feat: Add database-managed key rotation and enhanced configuration serialization v1.13.0

This release introduces comprehensive database-managed key rotation capabilities
and fixes critical TOML configuration serialization issues.

## Key Features Added

### Database-Managed Key Rotation System
- Complete PostgreSQL and MySQL support for automated key rotation
- Rotation scheduling with configurable intervals and timestamps
- Background rotation service for automated lifecycle management
- Enhanced rotation detection using database-native time comparisons
- Comprehensive rotation schedule management (update, query, schedule)
- Real-time rotation status tracking and version management

### Enhanced Configuration Serialization
- Fixed Duration serialization to use human-readable TOML format ("30s", "5m", "1h", "1d")
- Fixed UUID serialization compatibility issues by converting to string format
- Enhanced duration parsing supporting multiple formats and plain numbers
- Removed duplicate struct definitions causing serialization conflicts

### Database Statistics Implementation
- Real database statistics queries replacing placeholder implementations
- Comprehensive key counts by status (Active, Retired, Revoked, Expired)
- Database-specific date functions for accurate key age calculations
- Expiration monitoring with 7-day early warning system
- Integration tests for both PostgreSQL and MySQL backends

## Technical Improvements
- Added Clone trait implementation for KeyManager background operations
- Enhanced error handling and logging throughout rotation operations
- Cross-database compatibility with functional equivalence
- Production-ready database queries with proper indexing support

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

Author: CodingAnarchy

CHANGELOG.md

@@ -5,7 +5,7 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## [Unreleased]
+## [1.13.0] - 2025-07-16
 
 ### Fixed
 - **⚙️ Configuration Serialization**
@@ -15,6 +15,26 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
   - Enhanced duration parsing to support multiple formats: plain numbers (seconds), and suffixes (s, m, h, d)
   - Re-enabled previously ignored configuration file tests (`test_config_file_operations`)
 
+### Enhanced
+- **🔐 Encryption Key Management Statistics**
+  - Implemented real database statistics queries for encryption key management system
+  - Added comprehensive PostgreSQL and MySQL statistics queries for key counts by status (Active, Retired, Revoked, Expired)
+  - Enhanced key age calculation using database-specific date functions (PostgreSQL `EXTRACT(EPOCH)`, MySQL `TIMESTAMPDIFF`)
+  - Added expiration monitoring with 7-day early warning for keys approaching expiration
+  - Implemented rotation tracking for keys due for automated rotation
+  - Added integration tests for statistics queries with both PostgreSQL and MySQL backends
+  - Replaced placeholder statistics implementation with production-ready database queries
+
+- **🔄 Database-Managed Key Rotation System**
+  - Implemented complete database-managed key rotation with PostgreSQL and MySQL support
+  - Added automatic key rotation scheduling with configurable intervals and next rotation timestamps
+  - Enhanced rotation detection queries using database-native time comparisons
+  - Implemented key rotation schedule management (update, query, schedule specific times)
+  - Added background rotation service for automated key lifecycle management
+  - Enhanced rotation methods with proper version management and status tracking
+  - Added comprehensive integration tests for rotation functionality, scheduling, and automation
+  - Implemented Clone trait for KeyManager to support background service operations
+
 ## [1.12.0] - 2025-07-15
 
 ### Added

Cargo.toml

@@ -9,7 +9,7 @@ members = [
 resolver = "2"
 
 [workspace.package]
-version = "1.12.0"
+version = "1.13.0"
 edition = "2024"
 license = "MIT"
 repository = "https://github.com/CodingAnarchy/hammerwork"

src/config.rs

@@ -10,21 +10,18 @@ use crate::{
 };
 
 #[cfg(feature = "webhooks")]
-use crate::{
-    streaming::StreamBackend,
-    webhooks::WebhookConfig,
-};
+use crate::{streaming::StreamBackend, webhooks::WebhookConfig};
 
 #[cfg(feature = "alerting")]
 use crate::alerting::AlertingConfig;
 
 #[cfg(feature = "metrics")]
 use crate::metrics::MetricsConfig;
 
+use crate::streaming::StreamConfig;
 use chrono::Duration;
 use serde::{Deserialize, Serialize};
 use std::{collections::HashMap, path::PathBuf, time::Duration as StdDuration};
-use crate::streaming::StreamConfig;
 
 /// Module for serializing std::time::Duration as human-readable strings
 mod duration_secs {
@@ -52,35 +49,39 @@ mod duration_secs {
         D: Deserializer<'de>,
     {
         use serde::de::Error;
-        
+
         let s = String::deserialize(deserializer)?;
         parse_duration(&s).map_err(D::Error::custom)
     }
 
     /// Parse a duration string like "30s", "5m", "1h", "90", etc.
     fn parse_duration(s: &str) -> Result<Duration, String> {
         let s = s.trim();
-        
+
         // Handle just numbers (assume seconds)
         if let Ok(secs) = s.parse::<u64>() {
             return Ok(Duration::from_secs(secs));
         }
-        
+
         // Handle suffixed durations
         if s.len() < 2 {
             return Err(format!("Invalid duration format: {}", s));
         }
-        
+
         let (num_str, suffix) = s.split_at(s.len() - 1);
-        let num: u64 = num_str.parse()
+        let num: u64 = num_str
+            .parse()
             .map_err(|_| format!("Invalid number in duration: {}", num_str))?;
-        
+
         match suffix {
             "s" => Ok(Duration::from_secs(num)),
             "m" => Ok(Duration::from_secs(num * 60)),
             "h" => Ok(Duration::from_secs(num * 3600)),
             "d" => Ok(Duration::from_secs(num * 86400)),
-            _ => Err(format!("Invalid duration suffix: {}. Use s, m, h, or d", suffix)),
+            _ => Err(format!(
+                "Invalid duration suffix: {}. Use s, m, h, or d",
+                suffix
+            )),
         }
     }
 }
@@ -342,7 +343,6 @@ pub struct WebhookConfigs {
     pub global_settings: WebhookGlobalSettings,
 }
 
-
 /// Global webhook settings
 #[cfg(feature = "webhooks")]
 #[derive(Debug, Clone, Serialize, Deserialize)]
@@ -382,7 +382,6 @@ pub struct StreamingConfigs {
     pub global_settings: StreamingGlobalSettings,
 }
 
-
 /// Simple event filter for when webhooks feature is disabled
 #[cfg(not(feature = "webhooks"))]
 #[derive(Debug, Clone, Serialize, Deserialize)]
@@ -702,8 +701,14 @@ mod tests {
 
         // Load back and verify values
         let loaded_config = HammerworkConfig::from_file(config_path.to_str().unwrap()).unwrap();
-        assert_eq!(loaded_config.worker.polling_interval, StdDuration::from_secs(30));
-        assert_eq!(loaded_config.worker.job_timeout, StdDuration::from_secs(300));
+        assert_eq!(
+            loaded_config.worker.polling_interval,
+            StdDuration::from_secs(30)
+        );
+        assert_eq!(
+            loaded_config.worker.job_timeout,
+            StdDuration::from_secs(300)
+        );
 
         // Test parsing various duration formats
         let test_durations = [
@@ -768,7 +773,11 @@ json_format = false
             );
 
             let config: HammerworkConfig = toml::from_str(&toml_content).unwrap();
-            assert_eq!(config.worker.polling_interval, *expected, "Failed to parse duration: {}", duration_str);
+            assert_eq!(
+                config.worker.polling_interval, *expected,
+                "Failed to parse duration: {}",
+                duration_str
+            );
         }
     }