mockforge-core 0.3.114

Shared logic for MockForge - routing, validation, latency, proxy
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44

//! Global privileged access manager
//!
//! Similar to the SIEM emitter and access review service, this provides a global singleton
//! for the privileged access manager that can be accessed throughout the application.

use crate::security::privileged_access::PrivilegedAccessManager;
use once_cell::sync::Lazy;
use std::sync::Arc;
use tokio::sync::RwLock;
use tracing::debug;

#[allow(clippy::type_complexity)]
static GLOBAL_PRIVILEGED_ACCESS_MANAGER: Lazy<
    Arc<RwLock<Option<Arc<RwLock<PrivilegedAccessManager>>>>>,
> = Lazy::new(|| Arc::new(RwLock::new(None)));

/// Initialize the global privileged access manager
///
/// This should be called once during application startup.
/// Takes an Arc<RwLock<PrivilegedAccessManager>> to share the same instance.
pub async fn init_global_privileged_access_manager(
    manager: Arc<RwLock<PrivilegedAccessManager>>,
) -> Result<(), crate::Error> {
    let mut global = GLOBAL_PRIVILEGED_ACCESS_MANAGER.write().await;
    if global.is_some() {
        return Err(crate::Error::already_initialized("Global privileged access manager"));
    }
    *global = Some(manager);
    debug!("Global privileged access manager initialized");
    Ok(())
}

/// Get the global privileged access manager
///
/// Returns None if the manager has not been initialized.
pub async fn get_global_privileged_access_manager() -> Option<Arc<RwLock<PrivilegedAccessManager>>>
{
    GLOBAL_PRIVILEGED_ACCESS_MANAGER.read().await.clone()
}

/// Check if the global privileged access manager is initialized
pub async fn is_privileged_access_manager_initialized() -> bool {
    GLOBAL_PRIVILEGED_ACCESS_MANAGER.read().await.is_some()
}