auth-framework 0.4.2

A comprehensive, production-ready authentication and authorization framework for Rust applications
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

//! RBAC Compliance Monitoring
//!
//! This module provides compliance monitoring and reporting
//! for RBAC systems according to various security standards.

use super::{AnalyticsError, ComplianceMetrics, TimeRange};
use serde::{Deserialize, Serialize};

/// Compliance monitoring configuration
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct ComplianceConfig {
    /// Enable SOX compliance monitoring
    pub sox_compliance: bool,

    /// Enable GDPR compliance monitoring
    pub gdpr_compliance: bool,

    /// Enable HIPAA compliance monitoring
    pub hipaa_compliance: bool,

    /// Custom compliance rules
    pub custom_rules: Vec<ComplianceRule>,
}

/// Custom compliance rule
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ComplianceRule {
    /// Rule identifier
    pub id: String,

    /// Rule name
    pub name: String,

    /// Rule description
    pub description: String,

    /// Rule type
    pub rule_type: ComplianceRuleType,

    /// Rule parameters
    pub parameters: std::collections::HashMap<String, String>,
}

/// Compliance rule types
#[derive(Debug, Clone, Serialize, Deserialize)]
pub enum ComplianceRuleType {
    PermissionSeparation,
    AccessReview,
    PrivilegeEscalation,
    DataAccess,
    Custom(String),
}

/// Compliance monitor
pub struct ComplianceMonitor {
    #[allow(dead_code)]
    config: ComplianceConfig,
}

impl ComplianceMonitor {
    /// Create new compliance monitor
    pub fn new(config: ComplianceConfig) -> Self {
        Self { config }
    }

    /// Check compliance status
    pub async fn check_compliance(
        &self,
        _time_range: TimeRange,
    ) -> Result<ComplianceMetrics, AnalyticsError> {
        // Implementation would check actual compliance
        Ok(ComplianceMetrics {
            role_assignment_compliance: 95.0,
            permission_scoping_compliance: 88.0,
            orphaned_permissions: 5,
            over_privileged_users: 12,
            unused_roles: 3,
            avg_access_revocation_time_hours: 2.5,
            policy_violations: 8,
            security_incidents: 1,
        })
    }
}