Storing logs on thesql database

loggingMySQL

I was looking for more information on logging user actions on the application (web based project). I did found this question, but it's a more conceptual answer, wich helped me getting started with this.

But I don't know for sure how to build this structure for the log system and also how to log the information. Everywhere people say "log everything", but that's quite embrancing.

Note: I'm already using HeatMap to gather user navigation information and GoogleAnalytics for other type of information.

Currently I have this table on the database e.x.: ap_log:

id | user_id | action | area | description | old_value | new_value | date

And I use it like this:

action: Number of the action 1: Insert | 2: Update | 3: Delete | 4: other;
area: Area of the action, ex.: "account" for login, "adress" when adding a new address, etc..;
description: A short description of the action. "User login", "Add new address";
old/new_value: Serialized object with the data changed. Ex.: When user update the address, I save the old values on the old_value column and the new address information on new_value;
date: Date time of the log Y-m-d h:m:s

The columns action, area and description they are strings that is inserted on the database. For example, I call a function like this:

// insertLog(user_id, action, area, description );
insertLog($userId, 1, 'address', 'Add new address');
insertLog($userId, 4, 'account', 'User login');
insertLog($userId, 4, 'account', 'Email sent to recover password');
insertLog($userId, 2, 'account', 'User reset password');

With this, I'm only loging information that is stored in the database, such as user profile, purchases, address, list management, etc.. Is this database table ok and enought for this purpose? Is there a way to improve this? Any advice is very welcome.

Best Answer

That table layout looks very similar to what I've used in the past for a few different projects, and I think it should be sufficient. At this point, the biggest thing you will probably run into is figuring out the right amount of logging (ie. yes you want to log user logins, but you also probably want to log failed login attempts, and depending on the type of information visible to admins/moderators/etc you may want audit trail logs for simply accessing/reading certain types of information as well).

Related Solutions

MySQL PHP – Datetime vs Timestamp in MySQL and PHP

MySQL timestamps:

Are stored in UTC

They are converted to UTC on storage and converted back to your time zone on retrieval. If you change time zone settings, the retrieved values also change.
Can be automatically initialised and updated

You can set their default value and / or auto update value to CURRENT_TIMESTAMP
Have a range of 1970-01-01 00:00:01 UTC to 2038-01-19 03:14:07 UTC

Whereas MySQL datetime:

What you store is what you get ™.
Have a range of 1000-01-01 00:00:00 to 9999-12-31 23:59:59

Values outside the range may work - but only values within the range are guaranteed to work.
You can store dates where day or month is zero.

This is the MySQL way of storing birthdays! You can't do that with a TIMESTAMP, with the only exception being the zero value of 0000-00-00.
You can store invalid dates, if you need them, in ALLOW_INVALID_DATES mode.
You can set default value to NOW() in some instances, but the preferable and more natural way of automatically initialised and updated dates is TIMESTAMP.

And of course there are also DATE and TIME, which work just like DATETIME, but of course DATE doesn't care for time and TIME doesn't care for date. All four data types work perfectly with the wide array of date and time functions, but when you are mixing data types you should be aware of conversion effects.

Now, to your question: You should use DATETIME everywhere. Not for technical reasons, but since you are still unclear on how MySQL works, DATETIME is the simpler choice. This will mean that you will have to calculate the current timestamp in PHP before storing, that's as easy as:

$mysqldate = date("Y-m-d H:i:s");

PHP's date function works like:

string date ( string $format [, int $timestamp = time() ] )

The "Y-m-d H:i:s" format is the one compatible with MySQL and by leaving the second parameter empty, date() calls time() to get the current UNIX timestamp.

Using a TIMESTAMP instead of a DATETIME has the added value of MySQL taking over the responsibility of deciding on the current timestamp, and you can skip the field when you are inserting / updating. But since you are already sending a query, and the code to get the current timestamp in PHP is minimal, you can safely go with DATETIME for everything.

As for the actual code to store the PHP timestamp into the database, you should look at PHP Data Objects, and if you are still unclear, ask on StackOverflow instead. But there are almost 1.5k related questions already, make sure you go through them before asking. Just a hint, prepared statements is how the cool kids do it.

MySQL – Unique and Primary Keys in Databases: Best Practices

Usernames have to be unique, they identify a user. Passwords do not. Passwords have to be kept secret anyway. You can't tell a user "Hey, choose another password; another user is using this one already". If he is a hacker, he will love that!

You should not store the passwords anyway. Instead store their hashes. See Salted Password Hashing - Doing it Right.

If you have two columns that have to be unique, either their combination must be unique or they must be unique independently.

An example of a unique combination would be monthly data indentified by year and month stored in two separate columns. Here it would make sense to use these two columns as primary key (PK). If you already have another PK, create one unique index or unique constraint on these two columns. See also When should I use a unique constraint instead of a unique index?

An example of two independently unique columns would be a username and a nickname. The username is used for logins; the nickname is displayed to other users. Here I would use the username as PK and create a unique index on the nickname.

The PK is the primary means of identifying a record. The PK is also referenced in foreign key constraints when defining 1 to n or 1 to 1 relationships between tables. It is a good practice not to choose a column whose value can change over time. If users were allowed to change their username, as an example, choose an auto-increment column as PK and create a unique index on the username.

Best Answer

Related Solutions

MySQL PHP – Datetime vs Timestamp in MySQL and PHP

MySQL – Unique and Primary Keys in Databases: Best Practices

Related Topic