ovh
diff --git a/‎cli/cdsctl/admin_errors.go
Lines changed: 8 additions & 6 deletions b/‎cli/cdsctl/admin_errors.go
Lines changed: 8 additions & 6 deletions
diff --git a/‎cli/cobra.go
Lines changed: 1 addition & 1 deletion b/‎cli/cobra.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎contrib/grpcplugins/action/clair/go.sum
Lines changed: 3 additions & 0 deletions b/‎contrib/grpcplugins/action/clair/go.sum
Lines changed: 3 additions & 0 deletions
diff --git a/‎engine/api/error.go
Lines changed: 11 additions & 11 deletions b/‎engine/api/error.go
Lines changed: 11 additions & 11 deletions
diff --git a/‎engine/api/observability/stats.go
Lines changed: 1 addition & 0 deletions b/‎engine/api/observability/stats.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎engine/api/router.go
Lines changed: 60 additions & 13 deletions b/‎engine/api/router.go
Lines changed: 60 additions & 13 deletions
diff --git a/‎engine/api/router_middleware_auth.go
Lines changed: 1 addition & 1 deletion b/‎engine/api/router_middleware_auth.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎engine/api/services/http.go
Lines changed: 7 additions & 0 deletions b/‎engine/api/services/http.go
Lines changed: 7 additions & 0 deletions
diff --git a/‎engine/api/worker.go
Lines changed: 17 additions & 12 deletions b/‎engine/api/worker.go
Lines changed: 17 additions & 12 deletions
@@ -22,21 +22,23 @@ func adminErrors() *cobra.Command {
 
 var adminErrorsGetCmd = cli.Command{
 	Name:  "get",
-	Short: "Get CDS error",
+	Short: "Get CDS errors for given request id",
 	Args: []cli.Arg{
-		{Name: "uuid"},
+		{Name: "request-id"},
 	},
 }
 
 func adminErrorsGetFunc(v cli.Values) error {
-	res, err := client.MonErrorsGet(v.GetString("uuid"))
+	res, err := client.MonErrorsGet(v.GetString("request-id"))
 	if err != nil {
 		return err
 	}
 
-	fmt.Printf("Message: %s\n", res.Message)
-	if res.StackTrace != "" {
-		fmt.Printf("Stack trace:\n%s", res.StackTrace)
+	for i := range res {
+		fmt.Printf("Message[%d]: %s\n", i, res[i].Message)
+		if res[i].StackTrace != "" {
+			fmt.Printf("Stack trace[%d]:\n%s", i, res[i].StackTrace)
+		}
 	}
 
 	return nil
 
@@ -32,7 +32,7 @@ func ExitOnError(err error, helpFunc ...func() error) {
 
 	switch e := err.(type) {
 	case sdk.Error:
-		fmt.Printf("Error(%s): %s\n", e.UUID, e.Message)
+		fmt.Printf("Error(request_id:%s): %s\n", e.RequestID, e.Message)
 	case *Error:
 		code = e.Code
 		fmt.Println("Error:", e.Error())
 
@@ -394,6 +394,7 @@ github.com/prometheus/client_golang v0.9.3-0.20190127221311-3c4408c8b829/go.mod
 github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v0.9.4 h1:Y8E/JaaPbmFSW2V81Ab/d8yZFYQQGbni1b1jPcG9Y6A=
 github.com/prometheus/client_golang v0.9.4/go.mod h1:oCXIBxdI62A4cR6aTRJCgetEjecSIYzOEaeAn4iYEpM=
+github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_model v0.0.0-20170216185247-6f3806018612/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190115171406-56726106282f/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
@@ -408,6 +409,7 @@ github.com/prometheus/common v0.2.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1 h1:K0MGApIoQvMw27RTdJkPbr3JZ7DNbtxQNyi5STVM6Kw=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
+github.com/prometheus/common v0.6.0/go.mod h1:eBmuwkDJBwy6iBfxCBob6t6dR6ENT/y+J+Zk0j9GMYc=
 github.com/prometheus/procfs v0.0.0-20170502131342-d098ca18df8b/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20181204211112-1dc9a6cbc91a/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
@@ -549,6 +551,7 @@ golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190522155817-f3200d17e092/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191204025024-5ee1b9f4859a h1:+HHJiFUXVOIS9mr1ThqkQD1N8vpFCfCShqADBM12KTc=
 golang.org/x/net v0.0.0-20191204025024-5ee1b9f4859a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 
@@ -26,10 +26,10 @@ type graylogResponse struct {
 func (api *API) getErrorHandler() service.Handler {
 	return func(ctx context.Context, w http.ResponseWriter, r *http.Request) error {
 		vars := mux.Vars(r)
-		uuid := vars["uuid"]
+		id := vars["request_id"]
 
 		if api.Config.Graylog.URL == "" || api.Config.Graylog.AccessToken == "" {
-			return sdk.WithStack(sdk.ErrNotImplemented)
+			return sdk.WithStack(sdk.ErrNotFound)
 		}
 
 		req, err := http.NewRequest("GET", fmt.Sprintf("%s/api/search/universal/absolute", api.Config.Graylog.URL), nil)
@@ -38,10 +38,9 @@ func (api *API) getErrorHandler() service.Handler {
 		}
 
 		q := req.URL.Query()
-		q.Add("query", fmt.Sprintf("error_uuid:%s", uuid))
+		q.Add("query", fmt.Sprintf("request_id:%s", id))
 		q.Add("from", "1970-01-01 00:00:00.000")
 		q.Add("to", time.Now().Format("2006-01-02 15:04:05"))
-		q.Add("limit", "1")
 		q.Add("filter", fmt.Sprintf("streams:%s", api.Config.Graylog.Stream))
 		req.URL.RawQuery = q.Encode()
 
@@ -66,15 +65,16 @@ func (api *API) getErrorHandler() service.Handler {
 			return sdk.WithStack(sdk.ErrNotFound)
 		}
 
-		e := sdk.Error{
-			UUID:    res.Messages[0].Message["error_uuid"].(string),
-			Message: res.Messages[0].Message["message"].(string),
-		}
-		if st, ok := res.Messages[0].Message["stack_trace"]; ok {
-			e.StackTrace = st.(string)
+		logs := make([]sdk.Error, res.TotalResult)
+		for i := range res.Messages {
+			logs[i].RequestID = res.Messages[i].Message["request_id"].(string)
+			logs[i].Message = res.Messages[i].Message["message"].(string)
+			if st, ok := res.Messages[i].Message["stack_trace"]; ok {
+				logs[i].StackTrace = st.(string)
+			}
 		}
 
-		return service.WriteJSON(w, e, http.StatusOK)
+		return service.WriteJSON(w, logs, http.StatusOK)
 	}
 }
 
 
@@ -26,6 +26,7 @@ const (
 	Path       = "http.path"
 	Method     = "http.method"
 	Handler    = "http.handler"
+	RequestID  = "http.request-id"
 )
 
 type ExposedView struct {
 
@@ -18,6 +18,8 @@ import (
 	"github.com/gorilla/handlers"
 	"github.com/gorilla/mux"
 	"github.com/pkg/errors"
+	uuid "github.com/satori/go.uuid"
+	"github.com/sirupsen/logrus"
 	"go.opencensus.io/stats"
 	"go.opencensus.io/tag"
 
@@ -154,7 +156,7 @@ func (r *Router) recoverWrap(h http.HandlerFunc) http.HandlerFunc {
 					log.Error(context.TODO(), "[PANIC_RECOVERY] RESTART NEEDED")
 				}
 
-				service.WriteError(w, req, err)
+				service.WriteError(context.TODO(), w, req, err)
 			}
 		}()
 		h.ServeHTTP(w, req)
@@ -273,6 +275,17 @@ func (r *Router) Handle(uri string, scope HandlerScope, handlers ...*service.Han
 		ctx, cancel := context.WithCancel(req.Context())
 		defer cancel()
 
+		var requestID string
+		if existingRequestID := req.Header.Get("Request-ID"); existingRequestID != "" {
+			if _, err := uuid.FromString(existingRequestID); err == nil {
+				requestID = existingRequestID
+			}
+		}
+		if requestID == "" {
+			requestID = uuid.NewV4().String()
+		}
+		ctx = context.WithValue(ctx, log.ContextLoggingRequestIDKey, requestID)
+
 		dateRFC5322 := req.Header.Get("Date")
 		dateReq, err := sdk.ParseDateRFC5322(dateRFC5322)
 		if err == nil {
@@ -309,7 +322,7 @@ func (r *Router) Handle(uri string, scope HandlerScope, handlers ...*service.Han
 		rc := cfg.Config[req.Method]
 		if rc == nil || rc.Handler == nil {
 			observability.Record(ctx, Errors, 1)
-			service.WriteError(w, req, sdk.ErrNotFound)
+			service.WriteError(ctx, w, req, sdk.ErrNotFound)
 			return
 		}
 
@@ -320,31 +333,61 @@ func (r *Router) Handle(uri string, scope HandlerScope, handlers ...*service.Han
 			log.Error(ctx, "observability.ContextGetTags> %v", err)
 		}
 		ctx = observability.ContextWithTag(ctx,
+			observability.RequestID, requestID,
 			observability.Handler, rc.Name,
 			observability.Host, req.Host,
 			observability.Path, req.URL.Path,
 			observability.Method, req.Method)
 
-		//Log request
+		// Prepare logging fields
+		ctx = context.WithValue(ctx, log.ContextLoggingFuncKey, func(ctx context.Context) logrus.Fields {
+			fields := make(logrus.Fields)
+
+			// Add consumer info if exists
+			iConsumer := ctx.Value(contextAPIConsumer)
+			if iConsumer != nil {
+				if consumer, ok := iConsumer.(*sdk.AuthConsumer); ok {
+					fields["auth_user_id"] = consumer.AuthentifiedUserID
+					fields["auth_consumer_id"] = consumer.ID
+				}
+			}
+
+			// Add session info if exists
+			iSession := ctx.Value(contextSession)
+			if iSession != nil {
+				if session, ok := iSession.(*sdk.AuthSession); ok {
+					fields["auth_session_id"] = session.ID
+				}
+			}
+
+			return fields
+		})
+
+		// Log request start
 		start := time.Now()
-		defer func(ctx context.Context) {
+		log.Info(ctx, "%s | BEGIN | %s [%s]", req.Method, req.URL, rc.Name)
+
+		// Defer log request end
+		deferFunc := func(ctx context.Context) {
 			if responseWriter.statusCode == 0 {
 				responseWriter.statusCode = 200
 			}
 			ctx = observability.ContextWithTag(ctx, observability.StatusCode, responseWriter.statusCode)
 
 			end := time.Now()
 			latency := end.Sub(start)
-			if rc.IsDeprecated {
-				log.Error(ctx, "[%-3d] | %-7s | %13v | DEPRECATED ROUTE | %v [%s]", responseWriter.statusCode, req.Method, latency, req.URL, rc.Name)
-			} else {
-				log.Info(ctx, "[%-3d] | %-7s | %13v | %v [%s]", responseWriter.statusCode, req.Method, latency, req.URL, rc.Name)
-			}
+
+			log.InfoWithFields(ctx, logrus.Fields{
+				"method":     req.Method,
+				"latency":    latency,
+				"status":     responseWriter.statusCode,
+				"deprecated": rc.IsDeprecated,
+			}, "[%d] | %s | END | %s [%s]", responseWriter.statusCode, req.Method, req.URL, rc.Name)
 
 			observability.RecordFloat64(ctx, ServerLatency, float64(latency)/float64(time.Millisecond))
 			observability.Record(ctx, ServerRequestBytes, responseWriter.reqSize)
 			observability.Record(ctx, ServerResponseBytes, responseWriter.respSize)
-		}(ctx)
+		}
 
 		observability.Record(r.Background, Hits, 1)
 		observability.Record(ctx, ServerRequestCount, 1)
@@ -354,15 +397,17 @@ func (r *Router) Handle(uri string, scope HandlerScope, handlers ...*service.Han
 			ctx, err = m(ctx, responseWriter, req, rc)
 			if err != nil {
 				observability.Record(r.Background, Errors, 1)
-				service.WriteError(w, req, err)
+				service.WriteError(ctx, w, req, err)
+				deferFunc(ctx)
 				return
 			}
 		}
 
 		if err := rc.Handler(ctx, responseWriter.wrappedResponseWriter(), req); err != nil {
 			observability.Record(r.Background, Errors, 1)
 			observability.End(ctx, responseWriter, req)
-			service.WriteError(responseWriter, req, err)
+			service.WriteError(ctx, responseWriter, req, err)
+			deferFunc(ctx)
 			return
 		}
 
@@ -377,6 +422,8 @@ func (r *Router) Handle(uri string, scope HandlerScope, handlers ...*service.Han
 				log.Error(ctx, "PostMiddlewares > %s", err)
 			}
 		}
+
+		deferFunc(ctx)
 	}
 
 	// The chain is http -> mux -> f -> recover -> wrap -> pprof -> opencensus -> http
@@ -577,7 +624,7 @@ func EnableTracing() HandlerConfigParam {
 
 // NotFoundHandler is called by default by Mux is any matching handler has been found
 func NotFoundHandler(w http.ResponseWriter, req *http.Request) {
-	service.WriteError(w, req, sdk.WithStack(sdk.ErrNotFound))
+	service.WriteError(context.Background(), w, req, sdk.WithStack(sdk.ErrNotFound))
 }
 
 // StatusPanic returns router status. If nbPanic > 30 -> Alert, if nbPanic > 0 -> Warn
 
@@ -152,7 +152,7 @@ func (api *API) authMiddleware(ctx context.Context, w http.ResponseWriter, req *
 
 	// If we set Auth(false) on a handler, with should have a consumer in the context if a valid JWT is given
 	if rc.NeedAuth && getAPIConsumer(ctx) == nil {
-		return nil, sdk.WithStack(sdk.ErrUnauthorized)
+		return ctx, sdk.WithStack(sdk.ErrUnauthorized)
 	}
 
 	if rc.NeedAdmin && !isAdmin(ctx) {
 
@@ -287,6 +287,13 @@ func doRequestFromURL(ctx context.Context, db gorp.SqlExecutor, method string, c
 		}
 	}
 
+	iRequestID := ctx.Value(log.ContextLoggingRequestIDKey)
+	if iRequestID != nil {
+		if requestID, ok := iRequestID.(string); ok {
+			req.Header.Set(log.HeaderRequestID, requestID)
+		}
+	}
+
 	// Sign the http request with API private RSA Key
 	if err := HTTPSigner.Sign(req); err != nil {
 		return nil, nil, 0, sdk.WrapError(err, "services.DoRequest> Request signature failed")
 
@@ -30,26 +30,25 @@ func (api *API) postRegisterWorkerHandler() service.Handler {
 
 		var registrationForm sdk.WorkerRegistrationForm
 		if err := service.UnmarshalBody(r, &registrationForm); err != nil {
-			return sdk.WrapError(err, "Unable to parse registration form")
+			return err
 		}
 
 		// Check that the worker can authentify on CDS API
 		workerTokenFromHatchery, err := workerauth.VerifyToken(ctx, api.mustDB(), jwt)
 		if err != nil {
-			log.Error(ctx, "registerWorkerHandler> unauthorized worker jwt token %s: %v", jwt, err)
-			return sdk.WithStack(sdk.ErrUnauthorized)
+			return sdk.NewErrorWithStack(sdk.WrapError(err, "unauthorized worker jwt token %s", jwt), sdk.ErrUnauthorized)
 		}
 
 		// Check that hatchery exists
 		hatchSrv, err := services.LoadByNameAndType(ctx, api.mustDB(), workerTokenFromHatchery.Worker.HatcheryName, services.TypeHatchery)
 		if err != nil {
-			return sdk.WrapError(err, "registerWorkerHandler> Unable to load hatchery %s", workerTokenFromHatchery.Worker.HatcheryName)
+			return sdk.WrapError(err, "unable to load hatchery %s", workerTokenFromHatchery.Worker.HatcheryName)
 		}
 
 		// Retrieve the authentifed Consumer from the hatchery
 		hatcheryConsumer, err := authentication.LoadConsumerByID(ctx, api.mustDB(), *hatchSrv.ConsumerID, authentication.LoadConsumerOptions.WithAuthentifiedUser)
 		if err != nil {
-			return sdk.WrapError(err, "registerWorkerHandler> Unable to load consumer %v", hatchSrv.ConsumerID)
+			return sdk.WrapError(err, "unable to load consumer %v", hatchSrv.ConsumerID)
 		}
 
 		tx, err := api.mustDB().Begin()
@@ -62,7 +61,7 @@ func (api *API) postRegisterWorkerHandler() service.Handler {
 		if wor
A92E
kerTokenFromHatchery.Worker.JobID != 0 {
 			job, err := workflow.LoadNodeJobRun(ctx, tx, api.Cache, workerTokenFromHatchery.Worker.JobID)
 			if err != nil {
-				return sdk.NewError(sdk.ErrForbidden, err)
+				return sdk.NewErrorWithStack(err, sdk.ErrForbidden)
 			}
 			groupIDs = sdk.Groups(job.ExecGroups).ToIDs()
 		} else {
@@ -78,16 +77,20 @@ func (api *API) postRegisterWorkerHandler() service.Handler {
 		// Try to register worker
 		wk, err := worker.RegisterWorker(ctx, tx, api.Cache, workerTokenFromHatchery.Worker, hatchSrv.ID, workerConsumer, registrationForm)
 		if err != nil {
-			err = sdk.NewError(sdk.ErrUnauthorized, err)
-			return sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName)
+			return sdk.NewErrorWithStack(
+				sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName),
+				sdk.ErrUnauthorized,
+			)
 		}
 
 		log.Debug("New worker: [%s] - %s", wk.ID, wk.Name)
 
 		workerSession, err := authentication.NewSession(ctx, tx, workerConsumer, workerauth.SessionDuration, false)
 		if err != nil {
-			err = sdk.NewError(sdk.ErrUnauthorized, err)
-			return sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName)
+			return sdk.NewErrorWithStack(
+				sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName),
+				sdk.ErrUnauthorized,
+			)
 		}
 
 		if err := tx.Commit(); err != nil {
@@ -96,8 +99,10 @@ func (api *API) postRegisterWorkerHandler() service.Handler {
 
 		jwt, err = authentication.NewSessionJWT(workerSession)
 		if err != nil {
-			err = sdk.NewError(sdk.ErrUnauthorized, err)
-			return sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName)
+			return sdk.NewErrorWithStack(
+				sdk.WrapError(err, "[%s] Registering failed", workerTokenFromHatchery.Worker.WorkerName),
+				sdk.ErrUnauthorized,
+			)
 		}
 
 		// Set the JWT token as a header
Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@ const (`
`26`	`26`	`Path = "http.path"`
`27`	`27`	`Method = "http.method"`
`28`	`28`	`Handler = "http.handler"`
	`29`	`+ RequestID = "http.request-id"`
`29`	`30`	`)`
`30`	`31`
`31`	`32`	`type ExposedView struct {`
Original file line number	Diff line number	Diff line change
`@@ -152,7 +152,7 @@ func (api API) authMiddleware(ctx context.Context, w http.ResponseWriter, req `
`152`	`152`
`153`	`153`	`// If we set Auth(false) on a handler, with should have a consumer in the context if a valid JWT is given`
`154`	`154`	`if rc.NeedAuth && getAPIConsumer(ctx) == nil {`
`155`		`- return nil, sdk.WithStack(sdk.ErrUnauthorized)`
	`155`	`+ return ctx, sdk.WithStack(sdk.ErrUnauthorized)`
`156`	`156`	`}`
`157`	`157`
`158`	`158`	`if rc.NeedAdmin && !isAdmin(ctx) {`
Original file line number	Diff line number	Diff line change
`@@ -287,6 +287,13 @@ func doRequestFromURL(ctx context.Context, db gorp.SqlExecutor, method string, c`
`287`	`287`	`}`
`288`	`288`	`}`
`289`	`289`
	`290`	`+ iRequestID := ctx.Value(log.ContextLoggingRequestIDKey)`
	`291`	`+ if iRequestID != nil {`
	`292`	`+ if requestID, ok := iRequestID.(string); ok {`
	`293`	`+ req.Header.Set(log.HeaderRequestID, requestID)`
	`294`	`+ }`
	`295`	`+ }`
	`296`	`+`
`290`	`297`	`// Sign the http request with API private RSA Key`
`291`	`298`	`if err := HTTPSigner.Sign(req); err != nil {`
`292`	`299`	`return nil, nil, 0, sdk.WrapError(err, "services.DoRequest> Request signature failed")`