PACS System 0.1.0
PACS DICOM system library
Loading...
Searching...
No Matches
atna_service_auditor.h
Go to the documentation of this file.
1
15#ifndef PACS_SECURITY_ATNA_SERVICE_AUDITOR_HPP
16#define PACS_SECURITY_ATNA_SERVICE_AUDITOR_HPP
17
18#include "atna_audit_logger.h"
19#include "atna_syslog_transport.h"
20
21#include <atomic>
22#include <memory>
23#include <string>
24
25namespace kcenon::pacs::security {
26
52class atna_service_auditor {
53public:
54 // =========================================================================
55 // Construction
56 // =========================================================================
57
64 atna_service_auditor(const syslog_transport_config& config,
65 std::string audit_source_id);
66
67 ~atna_service_auditor() = default;
68
69 // Non-copyable, movable
70 atna_service_auditor(const atna_service_auditor&) = delete;
71 atna_service_auditor& operator=(const atna_service_auditor&) = delete;
72 atna_service_auditor(atna_service_auditor&&) noexcept;
73 atna_service_auditor& operator=(atna_service_auditor&&) noexcept;
74
75 // =========================================================================
76 // DICOM Service Audit Methods
77 // =========================================================================
78
88 void audit_instance_stored(const std::string& source_ae,
89 const std::string& dest_ae,
90 const std::string& study_uid,
91 const std::string& patient_id,
92 bool success);
93
102 void audit_query(const std::string& calling_ae,
103 const std::string& called_ae,
104 const std::string& query_level,
105 bool success);
106
114 void audit_authentication(const std::string& user_id,
115 bool is_login,
116 bool success);
117
124 void audit_security_alert(const std::string& user_id,
125 const std::string& alert_description);
126
127 // =========================================================================
128 // Enable / Disable
129 // =========================================================================
130
139 void set_enabled(bool enabled) noexcept;
140
145 [[nodiscard]] bool is_enabled() const noexcept;
146
147 // =========================================================================
148 // Statistics
149 // =========================================================================
150
154 [[nodiscard]] size_t events_sent() const noexcept;
155
159 [[nodiscard]] size_t events_failed() const noexcept;
160
164 void reset_statistics() noexcept;
165
166 // =========================================================================
167 // Configuration Access
168 // =========================================================================
169
173 [[nodiscard]] const std::string& audit_source_id() const noexcept;
174
178 [[nodiscard]] const atna_syslog_transport& transport() const noexcept;
179
180private:
181 // =========================================================================
182 // Private Helpers
183 // =========================================================================
184
192 void send_audit(const atna_audit_message& message);
193
194 // =========================================================================
195 // Private Members
196 // =========================================================================
197
199 std::string audit_source_id_;
200
202 atna_syslog_transport transport_;
203
205 std::atomic<bool> enabled_{true};
206
208 std::atomic<size_t> events_sent_{0};
209 std::atomic<size_t> events_failed_{0};
210};
211
212} // namespace kcenon::pacs::security
213
214#endif // PACS_SECURITY_ATNA_SERVICE_AUDITOR_HPP
atna_audit_logger.h
IHE ATNA-compliant audit message generator (RFC 3881 XML format)
atna_syslog_transport.h
Syslog transport for ATNA audit messages (RFC 5424/5425/5426)
kcenon::pacs::security::atna_service_auditor
High-level facade for emitting ATNA audit events from DICOM services.
Definition atna_service_auditor.h:52
kcenon::pacs::security::atna_service_auditor::events_failed
size_t events_failed() const noexcept
Get the number of audit event send failures.
Definition atna_service_auditor.cpp:160
kcenon::pacs::security::atna_service_auditor::audit_authentication
void audit_authentication(const std::string &user_id, bool is_login, bool success)
Audit a User Authentication event.
Definition atna_service_auditor.cpp:101
kcenon::pacs::security::atna_service_auditor::set_enabled
void set_enabled(bool enabled) noexcept
Enable or disable audit event emission.
Definition atna_service_auditor.cpp:144
kcenon::pacs::security::atna_service_auditor::events_sent
size_t events_sent() const noexcept
Get the number of audit events successfully sent.
Definition atna_service_auditor.cpp:156
kcenon::pacs::security::atna_service_auditor::enabled_
std::atomic< bool > enabled_
Whether audit is enabled.
Definition atna_service_auditor.h:205
kcenon::pacs::security::atna_service_auditor::is_enabled
bool is_enabled() const noexcept
Check if audit event emission is enabled.
Definition atna_service_auditor.cpp:148
kcenon::pacs::security::atna_service_auditor::audit_source_id_
std::string audit_source_id_
Audit source identifier (e.g., "PACS_SYSTEM_01")
Definition atna_service_auditor.h:199
kcenon::pacs::security::atna_service_auditor::audit_query
void audit_query(const std::string &calling_ae, const std::string &called_ae, const std::string &query_level, bool success)
Audit a C-FIND (Query) event.
Definition atna_service_auditor.cpp:76
kcenon::pacs::security::atna_service_auditor::send_audit
void send_audit(const atna_audit_message &message)
Send an audit message via syslog transport.
Definition atna_service_auditor.cpp:185
kcenon::pacs::security::atna_service_auditor::transport
const atna_syslog_transport & transport() const noexcept
Get the underlying transport (for advanced use)
Definition atna_service_auditor.cpp:177
kcenon::pacs::security::atna_service_auditor::atna_service_auditor
atna_service_auditor(const syslog_transport_config &config, std::string audit_source_id)
Construct an auditor with syslog transport configuration.
Definition atna_service_auditor.cpp:14
kcenon::pacs::security::atna_service_auditor::events_failed_
std::atomic< size_t > events_failed_
Definition atna_service_auditor.h:209
kcenon::pacs::security::atna_service_auditor::audit_security_alert
void audit_security_alert(const std::string &user_id, const std::string &alert_description)
Audit a Security Alert event (e.g., access denied)
Definition atna_service_auditor.cpp:123
kcenon::pacs::security::atna_service_auditor::audit_source_id
const std::string & audit_source_id() const noexcept
Get the audit source identifier.
Definition atna_service_auditor.cpp:173
kcenon::pacs::security::atna_service_auditor::events_sent_
std::atomic< size_t > events_sent_
Statistics.
Definition atna_service_auditor.h:208
kcenon::pacs::security::atna_service_auditor::atna_service_auditor
atna_service_auditor(const atna_service_auditor &)=delete
kcenon::pacs::security::atna_service_auditor::~atna_service_auditor
~atna_service_auditor()=default
kcenon::pacs::security::atna_service_auditor::operator=
atna_service_auditor & operator=(const atna_service_auditor &)=delete
kcenon::pacs::security::atna_service_auditor::reset_statistics
void reset_statistics() noexcept
Reset statistics counters.
Definition atna_service_auditor.cpp:164
kcenon::pacs::security::atna_service_auditor::transport_
atna_syslog_transport transport_
Syslog transport for sending audit messages.
Definition atna_service_auditor.h:202
kcenon::pacs::security::atna_service_auditor::audit_instance_stored
void audit_instance_stored(const std::string &source_ae, const std::string &dest_ae, const std::string &study_uid, const std::string &patient_id, bool success)
Audit a C-STORE (DICOM Instances Transferred) event.
Definition atna_service_auditor.cpp:48
kcenon::pacs::security::atna_syslog_transport
Sends ATNA audit messages via Syslog protocol.
Definition atna_syslog_transport.h:164
kcenon::pacs::security::atna_audit_message
Complete RFC 3881 audit message.
Definition atna_audit_logger.h:235
kcenon::pacs::security::syslog_transport_config
Configuration for the Syslog transport.
Definition atna_syslog_transport.h:102