search

aws-amplify / amplify-flutter

A declarative library with an easy-to-use interface for building Flutter applications on AWS.
https://docs.amplify.aws
Apache License 2.0
1.31k stars 242 forks source link

Add remote logging #1558

Open Jordan-Nelson opened 2 years ago

Jordan-Nelson commented 2 years ago

This issue is being split of off from https://github.com/aws-amplify/amplify-flutter/issues/1208.

Orinal Request

Remote logging: send logs and metrics from mobile app to cloud for debugging and monitoring purpose, possibly cloudwatch as the solution.

Questions & Answers

Do you mean you need an API to allow sending any type of logs to CloudWatch any time and any where in your App?

Yes, I am more referring to the forntend log and metric in our mobile app, such as clickstream, response time, etc.

The Amplify library functionalities are implemented on top of AWS services, such as AppSync, Cognito, Pinpoint etc, each of them should have service level logging mechanism.

We are using the amplify logging already, but we would like to collect frontend log and metric as well

For metrics (if you meant use cases such as collecting data of how your App users use the App), the Analytics category should be able to help.

We are using analytic already, but we can not build alarm on those metrics. Additionally, analytic does not collect runtime log

dgagnon commented 11 months ago

Hi Guys, I thought I would add this DefCon presentation here: https://www.youtube.com/watch?app=desktop&si=H-Gg_EvgoP0sOncU&v=3T2Al3jdY38&feature=youtu.be

It goes in great details in explaining what vulnerabilities are open by allowing logging from untrusted sources.

Edit: The official OWASP link has good textual information, https://owasp.org/www-community/attacks/Log_Injection

ibelz commented 11 months ago

Hi, as I already wrote in July (see https://github.com/aws-amplify/amplify-flutter/issues/3400) I need Cloudwatch in my project.

Do you have any timeline when the Cloudwatch support will be released for Flutter?

Thanks

abdallahshaban557 commented 10 months ago

Hi @dgagnon - thank you for shaing that presentation - it was very insightful (and fun) to watch! We will take that into account to try to see if there are ways to validate the source sending logs.

Hi @ibelz - we are finalizing some design decisions, we will provide an update on this issue when we have a timeline locked down.

LightM2 commented 6 months ago

@abdallahshaban557 Do you have any new information on Cloudwatch for Flutter?

sagnik-sanyal commented 6 months ago

Hi @abdallahshaban557 any updates on cloud watch flutter plugin ?

abdallahshaban557 commented 6 months ago

Hello @LightM2 and @sagnik-sanyal - I am no longer part of the Amplify team, but @NikaHsn and @ukhan-amazon can help out with future questions!

CarlosEspinozaMaruri commented 4 months ago

Hello @NikaHsn, any updates on Cloudwatch for Flutter?