Merge pull request #256 from sahibamittal/osv-1964-base-url-feature

Issue 1964: OSV base url customised

Author: nscuro

src/i18n/locales/en.json

@@ -466,6 +466,7 @@
     "vulnsource_github_advisories_desc": "GitHub Advisories (GHSA) is a database of CVEs and GitHub-originated security advisories affecting the open source world. Dependency-Track integrates with GHSA by mirroring advisories via GitHub's public GraphQL API. The mirror is refreshed daily, or upon restart of the Dependency-Track instance. A personal access token (PAT) is required in order to authenticate with GitHub, but no scopes need to be assigned to it.",
     "vulnsource_osv_advisories_enable": "Select ecosystem to enable Google OSV Advisory mirroring",
     "vulnsource_osv_advisories_desc": "Google OSV is a distributed vulnerability and triage infrastructure for open source projects aimed at helping both open source maintainers and consumers of open source. It serves as an aggregator of vulnerability databases that have adopted the OpenSSF Vulnerability format.",
+    "vulnsource_osv_base_url": "OSV Base URL",
     "registered_email_address": "Registered email address",
     "api_token": "API token",
     "consumer_key": "Consumer key",

src/views/administration/vuln-sources/VulnSourceOSVAdvisories.vue

@@ -14,8 +14,17 @@
       {{$t('admin.vulnsource_osv_advisories_enable')}}
       <hr/>
       {{ $t('admin.vulnsource_osv_advisories_desc') }}
-    </b-card-body>
-    <b-card-body>
+      <hr/>
+      <b-validated-input-group-form-input
+        id="nvd-feeds-url"
+        :label="$t('admin.vulnsource_osv_base_url')"
+        input-group-size="mb-3"
+        rules="required"
+        type="text"
+        v-model="osvBaseUrl"
+        lazy="true"
+      />
+      <hr/>
       <b-form-group label="Ecosystems">
         <div class="list-group" style="width: 40%">
           <span v-for="ecosystem in enabledEcosystems" :key="ecosystem">
@@ -24,8 +33,16 @@
           <actionable-list-group-item :add-icon="true" @actionClicked="$root.$emit('bv::show::modal', 'ecosystemModal')"/>
         </div>
       </b-form-group>
-      <hr/>
     </b-card-body>
+    <b-card-footer>
+      <b-button
+        :disabled="this.vulnsourceEnabled && !this.osvBaseUrl"
+        variant="outline-primary"
+        class="px-4"
+        @click="saveUrl">
+          {{ $t('message.update') }}
+      </b-button>
+    </b-card-footer>
     <ecosystem-modal v-on:selection="updateEcosystem"/>
   </b-card>
 </template>
@@ -35,6 +52,7 @@ import { Switch as cSwitch } from '@coreui/vue';
 import configPropertyMixin from "../mixins/configPropertyMixin";
 import EcosystemModal from "./EcosystemModal";
 import ActionableListGroupItem from '../../components/ActionableListGroupItem.vue';
+import BValidatedInputGroupFormInput from '../../../forms/BValidatedInputGroupFormInput';
 
 export default {
   mixins: [configPropertyMixin],
@@ -44,11 +62,13 @@ export default {
   components: {
     cSwitch,
     EcosystemModal,
-    ActionableListGroupItem
+    ActionableListGroupItem,
+    BValidatedInputGroupFormInput
 },
   data() {
     return {
       vulnsourceEnabled: false,
+      osvBaseUrl: '',
       ecosystemConfig: null,
       enabledEcosystems: [],
       labelIcon: {
@@ -71,9 +91,6 @@ export default {
     removeEcosystem: function(ecosystem) {
       this.enabledEcosystems = this.enabledEcosystems.filter(e => e !== ecosystem);
       this.vulnsourceEnabled = this.enabledEcosystems.length !== 0;
-      this.updateConfigProperties([
-        {groupName: 'vuln-source', propertyName: 'google.osv.enabled', propertyValue: this.enabledEcosystems.join(";")}
-      ]);
     },
     updateEcosystem: function(ecosystems) {
       this.$root.$emit('bv::hide::modal', 'ecosystemModal');
@@ -82,7 +99,10 @@ export default {
         this.enabledEcosystems.push(ecosystem.name);
       }
       this.vulnsourceEnabled = this.enabledEcosystems.length !== 0;
+    },
+    saveUrl: function() {
       this.updateConfigProperties([
+        {groupName: 'vuln-source', propertyName: 'google.osv.base.url', propertyValue: this.osvBaseUrl},
         {groupName: 'vuln-source', propertyName: 'google.osv.enabled', propertyValue: this.enabledEcosystems.join(";")}
       ]);
     }
@@ -97,6 +117,9 @@ export default {
             this.ecosystemConfig = item.propertyValue;
             this.vulnsourceEnabled = this.ecosystemConfig != null;
             break;
+          case "google.osv.base.url":
+            this.osvBaseUrl = item.propertyValue;
+            break;
         }
       }
       this.enabledEcosystems = this.ecosystemConfig.split(';').map(ecosystem => ecosystem.trim());