feat: add audit logging via webhook (#309)

* feat: add audit logging via webhook * addd missing auditLogWebhook values in various places
2025-06-16 09:39:09 +00:00 · 2021-07-13 23:01:25 -04:00 · 2021-07-13 23:01:25 -04:00 · acc604f83f
commit acc604f83f
parent 5671a408c1
16 changed files with 488 additions and 22 deletions
--- a/packages/api/handlers/create-roleypoly-data.ts
+++ b/packages/api/handlers/create-roleypoly-data.ts
@ -11,6 +11,7 @@ export const CreateRoleypolyData = onlyRootUsers(
      message:
        'Hey, this is kind of a demo setup so features/use cases can be shown off.\n\nThanks for using Roleypoly <3',
      features: Features.Preview,
+      auditLogWebhook: null,
      categories: [
        {
          id: KSUID.randomSync().string,
--- a/packages/api/handlers/update-guild.ts
+++ b/packages/api/handlers/update-guild.ts
@ -1,8 +1,20 @@
-import { GuildDataUpdate, SessionData, UserGuildPermissions } from '@roleypoly/types';
+import { sendAuditLog, validateAuditLogWebhook } from '@roleypoly/api/utils/audit-log';
+import {
+  GuildDataUpdate,
+  SessionData,
+  UserGuildPermissions,
+  WebhookValidationStatus,
+} from '@roleypoly/types';
 import { withSession } from '../utils/api-tools';
 import { getGuildData } from '../utils/guild';
 import { GuildData } from '../utils/kv';
-import { lowPermissions, missingParameters, notFound, ok } from '../utils/responses';
+import {
+  invalid,
+  lowPermissions,
+  missingParameters,
+  notFound,
+  ok,
+} from '../utils/responses';

 export const UpdateGuild = withSession(
  (session: SessionData) =>
@ -27,13 +39,42 @@ export const UpdateGuild = withSession(
        return lowPermissions();
      }

+      const oldGuildData = await getGuildData(guildID);
      const newGuildData = {
-        ...(await getGuildData(guildID)),
+        ...oldGuildData,
        ...guildUpdate,
      };

+      if (oldGuildData.auditLogWebhook !== newGuildData.auditLogWebhook) {
+        try {
+          const validationStatus = await validateAuditLogWebhook(
+            guild,
+            newGuildData.auditLogWebhook
+          );
+
+          if (validationStatus !== WebhookValidationStatus.Ok) {
+            if (validationStatus === WebhookValidationStatus.NoneSet) {
+              newGuildData.auditLogWebhook = null;
+            } else {
+              return invalid({
+                what: 'webhookValidationStatus',
+                webhookValidationStatus: validationStatus,
+              });
+            }
+          }
+        } catch (e) {
+          invalid();
+        }
+      }
+
      await GuildData.put(guildID, newGuildData);

+      try {
+        await sendAuditLog(oldGuildData, guildUpdate, session.user);
+      } catch (e) {
+        // Catching errors here because this isn't a critical task, and could simply fail due to operator error.
+      }
+
      return ok();
    }
 );