Feature/Add Audit and Deletion

[yau-wd]

FLOWISE-39

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly enhances the application's logging and telemetry capabilities by introducing a robust audit logging system. It focuses on ensuring data privacy and compliance through new utilities for IP address validation, masking, and sensitive metadata redaction. The changes integrate these features into a structured event emission mechanism, allowing for detailed tracking of user actions and system events across various storage backends, supported by extensive unit tests.

Highlights

• Audit Logging Integration: Introduced a new 'audit' log type across all storage providers (Azure Blob, Google Cloud Storage, Local Storage, and S3) and the IStorageProvider interface, enabling dedicated logging for auditable events.
• IP Address Validation and Sanitization: Added new utility functions in ipValidation.ts for robust IP address validation (isValidIPAddress, isIPv4, isIPv6) and in sanitize.util.ts for privacy-compliant IP address masking (sanitizeIPAddress).
• Sensitive Metadata Redaction: Implemented sanitizeAuditMetadata in sanitize.util.ts to automatically redact sensitive information (e.g., passwords, tokens) from event metadata before logging, enhancing data security and compliance.
• Structured Telemetry Event Emission: Developed a new emitEvent function in telemetry.ts for sending structured audit/telemetry events. This function includes GeoIP lookup for location enrichment, followed by IP and metadata sanitization, ensuring comprehensive and compliant event logging.
• New Dependencies and Tests: Added geoip-lite and its type definitions to packages/server/package.json to support geolocation. Comprehensive unit tests were introduced for the new IP validation, logger, sanitization, and telemetry utilities, and existing API key tests were expanded.

Changelog

• packages/components/src/storage/AzureBlobStorageProvider.ts
  • Reordered imports for consistency.
  • Extended the getLoggerTransports method to include a new 'audit' log type.
  • Added specific logic to handle 'audit' log transports using winstonAzureBlob for Azure Blob Storage.
• packages/components/src/storage/BaseStorageProvider.ts
  • Reordered imports for consistency.
  • Updated the abstract getLoggerTransports method signature to incorporate the new 'audit' log type.
• packages/components/src/storage/GCSStorageProvider.ts
  • Reordered imports for consistency.
  • Extended the getLoggerTransports method to include a new 'audit' log type.
  • Added specific logic to handle 'audit' log transports using LoggingWinston for Google Cloud Storage.
• packages/components/src/storage/IStorageProvider.ts
  • Updated the getLoggerTransports interface method signature to support the new 'audit' log type.
• packages/components/src/storage/LocalStorageProvider.ts
  • Reordered imports for consistency.
  • Extended the getLoggerTransports method to include a new 'audit' log type.
  • Added specific logic to handle 'audit' log transports using DailyRotateFile for local storage.
• packages/components/src/storage/S3StorageProvider.ts
  • Reordered imports for consistency.
  • Extended the getLoggerTransports method to include a new 'audit' log type.
  • Added specific logic to handle 'audit' log transports using S3StreamLogger for S3 storage.
• packages/server/package.json
  • Added geoip-lite as a new dependency.
  • Added @types/geoip-lite for TypeScript support.
• packages/server/src/utils/ipValidation.ts
  • Added a new file ipValidation.ts.
  • Implemented isValidIPAddress to validate IPv4 and IPv6 addresses.
  • Implemented isIPv4 to check for valid IPv4 addresses.
  • Implemented isIPv6 to check for valid IPv6 addresses.
• packages/server/src/utils/logger.ts
  • Reordered imports for consistency.
  • Initialized auditTransports using the storage provider's getLoggerTransports method.
  • Exported a new auditLogger for dedicated audit logging.
• packages/server/src/utils/sanitize.util.ts
  • Imported isValidIPAddress for use in IP sanitization.
  • Added sanitizeIPAddress to mask IP addresses for privacy compliance.
  • Added sanitizeAuditMetadata to redact sensitive fields from audit event metadata.
• packages/server/src/utils/telemetry.ts
  • Imported geoip-lite, isValidIPAddress, logger, auditLogger, sanitizeAuditMetadata, and sanitizeIPAddress.
  • Added getGeolocation function for GeoIP lookup.
  • Defined TelemetryEventCategory and TelemetryEventResult enums.
  • Defined TelemetryEventInput and TelemetryEventOutput interfaces for structured events.
  • Implemented emitEvent for structured audit/telemetry event logging with enrichment and sanitization.
• packages/server/test/utils/api-key.util.test.ts
  • Added new test cases for generateSecretHash to verify hash format and uniqueness.
  • Added new test cases for compareKeys to verify correct key comparison.
• packages/server/test/utils/ipValidation.test.ts
  • Added a new test file ipValidation.test.ts.
  • Included comprehensive unit tests for isValidIPAddress, isIPv4, and isIPv6 functions.
• packages/server/test/utils/logger.test.ts
  • Added a new test file logger.test.ts.
  • Included unit tests for the expressRequestLogger and the new auditLogger.
• packages/server/test/utils/sanitize.util.test.ts
  • Added a new test file sanitize.util.test.ts.
  • Included unit tests for sanitizeNullBytes, sanitizeUser, sanitizeIPAddress, and sanitizeAuditMetadata.
• packages/server/test/utils/telemetry.test.ts
  • Added a new test file telemetry.test.ts.
  • Included unit tests for the Telemetry class and the new emitEvent function.

Activity

• The author yau-wd initiated this pull request.
• New audit logging capabilities have been introduced across all storage providers.
• Utility functions for IP validation and sanitization have been added and tested.
• A structured telemetry event emission system, including GeoIP lookup and sensitive data redaction, has been implemented.
• New dependencies for geolocation have been integrated.
• Extensive unit tests have been added for the new features and modifications.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a comprehensive audit logging feature across various storage providers (Azure, GCS, S3, Local). It adds structured logging for audit events, including event details, user information, and sanitized metadata like IP addresses. The changes include new utility functions for IP validation and sanitization, along with extensive unit tests for the new functionality.

My review has identified a critical issue in the IP address sanitization logic that could lead to invalid data in audit logs, and a high-severity issue with the S3 log file naming strategy that would be inefficient and costly. I've provided suggestions to fix both.

[mmattu-wd]

Still need to test the whole flow but left some comments

[yau-wd]

Continue in Jira.

[yau-wd]

Continue in Jira.

[mmattu-wd]

this would only look 1 level into the object. Is there any chance data like this gets emitted?:

{
  "configuration": {
       "apiKey": "someapikey"
   }
}

if not we should maybe update the metadata type to be something like Record<string, string | number>. So if we do try logging and object ts catches it, this can be circumvented with any but 🤷 . As it stands right now the above metadata would pass and log the value

[yau-wd]

fix(sanitize.util.ts): add recursive sanitization for nested metadata

[HenryHengZJ]

Steps:

1. Create User A and User B as Pro accounts.
2. User A creates Workspace 1 + Default Workspace.
3. User A invite User B to Default Workspace and Workspace 1. Important!! must invite to both workspaces
4. User B verify that he can see the invited Default Workspace and Workspace 1 Important!! must be able to see both invited workspaces
5. Let User B stays in User A's Default Workspace, on home page.
6. Now, User A delete account
7. Since User B is still in User A's Default Workspace, now when try to switch to User A's Workspace 1, will see 404 and thats expected:

8. Now, User B want to switch back to his own organization, thats when error happens:

2026-03-20 15:09:30 [INFO]: ⬆️ POST /api/v1/workspace/switch?id=83369a32-14c9-4595-8dae-d159b22dc050
2026-03-20 15:09:31 [ERROR]: uncaughtException:  Unhandled Edge Case
Error: Unhandled Edge Case
    at Statement.<anonymous> (C:\Users\Henry\Codes\Flowise\packages\server\dist\enterprise\controllers\workspace.controller.js:138:27)
    at Statement.<anonymous> (C:\Users\Henry\Codes\Flowise\node_modules\.pnpm\connect-sqlite3@0.9.15\node_modules\connect-sqlite3\lib\connect-sqlite3.js:131:32)
    at Statement.replacement (C:\Users\Henry\Codes\Flowise\node_modules\.pnpm\sqlite3@5.1.7\node_modules\sqlite3\lib\trace.js:25:27)
    at Statement.replacement (C:\Users\Henry\Codes\Flowise\node_modules\.pnpm\sqlite3@5.1.7\node_modules\sqlite3\lib\trace.js:25:27)

This is the part:

req.session.save((err) => {
                if (err) throw new InternalFlowiseError(StatusCodes.BAD_REQUEST, GeneralErrorMessage.UNHANDLED_EDGE_CASE)
            })

And database is now locked and every other operations will fail

[yau-wd]

Continue in Jira.

[yau-wd]

Continue in Jira.

[yau-wd]

Error: Henry 5994#issuecomment-4099315437
Solution: fix(MainLayout/Header/Workspace): refresh workspace list when clicking dropdown

Cloud

user-a-workspaces	user-b-workspaces	user-b-in-user-a-workspace	user-a-delete-account	user-b-switch-back

Enterprise

owner-workspaces	invited-user-workspaces	owner-remove-user-from-workspace	invited-user-not-able-to-select-removed-workspace

[HenryHengZJ]

verified working correctly