1 unstable release
| 0.1.0 | Jan 18, 2026 |
|---|
#7 in #logging-rotation
460KB
10K
SLoC
Enterprise-grade Rust Logging Infrastructure
✨ Features • 🚀 Quick Start • 📚 Documentation • 💻 Examples • 🤝 Contributing
🎯 A high-performance, secure, and feature-rich logging infrastructure built on Tokio
Inklog provides a comprehensive logging solution for enterprise applications:
| ⚡ High Performance | 🔒 Security First | 🌐 Multi-Target | 📊 Observability |
|---|---|---|---|
| Async I/O with Tokio | AES-256-GCM encryption | Console, File, DB, S3 | Health monitoring |
| Batch writes & compression | Zeroized secret memory | Automatic rotation | Metrics & tracing |
use inklog::{InklogConfig, LoggerManager};
use std::path::PathBuf;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let config = InklogConfig {
file_sink: Some(inklog::FileSinkConfig {
enabled: true,
path: "logs/app.log".into(),
max_size: "100MB".into(),
compress: true,
..Default::default()
}),
..Default::default()
};
let _logger = LoggerManager::with_config(config).await?;
log::info!("Application started successfully");
log::error!("Something went wrong with error details");
Ok(())
}
📋 Table of Contents
📑 Table of Contents (Click to expand)
✨ Features
| 🎯 Core Features | ⚡ Enterprise Features |
|---|---|
| Always Available | Optional |
🎯 Core Features (Always Available)
|
⚡ Enterprise Features
|
📦 Feature Presets
| Preset | Features | Use Case |
|---|---|---|
| minimal | No optional features | Core logging only |
| standard | http, cli |
Standard development setup |
| full | All default features | Production-ready logging |
🚀 Quick Start
📦 Installation
Add this to your Cargo.toml:
[dependencies]
inklog = "0.1"
For full feature set:
[dependencies]
inklog = { version = "0.1", features = ["default"] }
💡 Basic Usage
🎬 5-Minute Quick Start
|
Step 1: Initialize Logger |
Step 2: Log Messages |
|
Step 3: File Logging |
Step 4: Database Logging |
🔧 Advanced Configuration
Encrypted File Logging
use inklog::{FileSinkConfig, InklogConfig};
// Set encryption key from environment
std::env::set_var("INKLOG_ENCRYPTION_KEY", "base64-encoded-32-byte-key");
let config = InklogConfig {
file_sink: Some(FileSinkConfig {
enabled: true,
path: "logs/encrypted.log.enc".into(),
max_size: "10MB".into(),
encrypt: true,
encryption_key_env: Some("INKLOG_ENCRYPTION_KEY".into()),
compress: false, // Don't compress encrypted logs
..Default::default()
}),
..Default::default()
};
let _logger = LoggerManager::with_config(config).await?;
S3 Cloud Archiving
use inklog::{InklogConfig, S3ArchiveConfig};
let config = InklogConfig {
s3_archive: Some(S3ArchiveConfig {
enabled: true,
bucket: "my-log-bucket".to_string(),
region: "us-west-2".to_string(),
archive_interval_days: 7,
local_retention_days: 30,
prefix: "logs/".to_string(),
compression: inklog::archive::CompressionType::Zstd,
..Default::default()
}),
..Default::default()
};
let manager = LoggerManager::with_config(config).await?;
manager.start_archive_service().await?;
Custom Log Format
use inklog::{InklogConfig, config::GlobalConfig};
let format_string = "[{timestamp}] [{level:>5}] {target} - {message} | {file}:{line}";
let config = InklogConfig {
global: GlobalConfig {
level: "debug".into(),
format: format_string.to_string(),
masking_enabled: true,
..Default::default()
},
..Default::default()
};
let _logger = LoggerManager::with_config(config).await?;
🎨 Feature Flags
Default Features
inklog = "0.1" # Includes: aws, http, cli
Optional Features
# Cloud & Storage
inklog = { version = "0.1", features = [
"aws", # AWS S3 archive support
] }
# HTTP Server
inklog = { version = "0.1", features = [
"http", # Axum HTTP health endpoint
] }
# CLI Tools
inklog = { version = "0.1", features = [
"cli", # decrypt, generate, validate commands
] }
# Configuration
inklog = { version = "0.1", features = [
"confers", # TOML configuration support
] }
# Development
inklog = { version = "0.1", features = [
"test-local", # Local testing mode
"debug", # Additional security audit logging
] }
Feature Details
| Feature | Dependencies | Description |
|---|---|---|
| aws | aws-sdk-s3, aws-config, aws-types | AWS S3 cloud archive |
| http | axum | HTTP health check endpoint |
| cli | clap, glob, toml | Command-line utilities |
| confers | confers, toml | External TOML configuration support |
| test-local | - | Local testing mode |
| debug | - | Security audit logging |
📚 Documentation
|
📘 API Reference
Complete API docs |
💻 Examples
Working code examples |
📖 Guides
In-depth guides |
📖 Additional Resources
| Resource | Description |
|---|---|
| 📘 API Reference | Complete API documentation on docs.rs |
| 🏗️ Architecture | System architecture and design decisions |
| 🔒 Security | Security best practices and features |
| 📦 Examples | Working code examples for all features |
💻 Examples
💡 Real-world Examples
📝 Basic Logging |
📁 File Logging with Rotation |
🔒 Encrypted Logging |
🗄️ Database Logging |
☁️ S3 Cloud Archive |
🏥 HTTP Health Endpoint |
🎨 Custom Format |
🔍 Data Masking |
🏗️ Architecture
🏗️ System Architecture
┌─────────────────────────────────────────────────┐
│ Application Layer │
│ (Your code using log! macros) │
└────────────────┬────────────────────────────┘
│
┌────────────────▼────────────────────────────┐
│ Inklog API Layer │
│ - LoggerManager, LoggerBuilder │
│ - Configuration management │
│ - Health monitoring │
└────────────────┬────────────────────────────┘
│
┌────────────────▼────────────────────────────┐
│ Sink Abstraction Layer │
│ - ConsoleSink │
│ - FileSink (rotation, compression) │
│ - DatabaseSink (batch writes) │
│ - AsyncFileSink │
│ - RingBufferedFileSink │
└────────────────┬────────────────────────────┘
│
┌────────────────▼────────────────────────────┐
│ Core Processing Layer │
│ - Log formatting & templates │
│ - Data masking (PII redaction) │
│ - Encryption (AES-256-GCM) │
│ - Compression (ZSTD, GZIP, Brotli) │
└────────────────┬────────────────────────────┘
│
┌────────────────▼────────────────────────────┐
│ Concurrency & I/O │
│ - Tokio async runtime │
│ - Crossbeam channels │
│ - Rayon parallel processing │
└────────────────┬────────────────────────────┘
│
┌────────────────▼────────────────────────────┐
│ Storage & External Services │
│ - Filesystem │
│ - Database (PostgreSQL, MySQL, SQLite) │
│ - AWS S3 (cloud archive) │
│ - Parquet (analytics) │
└───────────────────────────────────────────┘
Layer-by-Layer Explanation
Application Layer
- Application code uses standard
log!macros from thelogcrate - Compatible with existing Rust logging patterns
Inklog API Layer
LoggerManager: Main orchestrator for all logging operationsLoggerBuilder: Fluent builder pattern for configuration- Health status tracking and metrics collection
Sink Abstraction Layer
- Multiple sink implementations for different output targets
- Console output for development
- File output with rotation, compression, and encryption
- Database output with batch writes (PostgreSQL, MySQL, SQLite)
- Async and buffered file sinks for high-throughput scenarios
Core Processing Layer
- Template-based log formatting
- Regex-based PII data masking (emails, SSNs, credit cards)
- AES-256-GCM encryption for sensitive logs
- Multiple compression algorithms (ZSTD, GZIP, Brotli, LZ4)
Concurrency & I/O Layer
- Tokio async runtime for non-blocking I/O
- Crossbeam channels for inter-task communication
- Rayon for CPU-intensive parallel processing
Storage & External Services Layer
- Local filesystem access
- Database connectivity via Sea-ORM
- AWS S3 integration for cloud archival
- Parquet format for analytics workflows
🔒 Security
🛡️ Security Features
Inklog is built with security as a top priority:
🔒 Encryption
- AES-256-GCM: Military-grade encryption for log files
- Key Management: Environment variable-based key injection
- Zeroized Memory: Secrets are securely cleared after use via
zeroizecrate - SHA-256 Hashing: Integrity verification for encrypted logs
🎭 Data Masking
- Regex-Based Patterns: Automatic PII detection and redaction
- Email Masking:
user@example.com→***@***.*** - SSN Masking: Credit card and social security number redaction
- Custom Patterns: Configurable regex patterns for sensitive data
🔐 Secure Key Handling
// Set encryption key securely from environment
std::env::set_var("INKLOG_ENCRYPTION_KEY", "base64-encoded-32-byte-key");
// Key is automatically zeroized after use
// Never hardcode keys in your application
🛡️ Security Best Practices
- No hardcoded secrets: Keys loaded from environment variables
- Minimal privileged operations: Only necessary file/database access
- Audit logging: Debug feature for security audit trails
- Compliance-ready: Supports GDPR, HIPAA, PCI-DSS logging requirements
🧪 Testing
🎯 Run Tests
# Run all tests with default features
cargo test --all-features
# Run tests with specific features
cargo test --features "aws,http,cli"
# Run tests in release mode
cargo test --release
# Run benchmarks
cargo bench
Test Coverage
Inklog targets 95%+ code coverage:
# Generate coverage report
cargo tarpaulin --out Html --all-features
Linting and Formatting
# Format code
cargo fmt --all
# Check formatting without changes
cargo fmt --all -- --check
# Run Clippy (warnings as errors)
cargo clippy --all-targets --all-features -- -D warnings
Security Audit
# Run cargo deny for security checks
cargo deny check
# Check for advisories
cargo deny check advisories
# Check for banned licenses
cargo deny check bans
Integration Tests
# Run integration tests
cargo test --test '*'
# Run with Docker services (PostgreSQL, MySQL)
docker-compose up -d
cargo test --all-features
docker-compose down
🤝 Contributing
Contributions are welcome! Please see CONTRIBUTING.md for guidelines.
Development Setup
# Clone repository
git clone https://github.com/Kirky-X/inklog.git
cd inklog
# Install pre-commit hooks (if available)
./scripts/install-pre-commit.sh
# Run tests
cargo test --all-features
# Run linter
cargo clippy --all-features
# Format code
cargo fmt --all
Pull Request Process
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Make your changes
- Run tests and ensure all pass (
cargo test --all-features) - Run clippy and fix warnings (
cargo clippy --all-features) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
Code Style
- Follow Rust naming conventions (snake_case for variables, PascalCase for types)
- Use
thiserrorfor error types - Use
anyhowfor error contexts - Add doc comments to all public APIs
- Run
cargo fmtbefore committing
📄 License
This project is dual-licensed under MIT / Apache-2.0:
🙏 Acknowledgments
🌟 Built on Excellent Tools
Inklog wouldn't be possible without these amazing projects:
- tracing - The foundation of Rust structured logging
- tokio - Async runtime for Rust
- Sea-ORM - Async ORM for database operations
- AWS SDK for Rust - AWS S3 integration
- axum - Web framework for HTTP endpoints
- serde - Serialization framework
- The entire Rust ecosystem for amazing tools and libraries
📞 Support
|
📋 Issues
Report bugs and issues |
💬 Discussions
Ask questions and share ideas |
🐙 GitHub
View source code |
⭐ Star History
💝 Support This Project
If you find this project useful, please consider giving it a ⭐️!
Built with ❤️ by Inklog Team
© 2026 Inklog Project. All rights reserved.
Dependencies
~112MB
~2M SLoC