Merge pull request #51 from jpower432/feat/ssp-comp-filter

Feat/ssp comp filter

Author: Alex Flom

adjunct-data/config-files/demo-hello-world-sso-oscal-cd.config

@@ -0,0 +1,7 @@
+[task.csv-to-oscal-cd]
+
+title = Hello World SSO Component Definition
+version = 1.0.0
+csv-file = rules/hello-world-sso.csv
+output-dir = component-definitions/hello-world-sso
+output-overwrite = true

automation/mk/assemble.mk

@@ -17,7 +17,6 @@ assemble-cd:
 	@source ./automation/assemble.sh && assemble_components
 .PHONY: assemble-cd
 
-assemble-ssps:
-	@source ./automation/assemble.sh && assemble_ssps
+assemble-ssps: assemble-fedramp-ssp assemble-custom-ssp
 .PHONY: assemble-ssps
 

automation/mk/custom.mk

@@ -3,5 +3,9 @@
 ############################################################################
 
 generate-custom-ssp:
-	@source ./automation/trestle.sh && trestle author ssp-generate -p ACME_internal_profile --compdefs hello-world-custom -o markdown/system-security-plans/acme_custom_demo_ssp -f
-.PHONY: generate-custom-ssp
+	@source ./automation/trestle.sh && trestle author ssp-generate -p ACME_internal_profile --compdefs hello-world-custom,hello-world-sso -o markdown/system-security-plans/acme_custom_demo_ssp
+.PHONY: generate-custom-ssp
+
+assemble-custom-ssp:
+	@source ./automation/trestle.sh && trestle author ssp-assemble --name acme_custom_demo_ssp --markdown markdown/system-security-plans/acme_custom_demo_ssp -o acme_custom_demo_ssp --compdefs hello-world-custom,hello-world-sso
+.PHONY: assemble-custom-ssp

automation/mk/fedramp.mk

@@ -1,5 +1,5 @@
 ############################################################################
-## Custom Workflow
+## FedRAMP Workflow
 ############################################################################
 
 ############################################################################
@@ -26,9 +26,16 @@ bootstrap-workspace: import-fedramp
 ### Generate OSCAL SSP based on FedRAMP profile
 ############################################################################
 generate-fedramp-ssp:
-	@source ./automation/trestle.sh && trestle author ssp-generate -p fedramp_rev4_moderate --compdefs hello-world-fedramp -o markdown/system-security-plans/acme_fedramp_demo_ssp -y extra/extra-ssp-metadata.yml -f
+	@source ./automation/trestle.sh && trestle author ssp-generate -p fedramp_rev4_moderate --compdefs hello-world-fedramp -o markdown/system-security-plans/acme_fedramp_demo_ssp -y extra/extra-ssp-metadata.yml
 .PHONY: generate-fedramp-ssp
 
+############################################################################
+### Assemble OSCAL SSP based on FedRAMP profile
+############################################################################
+assemble-fedramp-ssp:
+	@source ./automation/trestle.sh && trestle author ssp-assemble --name acme_fedramp_demo_ssp --markdown markdown/system-security-plans/acme_fedramp_demo_ssp -o  acme_fedramp_demo_ssp --compdefs hello-world-fedramp
+.PHONY: assemble-fedramp-ssp
+
 ############################################################################
 ### Generate single markdown file from Jinja template from OSCAL SSP
 ############################################################################

automation/mk/filter.mk

@@ -0,0 +1,12 @@
+############################################################################
+## Filter Workflow
+############################################################################
+
+############################################################################
+### Filter an existing SSP based on a component definition. The component definition
+### title must be provided as the filter input.
+############################################################################
+
+filter-ssp:
+	@source ./automation/trestle.sh && trestle author ssp-filter --name acme_custom_demo_ssp --components "hello_world" -o acme_filtered_demo_ssp
+.PHONY: filer-ssp

automation/transform.sh

@@ -11,4 +11,5 @@ transform_hello-world-csv-oscal-cd () {
   trestle task csv-to-oscal-cd -c adjunct-data/config-files/demo-hello-world-oscal-cd.config
   trestle task csv-to-oscal-cd -c adjunct-data/config-files/demo-hello-world-fedramp-oscal-cd.config
   trestle task csv-to-oscal-cd -c adjunct-data/config-files/demo-hello-world-pvp-oscal-cd.config
+  trestle task csv-to-oscal-cd -c adjunct-data/config-files/demo-hello-world-sso-oscal-cd.config
 }

component-definitions/hello-world-custom/component-definition.json

@@ -1,17 +1,17 @@
 {
   "component-definition": {
-    "uuid": "49f4b5cd-3833-42dc-b127-7248261143c3",
+    "uuid": "c6f3b85d-101c-40bf-a4f2-d3d9e6d83402",
     "metadata": {
       "title": "Hello World Custom Component Definition",
-      "last-modified": "2023-03-31T13:54:06.517439+00:00",
+      "last-modified": "2023-04-04T20:58:14.094501+00:00",
       "version": "1.0.0",
       "oscal-version": "1.0.2"
     },
     "components": [
       {
-        "uuid": "a957cc6f-e80e-4d6b-aa9c-523e9d0f0bb4",
+        "uuid": "b4f42dc8-59f8-4ccb-8e7f-6b73b663fb1d",
         "type": "service",
-        "title": "This System",
+        "title": "Hello World",
         "description": "Hello World Application",
         "props": [
           {
@@ -29,12 +29,12 @@
         ],
         "control-implementations": [
           {
-            "uuid": "22e1257b-b6f1-4d47-a49a-b43d20c3434a",
+            "uuid": "5455591c-0c85-4547-8200-5027411fc4eb",
             "source": "profiles/ACME_internal_profile/profile.json",
             "description": "This is a partial implementation of the ACME Internal profile",
             "implemented-requirements": [
               {
-                "uuid": "459e51a9-33cf-4f93-831d-f89e5bbf8fab",
+                "uuid": "04bd0a4f-c8f0-4716-8487-fc615e0aeedd",
                 "control-id": "pr-1",
                 "description": "",
                 "props": [
@@ -45,7 +45,7 @@
                   },
                   {
                     "name": "implementation-status",
-                    "value": "partial"
+                    "value": "planned"
                   }
                 ]
               }

component-definitions/hello-world-fedramp/component-definition.json

@@ -1,17 +1,17 @@
 {
   "component-definition": {
-    "uuid": "47cf7512-00e8-402d-9932-dccaaaeaa7a3",
+    "uuid": "1a4a611c-ebe7-4a84-ae8e-7662e1baa6a5",
     "metadata": {
       "title": "Hello World FedRAMP Component Definition",
-      "last-modified": "2023-03-31T13:54:07.443457+00:00",
+      "last-modified": "2023-04-04T20:58:15.062588+00:00",
       "version": "1.0.0",
       "oscal-version": "1.0.2"
     },
     "components": [
       {
-        "uuid": "17a16a49-5e57-4bff-9257-de5755006be4",
+        "uuid": "50ea602f-69e2-436d-87b8-69bec47c8478",
         "type": "service",
-        "title": "This System",
+        "title": "Hello World",
         "description": "Hello World Application",
         "props": [
           {
@@ -29,12 +29,12 @@
         ],
         "control-implementations": [
           {
-            "uuid": "e5fbd64c-1608-488f-a7a8-c2f45e7adc92",
+            "uuid": "4c9ec2de-31a1-4d2c-829e-90e240a8264d",
             "source": "profiles/fedramp_rev4_moderate/profile.json",
             "description": "This is a partial implementation of the FedRAMP Moderate profile, focusing on the control enhancement AC-2 (3).",
             "implemented-requirements": [
               {
-                "uuid": "62cc6eb2-ec45-42e2-8f31-47d602f83da5",
+                "uuid": "b34780d8-198a-4a24-b663-2531a289704a",
                 "control-id": "ac-2.3",
                 "description": "",
                 "props": [
@@ -45,7 +45,7 @@
                   },
                   {
                     "name": "implementation-status",
-                    "value": "partial"
+                    "value": "planned"
                   }
                 ]
               }

component-definitions/hello-world-pvp/component-definition.json

@@ -1,17 +1,17 @@
 {
   "component-definition": {
-    "uuid": "e53fe155-7386-4415-b5eb-8dc20f286636",
+    "uuid": "b9f34787-c459-4b35-bf98-5fef86ea5026",
     "metadata": {
       "title": "Hello World PVP Component Definition",
-      "last-modified": "2023-03-31T13:54:08.357994+00:00",
+      "last-modified": "2023-04-04T20:58:15.942726+00:00",
       "version": "1.0.0",
       "oscal-version": "1.0.2"
     },
     "components": [
       {
-        "uuid": "9640b41b-15ae-4af7-8b0a-d75b57c770cd",
+        "uuid": "62bdc932-10fd-4238-8667-684fad953eb8",
         "type": "validation",
-        "title": "This System",
+        "title": "Hello World PVP",
         "description": "Hello World Application",
         "props": [
           {
@@ -41,12 +41,12 @@
         ],
         "control-implementations": [
           {
-            "uuid": "a57b3117-19d2-4f93-84f8-b95cb7f0b809",
+            "uuid": "63d4ed25-664c-4b08-bfbd-358f98b94047",
             "source": "profiles/ACME_internal_profile/profile.json",
             "description": "This is a partial implementation of the ACME Internal profile",
             "implemented-requirements": [
               {
-                "uuid": "83224996-2a96-4529-a7e5-5d776d8c6c4b",
+                "uuid": "90860449-5eb9-4305-9fcd-9caa7ff384f9",
                 "control-id": "pr-1",
                 "description": "",
                 "props": [

component-definitions/hello-world-sso/component-definition.json

@@ -0,0 +1,58 @@
+{
+  "component-definition": {
+    "uuid": "01586631-c1ef-4531-802a-ab389ceff9e3",
+    "metadata": {
+      "title": "Hello World SSO Component Definition",
+      "last-modified": "2023-04-04T20:58:16.863740+00:00",
+      "version": "1.0.0",
+      "oscal-version": "1.0.2"
+    },
+    "components": [
+      {
+        "uuid": "e0313a57-3cd4-4f97-a8d5-13d7d655b3b3",
+        "type": "service",
+        "title": "Hello World SSO",
+        "description": "SSO Application",
+        "props": [
+          {
+            "name": "Rule_Id",
+            "ns": "http://ibm.github.io/compliance-trestle/schemas/oscal/cd",
+            "value": "sso_rule_001",
+            "remarks": "rule_set_0"
+          },
+          {
+            "name": "Rule_Description",
+            "ns": "http://ibm.github.io/compliance-trestle/schemas/oscal/cd",
+            "value": "Ensure all of the services use automated account management",
+            "remarks": "rule_set_0"
+          }
+        ],
+        "control-implementations": [
+          {
+            "uuid": "221ed08c-28d7-49f9-bdfe-a164dd876aee",
+            "source": "profiles/ACME_internal_profile/profile.json",
+            "description": "This is a partial implementation of the ACME Internal profile",
+            "implemented-requirements": [
+              {
+                "uuid": "4dd49ae5-e891-4c4d-9243-b86c73599478",
+                "control-id": "ac-2.1",
+                "description": "",
+                "props": [
+                  {
+                    "name": "Rule_Id",
+                    "ns": "http://ibm.github.io/compliance-trestle/schemas/oscal/cd",
+                    "value": "sso_rule_001"
+                  },
+                  {
+                    "name": "implementation-status",
+                    "value": "planned"
+                  }
+                ]
+              }
+            ]
+          }
+        ]
+      }
+    ]
+  }
+}