update

Author: phrocker

.env

@@ -1,4 +1,4 @@
-SENTRIUS_VERSION=1.0.2
+SENTRIUS_VERSION=1.0.4
 SENTRIUS_SSH_VERSION=1.0.1
 SENTRIUS_KEYCLOAK_VERSION=1.0.1
-SENTRIUS_AGENT_VERSION=1.0.5
+SENTRIUS_AGENT_VERSION=1.0.8

analyagents/pom.xml

@@ -48,6 +48,15 @@
       <artifactId>junit-jupiter-params</artifactId>
       <scope>test</scope>
     </dependency>
+    <dependency>
+      <groupId>org.postgresql</groupId>
+      <artifactId>postgresql</artifactId>
+      <version>${postgresql-version}</version>
+    </dependency>
+    <dependency>
+      <groupId>org.flywaydb</groupId>
+      <artifactId>flyway-database-postgresql</artifactId>
+    </dependency>
     <dependency>
       <groupId>org.projectlombok</groupId>
       <artifactId>lombok</artifactId>

analyagents/src/main/java/io/sentrius/agent/analysis/Agent.java

@@ -4,17 +4,15 @@
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.autoconfigure.domain.EntityScan;
 import org.springframework.data.jpa.repository.config.EnableJpaRepositories;
+import org.springframework.scheduling.annotation.EnableScheduling;
 
 
 @SpringBootApplication(scanBasePackages = {"io.sentrius.agent", "io.sentrius.sso"})
-//@ComponentScan(basePackages = {"io.sentrius.sso"})
 @EnableJpaRepositories(basePackages = {"io.sentrius.sso.core.data", "io.sentrius.sso.core.repository"})
-@EntityScan(basePackages = {"io.sentrius.sso.core.model", "io.sentrius.sentrius.ai.model"}) // Replace with
-// your
-// actual entity package
+@EntityScan(basePackages = {"io.sentrius.sso.core.model", "io.sentrius.sentrius.ai.model"})
+@EnableScheduling
 public class Agent {
     public static void main(String[] args) {
-                SpringApplication.run(Agent.class, args);
-        }
-
+        SpringApplication.run(Agent.class, args);
     }
+}

analyagents/src/main/java/io/sentrius/agent/analysis/agents/sessions/SessionAnalyticsAgent.java

@@ -1,6 +1,7 @@
 package io.sentrius.agent.analysis.agents.sessions;
 
 import java.util.List;
+import java.util.Set;
 import java.util.stream.Collectors;
 import io.sentrius.sso.core.model.metadata.AnalyticsTracking;
 import io.sentrius.sso.core.model.metadata.TerminalBehaviorMetrics;
@@ -14,6 +15,7 @@
 import io.sentrius.sso.core.services.metadata.TerminalRiskIndicatorService;
 import io.sentrius.sso.core.services.metadata.TerminalSessionMetadataService;
 import io.sentrius.sso.core.services.metadata.UserExperienceMetricsService;
+import jakarta.transaction.Transactional;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
@@ -33,44 +35,42 @@ public class SessionAnalyticsAgent {
     private final UserExperienceMetricsService experienceMetricsService;
     private final AnalyticsTrackingRepository trackingRepository;
 
-
-    @Scheduled(fixedRate = 60000) // Runs every 60 seconds
+    @Scheduled(fixedDelay = 60000) // Waits 60 seconds after the previous run completes
+    @Transactional
     public void processSessions() {
         log.info("Processing unprocessed sessions...");
+
+        // Fetch already processed session IDs in bulk
+        Set<Long> processedSessionIds = trackingRepository.findAllSessionIds();
         List<TerminalSessionMetadata> unprocessedSessions = sessionService.getAllSessions().stream()
-            .filter(session -> !trackingRepository.existsBySessionId(session.getId()))
+            .filter(session -> !processedSessionIds.contains(session.getId()))
             .collect(Collectors.toList());
 
         for (TerminalSessionMetadata session : unprocessedSessions) {
             try {
                 processSession(session);
                 saveToTracking(session.getId(), "PROCESSED");
             } catch (Exception e) {
+                log.error("Error processing session {}: {}", session.getId(), e.getMessage(), e);
                 saveToTracking(session.getId(), "ERROR");
-                e.printStackTrace();
             }
         }
     }
 
     private void processSession(TerminalSessionMetadata session) {
         List<TerminalCommand> commands = commandService.getCommandsBySessionId(session.getId());
+        if (commands == null) {
+            commands = List.of(); // Ensure it's not null
+        }
 
-        // Compute behavioral metrics
         TerminalBehaviorMetrics behaviorMetrics = behaviorMetricsService.computeMetricsForSession(session);
-
-        // Assess risk indicators
         TerminalRiskIndicator riskIndicators = riskIndicatorService.computeRiskIndicators(session, commands);
-
-        // Evaluate user experience metrics
         UserExperienceMetrics experienceMetrics = experienceMetricsService.calculateExperienceMetrics(
             session.getUser(), session, commands
         );
 
-        // Optionally log or store results
-        System.out.println("Processed session " + session.getId() + ":");
-        System.out.println("Behavior Metrics: " + behaviorMetrics);
-        System.out.println("Risk Indicators: " + riskIndicators);
-        System.out.println("Experience Metrics: " + experienceMetrics);
+        log.info("Processed session {}: Behavior Metrics: {}, Risk Indicators: {}, Experience Metrics: {}",
+            session.getId(), behaviorMetrics, riskIndicators, experienceMetrics);
     }
 
     private void saveToTracking(Long sessionId, String status) {

analyagents/src/main/java/io/sentrius/agent/analysis/api/AgentController.java

@@ -1,11 +1,21 @@
 package io.sentrius.agent.analysis.api;
 
+import io.sentrius.agent.analysis.model.AgentStatus;
 import lombok.extern.slf4j.Slf4j;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RestController;
 
 @Slf4j
 @RestController
 @RequestMapping("/api/v1/agent")
 public class AgentController {
+
+
+    @GetMapping("/status")
+    public ResponseEntity<AgentStatus> getStatus() {
+        return ResponseEntity.ok(AgentStatus.builder().status("UP").version("1.0.0").health("OK").build());
+    }
+
 }

analyagents/src/main/java/io/sentrius/agent/analysis/model/AgentStatus.java

@@ -0,0 +1,54 @@
+package io.sentrius.agent.analysis.model;
+
+import lombok.Builder;
+import lombok.Data;
+import lombok.Getter;
+
+@Getter
+@Data
+@Builder
+public class AgentStatus {
+
+    private String status;
+    private String version;
+    private String health;
+
+    public AgentStatus(String status, String version, String health) {
+        this.status = status;
+        this.version = version;
+        this.health = health;
+    }
+
+    public String getStatus() {
+        return status;
+    }
+
+    public String getVersion() {
+        return version;
+    }
+
+    public String getHealth() {
+        return health;
+    }
+
+    public void setStatus(String status) {
+        this.status = status;
+    }
+
+    public void setVersion(String version) {
+        this.version = version;
+    }
+
+    public void setHealth(String health) {
+        this.health = health;
+    }
+
+    @Override
+    public String toString() {
+        return "AgentStatus{" +
+                "status='" + status + '\'' +
+                ", version='" + version + '\'' +
+                ", health='" + health + '\'' +
+                '}';
+    }
+}

analyagents/src/main/resources/application.properties

@@ -1,25 +1,37 @@
+keystore.file=sso.jceks
+keystore.password=keystorepassword
 
+keystore.alias=KEYBOX-ENCRYPTION_KEY
+keystore.algorithm=AES
 
 spring.main.web-application-type=servlet
 spring.thymeleaf.enabled=true
 spring.freemarker.enabled=false
 
 #flyway configuration
-spring.flyway.enabled=true
-#spring.flyway.locations=classpath:db/postgres/  # Ensure this path matches your project structure
+spring.flyway.enabled=false
 spring.flyway.baseline-on-migrate=true
 
-# Thymeleaf settings
-spring.thymeleaf.prefix=classpath:/templates/
-spring.thymeleaf.suffix=.html
-
 ## h2 database
 
+spring.datasource.url=jdbc:postgresql://home.guard.local:5432/sentrius
+spring.datasource.username=postgres
+spring.datasource.password=password
+spring.datasource.driver-class-name=org.postgresql.Driver
+
+# Connection pool settings
+spring.datasource.hikari.maximum-pool-size=10
+spring.datasource.hikari.minimum-idle=5
+spring.datasource.hikari.idle-timeout=30000
+spring.datasource.hikari.max-lifetime=1800000
+
+# Hibernate settings (optional, for JPA)
+spring.jpa.database-platform=org.hibernate.dialect.PostgreSQLDialect
 
 
 ## Logging
 
-logging.level.org.springframework.web=INFO
+logging.level.org.springframework.web=DEBUG
 logging.level.org.springframework.security=INFO
 logging.level.io.sentrius=DEBUG
 
@@ -28,16 +40,21 @@ logging.level.org.thymeleaf=INFO
 spring.thymeleaf.servlet.produce-partial-output-while-processing=false
 
 spring.servlet.multipart.enabled=true
-spring.servlet.multipart.max-file-size=10MB
+spring.servlet.multipart.max-file-size=10MB 
 spring.servlet.multipart.max-request-size=10MB
 
+
 server.error.whitelabel.enabled=false
 
-sentrius.api.endpoint=https://localhost:8080/api/v1/
 
-#OAUTH2_API_BASE_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}
-#OAUTH2_AUTHORIZATION_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/auth
-#OAUTH2_SERVER_METADATA_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/.well-known/openid-configuration
-#OAUTH2_TOKEN_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/token
-#OAUTH2_USERINFO_ENDPOINT=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/userinfo
 
+keycloak.realm=sentrius
+
+spring.security.oauth2.client.registration.keycloak.client-id=sentrius-api
+spring.security.oauth2.client.registration.keycloak.client-secret=nGkEukexSWTvDzYjSkDmeUlM0FJ5Jhh0
+spring.security.oauth2.client.registration.keycloak.authorization-grant-type=authorization_code
+spring.security.oauth2.client.registration.keycloak.redirect-uri=http://192.168.1.162:8080/login/oauth2/code/keycloak
+spring.security.oauth2.client.registration.keycloak.scope=openid,profile,email
+
+spring.security.oauth2.resourceserver.jwt.issuer-uri=http://192.168.1.162:8180/realms/sentrius
+spring.security.oauth2.client.provider.keycloak.issuer-uri=http://192.168.1.162:8180/realms/sentrius

analyagents/sso.jceks

@@ -1,25 +1,37 @@
+keystore.file=sso.jceks
+keystore.password=keystorepassword
 
+keystore.alias=KEYBOX-ENCRYPTION_KEY
+keystore.algorithm=AES
 
 spring.main.web-application-type=servlet
 spring.thymeleaf.enabled=true
 spring.freemarker.enabled=false
 
 #flyway configuration
-spring.flyway.enabled=true
-#spring.flyway.locations=classpath:db/postgres/  # Ensure this path matches your project structure
+spring.flyway.enabled=false
 spring.flyway.baseline-on-migrate=true
 
-# Thymeleaf settings
-spring.thymeleaf.prefix=classpath:/templates/
-spring.thymeleaf.suffix=.html
-
 ## h2 database
 
+spring.datasource.url=jdbc:postgresql://home.guard.local:5432/sentrius
+spring.datasource.username=postgres
+spring.datasource.password=password
+spring.datasource.driver-class-name=org.postgresql.Driver
+
+# Connection pool settings
+spring.datasource.hikari.maximum-pool-size=10
+spring.datasource.hikari.minimum-idle=5
+spring.datasource.hikari.idle-timeout=30000
+spring.datasource.hikari.max-lifetime=1800000
+
+# Hibernate settings (optional, for JPA)
+spring.jpa.database-platform=org.hibernate.dialect.PostgreSQLDialect
 
 
 ## Logging
 
-logging.level.org.springframework.web=INFO
+logging.level.org.springframework.web=DEBUG
 logging.level.org.springframework.security=INFO
 logging.level.io.sentrius=DEBUG
 
@@ -28,16 +40,21 @@ logging.level.org.thymeleaf=INFO
 spring.thymeleaf.servlet.produce-partial-output-while-processing=false
 
 spring.servlet.multipart.enabled=true
-spring.servlet.multipart.max-file-size=10MB
+spring.servlet.multipart.max-file-size=10MB 
 spring.servlet.multipart.max-request-size=10MB
 
+
 server.error.whitelabel.enabled=false
 
-sentrius.api.endpoint=https://localhost:8080/api/v1/
 
-#OAUTH2_API_BASE_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}
-#OAUTH2_AUTHORIZATION_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/auth
-#OAUTH2_SERVER_METADATA_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/.well-known/openid-configuration
-#OAUTH2_TOKEN_URL=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/token
-#OAUTH2_USERINFO_ENDPOINT=${SCHEME}://keycloak.${HOST}:${PORT}/realms/${REALM}/protocol/openid-connect/userinfo
 
+keycloak.realm=sentrius
+
+spring.security.oauth2.client.registration.keycloak.client-id=sentrius-api
+spring.security.oauth2.client.registration.keycloak.client-secret=nGkEukexSWTvDzYjSkDmeUlM0FJ5Jhh0
+spring.security.oauth2.client.registration.keycloak.authorization-grant-type=authorization_code
+spring.security.oauth2.client.registration.keycloak.redirect-uri=http://192.168.1.162:8080/login/oauth2/code/keycloak
+spring.security.oauth2.client.registration.keycloak.scope=openid,profile,email
+
+spring.security.oauth2.resourceserver.jwt.issuer-uri=http://192.168.1.162:8180/realms/sentrius
+spring.security.oauth2.client.provider.keycloak.issuer-uri=http://192.168.1.162:8180/realms/sentrius