add log for sign in, sign out, change password, remove upload file

2026-01-09 19:38:54 +07:00
parent 427a1040cf
commit ae39cc111f
32 changed files with 1991 additions and 212 deletions
--- a/src/lib/auth.ts
+++ b/src/lib/auth.ts
@@ -8,6 +8,7 @@ import {
  owner,
 } from '@/lib/auth/organization-permissions';
 import { ac, admin, user } from '@/lib/auth/permissions';
+import { createAuditLog } from '@/service/audit.api';
 import { betterAuth } from 'better-auth';
 import { prismaAdapter } from 'better-auth/adapters/prisma';
 import { admin as adminPlugin, organization } from 'better-auth/plugins';
@@ -67,6 +68,73 @@ export const auth = betterAuth({
          });
        },
      },
+      update: {
+        before: async (user, ctx) => {
+          if (ctx?.context.session && ctx?.path === '/update-user') {
+            const newUser = JSON.parse(JSON.stringify(user));
+            const keys = Object.keys(newUser);
+            const oldUser = Object.fromEntries(
+              Object.entries(ctx?.context.session?.user).filter(([key]) =>
+                keys.includes(key),
+              ),
+            );
+            await createAuditLog({
+              action: 'update',
+              tableName: 'user',
+              recordId: ctx?.context.session?.user.id,
+              oldValue: JSON.stringify(oldUser),
+              newValue: JSON.stringify(newUser),
+              userId: ctx?.context.session?.user.id,
+            });
+          }
+        },
+      },
+    },
+    account: {
+      update: {
+        after: async (account, context) => {
+          if (context?.path === '/change-password') {
+            await createAuditLog({
+              action: 'change_password',
+              tableName: 'account',
+              recordId: account.id,
+              oldValue: 'Change Password',
+              newValue: 'Change Password',
+              userId: account.userId,
+            });
+          }
+        },
+      },
+    },
+    session: {
+      create: {
+        after: async (session, context) => {
+          if (context?.path.includes('/sign-in')) {
+            await createAuditLog({
+              action: 'sign_in',
+              tableName: 'session',
+              recordId: session.id,
+              oldValue: '',
+              newValue: JSON.stringify(session),
+              userId: session.userId,
+            });
+          }
+        },
+      },
+      delete: {
+        after: async (session, context) => {
+          if (context?.path === '/sign-out') {
+            await createAuditLog({
+              action: 'sign_out',
+              tableName: 'session',
+              recordId: session.id,
+              oldValue: JSON.stringify(session),
+              newValue: '',
+              userId: session.userId,
+            });
+          }
+        },
+      },
    },
  },
 });