Skip to content

Release/0.1.0 beta/prod azure #508

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
bkaiserinfosec merged 48 commits into from
Mar 18, 2024
Merged

Release/0.1.0 beta/prod azure #508

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
48 commits
Select commit Hold shift + click to select a range
5df8e24
Update pipeline-config.yaml (#440)
bkaiserinfosec Dec 30, 2023
c3fb035
Update tox.ini (#441)
bkaiserinfosec Dec 30, 2023
57a681a
Feature/fix toxi (#443)
bkaiserinfosec Dec 30, 2023
b3d741c
Feature/fix toxi (#445)
bkaiserinfosec Dec 30, 2023
f62e0d1
Feature/fix toxi (#447)
bkaiserinfosec Dec 31, 2023
5c40b88
Feature/fix toxi (#449)
bkaiserinfosec Jan 1, 2024
b8d2775
Update Jenkinsfile (#452)
bkaiserinfosec Jan 4, 2024
9e4030d
Feature/jenkinsfile updates (#453)
bkaiserinfosec Jan 8, 2024
fb5d50f
Feature/jenkinsfile updates (#455)
bkaiserinfosec Jan 8, 2024
deaed40
Merge branch 'main' into release/0.2.0-beta/Test-1
bkaiserinfosec Jan 8, 2024
22fc757
Feature/jenkinsfile updates (#457)
bkaiserinfosec Jan 8, 2024
48869b8
Feature/jenkinsfile updates (#459)
bkaiserinfosec Jan 8, 2024
b88f33e
Feature/jenkinsfile updates (#461)
bkaiserinfosec Jan 8, 2024
3058cc8
Feature/jenkinsfile updates (#463)
bkaiserinfosec Jan 8, 2024
eae9cfd
Feature/jenkinsfile updates (#465)
bkaiserinfosec Jan 8, 2024
b1d3586
Feature/jenkinsfile updates (#467)
bkaiserinfosec Jan 10, 2024
a688f72
Feature/jenkinsfile updates (#469)
bkaiserinfosec Jan 10, 2024
d0edd8f
Update Jenkinsfile
bkaiserinfosec Jan 13, 2024
6bc2607
Update pipeline-config.yaml
bkaiserinfosec Jan 13, 2024
4e2bc4a
Update values.yaml
bkaiserinfosec Jan 13, 2024
fba2f2b
Update values.yaml
bkaiserinfosec Jan 13, 2024
1a298c0
Update Jenkinsfile
bkaiserinfosec Jan 15, 2024
ef00ba5
Update values.yaml
bkaiserinfosec Jan 15, 2024
f497be3
Update pipeline-config.yaml
bkaiserinfosec Jan 17, 2024
ee6d9dd
Feature/jenkinsfile updates (#473)
bkaiserinfosec Jan 17, 2024
22a872b
Feature/jenkinsfile updates (#474)
bkaiserinfosec Feb 27, 2024
64ed436
Merge branch 'main' into release/0.1.0-beta/Prod-azure
bkaiserinfosec Feb 27, 2024
1169457
Feature/jenkinsfile updates (#476)
bkaiserinfosec Feb 27, 2024
4b6af0b
Feature/jenkinsfile updates (#478)
bkaiserinfosec Feb 28, 2024
cebffc6
Update pipeline-config.yaml
bkaiserinfosec Feb 28, 2024
38282ba
Feature/jenkinsfile updates (#481)
bkaiserinfosec Feb 28, 2024
86da6a0
Feature/jenkinsfile updates (#483)
bkaiserinfosec Feb 28, 2024
e019ade
Feature/jenkinsfile updates (#485)
bkaiserinfosec Mar 9, 2024
33e0b20
Feature/jenkinsfile updates (#487)
bkaiserinfosec Mar 9, 2024
509a6f1
Update pipeline-config.yaml
bkaiserinfosec Mar 9, 2024
a52196c
Feature/jenkinsfile updates (#490)
bkaiserinfosec Mar 9, 2024
716c878
Merge branch 'main' into release/0.1.0-beta/Prod-azure
bkaiserinfosec Mar 9, 2024
0f39204
Update pipeline-config.yaml
bkaiserinfosec Mar 9, 2024
ce79251
Update Jenkinsfile (#493)
bkaiserinfosec Mar 10, 2024
686ae51
Update security_quality_gate.py (#495)
bkaiserinfosec Mar 13, 2024
b4c8b1d
Feature/update jenkins config (#497)
bkaiserinfosec Mar 13, 2024
0cc02a4
Feature/update security gate config (#499)
bkaiserinfosec Mar 13, 2024
1b2577e
Merge branch 'main' into release/0.1.0-beta/Prod-azure
bkaiserinfosec Mar 13, 2024
0cab74c
Feature/update settings function (#501)
bkaiserinfosec Mar 18, 2024
a598136
Feature/update release based db settings (#503)
bkaiserinfosec Mar 18, 2024
bc17dcc
Feature/update release based db settings (#505)
bkaiserinfosec Mar 18, 2024
14e819d
Merge branch 'main' into release/0.1.0-beta/Prod-azure
bkaiserinfosec Mar 18, 2024
334bc68
Feature/fix db syntax (#507)
bkaiserinfosec Mar 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 2 additions & 3 deletions src/vr/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -182,9 +182,8 @@ def base64encode(value):


## Release-based updates ##
cwd = os.getcwd()
createNewTables(DB_URI)
print()
createNewTables(app)

## Cronjob-like tasks section ##
def train_model_every_six_hours():
scheduler = BackgroundScheduler()
Expand Down
140 changes: 88 additions & 52 deletions src/vr/db_models/updates.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,56 +1,92 @@
from flask_sqlalchemy import SQLAlchemy
from flask import Flask
import mysql.connector
import sqlite3
import os


def createNewTables(db_uri):
mock_app = Flask(__name__)
# Example database URI, replace it with your actual database URI
mock_app.config['SQLALCHEMY_DATABASE_URI'] = db_uri
mock_app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
db = SQLAlchemy(mock_app)
def get_client(app):
if app.config['RUNTIME_ENV'] == 'test':
cur_path = os.getcwd()
if 'www' in cur_path and 'html' in cur_path:
db_uri = '/var/www/html/src/instance/database.db'
else:
db_uri = 'instance/database.db'
db = sqlite3.connect(db_uri)
cur = db.cursor()
return cur, db
else:
db_uri = app.config['SQLALCHEMY_DATABASE_URI']
main_part = db_uri.split('://')[1]
un = main_part.split(':', 1)[0]
db_name = main_part.rsplit('/', 1)[1]
host_and_port = main_part.rsplit('@', 1)[1].replace(f"/{db_name}", '')
host = host_and_port.split(':')[0]
port = int(host_and_port.split(':')[1])
pw = main_part.split(':', 1)[1].replace(f"@{host}", '').replace(f"/{db_name}", '').replace(f":{port}", "")
db = mysql.connector.connect(host=host, database=db_name, user=un, password=pw, port=port)
cur = db.cursor()
return cur, db

class AppConfig(db.Model):
__tablename__ = 'AppConfig'
__table_args__ = {'extend_existing': True}
id = db.Column(db.Integer, primary_key=True)
first_access = db.Column(db.Boolean, nullable=False, default=True)
settings_initialized = db.Column(db.Boolean, nullable=False, default=False)
APP_EXT_URL = db.Column(db.String(200))
AUTH_TYPE = db.Column(db.String(200))
AZAD_AUTHORITY = db.Column(db.String(200))
AZAD_CLIENT_ID = db.Column(db.String(200))
AZAD_CLIENT_SECRET = db.Column(db.String(200))
AZURE_KEYVAULT_NAME = db.Column(db.String(200))
ENV = db.Column(db.String(200))
INSECURE_OAUTH = db.Column(db.String(200))
JENKINS_HOST = db.Column(db.String(200))
JENKINS_KEY = db.Column(db.String(200))
JENKINS_PROJECT = db.Column(db.String(200))
JENKINS_STAGING_PROJECT = db.Column(db.String(200))
JENKINS_TOKEN = db.Column(db.String(200))
JENKINS_USER = db.Column(db.String(200))
LDAP_BASE_DN = db.Column(db.String(200))
LDAP_BIND_USER_DN = db.Column(db.String(200))
LDAP_BIND_USER_PASSWORD = db.Column(db.String(200))
LDAP_GROUP_DN = db.Column(db.String(200))
LDAP_HOST = db.Column(db.String(200))
LDAP_PORT = db.Column(db.String(200))
LDAP_USER_DN = db.Column(db.String(200))
LDAP_USER_LOGIN_ATTR = db.Column(db.String(200))
LDAP_USER_RDN_ATTR = db.Column(db.String(200))
PROD_DB_URI = db.Column(db.String(200))
SMTP_ADMIN_EMAIL = db.Column(db.String(200))
SMTP_HOST = db.Column(db.String(200))
SMTP_PASSWORD = db.Column(db.String(200))
SMTP_USER = db.Column(db.String(200))
SNOW_CLIENT_ID = db.Column(db.String(200))
SNOW_CLIENT_SECRET = db.Column(db.String(200))
SNOW_INSTANCE_NAME = db.Column(db.String(200))
SNOW_PASSWORD = db.Column(db.String(200))
SNOW_USERNAME = db.Column(db.String(200))
VERSION = db.Column(db.String(200))
JENKINS_ENABLED = db.Column(db.String(200))
SNOW_ENABLED = db.Column(db.String(200))

with mock_app.app_context():
db.create_all()
def createNewTables(app):
cur, db = get_client(app)
if app.config['RUNTIME_ENV'] == 'test':
sql = "PRAGMA table_info('AppConfig')"
else:
sql = "SELECT column_name FROM information_schema.columns WHERE table_schema = 'vulnremediator' AND table_name = 'AppConfig'"
cur.execute(sql)
rows = cur.fetchall()
fields = []
for i in rows:
fields.append(i[1])
new_fields = [
{"name": "APP_EXT_URL", "type": "VARCHAR", "char_num": 200},
{"name": "AUTH_TYPE", "type": "VARCHAR", "char_num": 200},
{"name": "AZAD_AUTHORITY", "type": "VARCHAR", "char_num": 200},
{"name": "AZAD_CLIENT_ID", "type": "VARCHAR", "char_num": 200},
{"name": "AZAD_CLIENT_SECRET", "type": "VARCHAR", "char_num": 200},
{"name": "AZURE_KEYVAULT_NAME", "type": "VARCHAR", "char_num": 200},
{"name": "ENV", "type": "VARCHAR", "char_num": 200},
{"name": "INSECURE_OAUTH", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_HOST", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_KEY", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_PROJECT", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_STAGING_PROJECT", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_TOKEN", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_USER", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_BASE_DN", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_BIND_USER_DN", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_BIND_USER_PASSWORD", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_GROUP_DN", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_HOST", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_PORT", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_USER_DN", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_USER_LOGIN_ATTR", "type": "VARCHAR", "char_num": 200},
{"name": "LDAP_USER_RDN_ATTR", "type": "VARCHAR", "char_num": 200},
{"name": "PROD_DB_URI", "type": "VARCHAR", "char_num": 200},
{"name": "SMTP_ADMIN_EMAIL", "type": "VARCHAR", "char_num": 200},
{"name": "SMTP_HOST", "type": "VARCHAR", "char_num": 200},
{"name": "SMTP_PASSWORD", "type": "VARCHAR", "char_num": 200},
{"name": "SMTP_USER", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_CLIENT_ID", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_CLIENT_SECRET", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_INSTANCE_NAME", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_PASSWORD", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_USERNAME", "type": "VARCHAR", "char_num": 200},
{"name": "VERSION", "type": "VARCHAR", "char_num": 200},
{"name": "JENKINS_ENABLED", "type": "VARCHAR", "char_num": 200},
{"name": "SNOW_ENABLED", "type": "VARCHAR", "char_num": 200}
]

for i in new_fields:
if i['name'] not in fields:
if app.config['RUNTIME_ENV'] == 'test':
if i['type'] == 'VARCHAR':
var_stmt = f"VARCHAR({i['char_num']})"
sql = "ALTER TABLE AppConfig ADD COLUMN" + i['name'] + var_stmt
else:
if i['type'] == 'VARCHAR':
var_stmt = "TEXT"
sql = "ALTER TABLE AppConfig ADD COLUMN" + i['name'] + var_stmt
cur.execute(sql)
db.commit()