Merge pull request CactuseSecurity#3399 from abarz722/develop

fix app server comparison in variance analysis + source cleanup

Author: tpurschke

roles/database/files/sql/idempotent/fworch-texts.sql

@@ -285,12 +285,14 @@ INSERT INTO txt VALUES ('select', 				'German',	'Auswählen');
 INSERT INTO txt VALUES ('select', 				'English',	'Select');
 INSERT INTO txt VALUES ('loading', 				'German',	'Laden...');
 INSERT INTO txt VALUES ('loading', 				'English',	'Loading...');
+INSERT INTO txt VALUES ('exporting',            'German',   'Exportieren...');
+INSERT INTO txt VALUES ('exporting',            'English',  'Exporting...');
 INSERT INTO txt VALUES ('PagerPagesize',        'German', 	'Seitengrösse');
 INSERT INTO txt VALUES ('PagerPagesize',        'English',  'Page size');
 INSERT INTO txt VALUES ('PagerSubmit',          'German', 	'Speichern');
 INSERT INTO txt VALUES ('PagerSubmit',          'English',  'Save');
-INSERT INTO txt VALUES ('order_by',          'German',  'Sortieren nach');
-INSERT INTO txt VALUES ('order_by',          'English',  'Order by');
+INSERT INTO txt VALUES ('order_by',             'German',   'Sortieren nach');
+INSERT INTO txt VALUES ('order_by',             'English',  'Order by');
 
 -- (re)login
 INSERT INTO txt VALUES ('login', 				'German',	'Anmelden');

roles/lib/files/FWO.Basics/GlobalConstants.cs

@@ -40,17 +40,15 @@ public struct GlobalConst
         public const string kDoku_ = "Doku_";
         public const string k_user = "_user";
         public const string k_user2 = "-user";
-		public const string kNAT = "NAT";
+        public const string kNAT = "NAT";
         public const string k_demo = "_demo";
 
+        public const string kPlaceholderMarker = "@@";
         public const char kAppIdSeparator = '-'; // hard-coded could be moved to settings
         public const string kModellerGroup = "ModellerGroup_";
-        public const string kFullAppIdPlaceholder = "@@ExternalAppId@@";
-        public const string kAppIdPlaceholder = "@@AppId@@";
-        public const string kAppPrefixPlaceholder = "@@AppPrefix@@";
-        public const string kLdapGroupPattern = kModellerGroup + kAppIdPlaceholder;
+        public const string kLdapGroupPattern = kModellerGroup + Placeholder.AppId;
         public const string kImportChangeNotify = "importChangeNotify";
-		public const string kExternalRequest = "externalRequest";
+        public const string kExternalRequest = "externalRequest";
         public const string kLdapInternalPostfix = "dc=" + kFwoProdName + ",dc=internal";
         public const int kLdapInternalId = 1;
         public const string kDummyAppRole = "DummyAppRole";
@@ -95,4 +93,58 @@ public struct MarkerLocation
         public const string Comment = "comment";
         public const string Customfields = "customfields";
     }
+
+    public struct QueryVar
+    {
+        public const string Limit = "limit";
+        public const string Offset = "offset";
+        public const string Time = "time";
+        public const string ImportIdStart = "import_id_start";
+        public const string ImportIdEnd = "import_id_end";
+        public const string ImportIdOld = "import_id_old";
+        public const string ImportIdNew = "import_id_new";
+        public const string MgmIds = "mgmIds";
+        public const string MgmId = "mgmId";
+        public const string ManagementId = "management_id";
+        public const string RuleIds = "ruleIds";
+        public const string RuleId = "rule_id";
+    }
+
+    public struct Placeholder
+    {
+        public const string ExternalAppId = "@@ExternalAppId@@";
+        public const string AppId = "@@AppId@@";
+        public const string AppPrefix = "@@AppPrefix@@";
+
+        public const string APPNAME = "@@APPNAME@@";
+        public const string APPID = "@@APPID@@";
+
+        public const string ACTION = "@@ACTION@@";
+        public const string CHANGEACTION = "@@CHANGEACTION@@";
+        public const string COMMENT = "@@COMMENT@@";
+        public const string DESTINATIONS = "@@DESTINATIONS@@";
+        public const string GROUPNAME = "@@GROUPNAME@@";
+        public const string IP = "@@IP@@";
+        public const string MANAGEMENT_ID = "@@MANAGEMENT_ID@@";
+        public const string MANAGEMENT_NAME = "@@MANAGEMENT_NAME@@";
+        public const string MEMBERS = "@@MEMBERS@@";
+        public const string OBJECT_DETAILS = "@@OBJECT_DETAILS@@";
+        public const string OBJECTNAME = "@@OBJECTNAME@@";
+        public const string OBJECT_TYPE = "@@OBJECT_TYPE@@";
+        public const string OBJUPDSTATUS = "@@OBJUPDSTATUS@@";
+        public const string ONBEHALF = "@@ONBEHALF@@";
+        public const string ORDERNAME = "@@ORDERNAME@@";
+        public const string PORT = "@@PORT@@";
+        public const string PRIORITY = "@@PRIORITY@@";
+        public const string PROTOCOLNAME = "@@PROTOCOLNAME@@";
+        public const string REASON = "@@REASON@@";
+        public const string SERVICENAME = "@@SERVICENAME@@";
+        public const string SERVICES = "@@SERVICES@@";
+        public const string SOURCES = "@@SOURCES@@";
+        public const string STATUS = "@@STATUS@@";
+        public const string TASKCOMMENT = "@@TASKCOMMENT@@";
+        public const string TASKS = "@@TASKS@@";
+        public const string TICKET_SUBJECT = "@@TICKET_SUBJECT@@";
+        public const string TYPE = "@@TYPE@@";
+    }
 }

roles/lib/files/FWO.Data/Report/ConnectionReport.cs

@@ -5,10 +5,10 @@ namespace FWO.Data.Report
 {
     public class ConnectionReport
     {
-        public string Name = "";
+        public string Name { get; set; } = "";
 
-        public List<NetworkObject> AllObjects = [];
-        public List<NetworkService> AllServices = [];
+        public List<NetworkObject> AllObjects { get; set; } = [];
+        public List<NetworkService> AllServices { get; set; } = [];
 
         public ConnectionReport()
         {}
@@ -32,9 +32,9 @@ public static void AssignConnectionNumbers(List<ModellingConnection> connections
         public void PrepareObjectData(bool resolveNetworkAreas)
         {
             AllObjects = GetAllNetworkObjects(true, resolveNetworkAreas);
-            SetObjectNumbers(ref AllObjects);
+            SetObjectNumbers(AllObjects);
             AllServices = GetAllServices(true);
-            SetSvcNumbers(ref AllServices);
+            SetSvcNumbers(AllServices);
         }
 
         public virtual List<NetworkObject> GetAllNetworkObjects(bool resolved = false, bool resolveNetworkAreas = false)
@@ -47,7 +47,7 @@ public virtual List<NetworkService> GetAllServices(bool resolved = false)
             return [];
         }
 
-        public static void SetSvcNumbers(ref List<NetworkService> svcList)
+        public static void SetSvcNumbers(List<NetworkService> svcList)
         {
             long number = 1;
             foreach(var svc in svcList)
@@ -56,7 +56,7 @@ public static void SetSvcNumbers(ref List<NetworkService> svcList)
             }
         }
 
-        public static void SetObjectNumbers(ref List<NetworkObject> objList)
+        public static void SetObjectNumbers(List<NetworkObject> objList)
         {
             long number = 1;
             foreach(var obj in objList)
@@ -71,18 +71,15 @@ public static List<NetworkService> GetAllServices(List<ModellingConnection> conn
             foreach(var conn in connections)
             {
                 List<NetworkService> svcList = [];
-                foreach (var svcGrp in conn.ServiceGroups)
+                foreach (var svcGrp in conn.ServiceGroups.Select(s => s.Content))
                 {
-                    NetworkService serviceGroup = svcGrp.Content.ToNetworkServiceGroup();
-                    svcList.Add(svcGrp.Content.ToNetworkServiceGroup());
+                    NetworkService serviceGroup = svcGrp.ToNetworkServiceGroup();
+                    svcList.Add(svcGrp.ToNetworkServiceGroup());
                     if(resolved)
                     {
-                        foreach(var svc in serviceGroup.ServiceGroups)
+                        foreach(var svc in serviceGroup.ServiceGroups.Where(s => s.Object != null))
                         {
-                            if(svc.Object != null)
-                            {
-                                svcList.Add(svc.Object);
-                            }
+                            svcList.Add(svc.Object!);
                         }
                     }
                 }
@@ -138,55 +135,46 @@ private static List<NetworkObject> GetAllNwGrpObjectsFromConn(ModellingConnectio
 
         private static void GetObjectsFromAreas(List<ModellingNetworkAreaWrapper> areas, ref List<NetworkObject> objectList, bool resolved = false, bool resolveNetworkAreas = false)
         {
-            foreach (var areaWrapper in areas)
+            foreach (var areaWrapper in areas.Select(a => a.Content))
             {
-                objectList.Add(areaWrapper.Content.ToNetworkObjectGroup(false, resolveNetworkAreas));
+                objectList.Add(areaWrapper.ToNetworkObjectGroup(false, resolveNetworkAreas));
                 if(resolved && resolveNetworkAreas)
                 {
-                    foreach(var obj in areaWrapper.Content.ToNetworkObjectGroup().ObjectGroups)
+                    foreach(var obj in areaWrapper.ToNetworkObjectGroup().ObjectGroups.Where(o => o.Object != null))
                     {
-                        if(obj.Object != null)
-                        {
-                            objectList.Add(obj.Object);
-                        }
+                        objectList.Add(obj.Object!);
                     }
                 }
             }
         }
 
         private static void GetObjectsFromOtherGroups(List<ModellingNwGroupWrapper> nwGroups, ref List<NetworkObject> objectList, bool resolved = false)
         {
-            foreach (var nwGrpWrapper in nwGroups)
+            foreach (var nwGrpWrapper in nwGroups.Select(n => n.Content))
             {
-                objectList.Add(nwGrpWrapper.Content.ToNetworkObjectGroup());
+                objectList.Add(nwGrpWrapper.ToNetworkObjectGroup());
                 if(resolved)
                 {
-                    foreach(var obj in nwGrpWrapper.Content.ToNetworkObjectGroup().ObjectGroups)
+                    foreach(var obj in nwGrpWrapper.ToNetworkObjectGroup().ObjectGroups.Where(o => o.Object != null))
                     {
-                        if(obj.Object != null)
-                        {
-                            objectList.Add(obj.Object);
-                        }
+                        objectList.Add(obj.Object!);
                     }
                 }
             }
         }
 
         private static void GetObjectsFromAR(List<ModellingAppRoleWrapper> appRoles, ref List<NetworkObject> objectList, bool resolved = false, long dummyARid = 0)
         {
-            foreach (var aRWrapper in appRoles.Where(a => a.Content.Id != dummyARid))
+            foreach (var aRWrapper in appRoles.Select(w => w.Content).Where(a => a.Id != dummyARid))
             {
-                objectList.Add(aRWrapper.Content.ToNetworkObjectGroup());
+                objectList.Add(aRWrapper.ToNetworkObjectGroup());
                 if(resolved)
                 {
-                    foreach(var obj in aRWrapper.Content.ToNetworkObjectGroup().ObjectGroups)
+                    foreach(var obj in aRWrapper.ToNetworkObjectGroup().ObjectGroups.Where(o => o.Object != null))
                     {
-                        if(obj.Object != null)
-                        {
-                            objectList.Add(obj.Object);
-                        }
+                        objectList.Add(obj.Object!);
                     }
-                }
+                 }
             }
         }
 

roles/lib/files/FWO.ExternalSystems/Tufin.SecureChange/SCAccessRequestTicketTask.cs

@@ -1,6 +1,7 @@
 using FWO.Data;
 using FWO.Data.Workflow;
 using FWO.Data.Modelling;
+using FWO.Basics;
 
 namespace FWO.ExternalSystems.Tufin.SecureChange
 {
@@ -38,12 +39,12 @@ public override void FillTaskText(ExternalTicketTemplate template)
 			ExtMgtData extMgt = ReqTask.OnManagement != null && ReqTask.OnManagement?.ExtMgtData != null ?
 				System.Text.Json.JsonSerializer.Deserialize<ExtMgtData>(ReqTask.OnManagement?.ExtMgtData ?? "{}") : new();
 			TaskText = template.TasksTemplate
-				.Replace("@@ORDERNAME@@", "AR"+ ReqTask.TaskNumber.ToString())
-				.Replace("@@TASKCOMMENT@@", ReqTask.GetFirstCommentText())
-				.Replace("@@ACTION@@", MapActionType(ReqTask))
-				.Replace("@@SOURCES@@", ConvertNetworkElems(template, UseModelled() ? ElemFieldType.modelled_source : ElemFieldType.source, extMgt.ExtName))
-				.Replace("@@DESTINATIONS@@", ConvertNetworkElems(template, UseModelled() ? ElemFieldType.modelled_destination : ElemFieldType.destination, extMgt.ExtName))
-				.Replace("@@SERVICES@@", ConvertServiceElems(template));
+				.Replace(Placeholder.ORDERNAME, "AR"+ ReqTask.TaskNumber.ToString())
+				.Replace(Placeholder.TASKCOMMENT, ReqTask.GetFirstCommentText())
+				.Replace(Placeholder.ACTION, MapActionType(ReqTask))
+				.Replace(Placeholder.SOURCES, ConvertNetworkElems(template, UseModelled() ? ElemFieldType.modelled_source : ElemFieldType.source, extMgt.ExtName))
+				.Replace(Placeholder.DESTINATIONS, ConvertNetworkElems(template, UseModelled() ? ElemFieldType.modelled_destination : ElemFieldType.destination, extMgt.ExtName))
+				.Replace(Placeholder.SERVICES, ConvertServiceElems(template));
 		}
 
 		private static string MapActionType(WfReqTask reqTask)

roles/lib/files/FWO.ExternalSystems/Tufin.SecureChange/SCNetworkObjectModifyTicketTask.cs

@@ -1,3 +1,4 @@
+using FWO.Basics;
 using FWO.Data;
 using FWO.Data.Workflow;
 using FWO.Data.Modelling;
@@ -34,11 +35,11 @@ public override void FillTaskText(ExternalTicketTemplate template)
 				System.Text.Json.JsonSerializer.Deserialize<ExtMgtData>(ReqTask.OnManagement?.ExtMgtData ?? "{}") : new();
 			bool shortened = false;
 			TaskText = template.TasksTemplate
-				.Replace("@@GROUPNAME@@", Sanitizer.SanitizeJsonFieldMand(ReqTask.GetAddInfoValue(AdditionalInfoKeys.GrpName), ref shortened))
-				.Replace("@@MANAGEMENT_ID@@", extMgt.ExtId ?? "0")
-				.Replace("@@MANAGEMENT_NAME@@", extMgt.ExtName)
-				.Replace("@@CHANGEACTION@@", ChangeAction)
-				.Replace("@@MEMBERS@@", ConvertNetworkObjects(template, extMgt.ExtId, NamingConvention));
+				.Replace(Placeholder.GROUPNAME, Sanitizer.SanitizeJsonFieldMand(ReqTask.GetAddInfoValue(AdditionalInfoKeys.GrpName), ref shortened))
+				.Replace(Placeholder.MANAGEMENT_ID, extMgt.ExtId ?? "0")
+				.Replace(Placeholder.MANAGEMENT_NAME, extMgt.ExtName)
+				.Replace(Placeholder.CHANGEACTION, ChangeAction)
+				.Replace(Placeholder.MEMBERS, ConvertNetworkObjects(template, extMgt.ExtId, NamingConvention));
 		}
 	}
 }

roles/lib/files/FWO.ExternalSystems/Tufin.SecureChange/SCTicket.cs

@@ -1,3 +1,4 @@
+using FWO.Basics;
 using FWO.Basics.Exceptions;
 using FWO.Data;
 using FWO.Data.Modelling;
@@ -108,7 +109,7 @@ public override async Task CreateRequestString(List<WfReqTask> tasks, List<IpPro
 		{
 			CreateTicketTasks(tasks, ipProtos, namingConvention);
 			await CreateTicketText(tasks.FirstOrDefault());
-			if (TicketText.Contains("@@"))
+			if (TicketText.Contains(GlobalConst.kPlaceholderMarker))
 			{
 				throw new ConfigException("Template error. Unhandled placeholder found.");
 			}
@@ -269,12 +270,12 @@ private async Task CreateTicketText(WfReqTask? reqTask)
 			string appId = reqTask != null && reqTask.Owners.Count > 0 ? reqTask.Owners[0]?.Owner.ExtAppId ?? "" : "";
 			string onBehalf = TicketSystem.LookupRequesterId ? (await LookupRequesterId(Requester)).ToString() : Requester;
 			TicketText = actTicketTemplate
-				.Replace("@@TICKET_SUBJECT@@", Subject)
-				.Replace("@@PRIORITY@@", Priority)
-				.Replace("@@ONBEHALF@@", onBehalf)
-				.Replace("@@REASON@@", reqTask?.Reason ?? DefaultReason)
-				.Replace("@@APPID@@", appId)
-				.Replace("@@TASKS@@", string.Join(",", TicketTasks));
+				.Replace(Placeholder.TICKET_SUBJECT, Subject)
+				.Replace(Placeholder.PRIORITY, Priority)
+				.Replace(Placeholder.ONBEHALF, onBehalf)
+				.Replace(Placeholder.REASON, reqTask?.Reason ?? DefaultReason)
+				.Replace(Placeholder.APPID, appId)
+				.Replace(Placeholder.TASKS, string.Join(",", TicketTasks));
 			bool shortened = false;
 			TicketText = Sanitizer.SanitizeEolMand(TicketText, ref shortened);
 			CheckForProperJson(TicketText);

roles/lib/files/FWO.ExternalSystems/Tufin.SecureChange/SCTicketTask.cs

@@ -94,14 +94,14 @@ protected static string FillObjectTemplate(ExternalTicketTemplate template, stri
 		{
 			bool shortened = false;
 			return template.ObjectTemplate
-				.Replace("@@TYPE@@", type)
-				.Replace("@@OBJECTNAME@@", Sanitizer.SanitizeJsonFieldMand(objInfo.Name, ref shortened))
-				.Replace("@@OBJECT_TYPE@@", objInfo.Type)
-				.Replace("@@OBJECT_DETAILS@@", objInfo.Details)
-				.Replace("@@COMMENT@@", objInfo.Comment)
-				.Replace("@@STATUS@@", objInfo.Status)
-				.Replace("@@OBJUPDSTATUS@@", objInfo.UpdateStatus)
-				.Replace("@@MANAGEMENT_ID@@", mgmId);
+				.Replace(Placeholder.TYPE, type)
+				.Replace(Placeholder.OBJECTNAME, Sanitizer.SanitizeJsonFieldMand(objInfo.Name, ref shortened))
+				.Replace(Placeholder.OBJECT_TYPE, objInfo.Type)
+				.Replace(Placeholder.OBJECT_DETAILS, objInfo.Details)
+				.Replace(Placeholder.COMMENT, objInfo.Comment)
+				.Replace(Placeholder.STATUS, objInfo.Status)
+				.Replace(Placeholder.OBJUPDSTATUS, objInfo.UpdateStatus)
+				.Replace(Placeholder.MANAGEMENT_ID, mgmId);
 		}
 
 		/// 	{
@@ -115,30 +115,30 @@ protected static string FillObjectTemplateShort(ExternalTicketTemplate template,
 		{
 			bool shortened = false;
 			return template.ObjectTemplateShort
-				.Replace("@@OBJECTNAME@@", Sanitizer.SanitizeJsonFieldMand(objName, ref shortened))
-				.Replace("@@STATUS@@", status)
-				.Replace("@@OBJUPDSTATUS@@", objUpdStatus)
-				.Replace("@@MANAGEMENT_ID@@", mgmId);
+				.Replace(Placeholder.OBJECTNAME, Sanitizer.SanitizeJsonFieldMand(objName, ref shortened))
+				.Replace(Placeholder.STATUS, status)
+				.Replace(Placeholder.OBJUPDSTATUS, objUpdStatus)
+				.Replace(Placeholder.MANAGEMENT_ID, mgmId);
 		}
 
 		protected static string FillIpTemplate(ExternalTicketTemplate template, string ipString)
 		{
-			return template.IpTemplate.Replace("@@IP@@", ipString);
+			return template.IpTemplate.Replace(Placeholder.IP, ipString);
 		}
 
 		protected static string FillServiceTemplate(ExternalTicketTemplate template, string protocolName, string port, string serviceName)
 		{
-			return template.ServiceTemplate.Replace("@@PROTOCOLNAME@@", protocolName).Replace("@@PORT@@", port).Replace("@@SERVICENAME@@", serviceName);
+			return template.ServiceTemplate.Replace(Placeholder.PROTOCOLNAME, protocolName).Replace(Placeholder.PORT, port).Replace(Placeholder.SERVICENAME, serviceName);
 		}
 
 		protected static string FillIcmpTemplate(ExternalTicketTemplate template, string serviceName)
 		{
-			return template.IcmpTemplate.Replace("@@SERVICENAME@@", serviceName);
+			return template.IcmpTemplate.Replace(Placeholder.SERVICENAME, serviceName);
 		}
 
 		protected static string FillNwObjGroupTemplate(ExternalTicketTemplate template, string groupName, string mgtName)
 		{
-			return template.NwObjGroupTemplate.Replace("@@GROUPNAME@@", groupName).Replace("@@MANAGEMENT_NAME@@", mgtName);
+			return template.NwObjGroupTemplate.Replace(Placeholder.GROUPNAME, groupName).Replace(Placeholder.MANAGEMENT_NAME, mgtName);
 		}
 
 		protected string ConvertNetworkObjects(ExternalTicketTemplate template, string? mgmId, ModellingNamingConvention? namingConvention)