1 files changed, 22 insertions, 0 deletions

diff --git a/app/controllers/register.go b/app/controllers/register.go
index 7c1a0f3..312daae 100644
--- a/app/controllers/register.go
+++ b/app/controllers/register.go
@@ -15,6 +15,21 @@ import (
         "github.com/go-webauthn/webauthn/protocol"
         "github.com/go-webauthn/webauthn/webauthn"
         "github.com/labstack/echo/v4"
+        "github.com/prometheus/client_golang/prometheus"
+        "github.com/prometheus/client_golang/prometheus/promauto"
+)
+
+var (
+        registerError = promauto.NewCounterVec(prometheus.CounterOpts{
+                Namespace: "ssh_proxy",
+                Name:      "register_error",
+                Help:      "Total number of errors during registration",
+        }, []string{"type"})
+        registerSuccess = promauto.NewCounter(prometheus.CounterOpts{
+                Namespace: "ssh_proxy",
+                Name:      "register_success",
+                Help:      "Total number of successful registrations",
+        })
 )
 
 type RegisterController[T app.AppSession] struct {
@@ -32,18 +47,22 @@ func (a *RegisterController[T]) validateRequest(ctx context.Context, u *models.U
 
         authSession, err := a.AuthSessions.GetByUserCode(ctx, code)
         if err != nil {
+                registerError.With(prometheus.Labels{"type": "no_user_for_code"}).Inc()
                 return nil, fmt.Errorf("No auth session exists")
         }
 
         if time.Now().After(authSession.Expires) {
+                registerError.With(prometheus.Labels{"type": "session_expired"}).Inc()
                 return nil, fmt.Errorf("Session is expired")
         }
 
         if !authSession.IsRegistration {
+                registerError.With(prometheus.Labels{"type": "incorrect_session_type"}).Inc()
                 return nil, fmt.Errorf("Session is not an invitation to register")
         }
 
         if authSession.UserId != u.Username {
+                registerError.With(prometheus.Labels{"type": "username_mismatch"}).Inc()
                 return nil, fmt.Errorf("Session not valid for this user")
         }
 
@@ -56,6 +75,7 @@ func (a *RegisterController[T]) HandleStart(c echo.Context) error {
         user, err := a.Users.Get(ctx, c.Param("username"))
         if err != nil {
                 a.Logger.Errorf("Error getting user: %s", err)
+                registerError.With(prometheus.Labels{"type": "no_user"}).Inc()
                 return c.NoContent(http.StatusNotFound)
         }
 
@@ -111,6 +131,7 @@ func (a *RegisterController[T]) HandleFinish(c echo.Context) error {
         // session in case of other errors
         if err := a.AuthSessions.Delete(ctx, authSession); err != nil {
                 a.Logger.Errorf("Error deleting auth session: %s", err)
+                registerError.With(prometheus.Labels{"type": "db_delete_session"}).Inc()
                 return c.NoContent(http.StatusInternalServerError)
         }
 
@@ -141,5 +162,6 @@ func (a *RegisterController[T]) HandleFinish(c echo.Context) error {
                 return c.NoContent(http.StatusInternalServerError)
         }
 
+        registerSuccess.Inc()
         return c.NoContent(http.StatusOK)
 }