frontend - sigma rulesets list and view

Author: codeyourweb

docker-compose.yml

@@ -1,8 +1,8 @@
 services:
   sentinel-kit-app-frontend:
+    image: node:22-alpine
     container_name: sentinel-kit-app-frontend
     hostname: ${SENTINELKIT_FRONTEND_HOSTNAME}
-    image: node:22-alpine
     working_dir: /app
     environment:
       - VITE_ALLOWED_HOSTS=.${SENTINELKIT_FRONTEND_HOSTNAME}

sentinel-kit_server_backend/src/Controller/SigmaController.php

@@ -0,0 +1,56 @@
+<?php
+
+namespace App\Controller;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Serializer\SerializerInterface;
+use Doctrine\ORM\EntityManagerInterface;
+use App\Entity\SigmaRule;
+
+class SigmaController extends AbstractController{
+
+    private $entityManger;
+    private $serializer;
+
+    public function __construct(EntityManagerInterface $em, SerializerInterface $serializer){
+        $this->entityManger = $em;
+        $this->serializer = $serializer;
+    }
+
+
+    #[Route('/api/rules/sigma/list', name: 'app_sigma_list', methods: ['GET'])]
+    public function listRulesSummary(Request $request): Response
+    {
+        $rules = $this->entityManger->getRepository(SigmaRule::class)->summaryFindAll();
+        return new JsonResponse($rules, Response::HTTP_OK);
+    }
+
+    #[Route('/api/rules/sigma/{ruleId}/status', name:'app_sigma_change_rule_status', methods: ['PUT'])]
+    public function editRuleStatus(Request $request, int $ruleId): Response{
+        $rule = $this->entityManger->getRepository(SigmaRule::class)->find($ruleId);
+        if(!$rule){
+            return new JsonResponse(['error' => 'Rule not found'], Response::HTTP_NOT_FOUND);
+        }
+        $data = json_decode($request->getContent(), true);
+        if (!isset($data['active'])) {
+            return new JsonResponse(['error' => 'Missing active status'], Response::HTTP_BAD_REQUEST);
+        }
+        $rule->setActive($data['active']);
+        $this->entityManger->flush();
+        return new JsonResponse(['message' => 'Rule status changed successfully'], Response::HTTP_OK);
+    }
+
+    #[Route('api/rules/sigma/{ruleId}/details', name:'app_sigma_get_rule', methods: ['GET'])]
+    public function getRule(Request $request, int $ruleId): Response {
+        $rule = $this->entityManger->getRepository(SigmaRule::class)->find($ruleId);
+        if (!$rule) {
+            return new JsonResponse(['error' => 'Rule not found'], Response::HTTP_NOT_FOUND);
+        }
+        
+        $serializedRule = $this->serializer->serialize($rule, 'json', ['groups' => ['rule_details']]);
+        return new JsonResponse($serializedRule, Response::HTTP_OK, [], true);
+    }
+}

sentinel-kit_server_backend/src/Entity/SigmaRule.php

@@ -7,19 +7,23 @@
 use Doctrine\Common\Collections\Collection;
 use Doctrine\DBAL\Types\Types;
 use Doctrine\ORM\Mapping as ORM;
+use Symfony\Component\Serializer\Annotation\Groups;
 
 #[ORM\Entity(repositoryClass: SigmaRuleRepository::class)]
 class SigmaRule
 {
     #[ORM\Id]
     #[ORM\GeneratedValue]
     #[ORM\Column]
+    #[Groups(['rule_details'])]
     private ?int $id = null;
 
     #[ORM\Column(length: 255, unique: true)]
+    #[Groups(['rule_details'])]
     private ?string $title = null;
 
     #[ORM\Column(type: Types::TEXT, nullable: true)]
+    #[Groups(['rule_details'])]
     private ?string $description = null;
 
     #[ORM\Column(length: 255, unique: true)]
@@ -32,9 +36,12 @@ class SigmaRule
      * @var Collection<int, SigmaRuleVersion>
      */
     #[ORM\OneToMany(targetEntity: SigmaRuleVersion::class, mappedBy: 'rule', cascade: ['persist', 'remove'], orphanRemoval: true)]
+    #[ORM\OrderBy(['createdOn' => 'DESC'])]
+    #[Groups(['rule_details'])]
     private Collection $versions;
 
     #[ORM\Column]
+    #[Groups(['rule_details'])]
     private ?\DateTime $createdOn = null;
 
 

sentinel-kit_server_backend/src/Entity/SigmaRuleVersion.php

@@ -5,16 +5,19 @@
 use App\Repository\SigmaRuleVersionRepository;
 use Doctrine\DBAL\Types\Types;
 use Doctrine\ORM\Mapping as ORM;
+use Symfony\Component\Serializer\Annotation\Groups;
 
 #[ORM\Entity(repositoryClass: SigmaRuleVersionRepository::class)]
 class SigmaRuleVersion
 {
     #[ORM\Id]
     #[ORM\GeneratedValue]
     #[ORM\Column]
+    #[Groups(['rule_details'])]
     private ?int $id = null;
 
     #[ORM\Column(type: Types::TEXT)]
+    #[Groups(['rule_details'])]
     private ?string $content = null;
 
     #[ORM\Column(length: 64, unique: true)]
@@ -25,6 +28,7 @@ class SigmaRuleVersion
     private ?SigmaRule $rule = null;
 
     #[ORM\Column]
+    #[Groups(['rule_details'])]
     private ?\DateTime $createdOn = null;
 
     public function __construct()

sentinel-kit_server_backend/src/Repository/SigmaRuleRepository.php

@@ -17,8 +17,17 @@ public function __construct(ManagerRegistry $registry)
         parent::__construct($registry, SigmaRule::class);
     }
 
- /**
-     * Récupère toutes les SigmaRules en joignant uniquement la SigmaRuleVersion la plus récente (basée sur createdOn).
+    /**
+     * Retrieve all sigma rules as array object without content
+     * @return array
+     */
+    public function summaryFindAll() : array{
+        $qb = $this->createQueryBuilder("r")->orderBy("r.title","ASC")->select("r.id","r.title","r.description","r.active","r.createdOn","r.createdOn");
+        return $qb->getQuery()->getResult();
+    }
+
+    /**
+     * Retrieves all SigmaRules joining only the most recent SigmaRuleVersion (based on createdOn).
      *
      * @return SigmaRule[]
      */
@@ -42,29 +51,4 @@ public function findAllWithLatestRuleVersion(): array
             ->orderBy('r.title', 'ASC');
         return $qb->getQuery()->getResult();
     }
-
-    //    /**
-    //     * @return SigmaRule[] Returns an array of SigmaRule objects
-    //     */
-    //    public function findByExampleField($value): array
-    //    {
-    //        return $this->createQueryBuilder('s')
-    //            ->andWhere('s.exampleField = :val')
-    //            ->setParameter('val', $value)
-    //            ->orderBy('s.id', 'ASC')
-    //            ->setMaxResults(10)
-    //            ->getQuery()
-    //            ->getResult()
-    //        ;
-    //    }
-
-    //    public function findOneBySomeField($value): ?SigmaRule
-    //    {
-    //        return $this->createQueryBuilder('s')
-    //            ->andWhere('s.exampleField = :val')
-    //            ->setParameter('val', $value)
-    //            ->getQuery()
-    //            ->getOneOrNullResult()
-    //        ;
-    //    }
 }

sentinel-kit_server_frontend/index.html

@@ -1,16 +1,16 @@
-<!doctype html>
+<!doctype html data-theme="claude">
 <html lang="en">
   <head>
     <meta charset="UTF-8" />
+    <link rel="stylesheet" href="/src/style.css" />
     <link rel="icon" type="image/svg+xml" href="/vite.svg" />
-     <link href="https://fonts.googleapis.com/css2?family=Geist:[email protected]&display=swap" rel="stylesheet"/>
+    <link href="https://fonts.googleapis.com/css2?family=Geist:[email protected]&display=swap" rel="stylesheet"/>
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>Sentinel Kit - Admin portal</title>
   </head>
   <body data-theme='claude'>
     <div id="app"></div>
     <script src="/config.js"></script>
     <script type="module" src="/src/main.js"></script>
-    <script src="../node_modules/flyonui/flyonui.js"></script>
   </body>
 </html>

sentinel-kit_server_frontend/package.json

@@ -9,9 +9,14 @@
     "preview": "vite preview"
   },
   "dependencies": {
+    "@guolao/vue-monaco-editor": "^1.6.0",
     "@tailwindcss/vite": "^4.1.14",
+    "monaco-editor": "^0.54.0",
+    "monaco-yaml": "^5.4.0",
     "tailwindcss": "^4.1.14",
+    "vite-plugin-monaco-editor": "^1.1.0",
     "vue": "^3.5.22",
+    "vue-monaco": "^1.2.2",
     "vue-router": "^4.6.3"
   },
   "devDependencies": {

sentinel-kit_server_frontend/src/App.vue

@@ -8,12 +8,12 @@
                 </button>
             </div>
             <nav class="flex-grow space-y-2 p-3">
-                <a v-for="item in menuItems" :key="item.name" href="#" class="flex items-center p-3 rounded-lg hover:bg-gray-700 transition duration-150 group" :class="{ 'justify-center': isCollapsed }" :title="isCollapsed ? item.name : ''">
+                <RouterLink v-for="item in menuItems" :key="item.name" :to="{ name: item.route }" class="flex items-center p-3 rounded-lg hover:bg-gray-700 transition duration-150 group" :class="{ 'justify-center': isCollapsed }" :title="isCollapsed ? item.name : ''">
                     <span :class="`w-6 h-6 flex-shrink-0 icon-[${item.icon}] size-10 bg-white`"></span>
                     <span v-if="!isCollapsed" class="ml-4 font-medium whitespace-nowrap overflow-hidden">
-                        <a href="#" class="link link-primary [--link-color:orange]">{{ item.name }}</a>
+                        <RouterLink :key="item.name" :to="{ name: item.route }" class="link link-primary [--link-color:orange]">{{ item.name }}</RouterLink>
                     </span>
-                </a>
+                </RouterLink>
             </nav>
         </aside>
 
@@ -29,7 +29,7 @@
 
 <script setup>
 import { onMounted, ref } from 'vue';
-import { RouterView } from 'vue-router';
+import { RouterView, RouterLink } from 'vue-router';
 import Header from './components/Header.vue';
 
 const isLoggedIn = ref(false);
@@ -41,15 +41,12 @@ onMounted(() => {
 });
 
 const menuItems = [
-{ name: 'Home', icon: 'mdi-light--home' },
-{ name: 'Dashboard', icon: 'svg-spinners--blocks-wave' },
-{ name: 'Assets & groups', icon: 'line-md--computer-twotone' },
-{ name: 'Rulesets', icon: 'mdi--account-child' },
-{ name: 'Detections', icon: 'shield' },
-{ name: 'Users', icon: 'line-md--account' },
-{ name: 'Settings', icon: 'settings' }
+{ name: 'Home', icon: 'mdi-light--home', route: 'Home' },
+{ name: 'Dashboard', icon: 'svg-spinners--blocks-wave', route: 'Home' },
+{ name: 'Assets & groups', icon: 'line-md--computer-twotone', route: 'Home' },
+{ name: 'Rulesets', icon: 'mdi--account-child', route: 'RulesList' },
+{ name: 'Detections', icon: 'shield', route: 'Home' },
+{ name: 'Users', icon: 'line-md--account', route: 'Home' },
+{ name: 'Settings', icon: 'settings', route: 'Home' }
 ];
-
-// Si vous utilisez une fonction de toggle dans le Header, vous pouvez la définir ici:
-// const toggleSidebar = () => { isCollapsed.value = !isCollapsed.value; }
 </script>

sentinel-kit_server_frontend/src/components/RuleSummary.vue

@@ -0,0 +1,122 @@
+<template>
+    <div class="rule-summary border-2 border-gray-200 p-4 mb-3 rounded-lg">
+        
+        <div class="flex justify-between items-center mb-2">
+            
+            <div class="flex items-center space-x-3">
+                
+                <RouterLink
+                    :to="{ name: 'RuleEdit', params: { id: props.rule.id } }"
+                    class="btn btn-secondary w-6 h-6"
+                    aria-label="Edit rule"
+                >
+                <button 
+                    @click="viewDetails" 
+                    class="btn btn-primary w-6 h-6"
+                    aria-label="View rule details"
+                    >
+                    <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg">
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"></path>
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M2.458 12C3.732 7.943 7.523 5 12 5c4.478 0 8.268 2.943 9.542 7-1.274 4.057-5.064 7-9.542 7-4.477 0-8.268-2.943-9.542-7z"></path>
+                    </svg>
+                </button>
+                </RouterLink>
+                <h2 class="text-lg font-semibold m-0">
+                    {{ props.rule.title }}
+                </h2>
+            </div>
+            <div class="flex items-center space-x-4">          
+                <div class="relative w-16 h-6 flex items-center justify-end">
+                    
+                    <div v-if="isUpdating" class="flex items-center space-x-2">
+                        <div class="w-4 h-4 border-2 border-blue-400 border-t-transparent rounded-full animate-spin"></div>
+                        <span class="text-xs text-gray-500">Wait...</span>
+                    </div>
+
+                    <label v-else class="relative inline-flex items-center cursor-pointer">
+                        <input 
+                            type="checkbox" 
+                            class="sr-only peer" 
+                            :checked="props.rule.active"
+                            @change="toggleStatus" 
+                        />
+                        
+                        <div 
+                            class="w-11 h-6 bg-gray-300 peer-focus:outline-none peer-focus:ring-4 peer-focus:ring-green-300 rounded-full peer peer-checked:after:translate-x-full rtl:peer-checked:after:-translate-x-full peer-checked:after:border-white after:content-[''] after:absolute after:top-[2px] after:start-[2px] after:bg-white after:border-gray-300 after:border after:rounded-full after:h-5 after:w-5 after:transition-all peer-checked:bg-green-600"
+                        ></div>
+                    </label>
+                </div>
+            </div>
+            </div>
+
+        <p class="text-gray-700 text-justify">{{ shortDescription }}</p>
+    </div>
+</template>
+
+<script setup>
+import { computed, ref, defineEmits } from 'vue'; 
+import RuleEdit from '../views/RuleEdit.vue';
+
+const emit = defineEmits(['update:ruleStatus', 'showDetails']);
+const BASE_URL = import.meta.env.VITE_API_BASE_URL;
+
+const props = defineProps({
+    rule: {
+        type: Object,
+        required: true
+    }
+});
+
+const isUpdating = ref(false); 
+
+const shortDescription = computed(() => {
+    const maxChars = 300;
+    const description = props.rule.description || '';
+    
+    if (description.length > maxChars) {
+        return description.substring(0, maxChars) + '...';
+    }
+    return description;
+});
+
+const viewDetails = () => {
+    emit('showDetails', props.rule.id);
+};
+
+const toggleStatus = async () => {
+    if (isUpdating.value) return;
+
+    isUpdating.value = true;
+    const newStatus = !props.rule.active;
+    
+    try {
+        const response = await fetch(`${BASE_URL}/rules/sigma/${props.rule.id}/status`, {
+            method: 'PUT',
+            headers: {
+                'Content-Type': 'application/json',
+                'authorization': `Bearer ${localStorage.getItem('auth_token')}`,
+            },
+            body: JSON.stringify({ active: newStatus })
+        });
+
+        if (response.ok) {
+            props.rule.active = newStatus;
+            emit('update:ruleStatus', { ruleId: props.rule.id, newStatus: newStatus });
+        } else {
+            console.error('API update failed:', await response.text());
+        }
+
+    } catch (error) {
+        console.error('Network or parsing error:', error);
+    } finally {
+        isUpdating.value = false;
+    }
+};
+</script>
+
+<style scoped>
+.rule-summary h2 {
+    margin-top: 0;
+    margin-bottom: 0;
+}
+</style>