API Reference

Classes

AuditAdminContributor

source

Admin panel contributor for audit log management.

Registered via lexigram.admin.contributors entry point. Provides audit log search, filter, export, and verification status. Dependencies are resolved from the container in on_admin_boot.

__init__

def __init__() -> None

source

on_admin_boot

async def on_admin_boot(container: ContainerResolverProtocol) -> None

source

Resolve audit dependencies from the DI container.

Parameters

Parameter	Type	Description
`container`	ContainerResolverProtocol	The DI container resolver.

get_menu_items

async def get_menu_items() -> list[dict[str, str]]

source

Return admin menu items for the audit module.

search

async def search(query: AuditQuery) -> list[AuditEntry]

source

Search audit entries by query filters.

Parameters

Parameter	Type	Description
`query`	AuditQuery	Filter criteria.

Returns

Type	Description
list[AuditEntry]	Matching audit entries, newest-first.

export

async def export(
    query: AuditQuery,
    format: str = 'json'
) -> bytes

source

Export filtered audit entries as JSON or CSV.

Parameters

Parameter	Type	Description
`query`	AuditQuery	Filter criteria.
`format`	str	``"json"`` or ``"csv"``.

Returns

Type	Description
bytes	Encoded bytes of the export.

verification_status

async def verification_status() -> dict[str, Any]

source

Return latest verification results.

Returns

Type	Description
dict[str, Any]	Dict with ``verified`` bool and ``mismatches`` count.

---

AuditBundleProvider

source

Composite provider that wires the full Lexigram audit stack.

Composes AuditCoreProvider, AuditRetentionProvider, AuditVerifierProvider, and optionally AuditAdminProvider.

Parameters

Parameter	Type	Description
`config`		Audit configuration. Defaults to AuditConfig() if not provided.
`enable_admin`		Whether to register the admin panel contributor.

__init__

def __init__(
    config: AuditConfig | None = None,
    enable_admin: bool = True
) -> None

source

register

async def register(container: ContainerRegistrarProtocol) -> None

source

Delegate registration to all sub-providers.

boot

async def boot(container: BootContainerProtocol) -> None

source

Delegate boot to all sub-providers.

shutdown

async def shutdown() -> None

source

Shutdown in reverse registration order.

---

AuditConfig

source

Configuration for the audit subsystem.

Attributes: store_backend: Backend type — "sql" or "memory". table_name: SQL table name for the unified audit store. hmac_key: HMAC key for checksum computation (bytes). retention_policy: Retention rules; defaults to 365 days. verification_schedule: Cron expression for scheduled verification. verification_batch_size: Entries to verify per verification run. enable_admin: Whether to register the AuditAdminContributor.

---

AuditLogger

source

Core audit logger implementing AuditLoggerProtocol.

Fire-tolerant: log() catches all exceptions and emits a warning. Audit failure must never block the operation that triggered it.

Parameters

Parameter	Type	Description
`store`		Underlying storage backend (AuditStoreProtocol).
`retention`		Optional retention policy for computing entry expiry.

__init__

def __init__(
    store: AuditStoreProtocol,
    retention: RetentionPolicyProtocol | None = None
) -> None

source

log

async def log(entry: AuditEntry) -> None

source

Record an audit entry. Never raises.

Parameters

Parameter	Type	Description
`entry`	AuditEntry	The audit event to persist.

query

async def query(query: AuditQuery) -> list[AuditEntry]

source

Query entries matching filters. Returns empty list on error.

Parameters

Parameter	Type	Description
`query`	AuditQuery	Filter criteria encapsulated in an AuditQuery object.

Returns

Type	Description
list[AuditEntry]	List of matching entries, newest-first.

---

AuditModule

source

Lexigram audit module.

Registers the full audit stack including store, logger, retention, verification, and optional admin panel contributor.

Usage

app = Application()
app.use(AuditModule.configure(
    hmac_key=b"secret",
    retention_days=365,
))

app = Application()
app.use(AuditModule.configure(
    hmac_key=b"secret",
    retention_days=365,
))

configure

def configure(
    cls,
    *,
    hmac_key: bytes | None = None,
    store_backend: str = 'sql',
    table_name: str = 'audit_log',
    retention_days: int = 365,
    enable_admin: bool = True,
    **overrides: Any
) -> DynamicModule

source

Configure the audit module.

Parameters

Parameter	Type	Description
`hmac_key`	bytes | None	HMAC key for checksum computation.
`store_backend`	str	``"sql"`` or ``"memory"``.
`table_name`	str	SQL table name.
`retention_days`	int	Default retention in days.
`enable_admin`	bool	Register admin contributor. **overrides: Additional AuditConfig fields.

Returns

Type	Description
DynamicModule	DynamicModule ready for ``app.use()``.

---

AuditPurger

source

Purges expired audit entries and emits a meta-audit log on each run.

Parameters

Parameter	Type	Description
`store`		The underlying store to purge entries from.
`retention`		Retention policy to evaluate entries.
`audit_logger`		Optional audit logger for meta-audit events.

__init__

def __init__(
    store: AuditStoreProtocol,
    retention: RetentionPolicyProtocol,
    audit_logger: AuditLoggerProtocol | None = None
) -> None

source

purge_expired

async def purge_expired() -> int

source

Evaluate all entries and purge those past expiry.

Returns

Type	Description
int	Number of entries purged.

---

AuditVerifier

source

Tamper detection via HMAC-SHA256 checksum verification.

Implements AuditVerifierProtocol. Checksum verification is only meaningful when entries are stored with checksums (i.e. the SQL backend with an HMAC key configured). The in-memory store does not persist checksums, so verify_recent and verify_entry are no-ops in that case.

Parameters

Parameter	Type	Description
`store`		Audit store backend (any AuditStoreProtocol implementation).
`config`		Audit configuration containing the HMAC key.

__init__

def __init__(
    store: AuditStoreProtocol,
    config: AuditConfig
) -> None

source

verify_recent

async def verify_recent(
    *,
    limit: int = 100
) -> list[AuditMismatch]

source

Verify checksums for the most recent entries.

Because AuditEntry does not carry a stored checksum field, full tamper-detection is only possible when the SQL backend is in use and checksums are persisted in the DB column. Without stored checksums this method logs the entries and returns an empty list (no mismatches detected / not applicable).

Parameters

Parameter	Type	Description
`limit`	int	Number of recent entries to verify.

Returns

Type	Description
list[AuditMismatch]	List of AuditMismatch objects (empty = all verified or not applicable).

verify_entry

async def verify_entry(entry_id: str) -> bool

source

Verify checksum for a single entry.

This is a no-op at the protocol level because AuditEntry does not carry a stored checksum field. When using the SQL backend with HMAC enabled, verification should be performed directly against the DB row rather than through the store protocol.

Parameters

Parameter	Type	Description
`entry_id`	str	ID of the entry to verify.

Returns

Type	Description
bool	True (checksum verification not applicable at protocol level).

---

InMemoryAuditStore

source

In-memory audit store implementing AuditStoreProtocol.

Uses a bounded deque. Thread-safe for single-event-loop async usage.

Parameters

Parameter	Type	Description
`max_entries`		Maximum capacity. Oldest entries dropped when full.

__init__

def __init__(max_entries: int = 10000) -> None

source

append

async def append(entry: AuditEntry) -> None

source

Persist a single audit entry.

query

async def query(query: AuditQuery) -> list[AuditEntry]

source

Retrieve entries matching filters, newest-first.

count

async def count(query: AuditQuery) -> int

source

Return count of entries matching filters.

clear

def clear() -> None

source

Clear all entries (test helper).

---

PolicyBasedRetention

source

Evaluates retention policies to determine entry expiry.

Implements RetentionPolicyProtocol.

Parameters

Parameter	Type	Description
`policy`		Retention policy configuration.

__init__

def __init__(policy: RetentionPolicy) -> None

source

evaluate

async def evaluate(entry: AuditEntry) -> RetentionDecision

source

Determine retention decision based on severity and source.

Parameters

Parameter	Type	Description
`entry`	AuditEntry	The audit entry to evaluate.

Returns

Type	Description
RetentionDecision	RetentionDecision.RETAIN if indefinite, RETAIN_UNTIL otherwise.

get_expiry

async def get_expiry(entry: AuditEntry) -> datetime | None

source

Return expiry datetime for an entry, or None for indefinite retention.

Parameters

Parameter	Type	Description
`entry`	AuditEntry	The audit entry to evaluate.

Returns

Type	Description
datetime | None	UTC expiry datetime, or None.

---

Functions

compute_audit_checksum

compute_audit_checksum

def compute_audit_checksum(
    entry_data: dict[str, Any],
    key: bytes
) -> str

source

Compute HMAC-SHA256 hex digest for audit entry data.

Parameters

Parameter	Type	Description
`entry_data`	dict[str, Any]	Dictionary of audit entry fields.
`key`	bytes	HMAC secret key bytes.

Returns

Type	Description
str	Hex-encoded HMAC-SHA256 digest.

---

verify_audit_checksum

verify_audit_checksum

def verify_audit_checksum(
    entry_data: dict[str, Any],
    key: bytes,
    expected: str
) -> bool

source

Verify expected checksum matches computed checksum using constant-time comparison.

Parameters

Parameter	Type	Description
`entry_data`	dict[str, Any]	Dictionary of audit entry fields.
`key`	bytes	HMAC secret key bytes.
`expected`	str	Previously stored checksum hex string.

Returns

Type	Description
bool	True if checksum matches, False if tampered.

---