Logging for backend engineers

Atharv SankpalAtharv Sankpal
2 min read

  1. Plan Before Implementing Logging

    • Define a clear strategy before adding logging to your application.

    • Identify key performance indicators (KPIs) to track for monitoring and debugging.

  2. Use Different Log Levels

    • Info: Normal operations (e.g., successful login).

    • Warning: Potential issues (e.g., slow payment processing).

    • Error: Serious problems (e.g., database failure).

    • Fatal: Critical system failures (e.g., out of memory).

    • Dynamically adjust verbosity levels when debugging to avoid excessive logging.

  3. Structured Logging

    • Instead of plain text logs, use structured formats like JSON or XML for better searchability and filtering.

  4. Add Context to Logs

    • Provide information about who did what and when.

    • Example:

        { 
    "event": "update_test", 
    "user_id": 11001, 
    "test_id": 30023, 
    "change": { "question_count": { "from": 120, "to": 90 } }, 
    "timestamp": "2025-03-04T10:20:00Z"
  }

    • Another example for a file upload failure:

        { 
    "event": "file_upload_failed", 
    "user": "user456", 
    "file": "report.pdf", 
    "error": "File too large", 
    "timestamp": "2025-03-04T10:20:00Z"
  }

  5. Log Sampling

    • Instead of logging every instance of non-critical activities (e.g., login attempts), use sampling.

    • Example: Log only every 2 out of 10 login attempts instead of logging all.

  6. Summarize Logs Instead of Logging Each Step

    • Instead of logging every individual step, consolidate logs into meaningful summaries.

    • Example of inefficient logging:

        User requested profile page  
  Fetched user details  
  Rendered profile page

    • Improved version:

        { 
    "event": "profile_page_load", 
    "user": "user789", 
    "status": "success", 
    "duration_ms": 120 
  }

    • If an error occurs while fetching user details, provide a clear error log with relevant details.

  7. Use Centralized Logging

    • Instead of keeping separate logs for each microservice, use a centralized logging system for better correlation and monitoring.

  8. Set Retention Policies

    • Define different retention periods for logs:

      • Error logs: Retain for 1 month.

      • Security logs: Retain for 6 months.

      • Older logs should be moved to cold storage after the retention period.

  9. Secure Log Transmission & Storage

    • Encrypt logs when transmitting and storing them to prevent unauthorized access.

  10. Avoid Logging Sensitive Data

  • Implement a cleanup process to prevent accidental logging of sensitive information.

  • Ensure personally identifiable information (PII) or credentials are masked or removed from logs.

0
Subscribe to my newsletter

Read articles from Atharv Sankpal directly inside your inbox. Subscribe to the newsletter, and don't miss out.

MonitoringAndLoggingloggingdebuggingsoftware developmentDevopsbackend

Written by

Atharv Sankpal
Atharv Sankpal

Welcome to my blog! My name is Atharv and I am a developer with a passion for web development with strong understanding of data structures and algorithms (DSA). Recently, I have also been exploring the exciting world of app development and would likely also explore artificial intelligence/machine learning (AI/ML). I am constantly learning and experimenting with new technologies, and I enjoy sharing my knowledge and experience through this blog. You can expect to find a variety of posts on topics such as web development best practices, DSA tips and tricks, and my journey as I dive deeper into the world of app development and hopefully AI/ML. Thank you for visiting and I hope you find my blog informative and engaging. I would love to hear from you, so please feel free to leave comments or reach out to me with any questions or feedback.