update read me and added pkr template

mitre · Jun 21, 2024 · bddc8d6 · bddc8d6
1 parent 6426adc
commit bddc8d6
Show file tree

Hide file tree

Showing 6 changed files with 24 additions and 11 deletions.
diff --git a/.gitignore b/.gitignore
@@ -1,6 +1,7 @@
 reports/**
 inputs.yml
 inspec.lock
+variables.pkrvar.hcl
 *.zip
 *.pem
 *.csr

diff --git a/README.md b/README.md
@@ -97,6 +97,13 @@ mongo_superusers:
 
    Update the `variables.pkrvar.hcl` with your variables for `mongo-validate.pkr.hcl`
 
+   Execute the following command to create the `variables.pkrvar.hcl` file by copying `variables_template.pkrvar.hcl` and renaming it to `variables.pkrvar.hcl`.
+   Update this file with your values.
+
+   ```sh
+   cp variables_template.pkrvar.hcl variables.pkrvar.hcl
+   ```
+
 9. **Build the Hardened Image**
 
    Execute the following command to build and save the hardened Mongo image:

diff --git a/mongo-validate.pkr.hcl b/mongo-validate.pkr.hcl
@@ -73,16 +73,16 @@ build {
     script           = "spec/scripts/scan.sh"
   }
 
-  // ### REPORT
-  // provisioner "shell-local" {
-  //   environment_vars = [
-  //     "REPORT_DIR=${var.scan.report_dir}",
-  //     "REPORT_TO_HEIMDALL=${var.report.report_to_heimdall}",
-  //     "HEIMDALL_URL=${var.report.heimdall_url}",
-  //     "HEIMDALL_API_KEY=${var.report.heimdall_api_key}"
-  //   ]
-  //   scripts          = ["spec/scripts/report.sh"]
-  // }
+  ### REPORT
+  provisioner "shell-local" {
+    environment_vars = [
+      "REPORT_DIR=${var.scan.report_dir}",
+      "REPORT_TO_HEIMDALL=${var.report.report_to_heimdall}",
+      "HEIMDALL_URL=${var.report.heimdall_url}",
+      "HEIMDALL_API_KEY=${var.report.heimdall_api_key}"
+    ]
+    scripts          = ["spec/scripts/report.sh"]
+  }
 
   // ### VERIFY
   // provisioner "shell-local" {

diff --git a/saf-cli.log b/saf-cli.log
diff --git a/variables.pkrvar.hcl b/variables.pkrvar.hcl
@@ -1,5 +1,5 @@
 report = {
   "report_to_heimdall" = true
   "heimdall_url"       = "https://heimdall-demo.mitre.org/evaluations"
-  "heimdall_api_key"   = "your_actual_api_key_here"
+  "heimdall_api_key"   = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJrZXlJZCI6IjkzIiwiY3JlYXRlZEF0IjoiMjAyNC0wNi0yMVQxNzowODo0MS45MTRaIiwiaWF0IjoxNzE4OTg5NzIxfQ.YVTnQ0P2TwHJhOdkjJHyWxKhuooyCNkfb9F8-JzqorY"
 }
diff --git a/variables_template.pkrvar.hcl b/variables_template.pkrvar.hcl
@@ -0,0 +1,5 @@
+report = {
+  "report_to_heimdall" = true
+  "heimdall_url"       = "https://heimdall-demo.mitre.org/evaluations"
+  "heimdall_api_key"   = "your_actual_api_key_here"
+}