📦 EqualifyEverything / equalify-reflow

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82"""Request logging middleware."""

import logging
import time
from collections.abc import Awaitable, Callable

from fastapi import Request, Response
from starlette.middleware.base import BaseHTTPMiddleware

logger = logging.getLogger(__name__)


def _identity_fields(request: Request) -> dict[str, str | None]:
    """Pull identity attributes off ``request.state`` if SessionAuthMiddleware
    populated them. Returns ``{}`` for anonymous requests so log lines from
    AUTH_MODE=none deployments stay shape-identical to today's.

    The ``isinstance`` rather than truthiness check matters: existing mock
    tests sometimes use a MagicMock for ``request.state`` whose attribute
    access always returns a truthy child mock.
    """
    from ..auth.base import Identity  # lazy to keep middleware import-light

    identity = getattr(request.state, "identity", None)
    if not isinstance(identity, Identity):
        return {}
    return {
        "user_sub": identity.sub,
        "user_email": identity.email,
        "user_provider": identity.provider_id,
    }


class LoggingMiddleware(BaseHTTPMiddleware):
    """Middleware for logging HTTP requests and responses."""

    async def dispatch(
        self, request: Request, call_next: Callable[[Request], Awaitable[Response]]
    ) -> Response:
        """
        Log request and response details.

        Args:
            request: Incoming request
            call_next: Next middleware/handler

        Returns:
            Response object
        """
        start_time = time.time()

        # Log request — identity isn't set yet (SessionAuthMiddleware runs
        # inner to us per main.py middleware ordering), so user_* fields
        # only appear on the Response line below. Keeping the Request line
        # *before* call_next preserves crash/hang forensics.
        logger.info(
            f"Request: {request.method} {request.url.path}",
            extra={
                "method": request.method,
                "path": request.url.path,
                "client": request.client.host if request.client else None,
            },
        )

        response = await call_next(request)

        process_time = time.time() - start_time
        logger.info(
            f"Response: {response.status_code} ({process_time:.3f}s)",
            extra={
                "method": request.method,
                "path": request.url.path,
                "status_code": response.status_code,
                "process_time": process_time,
                **_identity_fields(request),
            },
        )

        response.headers["X-Process-Time"] = str(process_time)

        return response