acton-service 0.23.0

Production-ready Rust backend framework with type-enforced API versioning
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49

//! Immutable audit logging with SIEM export
//!
//! Provides tamper-evident audit trails using BLAKE3 hash chaining,
//! with export to Syslog (RFC 5424) and optionally OpenTelemetry Logs.
//!
//! # Architecture
//!
//! An acton-reactive actor (`AuditAgent`) processes all audit events sequentially,
//! guaranteeing correct hash chain ordering. Middleware and auth integrations send
//! events via fire-and-forget message passing, so audit logging never blocks
//! request handling.
//!
//! # Feature Interactions
//!
//! - `audit` alone: In-memory audit chain + syslog export
//! - `audit` + `database`/`turso`/`surrealdb`: Persistent append-only storage
//! - `audit` + `observability`: OTLP log export
//! - `audit` + `auth`: Automatic auth event emission

pub mod agent;
pub mod alert;
pub mod alert_webhook;
pub mod archive;
pub mod chain;
pub mod config;
pub mod config_audit;
pub mod event;
pub(crate) mod failure_tracker;
pub mod logger;
pub mod middleware;
pub mod storage;
pub mod syslog;

#[cfg(feature = "observability")]
pub mod otlp;

pub use agent::AuditAgent;
pub use alert::{AuditAlertEvent, AuditAlertHook};
pub use alert_webhook::WebhookAlertHook;
pub use archive::archive_events;
pub use chain::{verify_chain, AuditChain, ChainVerificationError};
pub use config::{AlertConfig, AuditConfig, SyslogConfig};
pub use config_audit::{
    compute_config_fingerprint, drift_check_handler, redact_config, DriftCheckResult,
};
pub use event::{AuditEvent, AuditEventKind, AuditSeverity, AuditSource};
pub use logger::AuditLogger;
pub use middleware::{audit_layer, AuditRoute};
pub use storage::AuditStorage;