feat(debugger): adds logger for debugging (#276)

* feat(debugger): adds logger for debugging

* removes error message

* Updates changelog

* updates version information

* fixs

* adds additional comment

* feedback changes

* CHANGELOG.md updates

* fixs

* fixs

* fixs

* fixs

* fixs

* implements Rishabhs feedback

* updates timestamp

* updates comment example

* updates base branch

* fixs

* fixs

* fixs

* updates to package lock

* feat: Adds debug log messages (#285)

* starts working on adding debug messages in the SDK

* adds error log messages

* adds more logs

Co-authored-by: Rishabh <[email protected]>

Co-authored-by: Rishabh <[email protected]>
Co-authored-by: Rishabh Poddar <[email protected]>

Author: 3 people

CHANGELOG.md

@@ -7,6 +7,11 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [unreleased]
 
+## [9.1.2] - 2022-04-01
+
+### Added
+
+-   Adds debug logging functionality
 -   removed jsonschema dependency
 
 ## [9.1.1] - 2022-03-24

lib/build/logger.d.ts

@@ -59,6 +59,7 @@ const querier_1 = require("../../querier");
 const implementation_1 = require("./api/implementation");
 const supertokens_js_override_1 = require("supertokens-js-override");
 const recipe_1 = require("../openid/recipe");
+const logger_1 = require("../../logger");
 // For Express
 class SessionRecipe extends recipeModule_1.default {
     constructor(recipeId, appInfo, isInServerlessEnv, config) {
@@ -108,10 +109,13 @@ class SessionRecipe extends recipeModule_1.default {
             __awaiter(this, void 0, void 0, function* () {
                 if (err.fromRecipe === SessionRecipe.RECIPE_ID) {
                     if (err.type === error_1.default.UNAUTHORISED) {
+                        logger_1.logDebugMessage("errorHandler: returning UNAUTHORISED");
                         return yield this.config.errorHandlers.onUnauthorised(err.message, request, response);
                     } else if (err.type === error_1.default.TRY_REFRESH_TOKEN) {
+                        logger_1.logDebugMessage("errorHandler: returning TRY_REFRESH_TOKEN");
                         return yield this.config.errorHandlers.onTryRefreshToken(err.message, request, response);
                     } else if (err.type === error_1.default.TOKEN_THEFT_DETECTED) {
+                        logger_1.logDebugMessage("errorHandler: returning TOKEN_THEFT_DETECTED");
                         return yield this.config.errorHandlers.onTokenTheftDetected(
                             err.payload.sessionHandle,
                             err.payload.userId,
@@ -157,6 +161,14 @@ class SessionRecipe extends recipeModule_1.default {
                 });
             });
         this.config = utils_1.validateAndNormaliseUserInput(this, appInfo, config);
+        logger_1.logDebugMessage("session init: antiCsrf: " + this.config.antiCsrf);
+        logger_1.logDebugMessage("session init: cookieDomain: " + this.config.cookieDomain);
+        logger_1.logDebugMessage("session init: cookieSameSite: " + this.config.cookieSameSite);
+        logger_1.logDebugMessage("session init: cookieSecure: " + this.config.cookieSecure);
+        logger_1.logDebugMessage(
+            "session init: refreshTokenPath: " + this.config.refreshTokenPath.getAsStringDangerous()
+        );
+        logger_1.logDebugMessage("session init: sessionExpiredStatusCode: " + this.config.sessionExpiredStatusCode);
         this.isInServerlessEnv = isInServerlessEnv;
         if (this.config.jwt.enable === true) {
             this.openIdRecipe = new recipe_1.default(recipeId, appInfo, isInServerlessEnv, {

lib/build/logger.js

@@ -41,6 +41,7 @@ const processState_1 = require("../../processState");
 const normalisedURLPath_1 = require("../../normalisedURLPath");
 const supertokens_1 = require("../../supertokens");
 const framework_1 = require("../../framework");
+const logger_1 = require("../../logger");
 class HandshakeInfo {
     constructor(
         antiCsrf,
@@ -138,6 +139,7 @@ function getRecipeInterface(querier, config) {
         },
         getSession: function ({ req, res, options }) {
             return __awaiter(this, void 0, void 0, function* () {
+                logger_1.logDebugMessage("getSession: Started");
                 if (!res.wrapperUsed) {
                     res = framework_1.default[supertokens_1.default.getInstanceOrThrowError().framework].wrapResponse(
                         res
@@ -148,16 +150,24 @@ function getRecipeInterface(querier, config) {
                         req
                     );
                 }
+                logger_1.logDebugMessage("getSession: rid in header: " + utils_2.frontendHasInterceptor(req));
+                logger_1.logDebugMessage("getSession: request method: " + req.getMethod());
                 let doAntiCsrfCheck = options !== undefined ? options.antiCsrfCheck : undefined;
                 let idRefreshToken = cookieAndHeaders_1.getIdRefreshTokenFromCookie(req);
                 if (idRefreshToken === undefined) {
                     // we do not clear cookies here because of a
                     // race condition mentioned here: https://github.com/supertokens/supertokens-node/issues/17
                     if (options !== undefined && typeof options !== "boolean" && options.sessionRequired === false) {
+                        logger_1.logDebugMessage(
+                            "getSession: returning undefined because idRefreshToken is undefined and sessionRequired is false"
+                        );
                         // there is no session that exists here, and the user wants session verification
                         // to be optional. So we return undefined.
                         return undefined;
                     }
+                    logger_1.logDebugMessage(
+                        "getSession: UNAUTHORISED because idRefreshToken from cookies is undefined"
+                    );
                     throw new error_1.default({
                         message:
                             "Session does not exist. Are you sending the session tokens in the request as cookies?",
@@ -179,6 +189,9 @@ function getRecipeInterface(querier, config) {
                         utils_2.frontendHasInterceptor(req) ||
                         utils_2.normaliseHttpMethod(req.getMethod()) === "get"
                     ) {
+                        logger_1.logDebugMessage(
+                            "getSession: Returning try refresh token because access token from cookies is undefined"
+                        );
                         throw new error_1.default({
                             message: "Access token has expired. Please call the refresh API",
                             type: error_1.default.TRY_REFRESH_TOKEN,
@@ -191,6 +204,7 @@ function getRecipeInterface(querier, config) {
                     if (doAntiCsrfCheck === undefined) {
                         doAntiCsrfCheck = utils_2.normaliseHttpMethod(req.getMethod()) !== "get";
                     }
+                    logger_1.logDebugMessage("getSession: Value of doAntiCsrfCheck is: " + doAntiCsrfCheck);
                     let response = yield SessionFunctions.getSession(
                         helpers,
                         accessToken,
@@ -213,6 +227,7 @@ function getRecipeInterface(querier, config) {
                         );
                         accessToken = response.accessToken.token;
                     }
+                    logger_1.logDebugMessage("getSession: Success!");
                     return new sessionClass_1.default(
                         helpers,
                         accessToken,
@@ -223,6 +238,7 @@ function getRecipeInterface(querier, config) {
                     );
                 } catch (err) {
                     if (err.type === error_1.default.UNAUTHORISED) {
+                        logger_1.logDebugMessage("getSession: Clearing cookies because of UNAUTHORISED response");
                         cookieAndHeaders_1.clearSessionFromCookie(config, res);
                     }
                     throw err;
@@ -236,6 +252,7 @@ function getRecipeInterface(querier, config) {
         },
         refreshSession: function ({ req, res }) {
             return __awaiter(this, void 0, void 0, function* () {
+                logger_1.logDebugMessage("refreshSession: Started");
                 if (!res.wrapperUsed) {
                     res = framework_1.default[supertokens_1.default.getInstanceOrThrowError().framework].wrapResponse(
                         res
@@ -248,6 +265,9 @@ function getRecipeInterface(querier, config) {
                 }
                 let inputIdRefreshToken = cookieAndHeaders_1.getIdRefreshTokenFromCookie(req);
                 if (inputIdRefreshToken === undefined) {
+                    logger_1.logDebugMessage(
+                        "refreshSession: UNAUTHORISED because idRefreshToken from cookies is undefined"
+                    );
                     // we do not clear cookies here because of a
                     // race condition mentioned here: https://github.com/supertokens/supertokens-node/issues/17
                     throw new error_1.default({
@@ -259,6 +279,9 @@ function getRecipeInterface(querier, config) {
                 try {
                     let inputRefreshToken = cookieAndHeaders_1.getRefreshTokenFromCookie(req);
                     if (inputRefreshToken === undefined) {
+                        logger_1.logDebugMessage(
+                            "refreshSession: UNAUTHORISED because refresh token from cookies is undefined"
+                        );
                         throw new error_1.default({
                             message:
                                 "Refresh token not found. Are you sending the refresh token in the request as a cookie?",
@@ -273,6 +296,7 @@ function getRecipeInterface(querier, config) {
                         cookieAndHeaders_1.getRidFromHeader(req) !== undefined
                     );
                     utils_1.attachCreateOrRefreshSessionResponseToExpressRes(config, res, response);
+                    logger_1.logDebugMessage("refreshSession: Success!");
                     return new sessionClass_1.default(
                         helpers,
                         response.accessToken.token,
@@ -286,6 +310,9 @@ function getRecipeInterface(querier, config) {
                         (err.type === error_1.default.UNAUTHORISED && err.payload.clearCookies) ||
                         err.type === error_1.default.TOKEN_THEFT_DETECTED
                     ) {
+                        logger_1.logDebugMessage(
+                            "refreshSession: Clearing cookies because of UNAUTHORISED or TOKEN_THEFT_DETECTED response"
+                        );
                         cookieAndHeaders_1.clearSessionFromCookie(config, res);
                     }
                     throw err;

lib/build/recipe/session/recipe.js

@@ -51,6 +51,7 @@ const error_1 = require("./error");
 const processState_1 = require("../../processState");
 const normalisedURLPath_1 = require("../../normalisedURLPath");
 const utils_1 = require("../../utils");
+const logger_1 = require("../../logger");
 /**
  * @description call this to "login" a user.
  */
@@ -172,12 +173,18 @@ function getSession(helpers, accessToken, antiCsrfToken, doAntiCsrfCheck, contai
                 if (accessTokenInfo !== undefined) {
                     if (antiCsrfToken === undefined || antiCsrfToken !== accessTokenInfo.antiCsrfToken) {
                         if (antiCsrfToken === undefined) {
+                            logger_1.logDebugMessage(
+                                "getSession: Returning TRY_REFRESH_TOKEN because antiCsrfToken is missing from request"
+                            );
                             throw new error_1.default({
                                 message:
                                     "Provided antiCsrfToken is undefined. If you do not want anti-csrf check for this API, please set doAntiCsrfCheck to false for this API",
                                 type: error_1.default.TRY_REFRESH_TOKEN,
                             });
                         } else {
+                            logger_1.logDebugMessage(
+                                "getSession: Returning TRY_REFRESH_TOKEN because the passed antiCsrfToken is not the same as in the access token"
+                            );
                             throw new error_1.default({
                                 message: "anti-csrf check failed",
                                 type: error_1.default.TRY_REFRESH_TOKEN,
@@ -187,6 +194,9 @@ function getSession(helpers, accessToken, antiCsrfToken, doAntiCsrfCheck, contai
                 }
             } else if (handShakeInfo.antiCsrf === "VIA_CUSTOM_HEADER") {
                 if (!containsCustomHeader) {
+                    logger_1.logDebugMessage(
+                        "getSession: Returning TRY_REFRESH_TOKEN because custom header (rid) was not passed"
+                    );
                     throw new error_1.default({
                         message:
                             "anti-csrf check failed. Please pass 'rid: \"session\"' header in the request, or set doAntiCsrfCheck to false for this API",
@@ -231,6 +241,7 @@ function getSession(helpers, accessToken, antiCsrfToken, doAntiCsrfCheck, contai
             delete response.jwtSigningPublicKeyList;
             return response;
         } else if (response.status === "UNAUTHORISED") {
+            logger_1.logDebugMessage("getSession: Returning UNAUTHORISED because of core response");
             throw new error_1.default({
                 message: response.message,
                 type: error_1.default.UNAUTHORISED,
@@ -250,6 +261,7 @@ function getSession(helpers, accessToken, antiCsrfToken, doAntiCsrfCheck, contai
                 // we force update the signing keys...
                 yield helpers.getHandshakeInfo(true);
             }
+            logger_1.logDebugMessage("getSession: Returning TRY_REFRESH_TOKEN because of core response");
             throw new error_1.default({
                 message: response.message,
                 type: error_1.default.TRY_REFRESH_TOKEN,
@@ -301,6 +313,9 @@ function refreshSession(helpers, refreshToken, antiCsrfToken, containsCustomHead
         };
         if (handShakeInfo.antiCsrf === "VIA_CUSTOM_HEADER") {
             if (!containsCustomHeader) {
+                logger_1.logDebugMessage(
+                    "refreshSession: Returning TRY_REFRESH_TOKEN because custom header (rid) was not passed"
+                );
                 throw new error_1.default({
                     message: "anti-csrf check failed. Please pass 'rid: \"session\"' header in the request.",
                     type: error_1.default.UNAUTHORISED,
@@ -318,11 +333,13 @@ function refreshSession(helpers, refreshToken, antiCsrfToken, containsCustomHead
             delete response.status;
             return response;
         } else if (response.status === "UNAUTHORISED") {
+            logger_1.logDebugMessage("refreshSession: Returning UNAUTHORISED because of core response");
             throw new error_1.default({
                 message: response.message,
                 type: error_1.default.UNAUTHORISED,
             });
         } else {
+            logger_1.logDebugMessage("refreshSession: Returning TOKEN_THEFT_DETECTED because of core response");
             throw new error_1.default({
                 message: "Token theft detected",
                 payload: {