success")
-                .description("Counter for captcha verify success requests")
-                .register(registry);
-        this.tookTimeSummary = DistributionSummary.builder("captcha.verify.took.time")
-                .description("Summary of the time taken to verify captcha payloads")
-                .register(registry);
-        Gauge.builder("captcha.invalidated.payloads", invalidatedPayloadCount, AtomicLong::get)
-                .description("Gauge for the number of currently invalidated payloads")
-                .register(registry);
+        metricsService.initializeInvalidatedPayloadsGauge();
     }
 
     public Altcha.Challenge createChallenge(final String siteKey, final SourceAddress sourceAddress) {
-        challengeCounter.increment();
         final long difficulty = difficultyService.getDifficultyForSourceAddress(siteKey, sourceAddress);
+
+        metricsService.recordChallengeRequest(siteKey, sourceAddress);
+
         difficultyService.registerRequest(siteKey, sourceAddress);
         final Altcha.ChallengeOptions options = new Altcha.ChallengeOptions();
         options.algorithm = Altcha.Algorithm.SHA256;
@@ -74,17 +54,19 @@ public Altcha.Challenge createChallenge(final String siteKey, final SourceAddres
         return null;
     }
 
-    public boolean verify(final String siteKey, final ExtendedPayload payload) {
+    public boolean verify(final String siteKey, final ExtendedPayload payload, final SourceAddress sourceAddress) {
         if (isPayloadInvalidated(siteKey, payload)) {
             return false;
         }
         try {
             final boolean isValid = Altcha.verifySolution(payload, captchaProperties.hmacKey(), true);
             if (isValid) {
+                metricsService.recordVerifySuccess(siteKey, sourceAddress);
+
                 if (payload.getTook() != null) {
-                    tookTimeSummary.record(payload.getTook());
+                    metricsService.recordClientSolveTime(siteKey, sourceAddress, payload.getTook());
                 }
-                verifySuccessCounter.increment();
+
                 invalidatePayload(payload);
             }
             return isValid;
@@ -97,7 +79,6 @@ public boolean verify(final String siteKey, final ExtendedPayload payload) {
     public void invalidatePayload(final Altcha.Payload payload) {
         final String payloadHash = getPayloadHash(payload);
         final InvalidatedPayload invalidatedPayload = new InvalidatedPayload(payloadHash, Instant.now().plusSeconds(captchaProperties.captchaTimeoutSeconds()));
-        invalidatedPayloadCount.incrementAndGet();
         invalidatedPayloadRepository.save(invalidatedPayload);
         log.debug("Invalidated payloadHash: {}", payloadHash);
     }
@@ -118,13 +99,4 @@ private static String getPayloadHash(final Altcha.Payload payload) {
                 payload.salt,
                 payload.signature));
     }
-
-    public void decrementInvalidatedPayloadCount(long count) {
-        invalidatedPayloadCount.addAndGet(-count);
-    }
-
-    public void resetInvalidatedPayloadCount() {
-        this.invalidatedPayloadCount.set(
-                invalidatedPayloadRepository.countByExpiresAtGreaterThan(java.time.Instant.now()));
-    }
 }

captchaservice-backend/src/main/java/de/muenchen/captchaservice/service/captcha/MetricsService.java

@@ -0,0 +1,74 @@
+package de.muenchen.captchaservice.service.captcha;
+
+import de.muenchen.captchaservice.data.SourceAddress;
+import de.muenchen.captchaservice.repository.InvalidatedPayloadRepository;
+import de.muenchen.captchaservice.service.difficulty.DifficultyService;
+import io.micrometer.core.instrument.Counter;
+import io.micrometer.core.instrument.DistributionSummary;
+import io.micrometer.core.instrument.Gauge;
+import io.micrometer.core.instrument.MeterRegistry;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Service;
+
+import java.time.Instant;
+
+@Service
+@Slf4j
+public class MetricsService {
+
+    private final MeterRegistry meterRegistry;
+    private final DifficultyService difficultyService;
+    private final InvalidatedPayloadRepository invalidatedPayloadRepository;
+
+    public MetricsService(MeterRegistry meterRegistry, DifficultyService difficultyService,
+            InvalidatedPayloadRepository invalidatedPayloadRepository) {
+        this.meterRegistry = meterRegistry;
+        this.difficultyService = difficultyService;
+        this.invalidatedPayloadRepository = invalidatedPayloadRepository;
+    }
+
+    public void recordChallengeRequest(String siteKey, SourceAddress sourceAddress) {
+        final long difficulty = difficultyService.getDifficultyForSourceAddress(siteKey, sourceAddress);
+
+        Counter.builder("captcha.challenge.requests")
+                .tag("site_key", siteKey)
+                .tag("difficulty", String.valueOf(difficulty))
+                .description("Counter for captcha challenge requests")
+                .register(meterRegistry)
+                .increment();
+    }
+
+    public void recordVerifySuccess(String siteKey, SourceAddress sourceAddress) {
+        final long difficulty = difficultyService.getDifficultyForSourceAddress(siteKey, sourceAddress);
+
+        Counter.builder("captcha.verify.success")
+                .tag("site_key", siteKey)
+                .tag("difficulty", String.valueOf(difficulty))
+                .description("Counter for captcha verify success requests")
+                .register(meterRegistry)
+                .increment();
+    }
+
+    public void recordClientSolveTime(String siteKey, SourceAddress sourceAddress, long solveTime) {
+        if (solveTime <= 0) {
+            log.warn("Invalid solve time value: {} for site: {}", solveTime, siteKey);
+            return;
+        }
+
+        final long difficulty = difficultyService.getDifficultyForSourceAddress(siteKey, sourceAddress);
+
+        DistributionSummary.builder("captcha.client.solve.time")
+                .tag("site_key", siteKey)
+                .tag("difficulty", String.valueOf(difficulty))
+                .description("Summary of the time taken by clients to solve captcha challenges")
+                .register(meterRegistry)
+                .record(solveTime);
+    }
+
+    public void initializeInvalidatedPayloadsGauge() {
+        Gauge.builder("captcha.invalidated.payloads",
+                () -> invalidatedPayloadRepository.countByExpiresAtGreaterThan(Instant.now()))
+                .description("Gauge for the number of currently invalidated payloads")
+                .register(meterRegistry);
+    }
+}

captchaservice-backend/src/main/java/de/muenchen/captchaservice/service/expireddata/ExpiredDataService.java

@@ -35,7 +35,6 @@ public void deleteExpiredData() {
         final long deletedInvalidatedPayloadCount = invalidatedPayloadRepository.deleteByExpiresAtLessThan(now);
         if (deletedInvalidatedPayloadCount > 0) {
             log.info("Deleted {} expired InvalidatedPayloads", deletedInvalidatedPayloadCount);
-            captchaService.decrementInvalidatedPayloadCount(deletedInvalidatedPayloadCount);
         }
     }
 }