Overview

HFortix-Core is the foundational library powering the HFortix ecosystem of Fortinet automation tools. It provides enterprise-grade HTTP clients, logging, debugging, error handling, and utilities used by all HFortix packages.

Key Features

HTTP Client Framework: Production-ready HTTP clients with retry logic, circuit breakers, connection pooling, and both synchronous and asynchronous support for FortiOS and FortiManager APIs.
Enterprise Audit Logging: Comprehensive audit logging for compliance (SOC 2, HIPAA, PCI-DSS) with handlers for Syslog, files, streams, and multiple formatters (JSON, CEF, RFC 5424).
Request Hooks: Protocol-based hooks for intercepting and modifying API requests/responses, enabling custom validation, transformation, and logging.
Exception Hierarchy: Complete exception hierarchy (20+ exception types) for granular error handling including retry-able vs non-retry-able errors, circuit breaker states, and API-specific errors.
Structured Logging: Request logging with structured (JSON) and text formatters, integration with enterprise logging systems, and detailed performance metrics.
Debug Utilities: Debug sessions, timing decorators, connection statistics, and request inspection tools for troubleshooting and performance analysis.
Type Safety: Comprehensive TypedDict definitions for all API responses, configuration, and internal structures enabling full IDE autocomplete and type checking.

Architecture

HFortix-Core is organized into functional modules:

Module	Purpose
HTTP Clients	Base HTTP client, FortiOS client, FortiManager client, async client, protocol interface
Audit Logging	Handlers (Syslog, File, Stream, Composite), Formatters (JSON, CEF, Syslog)
Request Hooks	BeforeRequestHook, AfterRequestHook protocols for request/response interception
Caching	TTL-based cache for readonly reference data
Logging	Structured and text formatters, request logger, log protocols
Debugging	Debug sessions, timing utilities, connection stats, request inspection
Exceptions	20+ exception classes in a hierarchy (FortinetError → APIError → specific errors)
Types	TypedDict definitions for responses, stats, debug info, and configurations
Utilities	Key normalization, deprecation warnings, formatting helpers

Usage

HFortix-Core is typically used as a dependency by higher-level packages like hfortix-fortios and hfortix-fortimanager. However, you can use it directly for custom integrations:

Direct HTTP Client Usage

from hfortix_core.http import HTTPClient

# Create FortiOS HTTP client
client = HTTPClient(
    url="https://192.168.1.99",
    token="your-api-token",
    verify=True,
    max_retries=3
)

# Make API requests
response = client.get("cmdb", "/api/v2/cmdb/firewall/policy")

Audit Logging

from hfortix_core.audit import SyslogHandler, CompositeHandler, FileHandler

# Send audit logs to multiple destinations
audit_handler = CompositeHandler([
    SyslogHandler("siem.company.com:514"),
    FileHandler("/var/log/fortinet-audit.log")
])

# Use with FortiOS client (via hfortix-fortios)
from hfortix_fortios import FortiOS

fgt = FortiOS(
    host="192.168.1.99",
    token="token",
    audit_handler=audit_handler
)

Request Hooks

from hfortix_core.hooks import BeforeRequestHook, RequestContext

class ValidationHook:
    def __call__(self, context: RequestContext) -> None:
        # Validate all firewall policy creates
        if context['path'] == '/api/v2/cmdb/firewall/policy' and context['method'] == 'POST':
            data = context.get('data', {})
            if not data.get('srcaddr') or not data.get('dstaddr'):
                raise ValueError("Source and destination addresses required")

# Use with FortiOS client
fgt = FortiOS(host="192.168.1.99", token="token", before_request_hook=ValidationHook())

Debug Session

from hfortix_core import DebugSession
from hfortix_fortios import FortiOS

with DebugSession() as debug:
    fgt = FortiOS(host="192.168.1.99", token="token")

    # All requests are logged with detailed timing
    fgt.api.cmdb.firewall.policy.get()
    fgt.api.monitor.system.status.get()

# Print debug summary
debug.print_summary()

Dependencies

HFortix-Core is used by:

hfortix-fortios - FortiOS/FortiGate API client (1,348 endpoints)
hfortix-fortimanager - FortiManager API client
hfortix - Meta-package installing all HFortix components

Next Steps

Core Modules - HTTP clients, caching, logging, debugging, and audit logging
Exceptions - Complete exception hierarchy with examples
Type Definitions - TypedDict definitions for responses and configurations
Utilities - Helper functions and formatters

For higher-level FortiOS automation, see: