@W-21785596 logging refactor (#314)

* reorganization of logger.ts and log levels

* adding logging

* minor change bump

* remove logs in test

* version bumped

* rename logInvocation to notifyInvocation

* added optional param to log error

* major version bump

* update log calls

* fix logging mistake

* using info instead of error

* adding log error into its field

* remove auth log

* changing log message field type to string

* consolidating to use LogEntry

* updated version

* conforming logging output

* added logLevel

* address comments

* change log levdels going up

* making notificationLevel and logLevel the sme set:

* address nit

Author: jarhun88

.vscode/launch.json

@@ -24,7 +24,7 @@
         "CONNECTED_APP_SECRET_VALUE": "${config:tableau.mcp.CONNECTED_APP_SECRET_VALUE}",
         "JWT_ADDITIONAL_PAYLOAD": "${config:tableau.mcp.JWT_ADDITIONAL_PAYLOAD}",
         "DATASOURCE_CREDENTIALS": "${config:tableau.mcp.DATASOURCE_CREDENTIALS}",
-        "DEFAULT_LOG_LEVEL": "${config:tableau.mcp.DEFAULT_LOG_LEVEL}",
+        "DEFAULT_NOTIFICATION_LEVEL": "${config:tableau.mcp.DEFAULT_NOTIFICATION_LEVEL}",
         "INCLUDE_TOOLS": "${config:tableau.mcp.INCLUDE_TOOLS}",
         "EXCLUDE_TOOLS": "${config:tableau.mcp.EXCLUDE_TOOLS}",
         "MAX_RESULT_LIMIT": "${config:tableau.mcp.MAX_RESULT_LIMIT}",

.vscode/settings.example.json

@@ -11,7 +11,7 @@
   "tableau.mcp.CONNECTED_APP_SECRET_VALUE": "",
   "tableau.mcp.JWT_ADDITIONAL_PAYLOAD": "",
   "tableau.mcp.DATASOURCE_CREDENTIALS": "",
-  "tableau.mcp.DEFAULT_LOG_LEVEL": "debug",
+  "tableau.mcp.DEFAULT_NOTIFICATION_LEVEL": "debug",
   "tableau.mcp.INCLUDE_TOOLS": "",
   "tableau.mcp.EXCLUDE_TOOLS": "",
   "tableau.mcp.DISABLE_LOG_MASKING": "false",

config.stdio.json

@@ -10,7 +10,7 @@
         "PAT_NAME": "",
         "PAT_VALUE": "",
         "DATASOURCE_CREDENTIALS": "",
-        "DEFAULT_LOG_LEVEL": "debug",
+        "DEFAULT_NOTIFICATION_LEVEL": "debug",
         "INCLUDE_TOOLS": "",
         "EXCLUDE_TOOLS": "",
         "MAX_RESULT_LIMIT": "",

docs/docs/configuration/mcp-config/env-vars.md

@@ -71,9 +71,10 @@ A comma-separated list of loggers to enable.
     `tableau-mcp` for tool calls.
   - `message`: The log message itself. This may be a string or a JSON object.
 
-- All notifications are written to the local log files regardless of the server's currently
-  configured minimum logging level, since that only applies to notifications sent to MCP clients.
-  See [`DEFAULT_LOG_LEVEL`](#default_log_level) for more information.
+- All notifications are written to the local log files regardless of the notification level, since
+  [`DEFAULT_NOTIFICATION_LEVEL`](#default_notification_level) only applies to notifications sent to
+  MCP clients. Server log output (stderr/console) is controlled separately by
+  [`LOG_LEVEL`](#log_level).
 - Secrets are masked by default in the log files. To reveal them for debugging purposes, set the
   [`DISABLE_LOG_MASKING`](#disable_log_masking) environment variable to `true`.
 
@@ -90,9 +91,9 @@ The directory server logs are written to when [`ENABLED_LOGGERS`](#enabled_logge
 
 <hr />
 
-## `DEFAULT_LOG_LEVEL`
+## `DEFAULT_NOTIFICATION_LEVEL`
 
-The default logging level of the server.
+The default minimum level for sending notifications to MCP clients.
 
 - Default: `debug`
 - Possible values:
@@ -105,13 +106,35 @@ The default logging level of the server.
   - `alert`
   - `emergency`
 
-This value determines the minimum log level in which to send notifications to MCP clients. That is,
-if the server's currently configured minimum logging level is `debug`, all log messages will be sent
-to MCP clients. If the level is set to `error`, only log messages with a level of `error` or higher
-will be sent. Note that MCP clients can
-[change the minimum log level](https://modelcontextprotocol.io/specification/2025-06-18/server/utilities/logging#setting-log-level)
+This value determines the minimum level at which to send notifications to MCP clients. That is,
+if set to `debug`, all notifications will be sent. If set to `error`, only notifications with a
+level of `error` or higher will be sent. Note that MCP clients can
+[change the minimum level](https://modelcontextprotocol.io/specification/2025-11-25/server/utilities/logging#setting-log-level)
 any time they want.
 
+Note: this variable was named DEFAULT_LOG_LEVEL until version 2.0.0
+
+<hr />
+
+## `LOG_LEVEL`
+
+The minimum severity level for server log output (stderr on stdio transport, console on http
+transport, and file logger).
+
+- Default: `info`
+- Possible values:
+  - `debug` — all log entries
+  - `info`
+  - `notice`
+  - `warning`
+  - `error`
+  - `critical`
+  - `alert`
+  - `emergency`
+
+Log entries with a level below the configured value are silently dropped. This is independent of
+[`DEFAULT_NOTIFICATION_LEVEL`](#default_notification_level), which controls MCP client notifications.
+
 <hr />
 
 ## `DISABLE_LOG_MASKING`
@@ -289,7 +312,7 @@ This variable is site overridable, see [Site Settings](site-settings.md).
 
 When `false` (the default) and using the Streamable HTTP transport, the MCP server will create and
 manage sessions as per the
-[Session Management](https://modelcontextprotocol.io/specification/2025-06-18/basic/transports#session-management)
+[Session Management](https://modelcontextprotocol.io/specification/2025-11-25/basic/transports#session-management)
 section of the MCP spec. The only state persisted in the session from one request to another is
 information about the client's identity, capabilities, and protocol version compatibility.
 

env.example.list

@@ -4,7 +4,7 @@ SITE_NAME=
 PAT_NAME=
 PAT_VALUE=
 DATASOURCE_CREDENTIALS=
-DEFAULT_LOG_LEVEL=debug
+DEFAULT_NOTIFICATION_LEVEL=debug
 INCLUDE_TOOLS=
 EXCLUDE_TOOLS=
 MAX_RESULT_LIMIT=

package-lock.json

@@ -1,7 +1,7 @@
 {
   "name": "@tableau/mcp-server",
   "description": "Helping agents see and understand data.",
-  "version": "1.18.9",
+  "version": "2.0.0",
   "repository": {
     "type": "git",
     "url": "git+https://github.com/tableau/tableau-mcp.git"

package.json

@@ -69,16 +69,16 @@ describe('Config', () => {
     expect(config.siteName).toBe('tc25');
   });
 
-  it('should set default log level to debug when not specified', () => {
+  it('should set default notification level to debug when not specified', () => {
     const config = new Config();
-    expect(config.defaultLogLevel).toBe('debug');
+    expect(config.defaultNotificationLevel).toBe('debug');
   });
 
-  it('should set custom log level when specified', () => {
-    vi.stubEnv('DEFAULT_LOG_LEVEL', 'info');
+  it('should set custom notification level when specified', () => {
+    vi.stubEnv('DEFAULT_NOTIFICATION_LEVEL', 'info');
 
     const config = new Config();
-    expect(config.defaultLogLevel).toBe('info');
+    expect(config.defaultNotificationLevel).toBe('info');
   });
 
   it('should set disableLogMasking to false by default', () => {

src/config.test.ts

@@ -2,7 +2,8 @@ import { CorsOptions } from 'cors';
 import { existsSync, readFileSync } from 'fs';
 import { join } from 'path';
 
-import { LoggerType, parseLoggerTypes } from './logging/logger.js';
+import { LoggerType, parseLoggerTypes, parseLogLevel } from './logging/logger.js';
+import type { LogLevel } from './logging/types.js';
 import { isTelemetryProvider, providerConfigSchema, TelemetryConfig } from './telemetry/types.js';
 import { isTransport, TransportName } from './transports.js';
 import { getDirname } from './utils/getDirname.js';
@@ -46,7 +47,8 @@ export class Config {
   uatKeyId: string;
   jwtAdditionalPayload: string;
   datasourceCredentials: string;
-  defaultLogLevel: string;
+  defaultNotificationLevel: string;
+  logLevel: LogLevel;
   disableLogMasking: boolean;
   maxRequestTimeoutMs: number;
   disableSessionManagement: boolean;
@@ -108,7 +110,8 @@ export class Config {
       UAT_KEY_ID: uatKeyId,
       JWT_ADDITIONAL_PAYLOAD: jwtAdditionalPayload,
       DATASOURCE_CREDENTIALS: datasourceCredentials,
-      DEFAULT_LOG_LEVEL: defaultLogLevel,
+      DEFAULT_NOTIFICATION_LEVEL: defaultNotificationLevel,
+      LOG_LEVEL: logLevel,
       DISABLE_LOG_MASKING: disableLogMasking,
       MAX_REQUEST_TIMEOUT_MS: maxRequestTimeoutMs,
       DISABLE_SESSION_MANAGEMENT: disableSessionManagement,
@@ -158,7 +161,8 @@ export class Config {
     });
     this.corsOriginConfig = getCorsOriginConfig(corsOriginConfig?.trim() ?? '');
     this.datasourceCredentials = datasourceCredentials ?? '';
-    this.defaultLogLevel = defaultLogLevel ?? 'debug';
+    this.defaultNotificationLevel = defaultNotificationLevel ?? 'debug';
+    this.logLevel = parseLogLevel(logLevel);
     this.disableLogMasking = disableLogMasking === 'true';
     this.disableSessionManagement = disableSessionManagement === 'true';
     this.loggers = parseLoggerTypes(logging);

src/config.ts

@@ -5,12 +5,11 @@ import dotenv from 'dotenv';
 import { getConfig } from './config.js';
 import { getTableauServerInfo } from './getTableauServerInfo.js';
 import { FileLogger, setFileLogger } from './logging/fileLogger.js';
-import { writeToStderr } from './logging/logger.js';
+import { log } from './logging/logger.js';
 import { isNotificationLevel, notifier, setNotificationLevel } from './logging/notification.js';
 import { RestApi } from './sdks/tableau/restApi.js';
 import { Server, serverName, serverVersion } from './server.js';
 import { startExpressServer } from './server/express.js';
-import { getExceptionMessage } from './utils/getExceptionMessage.js';
 
 async function startServer(): Promise<void> {
   dotenv.config();
@@ -24,11 +23,24 @@ async function startServer(): Promise<void> {
   // then we await this before declaring the server ready.
   // For stdio transport, there are no health checks, but we still await before serving.
   const serverInfoReady = getTableauServerInfo(config.server).catch((error) => {
-    writeToStderr(`Fatal error initializing server info: ${getExceptionMessage(error)}`);
+    log({
+      message: 'Fatal error initializing server info',
+      level: 'error',
+      logger: 'startup',
+      error,
+    });
     process.exit(1);
   });
 
-  const logLevel = isNotificationLevel(config.defaultLogLevel) ? config.defaultLogLevel : 'debug';
+  log({
+    message: `Config resolved: transport=${config.transport}, auth=${config.auth}, server=${config.server}`,
+    level: 'info',
+    logger: 'startup',
+  });
+
+  const notificationLevel = isNotificationLevel(config.defaultNotificationLevel)
+    ? config.defaultNotificationLevel
+    : 'debug';
   if (config.loggers.has('fileLogger')) {
     setFileLogger(new FileLogger({ logDirectory: config.fileLoggerDirectory }));
   }
@@ -44,42 +56,58 @@ async function startServer(): Promise<void> {
       const transport = new StdioServerTransport();
       await server.connect(transport);
 
-      setNotificationLevel(server, logLevel);
+      setNotificationLevel(server, notificationLevel);
       notifier.info(server, `${server.name} v${server.version} running on stdio`);
       break;
     }
     case 'http': {
-      const { url } = await startExpressServer({ basePath: serverName, config, logLevel });
+      const { url } = await startExpressServer({
+        basePath: serverName,
+        config,
+        logLevel: notificationLevel,
+      });
 
       // Port is now open. Wait for server info before logging the ready message.
       await serverInfoReady;
 
       if (!config.oauth.enabled) {
-        console.warn(
-          '⚠️ TRANSPORT is "http" but OAuth is disabled! Your MCP server may not be protected from unauthorized access! By having explicitly disabled OAuth by setting the DANGEROUSLY_DISABLE_OAUTH environment variable to "true", you accept any and all risks associated with this decision.',
-        );
+        log({
+          message:
+            '⚠️ TRANSPORT is "http" but OAuth is disabled! Your MCP server may not be protected from unauthorized access! By having explicitly disabled OAuth by setting the DANGEROUSLY_DISABLE_OAUTH environment variable to "true", you accept any and all risks associated with this decision.',
+          level: 'info',
+          logger: 'startup',
+        });
       }
 
-      // eslint-disable-next-line no-console -- console.log is intentional here since the transport is not stdio.
-      console.log(
-        `${serverName} v${serverVersion} ${config.disableSessionManagement ? 'stateless ' : ''}streamable HTTP server available at ${url}`,
-      );
+      log({
+        message: `${serverName} v${serverVersion} ${config.disableSessionManagement ? 'stateless ' : ''}streamable HTTP server available at ${url}`,
+        level: 'info',
+        logger: 'startup',
+      });
       break;
     }
   }
 
   if (config.disableLogMasking) {
-    writeToStderr('⚠️ Log masking is disabled!');
+    log({ message: '⚠️ Log masking is disabled!', level: 'info', logger: 'startup' });
   }
 
   if (config.breakGlassDisableGlobally) {
-    writeToStderr(
-      '⚠️ BREAK_GLASS_DISABLE_GLOBALLY is enabled! This means that the MCP server will be disabled globally and will return errors to all users!',
-    );
+    log({
+      message:
+        '⚠️ BREAK_GLASS_DISABLE_GLOBALLY is enabled! This means that the MCP server will be disabled globally and will return errors to all users!',
+      level: 'info',
+      logger: 'startup',
+    });
   }
 }
 
 startServer().catch((error) => {
-  writeToStderr(`Fatal error when starting the server: ${getExceptionMessage(error)}`);
+  log({
+    message: 'Fatal error when starting the server',
+    level: 'error',
+    logger: 'startup',
+    error,
+  });
   process.exit(1);
 });