Database System 0.1.0
Advanced C++20 Database System with Multi-Backend Support
Loading...
Searching...
No Matches
secure_connection.h
Go to the documentation of this file.
1// BSD 3-Clause License
2// Copyright (c) 2025, 🍀☀🌕🌥 🌊
3// See the LICENSE file in the project root for full license information.
4
5#pragma once
6
7#include "../database_types.h"
8#include "../core/database_backend.h"
9#include <string>
10#include <vector>
11#include <memory>
12#include <unordered_map>
13#include <chrono>
14#include <mutex>
15#include <functional>
16#include <optional>
17
18namespace database::security
19{
24 enum class encryption_type {
25 none,
26 tls,
27 ssl,
28 aes256
29 };
30
35 enum class authentication_method {
36 password,
37 certificate,
38 kerberos,
39 oauth2,
40 jwt
41 };
42
47 struct security_credentials
48 {
49 std::string username;
50 std::string password_hash;
51 std::string certificate_path;
52 std::string private_key_path;
53 std::string ca_cert_path;
54 authentication_method auth_method = authentication_method::password;
55 encryption_type encryption = encryption_type::tls;
56
57 // OAuth2/JWT specific
58 std::string client_id;
59 std::string client_secret;
60 std::string token;
61 std::chrono::system_clock::time_point token_expiry;
62
63 // Additional security options
64 bool verify_certificate = true;
65 bool mutual_authentication = false;
66 std::string allowed_ciphers;
67 };
68
73 struct audit_log_entry
74 {
75 std::chrono::system_clock::time_point timestamp;
76 std::string user_id;
77 std::string session_id;
78 std::string operation;
79 std::string table_name;
80 std::string query_hash;
81 bool success;
82 std::string error_message;
83 std::string client_ip;
84 std::string user_agent;
85 };
86
99 class credential_manager
100 {
101 public:
105 credential_manager() = default;
106
107 // Credential management
108 bool store_credentials(const std::string& connection_id, const security_credentials& credentials);
109 std::optional<security_credentials> get_credentials(const std::string& connection_id) const;
110 bool remove_credentials(const std::string& connection_id);
111
112 // Encryption key management
113 void set_master_key(const std::string& key);
114 bool rotate_encryption_keys();
115
116 // Password utilities
117 std::string hash_password(const std::string& password) const;
118 bool verify_password(const std::string& password, const std::string& hash) const;
119
120 private:
121 std::string encrypt_data(const std::string& data) const;
122 std::string decrypt_data(const std::string& encrypted_data) const;
123
124 mutable std::mutex credentials_mutex_;
125 std::unordered_map<std::string, std::string> encrypted_credentials_;
126 std::string master_key_;
127 };
128
133 class connection_security
134 {
135 public:
136 connection_security(const security_credentials& credentials);
137
138 // Connection security
139 bool establish_secure_connection(const std::string& host, int port);
140 bool verify_server_certificate(const std::string& certificate) const;
141 bool perform_mutual_authentication();
142
143 // TLS/SSL configuration
144 bool configure_tls(const std::string& cert_file, const std::string& key_file, const std::string& ca_file);
145 bool set_cipher_suite(const std::string& ciphers);
146
147 // Connection string encryption
148 std::string encrypt_connection_string(const std::string& connection_string) const;
149 std::string decrypt_connection_string(const std::string& encrypted_string) const;
150
151 private:
152 security_credentials credentials_;
153 bool tls_configured_ = false;
154 };
155
160 class query_security
161 {
162 public:
163 // SQL injection prevention
164 static bool is_query_safe(const std::string& query);
165 static std::string sanitize_input(const std::string& input);
166 static std::string escape_sql_string(const std::string& value);
167
168 // Query pattern analysis
169 static bool detect_suspicious_patterns(const std::string& query);
170 static std::vector<std::string> extract_table_names(const std::string& query);
171 static bool validate_table_access(const std::string& table, const std::string& operation, const std::string& user);
172
173 // Prepared statement support
174 static std::string convert_to_prepared_statement(const std::string& query, const std::vector<core::database_value>& parameters);
175
176 private:
177 static const std::vector<std::string> dangerous_keywords_;
178 static const std::vector<std::string> injection_patterns_;
179 };
180
193 class access_control
194 {
195 public:
196 enum class permission {
197 select = 1,
198 insert = 2,
199 update = 4,
200 delete_record = 8,
201 create = 16,
202 drop = 32,
203 alter = 64,
204 admin = 128
205 };
206
207 struct role {
208 std::string name;
209 std::vector<permission> permissions;
210 std::vector<std::string> allowed_tables;
211 std::vector<std::string> denied_tables;
212 std::chrono::system_clock::time_point created_at;
213 bool active = true;
214 };
215
216 struct user_session {
217 std::string user_id;
218 std::string session_id;
219 std::vector<std::string> roles;
220 std::chrono::system_clock::time_point login_time;
221 std::chrono::system_clock::time_point last_activity;
222 std::string client_ip;
223 bool active = true;
224 };
225
229 access_control() = default;
230
231
232 // Role management
233 bool create_role(const role& new_role);
234 bool assign_role_to_user(const std::string& user_id, const std::string& role_name);
235 bool revoke_role_from_user(const std::string& user_id, const std::string& role_name);
236 std::vector<role> get_user_roles(const std::string& user_id) const;
237
238 // Permission checking
239 bool check_permission(const std::string& user_id, const std::string& table,
240 const std::string& operation) const;
241 bool check_table_access(const std::string& user_id, const std::string& table) const;
242
243 // Session management
244 std::string create_session(const std::string& user_id, const std::string& client_ip);
245 bool validate_session(const std::string& session_id) const;
246 bool terminate_session(const std::string& session_id);
247 void cleanup_expired_sessions();
248
249 private:
250 mutable std::mutex access_mutex_;
251 std::unordered_map<std::string, role> roles_;
252 std::unordered_map<std::string, std::vector<std::string>> user_roles_;
253 std::unordered_map<std::string, user_session> active_sessions_;
254 };
255
268 class audit_logger
269 {
270 public:
274 audit_logger() = default;
275
283 explicit audit_logger(const std::string& log_file_path);
284
285 // Audit logging
286 void log_database_access(const std::string& user_id, const std::string& session_id,
287 const std::string& operation, const std::string& table,
288 const std::string& query_hash, bool success,
289 const std::string& error_message = "");
290
291 void log_authentication_event(const std::string& user_id, const std::string& client_ip,
292 bool success, const std::string& method);
293
294 void log_authorization_failure(const std::string& user_id, const std::string& operation,
295 const std::string& table, const std::string& reason);
296
297 // Audit retrieval
298 std::vector<audit_log_entry> get_audit_logs(std::chrono::hours window) const;
299 std::vector<audit_log_entry> get_user_audit_logs(const std::string& user_id,
300 std::chrono::hours window) const;
301
302 // Security reporting
303 std::string generate_security_report(std::chrono::hours window) const;
304 std::vector<std::string> detect_suspicious_activity(std::chrono::hours window) const;
305
306 // Log management
307 void set_log_retention_period(std::chrono::hours retention);
308 void cleanup_old_logs();
309 bool export_logs_to_file(const std::string& filename) const;
310
311 private:
312 void persist_entry(const audit_log_entry& entry);
313
314 mutable std::mutex audit_mutex_;
315 std::vector<audit_log_entry> audit_logs_;
316 std::chrono::hours retention_period_{24 * 30}; // 30 days
317 std::string log_file_path_;
318 };
319
332 class security_monitor
333 {
334 public:
335 enum class threat_level {
336 low,
337 medium,
338 high,
339 critical
340 };
341
342 struct security_alert {
343 threat_level level;
344 std::string type;
345 std::string description;
346 std::string user_id;
347 std::string session_id;
348 std::chrono::system_clock::time_point timestamp;
349 };
350
354 security_monitor() = default;
355
356 // Threat detection
357 void analyze_query_patterns(const std::string& user_id, const std::string& query);
358 void detect_brute_force_attempts(const std::string& client_ip);
359 void monitor_privilege_escalation(const std::string& user_id, const std::string& operation);
360
361 // Alert management
362 void register_security_handler(std::function<void(const security_alert&)> handler);
363 std::vector<security_alert> get_recent_alerts(std::chrono::hours window) const;
364
365 // Security metrics
366 size_t get_failed_login_count(std::chrono::hours window) const;
367 size_t get_suspicious_query_count(std::chrono::hours window) const;
368 double calculate_security_score() const;
369
370 private:
371 void emit_security_alert(threat_level level, const std::string& type,
372 const std::string& description, const std::string& user_id = "");
373
374 mutable std::mutex monitor_mutex_;
375 std::vector<security_alert> security_alerts_;
376 std::vector<std::function<void(const security_alert&)>> alert_handlers_;
377
378 // Attack pattern tracking
379 std::unordered_map<std::string, size_t> failed_login_attempts_;
380 std::unordered_map<std::string, std::vector<std::string>> user_query_patterns_;
381 };
382
395 class encryption_manager
396 {
397 public:
401 encryption_manager() = default;
402
403 // Data encryption
404 std::string encrypt_field_data(const std::string& data, const std::string& field_name) const;
405 std::string decrypt_field_data(const std::string& encrypted_data, const std::string& field_name) const;
406
407 // Key management
408 bool generate_field_key(const std::string& field_name);
409 bool rotate_field_key(const std::string& field_name);
410 void set_master_encryption_key(const std::string& key);
411
412 // Column-level encryption
413 bool configure_encrypted_column(const std::string& table, const std::string& column,
414 encryption_type type);
415 bool is_column_encrypted(const std::string& table, const std::string& column) const;
416
417 private:
418 std::string derive_key(const std::string& field_name) const;
419
420 mutable std::mutex encryption_mutex_;
421 std::string master_key_;
422 std::unordered_map<std::string, std::string> field_keys_;
423 std::unordered_map<std::string, encryption_type> encrypted_columns_;
424 };
425
426 // Utility functions for permission checking
427 inline access_control::permission operator|(access_control::permission a, access_control::permission b) {
428 return static_cast<access_control::permission>(static_cast<int>(a) | static_cast<int>(b));
429 }
430
431 inline bool has_permission(access_control::permission permissions, access_control::permission check) {
432 return (static_cast<int>(permissions) & static_cast<int>(check)) != 0;
433 }
434
435
436} // namespace database::security
database::security::access_control
Role-based access control (RBAC) system.
Definition secure_connection.h:194
database::security::access_control::terminate_session
bool terminate_session(const std::string &session_id)
database::security::access_control::permission
permission
Definition secure_connection.h:196
database::security::access_control::permission::delete_record
@ delete_record
database::security::access_control::permission::admin
@ admin
database::security::access_control::permission::update
@ update
database::security::access_control::permission::alter
@ alter
database::security::access_control::permission::drop
@ drop
database::security::access_control::permission::create
@ create
database::security::access_control::permission::select
@ select
database::security::access_control::permission::insert
@ insert
database::security::access_control::check_table_access
bool check_table_access(const std::string &user_id, const std::string &table) const
database::security::access_control::access_control
access_control()=default
Default constructor - used by database_context.
database::security::access_control::create_role
bool create_role(const role &new_role)
database::security::access_control::roles_
std::unordered_map< std::string, role > roles_
Definition secure_connection.h:251
database::security::access_control::create_session
std::string create_session(const std::string &user_id, const std::string &client_ip)
database::security::access_control::revoke_role_from_user
bool revoke_role_from_user(const std::string &user_id, const std::string &role_name)
database::security::access_control::get_user_roles
std::vector< role > get_user_roles(const std::string &user_id) const
database::security::access_control::cleanup_expired_sessions
void cleanup_expired_sessions()
database::security::access_control::user_roles_
std::unordered_map< std::string, std::vector< std::string > > user_roles_
Definition secure_connection.h:252
database::security::access_control::check_permission
bool check_permission(const std::string &user_id, const std::string &table, const std::string &operation) const
database::security::access_control::assign_role_to_user
bool assign_role_to_user(const std::string &user_id, const std::string &role_name)
database::security::access_control::validate_session
bool validate_session(const std::string &session_id) const
database::security::access_control::active_sessions_
std::unordered_map< std::string, user_session > active_sessions_
Definition secure_connection.h:253
database::security::access_control::access_mutex_
std::mutex access_mutex_
Definition secure_connection.h:250
database::security::audit_logger
Security audit logging system.
Definition secure_connection.h:269
database::security::audit_logger::log_database_access
void log_database_access(const std::string &user_id, const std::string &session_id, const std::string &operation, const std::string &table, const std::string &query_hash, bool success, const std::string &error_message="")
Definition secure_connection.cpp:739
database::security::audit_logger::generate_security_report
std::string generate_security_report(std::chrono::hours window) const
Definition secure_connection.cpp:836
database::security::audit_logger::get_user_audit_logs
std::vector< audit_log_entry > get_user_audit_logs(const std::string &user_id, std::chrono::hours window) const
Definition secure_connection.cpp:817
database::security::audit_logger::set_log_retention_period
void set_log_retention_period(std::chrono::hours retention)
Definition secure_connection.cpp:898
database::security::audit_logger::audit_logger
audit_logger()=default
Default constructor - used by database_context.
database::security::audit_logger::audit_logs_
std::vector< audit_log_entry > audit_logs_
Definition secure_connection.h:315
database::security::audit_logger::detect_suspicious_activity
std::vector< std::string > detect_suspicious_activity(std::chrono::hours window) const
Definition secure_connection.cpp:868
database::security::audit_logger::retention_period_
std::chrono::hours retention_period_
Definition secure_connection.h:316
database::security::audit_logger::cleanup_old_logs
void cleanup_old_logs()
Definition secure_connection.cpp:904
database::security::audit_logger::persist_entry
void persist_entry(const audit_log_entry &entry)
Definition secure_connection.cpp:712
database::security::audit_logger::log_authentication_event
void log_authentication_event(const std::string &user_id, const std::string &client_ip, bool success, const std::string &method)
Definition secure_connection.cpp:762
database::security::audit_logger::export_logs_to_file
bool export_logs_to_file(const std::string &filename) const
Definition secure_connection.cpp:917
database::security::audit_logger::log_authorization_failure
void log_authorization_failure(const std::string &user_id, const std::string &operation, const std::string &table, const std::string &reason)
Definition secure_connection.cpp:780
database::security::audit_logger::get_audit_logs
std::vector< audit_log_entry > get_audit_logs(std::chrono::hours window) const
Definition secure_connection.cpp:798
database::security::audit_logger::log_file_path_
std::string log_file_path_
Definition secure_connection.h:317
database::security::audit_logger::audit_mutex_
std::mutex audit_mutex_
Definition secure_connection.h:314
database::security::connection_security
Handles secure database connections.
Definition secure_connection.h:134
database::security::connection_security::tls_configured_
bool tls_configured_
Definition secure_connection.h:153
database::security::connection_security::credentials_
security_credentials credentials_
Definition secure_connection.h:152
database::security::connection_security::decrypt_connection_string
std::string decrypt_connection_string(const std::string &encrypted_string) const
database::security::connection_security::encrypt_connection_string
std::string encrypt_connection_string(const std::string &connection_string) const
database::security::connection_security::set_cipher_suite
bool set_cipher_suite(const std::string &ciphers)
database::security::connection_security::connection_security
connection_security(const security_credentials &credentials)
database::security::connection_security::establish_secure_connection
bool establish_secure_connection(const std::string &host, int port)
database::security::connection_security::verify_server_certificate
bool verify_server_certificate(const std::string &certificate) const
database::security::connection_security::configure_tls
bool configure_tls(const std::string &cert_file, const std::string &key_file, const std::string &ca_file)
database::security::connection_security::perform_mutual_authentication
bool perform_mutual_authentication()
database::security::credential_manager
Manages encrypted credential storage and retrieval.
Definition secure_connection.h:100
database::security::credential_manager::rotate_encryption_keys
bool rotate_encryption_keys()
Definition secure_connection.cpp:98
database::security::credential_manager::get_credentials
std::optional< security_credentials > get_credentials(const std::string &connection_id) const
Definition secure_connection.cpp:51
database::security::credential_manager::encrypt_data
std::string encrypt_data(const std::string &data) const
Definition secure_connection.cpp:282
database::security::credential_manager::set_master_key
void set_master_key(const std::string &key)
Definition secure_connection.cpp:92
database::security::credential_manager::master_key_
std::string master_key_
Definition secure_connection.h:126
database::security::credential_manager::verify_password
bool verify_password(const std::string &password, const std::string &hash) const
Definition secure_connection.cpp:228
database::security::credential_manager::hash_password
std::string hash_password(const std::string &password) const
Definition secure_connection.cpp:175
database::security::credential_manager::remove_credentials
bool remove_credentials(const std::string &connection_id)
Definition secure_connection.cpp:86
database::security::credential_manager::encrypted_credentials_
std::unordered_map< std::string, std::string > encrypted_credentials_
Definition secure_connection.h:125
database::security::credential_manager::store_credentials
bool store_credentials(const std::string &connection_id, const security_credentials &credentials)
Definition secure_connection.cpp:30
database::security::credential_manager::decrypt_data
std::string decrypt_data(const std::string &encrypted_data) const
Definition secure_connection.cpp:352
database::security::credential_manager::credentials_mutex_
std::mutex credentials_mutex_
Definition secure_connection.h:124
database::security::credential_manager::credential_manager
credential_manager()=default
Default constructor - used by database_context.
database::security::encryption_manager
Data encryption and key management.
Definition secure_connection.h:396
database::security::encryption_manager::field_keys_
std::unordered_map< std::string, std::string > field_keys_
Definition secure_connection.h:422
database::security::encryption_manager::configure_encrypted_column
bool configure_encrypted_column(const std::string &table, const std::string &column, encryption_type type)
Definition secure_connection.cpp:642
database::security::encryption_manager::generate_field_key
bool generate_field_key(const std::string &field_name)
Definition secure_connection.cpp:579
database::security::encryption_manager::master_key_
std::string master_key_
Definition secure_connection.h:421
database::security::encryption_manager::is_column_encrypted
bool is_column_encrypted(const std::string &table, const std::string &column) const
Definition secure_connection.cpp:677
database::security::encryption_manager::encryption_manager
encryption_manager()=default
Default constructor - used by database_context.
database::security::encryption_manager::rotate_field_key
bool rotate_field_key(const std::string &field_name)
Definition secure_connection.cpp:605
database::security::encryption_manager::encrypted_columns_
std::unordered_map< std::string, encryption_type > encrypted_columns_
Definition secure_connection.h:423
database::security::encryption_manager::encryption_mutex_
std::mutex encryption_mutex_
Definition secure_connection.h:420
database::security::encryption_manager::derive_key
std::string derive_key(const std::string &field_name) const
Definition secure_connection.cpp:685
database::security::encryption_manager::set_master_encryption_key
void set_master_encryption_key(const std::string &key)
Definition secure_connection.cpp:636
database::security::encryption_manager::decrypt_field_data
std::string decrypt_field_data(const std::string &encrypted_data, const std::string &field_name) const
Definition secure_connection.cpp:499
database::security::encryption_manager::encrypt_field_data
std::string encrypt_field_data(const std::string &data, const std::string &field_name) const
Definition secure_connection.cpp:433
database::security::query_security
SQL injection prevention and query security.
Definition secure_connection.h:161
database::security::query_security::convert_to_prepared_statement
static std::string convert_to_prepared_statement(const std::string &query, const std::vector< core::database_value > &parameters)
database::security::query_security::escape_sql_string
static std::string escape_sql_string(const std::string &value)
database::security::query_security::sanitize_input
static std::string sanitize_input(const std::string &input)
database::security::query_security::injection_patterns_
static const std::vector< std::string > injection_patterns_
Definition secure_connection.h:178
database::security::query_security::is_query_safe
static bool is_query_safe(const std::string &query)
database::security::query_security::detect_suspicious_patterns
static bool detect_suspicious_patterns(const std::string &query)
database::security::query_security::extract_table_names
static std::vector< std::string > extract_table_names(const std::string &query)
database::security::query_security::dangerous_keywords_
static const std::vector< std::string > dangerous_keywords_
Definition secure_connection.h:177
database::security::query_security::validate_table_access
static bool validate_table_access(const std::string &table, const std::string &operation, const std::string &user)
database::security::security_monitor
Real-time security monitoring and alerting.
Definition secure_connection.h:333
database::security::security_monitor::get_suspicious_query_count
size_t get_suspicious_query_count(std::chrono::hours window) const
database::security::security_monitor::user_query_patterns_
std::unordered_map< std::string, std::vector< std::string > > user_query_patterns_
Definition secure_connection.h:380
database::security::security_monitor::get_failed_login_count
size_t get_failed_login_count(std::chrono::hours window) const
database::security::security_monitor::threat_level
threat_level
Definition secure_connection.h:335
database::security::security_monitor::threat_level::medium
@ medium
database::security::security_monitor::threat_level::low
@ low
database::security::security_monitor::threat_level::critical
@ critical
database::security::security_monitor::threat_level::high
@ high
database::security::security_monitor::security_alerts_
std::vector< security_alert > security_alerts_
Definition secure_connection.h:375
database::security::security_monitor::monitor_privilege_escalation
void monitor_privilege_escalation(const std::string &user_id, const std::string &operation)
database::security::security_monitor::security_monitor
security_monitor()=default
Default constructor - used by database_context.
database::security::security_monitor::calculate_security_score
double calculate_security_score() const
database::security::security_monitor::monitor_mutex_
std::mutex monitor_mutex_
Definition secure_connection.h:374
database::security::security_monitor::alert_handlers_
std::vector< std::function< void(const security_alert &)> > alert_handlers_
Definition secure_connection.h:376
database::security::security_monitor::failed_login_attempts_
std::unordered_map< std::string, size_t > failed_login_attempts_
Definition secure_connection.h:379
database::security::security_monitor::emit_security_alert
void emit_security_alert(threat_level level, const std::string &type, const std::string &description, const std::string &user_id="")
database::security::security_monitor::detect_brute_force_attempts
void detect_brute_force_attempts(const std::string &client_ip)
database::security::security_monitor::get_recent_alerts
std::vector< security_alert > get_recent_alerts(std::chrono::hours window) const
database::security::security_monitor::register_security_handler
void register_security_handler(std::function< void(const security_alert &)> handler)
database::security::security_monitor::analyze_query_patterns
void analyze_query_patterns(const std::string &user_id, const std::string &query)
database_backend.h
Abstract interface for database backends.
database_types.h
Defines the enumeration of supported database types.
database::security::operator|
access_control::permission operator|(access_control::permission a, access_control::permission b)
Definition secure_connection.h:427
database::security::has_permission
bool has_permission(access_control::permission permissions, access_control::permission check)
Definition secure_connection.h:431
database::security::authentication_method
authentication_method
Authentication methods supported.
Definition secure_connection.h:35
database::security::encryption_type
encryption_type
Types of encryption supported.
Definition secure_connection.h:24
database::security::access_control::role
Definition secure_connection.h:207
database::security::access_control::role::allowed_tables
std::vector< std::string > allowed_tables
Definition secure_connection.h:210
database::security::access_control::role::name
std::string name
Definition secure_connection.h:208
database::security::access_control::role::created_at
std::chrono::system_clock::time_point created_at
Definition secure_connection.h:212
database::security::access_control::role::active
bool active
Definition secure_connection.h:213
database::security::access_control::role::denied_tables
std::vector< std::string > denied_tables
Definition secure_connection.h:211
database::security::access_control::role::permissions
std::vector< permission > permissions
Definition secure_connection.h:209
database::security::access_control::user_session
Definition secure_connection.h:216
database::security::access_control::user_session::roles
std::vector< std::string > roles
Definition secure_connection.h:219
database::security::access_control::user_session::active
bool active
Definition secure_connection.h:223
database::security::access_control::user_session::last_activity
std::chrono::system_clock::time_point last_activity
Definition secure_connection.h:221
database::security::access_control::user_session::session_id
std::string session_id
Definition secure_connection.h:218
database::security::access_control::user_session::login_time
std::chrono::system_clock::time_point login_time
Definition secure_connection.h:220
database::security::access_control::user_session::client_ip
std::string client_ip
Definition secure_connection.h:222
database::security::access_control::user_session::user_id
std::string user_id
Definition secure_connection.h:217
database::security::audit_log_entry
Audit log entry for security events.
Definition secure_connection.h:74
database::security::audit_log_entry::operation
std::string operation
Definition secure_connection.h:78
database::security::audit_log_entry::table_name
std::string table_name
Definition secure_connection.h:79
database::security::audit_log_entry::error_message
std::string error_message
Definition secure_connection.h:82
database::security::audit_log_entry::user_agent
std::string user_agent
Definition secure_connection.h:84
database::security::audit_log_entry::user_id
std::string user_id
Definition secure_connection.h:76
database::security::audit_log_entry::query_hash
std::string query_hash
Definition secure_connection.h:80
database::security::audit_log_entry::client_ip
std::string client_ip
Definition secure_connection.h:83
database::security::audit_log_entry::timestamp
std::chrono::system_clock::time_point timestamp
Definition secure_connection.h:75
database::security::audit_log_entry::session_id
std::string session_id
Definition secure_connection.h:77
database::security::audit_log_entry::success
bool success
Definition secure_connection.h:81
database::security::security_credentials
Secure credential storage.
Definition secure_connection.h:48
database::security::security_credentials::certificate_path
std::string certificate_path
Definition secure_connection.h:51
database::security::security_credentials::ca_cert_path
std::string ca_cert_path
Definition secure_connection.h:53
database::security::security_credentials::mutual_authentication
bool mutual_authentication
Definition secure_connection.h:65
database::security::security_credentials::token
std::string token
Definition secure_connection.h:60
database::security::security_credentials::client_secret
std::string client_secret
Definition secure_connection.h:59
database::security::security_credentials::token_expiry
std::chrono::system_clock::time_point token_expiry
Definition secure_connection.h:61
database::security::security_credentials::private_key_path
std::string private_key_path
Definition secure_connection.h:52
database::security::security_credentials::password_hash
std::string password_hash
Definition secure_connection.h:50
database::security::security_credentials::auth_method
authentication_method auth_method
Definition secure_connection.h:54
database::security::security_credentials::allowed_ciphers
std::string allowed_ciphers
Definition secure_connection.h:66
database::security::security_credentials::encryption
encryption_type encryption
Definition secure_connection.h:55
database::security::security_credentials::verify_certificate
bool verify_certificate
Definition secure_connection.h:64
database::security::security_credentials::username
std::string username
Definition secure_connection.h:49
database::security::security_credentials::client_id
std::string client_id
Definition secure_connection.h:58
database::security::security_monitor::security_alert
Definition secure_connection.h:342
database::security::security_monitor::security_alert::session_id
std::string session_id
Definition secure_connection.h:347
database::security::security_monitor::security_alert::level
threat_level level
Definition secure_connection.h:343
database::security::security_monitor::security_alert::description
std::string description
Definition secure_connection.h:345
database::security::security_monitor::security_alert::user_id
std::string user_id
Definition secure_connection.h:346
database::security::security_monitor::security_alert::timestamp
std::chrono::system_clock::time_point timestamp
Definition secure_connection.h:348
database::security::security_monitor::security_alert::type
std::string type
Definition secure_connection.h:344