activity-log-service lib eklendi. llm-service activity loglama eklendi.

Author: omerada

activity-log-service/src/main/java/com/craftpilot/activitylogservice/config/LightSecurityConfig.java

@@ -3,16 +3,13 @@
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.http.HttpStatus;
+import org.springframework.core.annotation.Order;
 import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
-import org.springframework.security.config.web.server.SecurityWebFiltersOrder;
 import org.springframework.security.config.web.server.ServerHttpSecurity;
 import org.springframework.security.web.server.SecurityWebFilterChain;
-import org.springframework.web.server.ServerWebExchange;
+import org.springframework.http.server.reactive.ServerHttpRequest;
 import org.springframework.web.server.WebFilter;
-import org.springframework.web.server.WebFilterChain;
 import reactor.core.publisher.Mono;
-import org.springframework.security.web.server.header.ReferrerPolicyServerHttpHeadersWriter.ReferrerPolicy;
 
 import java.util.Arrays;
 import java.util.List;
@@ -23,87 +20,65 @@
 public class LightSecurityConfig {
 
     private static final List<String> PUBLIC_PATHS = Arrays.asList(
-        "/actuator/",
-        "/v3/api-docs",
-        "/swagger-ui",
-        "/webjars/"
-    );
-
-    private static final List<RequiredHeader> REQUIRED_HEADERS = Arrays.asList(
-        new RequiredHeader("X-User-Id", "User ID is required"),
-        new RequiredHeader("X-User-Role", "User role is required"),
-        new RequiredHeader("X-User-Email", "User email is required")
+            "/actuator",
+            "/actuator/health",
+            "/actuator/info",
+            "/health",
+            "/info",
+            "/v3/api-docs",
+            "/swagger-ui",
+            "/webjars/"
     );
 
     @Bean
+    @Order(1) 
     public SecurityWebFilterChain springSecurityFilterChain(ServerHttpSecurity http) {
         return http
-            .csrf(ServerHttpSecurity.CsrfSpec::disable)
-            .cors(cors -> cors.disable())
-            .httpBasic(ServerHttpSecurity.HttpBasicSpec::disable)
-            .formLogin(ServerHttpSecurity.FormLoginSpec::disable)
-            .authorizeExchange(exchanges -> exchanges
-                .pathMatchers(getPublicPaths()).permitAll()
-                .pathMatchers("/admin/**").hasRole("ADMIN")
-                .anyExchange().authenticated()
-            )
-            .addFilterAt(headerValidationFilter(), SecurityWebFiltersOrder.AUTHENTICATION)
-            .exceptionHandling(handling -> handling
-                .authenticationEntryPoint((exchange, ex) -> {
-                    exchange.getResponse().setStatusCode(HttpStatus.UNAUTHORIZED);
-                    return exchange.getResponse().setComplete();
-                })
-            )
-            .headers(headers -> headers
-                .contentSecurityPolicy(csp -> csp.policyDirectives("default-src 'self'"))
-                .frameOptions(frame -> frame.mode(org.springframework.security.web.server.header.XFrameOptionsServerHttpHeadersWriter.Mode.DENY))
-                .referrerPolicy(referrer -> referrer.policy(ReferrerPolicy.STRICT_ORIGIN_WHEN_CROSS_ORIGIN))
-                .xssProtection(xss -> xss.disable())
-            )
-            .build();
+                .csrf(ServerHttpSecurity.CsrfSpec::disable)
+                .formLogin(ServerHttpSecurity.FormLoginSpec::disable)
+                .httpBasic(ServerHttpSecurity.HttpBasicSpec::disable)
+                .anonymous(anonymous -> anonymous.authorities("ROLE_ANONYMOUS"))
+                .authorizeExchange(exchanges -> exchanges
+                        .pathMatchers("/**").permitAll() // Tüm isteklere izin ver, header kontrolünü WebFilter ile yap
+                )
+                .build();
     }
 
     @Bean
-    public WebFilter headerValidationFilter() {
+    @Order(0) // En önce çalışacak
+    public WebFilter loggingHeadersFilter() {
         return (exchange, chain) -> {
-            if (isPublicPath(exchange.getRequest().getPath().value())) {
+            ServerHttpRequest request = exchange.getRequest();
+            String path = request.getPath().value();
+            
+            log.debug("İstek geldi: {} {}", request.getMethod(), path);
+            
+            if (isPublicPath(path)) {
+                log.debug("Public path erişimi: {} - kontrolsüz geçiyor", path);
                 return chain.filter(exchange);
             }
-
-            for (RequiredHeader header : REQUIRED_HEADERS) {
-                String headerValue = exchange.getRequest().getHeaders().getFirst(header.name);
-                if (headerValue == null || headerValue.trim().isEmpty()) {
-                    return handleMissingHeader(exchange, header.message);
-                }
+            
+            // Debug için tüm headerları yazdıralım
+            request.getHeaders().forEach((key, values) -> 
+                log.debug("Header: {} = {}", key, values));
+            
+            // X-User-Id header'ı kontrolü
+            String userId = request.getHeaders().getFirst("X-User-Id");
+            
+            if (userId == null || userId.isEmpty()) {
+                log.warn("Gerekli X-User-Id header eksik, ancak isteğe devam ediliyor");
+                // İsteği reddetmek yerine loga yazıp devam edelim
+                // API Gateway zaten yetkilendirmeyi yapıyor
+            } else {
+                log.debug("İstek kimlik doğrulaması başarılı: {}", userId);
             }
-
+            
             return chain.filter(exchange);
         };
     }
 
     private boolean isPublicPath(String path) {
         return PUBLIC_PATHS.stream().anyMatch(path::startsWith);
     }
-
-    private String[] getPublicPaths() {
-        return PUBLIC_PATHS.stream()
-            .map(path -> path + "**")
-            .toArray(String[]::new);
-    }
-
-    private Mono<Void> handleMissingHeader(ServerWebExchange exchange, String message) {
-        exchange.getResponse().setStatusCode(HttpStatus.BAD_REQUEST);
-        exchange.getResponse().getHeaders().add("X-Error-Message", message);
-        return exchange.getResponse().setComplete();
-    }
-
-    private static class RequiredHeader {
-        final String name;
-        final String message;
-
-        RequiredHeader(String name, String message) {
-            this.name = name;
-            this.message = message;
-        }
-    }
 }
+

activity-log-service/src/main/java/com/craftpilot/activitylogservice/config/WebFluxConfig.java

@@ -3,6 +3,7 @@
 import org.springframework.context.annotation.Configuration;
 import org.springframework.web.reactive.config.CorsRegistry;
 import org.springframework.web.reactive.config.EnableWebFlux;
+import org.springframework.web.reactive.config.ResourceHandlerRegistry;
 import org.springframework.web.reactive.config.WebFluxConfigurer;
 
 @Configuration
@@ -22,8 +23,14 @@ public void addCorsMappings(CorsRegistry registry) {
             .allowedHeaders("*")
             .exposedHeaders("Content-Type", "X-Requested-With", "Accept", "Origin", 
                           "Access-Control-Request-Method", "Access-Control-Request-Headers",
-                          "X-Total-Count")
+                          "X-Total-Count", "X-Error-Message")
             .allowCredentials(true)
             .maxAge(3600);
     }
+    
+    @Override
+    public void addResourceHandlers(ResourceHandlerRegistry registry) {
+        registry.addResourceHandler("/static/**")
+               .addResourceLocations("classpath:/static/");
+    }
 }

craft-pilot-commons/pom.xml

@@ -0,0 +1,110 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <parent>
+        <groupId>org.springframework.boot</groupId>
+        <artifactId>spring-boot-starter-parent</artifactId>
+        <version>3.1.4</version>
+        <relativePath/> <!-- lookup parent from repository -->
+    </parent>
+    <groupId>com.craftpilot</groupId>
+    <artifactId>craft-pilot-commons</artifactId>
+    <version>0.0.1-SNAPSHOT</version>
+    <name>craft-pilot-commons</name>
+    <description>Common utilities and shared components for CraftPilot microservices</description>
+
+    <properties>
+        <java.version>17</java.version>
+        <spring-kafka.version>3.0.10</spring-kafka.version>
+        <lombok.version>1.18.30</lombok.version>
+    </properties>
+
+    <dependencies>
+        <!-- Spring Boot Core -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter</artifactId>
+            <optional>true</optional>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-configuration-processor</artifactId>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Spring AOP -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-aop</artifactId>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Kafka -->
+        <dependency>
+            <groupId>org.springframework.kafka</groupId>
+            <artifactId>spring-kafka</artifactId>
+            <version>${spring-kafka.version}</version>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Project Reactor -->
+        <dependency>
+            <groupId>io.projectreactor</groupId>
+            <artifactId>reactor-core</artifactId>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Jackson -->
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-databind</artifactId>
+            <optional>true</optional>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-jsr310</artifactId>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Validation -->
+        <dependency>
+            <groupId>jakarta.validation</groupId>
+            <artifactId>jakarta.validation-api</artifactId>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Lombok -->
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <version>${lombok.version}</version>
+            <optional>true</optional>
+        </dependency>
+        
+        <!-- Testing -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <configuration>
+                    <annotationProcessorPaths>
+                        <path>
+                            <groupId>org.projectlombok</groupId>
+                            <artifactId>lombok</artifactId>
+                            <version>${lombok.version}</version>
+                        </path>
+                    </annotationProcessorPaths>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+</project>

craft-pilot-commons/src/main/java/com/craftpilot/commons/activity/annotation/LogActivity.java

@@ -0,0 +1,32 @@
+package com.craftpilot.commons.activity.annotation;
+
+import java.lang.annotation.ElementType;
+import java.lang.annotation.Retention;
+import java.lang.annotation.RetentionPolicy;
+import java.lang.annotation.Target;
+
+/**
+ * Bir metodun çalışması sonucunda otomatik aktivite kaydı oluşturmak için kullanılır.
+ * Aspect tarafından işlenir.
+ */
+@Target({ElementType.METHOD})
+@Retention(RetentionPolicy.RUNTIME)
+public @interface LogActivity {
+    /**
+     * Aktivite tipi
+     */
+    String actionType();
+    
+    /**
+     * Kullanıcı ID'si hangi parametre üzerinden alınacak
+     * Parametre adı veya SpEL ifadesi olabilir
+     * Örn: "userId" veya "#chatHistory.userId"
+     */
+    String userIdParam() default "userId";
+    
+    /**
+     * Ek metadatalar için SpEL ifadesi
+     * Örn: "{id: #result.id, title: #result.title}"
+     */
+    String metadata() default "";
+}