rs3gw 0.2.1

High-Performance AI/HPC Object Storage Gateway powered by scirs2-io
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128

//! Audit logger configuration and builder.

use super::forwarding::ForwardDestination;
use std::path::PathBuf;

/// Configuration for audit logger
#[derive(Debug, Clone)]
pub struct AuditConfig {
    /// Path to audit log file
    pub log_path: PathBuf,

    /// HMAC secret for chain integrity
    pub hmac_secret: Vec<u8>,

    /// Enable real-time security event detection
    pub enable_security_detection: bool,

    /// Maximum log file size before rotation (bytes)
    pub max_file_size: u64,

    /// Maximum number of rotated files to keep
    pub max_rotated_files: usize,

    /// Enable log forwarding
    pub enable_forwarding: bool,

    /// Log forwarding destinations
    pub forward_destinations: Vec<ForwardDestination>,

    /// Enable compression for rotated logs
    pub compress_rotated: bool,
}

impl Default for AuditConfig {
    fn default() -> Self {
        Self {
            log_path: PathBuf::from("./audit/audit.log"),
            hmac_secret: b"change-me-in-production".to_vec(),
            enable_security_detection: true,
            max_file_size: 100 * 1024 * 1024, // 100 MB
            max_rotated_files: 10,
            enable_forwarding: false,
            forward_destinations: Vec::new(),
            compress_rotated: true,
        }
    }
}

impl AuditConfig {
    pub fn builder() -> AuditConfigBuilder {
        AuditConfigBuilder::default()
    }
}

/// Builder for AuditConfig
#[derive(Debug, Default)]
pub struct AuditConfigBuilder {
    log_path: Option<PathBuf>,
    hmac_secret: Option<Vec<u8>>,
    enable_security_detection: Option<bool>,
    max_file_size: Option<u64>,
    max_rotated_files: Option<usize>,
    enable_forwarding: Option<bool>,
    forward_destinations: Vec<ForwardDestination>,
    compress_rotated: Option<bool>,
}

impl AuditConfigBuilder {
    pub fn log_path(mut self, path: PathBuf) -> Self {
        self.log_path = Some(path);
        self
    }

    pub fn hmac_secret(mut self, secret: Vec<u8>) -> Self {
        self.hmac_secret = Some(secret);
        self
    }

    pub fn enable_security_detection(mut self, enable: bool) -> Self {
        self.enable_security_detection = Some(enable);
        self
    }

    pub fn max_file_size(mut self, size: u64) -> Self {
        self.max_file_size = Some(size);
        self
    }

    pub fn max_rotated_files(mut self, count: usize) -> Self {
        self.max_rotated_files = Some(count);
        self
    }

    pub fn enable_forwarding(mut self, enable: bool) -> Self {
        self.enable_forwarding = Some(enable);
        self
    }

    pub fn add_forward_destination(mut self, dest: ForwardDestination) -> Self {
        self.forward_destinations.push(dest);
        self
    }

    pub fn compress_rotated(mut self, compress: bool) -> Self {
        self.compress_rotated = Some(compress);
        self
    }

    pub fn build(self) -> AuditConfig {
        let default = AuditConfig::default();
        AuditConfig {
            log_path: self.log_path.unwrap_or(default.log_path),
            hmac_secret: self.hmac_secret.unwrap_or(default.hmac_secret),
            enable_security_detection: self
                .enable_security_detection
                .unwrap_or(default.enable_security_detection),
            max_file_size: self.max_file_size.unwrap_or(default.max_file_size),
            max_rotated_files: self.max_rotated_files.unwrap_or(default.max_rotated_files),
            enable_forwarding: self.enable_forwarding.unwrap_or(default.enable_forwarding),
            forward_destinations: if self.forward_destinations.is_empty() {
                default.forward_destinations
            } else {
                self.forward_destinations
            },
            compress_rotated: self.compress_rotated.unwrap_or(default.compress_rotated),
        }
    }
}