Add some logging

Author: dhague

conf/defaults.ini

@@ -202,7 +202,7 @@ config_file = /etc/grafana/ldap.toml
 enabled = false
 auth_url = http://localhost:5000
 default_domain = default
-default_role = Viewer
+#default_role = Viewer
 global_admin_roles =
 admin_roles = admin
 editor_roles = _member_

pkg/api/keystone/keystone_requests.go

@@ -9,6 +9,7 @@ import (
 	"io/ioutil"
 	"net/http"
 
+	"fmt"
 	"github.com/grafana/grafana/pkg/log"
 	"github.com/grafana/grafana/pkg/setting"
 )
@@ -24,7 +25,7 @@ type auth_request_struct struct {
 
 type auth_struct struct {
 	Identity auth_identity_struct `json:"identity"`
-	Scope    string               `json:"scope"`
+	Scope    string               `json:"scope,omitempty"`
 }
 
 type scoped_auth_token_request_struct struct {
@@ -36,15 +37,13 @@ type scoped_auth_password_request_struct struct {
 }
 
 type scoped_auth_token_struct struct {
-	Nocatalog bool                        `json:"nocatalog"`
-	Identity  auth_scoped_identity_struct `json:"identity"`
-	Scope     auth_scope_struct           `json:"scope"`
+	Identity auth_scoped_identity_struct `json:"identity"`
+	Scope    auth_scope_struct           `json:"scope"`
 }
 
 type scoped_auth_password_struct struct {
-	Nocatalog bool                 `json:"nocatalog"`
-	Identity  auth_identity_struct `json:"identity"`
-	Scope     auth_scope_struct    `json:"scope"`
+	Identity auth_identity_struct `json:"identity"`
+	Scope    auth_scope_struct    `json:"scope"`
 }
 
 type auth_scoped_identity_struct struct {
@@ -133,6 +132,7 @@ type Auth_data struct {
 
 func AuthenticateScoped(data *Auth_data) error {
 	if data.UnscopedToken != "" {
+		log.Trace("AuthenticateScoped() with token")
 		var auth_post scoped_auth_token_request_struct
 		auth_post.Auth.Identity.Methods = []string{"token"}
 		auth_post.Auth.Identity.Token.Id = data.UnscopedToken
@@ -142,7 +142,7 @@ func AuthenticateScoped(data *Auth_data) error {
 		return authenticate(data, b)
 	} else {
 		var auth_post scoped_auth_password_request_struct
-		auth_post.Auth.Nocatalog = true
+		log.Trace("AuthenticateScoped() with password")
 		auth_post.Auth.Identity.Methods = []string{"password"}
 		auth_post.Auth.Identity.Password.User.Name = data.Username
 		auth_post.Auth.Identity.Password.User.Password = data.Password
@@ -155,6 +155,7 @@ func AuthenticateScoped(data *Auth_data) error {
 }
 
 func AuthenticateUnscoped(data *Auth_data) error {
+	log.Trace("AuthenticateUnscoped()")
 	var auth_post auth_request_struct
 	auth_post.Auth.Scope = "unscoped"
 	auth_post.Auth.Identity.Methods = []string{"password"}
@@ -167,7 +168,12 @@ func AuthenticateUnscoped(data *Auth_data) error {
 }
 
 func authenticate(data *Auth_data, b []byte) error {
-	request, err := http.NewRequest("POST", data.Server+"/v3/auth/tokens?nocatalog", bytes.NewBuffer(b))
+	auth_url := data.Server + "/v3/auth/tokens?nocatalog"
+
+	log.Debug("Authentication request to URL: %s", auth_url)
+	log.Debug("Authentication request body: \n%s", b)
+
+	request, err := http.NewRequest("POST", auth_url, bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}
@@ -182,7 +188,21 @@ func authenticate(data *Auth_data, b []byte) error {
 		return errors.New("Keystone authentication failed: " + resp.Status)
 	}
 
-	decoder := json.NewDecoder(resp.Body)
+	var decoder *json.Decoder
+
+	if log.IsDebug() {
+		buf := new(bytes.Buffer)
+		buf.ReadFrom(resp.Body)
+		strBody := buf.Bytes()
+
+		log.Debug("Authentication response: \n%s", strBody)
+
+		bodyReader := bytes.NewBufferString(fmt.Sprintf("%s", strBody))
+		decoder = json.NewDecoder(bodyReader)
+	} else {
+		decoder = json.NewDecoder(resp.Body)
+	}
+
 	var auth_response auth_response_struct
 	err = decoder.Decode(&auth_response)
 	if err != nil {
@@ -205,6 +225,8 @@ type Projects_data struct {
 }
 
 func GetProjects(data *Projects_data) error {
+	log.Info("Authentication request to URL: %s", data.Server+"/v3/auth/projects")
+
 	request, err := http.NewRequest("GET", data.Server+"/v3/auth/projects", nil)
 	if err != nil {
 		return err
@@ -221,7 +243,21 @@ func GetProjects(data *Projects_data) error {
 		return errors.New("Keystone project-list failed: " + resp.Status)
 	}
 
-	decoder := json.NewDecoder(resp.Body)
+	var decoder *json.Decoder
+
+	if log.IsDebug() {
+		buf := new(bytes.Buffer)
+		buf.ReadFrom(resp.Body)
+		strBody := buf.Bytes()
+
+		log.Debug("Projects response: \n%s", strBody)
+
+		bodyReader := bytes.NewBufferString(fmt.Sprintf("%s", strBody))
+		decoder = json.NewDecoder(bodyReader)
+	} else {
+		decoder = json.NewDecoder(resp.Body)
+	}
+
 	var project_response project_response_struct
 	err = decoder.Decode(&project_response)
 	if err != nil {

pkg/log/log.go

@@ -35,42 +35,105 @@ func NewLogger(bufLen int64, mode, config string) {
 	}
 }
 
+func IsTrace() bool {
+	for _, logger := range loggers {
+		if logger.level <= TRACE {
+			return true
+		}
+	}
+	return false
+}
+
 func Trace(format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Trace(format, v...)
 	}
 }
 
+func IsDebug() bool {
+	for _, logger := range loggers {
+		if logger.level <= DEBUG {
+			return true
+		}
+	}
+	return false
+}
+
 func Debug(format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Debug(format, v...)
 	}
 }
 
+func IsInfo() bool {
+	for _, logger := range loggers {
+		if logger.level <= INFO {
+			return true
+		}
+	}
+	return false
+}
+
 func Info(format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Info(format, v...)
 	}
 }
 
+func IsWarn() bool {
+	for _, logger := range loggers {
+		if logger.level <= WARN {
+			return true
+		}
+	}
+	return false
+}
+
 func Warn(format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Warn(format, v...)
 	}
 }
 
+func IsError() bool {
+	for _, logger := range loggers {
+		if logger.level <= ERROR {
+			return true
+		}
+	}
+	return false
+}
+
 func Error(skip int, format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Error(skip, format, v...)
 	}
 }
 
+func IsCritical() bool {
+	for _, logger := range loggers {
+		if logger.level <= CRITICAL {
+			return true
+		}
+	}
+	return false
+}
+
 func Critical(skip int, format string, v ...interface{}) {
 	for _, logger := range loggers {
 		logger.Critical(skip, format, v...)
 	}
 }
 
+func IsFatal() bool {
+	for _, logger := range loggers {
+		if logger.level <= FATAL {
+			return true
+		}
+	}
+	return false
+}
+
 func Fatal(skip int, format string, v ...interface{}) {
 	Error(skip, format, v...)
 	for _, l := range loggers {

pkg/login/keystone.go

@@ -3,8 +3,10 @@ package login
 import (
 	"errors"
 
+	"fmt"
 	"github.com/grafana/grafana/pkg/api/keystone"
 	"github.com/grafana/grafana/pkg/bus"
+	"github.com/grafana/grafana/pkg/log"
 	m "github.com/grafana/grafana/pkg/models"
 )
 
@@ -32,14 +34,17 @@ func NewKeystoneAuthenticator(server, domainname, default_role string, global_ad
 
 func (a *keystoneAuther) login(query *LoginUserQuery) error {
 
+	log.Trace("perform initial authentication")
 	// perform initial authentication
 	if err := a.authenticate(query.Username, query.Password); err != nil {
 		return err
 	}
 
+	log.Trace("Get grafana user")
 	if grafanaUser, err := a.getGrafanaUserFor(query.Username); err != nil {
 		return err
 	} else {
+		log.Trace("sync org roles")
 		// sync org roles
 		if err := a.syncOrgRoles(query.Username, query.Password, grafanaUser); err != nil {
 			return err
@@ -161,10 +166,12 @@ func (a *keystoneAuther) updateGrafanaOrgUser(userid, orgid int64, role m.RoleTy
 }
 
 func (a *keystoneAuther) syncOrgRoles(username, password string, user *m.User) error {
+	log.Trace("syncOrgRoles()")
 	err := a.getProjectList(username, password)
 	if err != nil {
 		return err
 	}
+	log.Debug("OpenStack project_list[roles]: %v", a.project_list)
 
 	orgsQuery := m.GetUserOrgListQuery{UserId: user.Id}
 	if err := bus.Dispatch(&orgsQuery); err != nil {
@@ -176,6 +183,7 @@ func (a *keystoneAuther) syncOrgRoles(username, password string, user *m.User) e
 	// update or remove org roles
 	for _, org := range orgsQuery.Result {
 		handledOrgIds[org.OrgId] = true
+		log.Info(fmt.Sprintf("Checking Grafana org %v for roles", org.Name))
 
 		if user_roles, ok := a.project_list[org.Name]; ok {
 			// Update roles if user belongs to org