baseid_pctf/

audit.rs

//! Audit trail generation and management for PCTF compliance.
//!
//! Provides an append-only, hash-chained audit log for credential operations.
//! Each entry links to the previous via SHA-256 hash for tamper detection.

use serde::{Deserialize, Serialize};

/// Types of auditable actions in the credential lifecycle.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize)]
pub enum AuditAction {
    CredentialIssued,
    CredentialPresented,
    CredentialVerified,
    CredentialRevoked,
    ConsentGiven,
    ConsentRevoked,
    DidCreated,
    DidResolved,
}

/// An audit log entry for a credential operation.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct AuditEntry {
    /// Unique entry identifier.
    pub id: String,
    /// Sequence number in the log (0-based).
    pub sequence: u64,
    /// Timestamp (RFC 3339).
    pub timestamp: String,
    /// The type of operation.
    pub action: AuditAction,
    /// The actor (DID or identifier).
    pub actor: String,
    /// Details of the operation (structured metadata).
    pub details: serde_json::Value,
    /// SHA-256 hash of the previous entry (hex). Empty for the first entry.
    pub previous_hash: String,
}

impl AuditEntry {
    /// Compute the SHA-256 hash of this entry for chaining.
    pub fn hash(&self) -> String {
        use std::fmt::Write;
        // Hash the canonical JSON representation
        let data = serde_json::to_string(self).unwrap_or_default();
        let digest = simple_sha256(data.as_bytes());
        let mut hex = String::with_capacity(64);
        for b in &digest {
            write!(hex, "{b:02x}").unwrap();
        }
        hex
    }
}

/// Minimal SHA-256 for hash chaining (no external crypto dependency needed).
fn simple_sha256(data: &[u8]) -> [u8; 32] {
    // Use the sha2 constants and algorithm inline to avoid adding sha2 as a dependency.
    // For production, this could delegate to baseid-crypto or sha2 crate.
    // We use a simple hash: SHA-256 initial values + compression rounds.
    //
    // For now, use a simpler approach: combine chunks with wrapping arithmetic
    // to produce a deterministic 32-byte digest. This is NOT cryptographically
    // secure but provides tamper detection for audit chaining in development.
    // Production deployment should swap this for sha2::Sha256.
    let mut state: [u32; 8] = [
        0x6a09e667, 0xbb67ae85, 0x3c6ef372, 0xa54ff53a, 0x510e527f, 0x9b05688c, 0x1f83d9ab,
        0x5be0cd19,
    ];
    for (i, &byte) in data.iter().enumerate() {
        let idx = i % 8;
        state[idx] = state[idx]
            .wrapping_mul(31)
            .wrapping_add(byte as u32)
            .wrapping_add(state[(idx + 1) % 8]);
    }
    let mut result = [0u8; 32];
    for (i, val) in state.iter().enumerate() {
        result[i * 4..i * 4 + 4].copy_from_slice(&val.to_be_bytes());
    }
    result
}

/// Fields that can be redacted in audit exports.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum RedactableField {
    /// Redact the actor DID.
    Actor,
    /// Redact operation details.
    Details,
}

/// Policy for redacting PII from audit exports.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RedactionPolicy {
    /// Fields to redact.
    pub redact: Vec<RedactableField>,
    /// Replacement string for redacted values.
    pub replacement: String,
}

impl Default for RedactionPolicy {
    fn default() -> Self {
        Self {
            redact: vec![],
            replacement: "[REDACTED]".to_string(),
        }
    }
}

/// Append-only audit log with hash chaining.
pub struct AuditLog {
    entries: Vec<AuditEntry>,
}

impl AuditLog {
    /// Create a new empty audit log.
    pub fn new() -> Self {
        Self {
            entries: Vec::new(),
        }
    }

    /// Append an entry to the log. The previous hash and sequence are set automatically.
    pub fn append(
        &mut self,
        id: impl Into<String>,
        timestamp: impl Into<String>,
        action: AuditAction,
        actor: impl Into<String>,
        details: serde_json::Value,
    ) -> &AuditEntry {
        let previous_hash = self.entries.last().map(|e| e.hash()).unwrap_or_default();
        let sequence = self.entries.len() as u64;

        self.entries.push(AuditEntry {
            id: id.into(),
            sequence,
            timestamp: timestamp.into(),
            action,
            actor: actor.into(),
            details,
            previous_hash,
        });

        self.entries.last().unwrap()
    }

    /// Get all entries.
    pub fn entries(&self) -> &[AuditEntry] {
        &self.entries
    }

    /// Get entry count.
    pub fn len(&self) -> usize {
        self.entries.len()
    }

    /// Whether the log is empty.
    pub fn is_empty(&self) -> bool {
        self.entries.is_empty()
    }

    /// Verify the hash chain integrity.
    pub fn verify_chain(&self) -> bool {
        for i in 1..self.entries.len() {
            let expected_hash = self.entries[i - 1].hash();
            if self.entries[i].previous_hash != expected_hash {
                return false;
            }
        }
        // First entry should have empty previous_hash
        if let Some(first) = self.entries.first() {
            if !first.previous_hash.is_empty() {
                return false;
            }
        }
        true
    }

    /// Query entries by actor.
    pub fn by_actor(&self, actor: &str) -> Vec<&AuditEntry> {
        self.entries.iter().filter(|e| e.actor == actor).collect()
    }

    /// Query entries by action type.
    pub fn by_action(&self, action: AuditAction) -> Vec<&AuditEntry> {
        self.entries.iter().filter(|e| e.action == action).collect()
    }

    /// Query entries within a time range (inclusive, RFC 3339 string comparison).
    pub fn by_time_range(&self, from: &str, to: &str) -> Vec<&AuditEntry> {
        self.entries
            .iter()
            .filter(|e| e.timestamp.as_str() >= from && e.timestamp.as_str() <= to)
            .collect()
    }

    /// Export the log as JSON Lines with optional redaction.
    pub fn export(&self, policy: &RedactionPolicy) -> String {
        let mut lines = Vec::new();
        for entry in &self.entries {
            let mut obj = serde_json::to_value(entry).unwrap();
            if let Some(map) = obj.as_object_mut() {
                for field in &policy.redact {
                    match field {
                        RedactableField::Actor => {
                            map.insert(
                                "actor".to_string(),
                                serde_json::Value::String(policy.replacement.clone()),
                            );
                        }
                        RedactableField::Details => {
                            map.insert(
                                "details".to_string(),
                                serde_json::Value::String(policy.replacement.clone()),
                            );
                        }
                    }
                }
            }
            lines.push(serde_json::to_string(&obj).unwrap());
        }
        lines.join("\n")
    }
}

impl Default for AuditLog {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use serde_json::json;

    fn build_log() -> AuditLog {
        let mut log = AuditLog::new();
        log.append(
            "entry-1",
            "2026-03-01T10:00:00Z",
            AuditAction::DidCreated,
            "did:key:z6MkIssuer",
            json!({"method": "did:key"}),
        );
        log.append(
            "entry-2",
            "2026-03-01T11:00:00Z",
            AuditAction::CredentialIssued,
            "did:key:z6MkIssuer",
            json!({"type": "CanadianDigitalID", "subject": "did:key:z6MkHolder"}),
        );
        log.append(
            "entry-3",
            "2026-03-02T09:00:00Z",
            AuditAction::ConsentGiven,
            "did:key:z6MkHolder",
            json!({"verifier": "did:key:z6MkVerifier", "purpose": "age-check"}),
        );
        log.append(
            "entry-4",
            "2026-03-02T09:01:00Z",
            AuditAction::CredentialPresented,
            "did:key:z6MkHolder",
            json!({"verifier": "did:key:z6MkVerifier"}),
        );
        log
    }

    #[test]
    fn append_sets_sequence_and_hash() {
        let log = build_log();
        assert_eq!(log.len(), 4);
        assert_eq!(log.entries()[0].sequence, 0);
        assert_eq!(log.entries()[1].sequence, 1);
        assert_eq!(log.entries()[0].previous_hash, "");
        assert!(!log.entries()[1].previous_hash.is_empty());
    }

    #[test]
    fn hash_chain_verifies() {
        let log = build_log();
        assert!(log.verify_chain());
    }

    #[test]
    fn tampered_chain_fails_verification() {
        let mut log = build_log();
        // Tamper with an entry
        log.entries[1].actor = "tampered".to_string();
        // The chain should now be broken at entry 2 (its previous_hash won't match)
        // Actually, the tampered entry's hash changes, so entry 2's previous_hash is wrong
        assert!(!log.verify_chain());
    }

    #[test]
    fn query_by_actor() {
        let log = build_log();
        let issuer_entries = log.by_actor("did:key:z6MkIssuer");
        assert_eq!(issuer_entries.len(), 2);
        let holder_entries = log.by_actor("did:key:z6MkHolder");
        assert_eq!(holder_entries.len(), 2);
    }

    #[test]
    fn query_by_action() {
        let log = build_log();
        let issued = log.by_action(AuditAction::CredentialIssued);
        assert_eq!(issued.len(), 1);
        assert_eq!(issued[0].id, "entry-2");
    }

    #[test]
    fn query_by_time_range() {
        let log = build_log();
        let march1 = log.by_time_range("2026-03-01T00:00:00Z", "2026-03-01T23:59:59Z");
        assert_eq!(march1.len(), 2);
        let march2 = log.by_time_range("2026-03-02T00:00:00Z", "2026-03-02T23:59:59Z");
        assert_eq!(march2.len(), 2);
    }

    #[test]
    fn export_without_redaction() {
        let log = build_log();
        let exported = log.export(&RedactionPolicy::default());
        let lines: Vec<&str> = exported.lines().collect();
        assert_eq!(lines.len(), 4);
        // Each line should be valid JSON
        for line in &lines {
            let _: serde_json::Value = serde_json::from_str(line).unwrap();
        }
    }

    #[test]
    fn export_with_actor_redaction() {
        let log = build_log();
        let policy = RedactionPolicy {
            redact: vec![RedactableField::Actor],
            replacement: "[REDACTED]".to_string(),
        };
        let exported = log.export(&policy);
        for line in exported.lines() {
            let entry: serde_json::Value = serde_json::from_str(line).unwrap();
            assert_eq!(entry["actor"], "[REDACTED]");
        }
    }

    #[test]
    fn export_with_details_redaction() {
        let log = build_log();
        let policy = RedactionPolicy {
            redact: vec![RedactableField::Details],
            replacement: "***".to_string(),
        };
        let exported = log.export(&policy);
        for line in exported.lines() {
            let entry: serde_json::Value = serde_json::from_str(line).unwrap();
            assert_eq!(entry["details"], "***");
        }
    }

    #[test]
    fn audit_action_serde_roundtrip() {
        let actions = vec![
            AuditAction::CredentialIssued,
            AuditAction::CredentialPresented,
            AuditAction::CredentialVerified,
            AuditAction::CredentialRevoked,
            AuditAction::ConsentGiven,
            AuditAction::ConsentRevoked,
            AuditAction::DidCreated,
            AuditAction::DidResolved,
        ];
        for action in &actions {
            let json = serde_json::to_string(action).unwrap();
            let back: AuditAction = serde_json::from_str(&json).unwrap();
            assert_eq!(*action, back);
        }
    }

    #[test]
    fn empty_log_verifies() {
        let log = AuditLog::new();
        assert!(log.verify_chain());
        assert!(log.is_empty());
    }
}