UNPKG

@dax-crafta/auth

Version:

A powerful, flexible, and secure authentication plugin for the Crafta framework. Supports JWT, social login, 2FA, RBAC, audit logging, and enterprise-grade security features.

github.com/daxp472/crafta

daxp472/crafta

55 lines (48 loc) 1.36 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
const AuditLog = require('../models/audit-log'); const winston = require('winston'); class AuditService { constructor() { this.logger = winston.createLogger({ level: 'info', format: winston.format.json(), transports: [ new winston.transports.File({ filename: 'audit.log' }) ] }); } async logActivity(data) { const log = new AuditLog({ userId: data.userId, action: data.action, ipAddress: data.ipAddress, userAgent: data.userAgent, details: data.details, status: data.status }); await log.save(); this.logger.info('Activity logged', { logId: log._id, ...data }); return log; } async getUserActivity(userId, filters = {}) { const query = { userId, ...filters }; return AuditLog.find(query).sort({ timestamp: -1 }); } async getActivityByDateRange(startDate, endDate) { return AuditLog.find({ timestamp: { $gte: startDate, $lte: endDate } }).sort({ timestamp: -1 }); } async getFailedLoginAttempts(userId, timeWindow) { const since = new Date(Date.now() - timeWindow); return AuditLog.countDocuments({ userId, action: 'login', status: 'failure', timestamp: { $gte: since } }); } } module.exports = AuditService;