keyhog-core 0.5.4

keyhog-core — shared data model and detector specifications for the KeyHog secret scanner
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

//! Global registry for pluggable components (Sources, Verifiers).
//! This allows adding new features in a single file without modifying the core.

use crate::{DedupedMatch, Source, VerificationResult};
use parking_lot::RwLock;
use std::collections::HashMap;
use std::sync::{Arc, OnceLock};

/// A registry for input sources.
#[derive(Default)]
pub struct SourceRegistry {
    sources: RwLock<HashMap<String, Arc<dyn Source + Send + Sync>>>,
}

impl SourceRegistry {
    pub fn new() -> Self {
        Self::default()
    }

    pub fn register(&self, source: Arc<dyn Source + Send + Sync>) {
        let mut lock = self.sources.write();
        lock.insert(source.name().to_string(), source);
    }

    pub fn get(&self, name: &str) -> Option<Arc<dyn Source + Send + Sync>> {
        let lock = self.sources.read();
        lock.get(name).cloned()
    }
}

pub static SOURCE_REGISTRY: OnceLock<SourceRegistry> = OnceLock::new();

/// Return the global registry of scannable source backends.
pub fn get_source_registry() -> &'static SourceRegistry {
    SOURCE_REGISTRY.get_or_init(|| SourceRegistry {
        sources: RwLock::new(HashMap::new()),
    })
}

/// A trait for custom verification logic (OAuth2, multi-step, etc).
#[async_trait::async_trait]
pub trait CustomVerifier: Send + Sync {
    fn name(&self) -> &str;
    async fn verify(&self, group: &DedupedMatch) -> (VerificationResult, HashMap<String, String>);
}

/// A registry for custom verifiers.
#[derive(Default)]
pub struct VerifierRegistry {
    verifiers: RwLock<HashMap<String, Arc<dyn CustomVerifier>>>,
}

impl VerifierRegistry {
    pub fn new() -> Self {
        Self::default()
    }

    pub fn register(&self, verifier: Arc<dyn CustomVerifier>) {
        let mut lock = self.verifiers.write();
        lock.insert(verifier.name().to_string(), verifier);
    }

    pub fn get(&self, name: &str) -> Option<Arc<dyn CustomVerifier>> {
        let lock = self.verifiers.read();
        lock.get(name).cloned()
    }
}

pub static VERIFIER_REGISTRY: OnceLock<VerifierRegistry> = OnceLock::new();

/// Return the global registry of credential verifiers.
pub fn get_verifier_registry() -> &'static VerifierRegistry {
    VERIFIER_REGISTRY.get_or_init(|| VerifierRegistry {
        verifiers: RwLock::new(HashMap::new()),
    })
}