-
-
Notifications
You must be signed in to change notification settings - Fork 286
Expand file tree
/
Copy pathcases.py
More file actions
173 lines (141 loc) · 6.13 KB
/
cases.py
File metadata and controls
173 lines (141 loc) · 6.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
# IRIS Source Code
# Copyright (C) 2024 - DFIR-IRIS
# contact@dfir-iris.org
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU Lesser General Public
# License as published by the Free Software Foundation; either
# version 3 of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# Lesser General Public License for more details.
#
# You should have received a copy of the GNU Lesser General Public License
# along with this program; if not, write to the Free Software Foundation,
# Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
from graphene_sqlalchemy import SQLAlchemyObjectType
from graphene_sqlalchemy import SQLAlchemyConnectionField
from graphene.relay import Node
from graphene.relay import Connection
from graphene import Field
from graphene import Mutation
from graphene import NonNull
from graphene import Int
from graphene import Float
from graphene import String
from app.models.cases import Cases
from app.models.authorization import Permissions
from app.models.authorization import CaseAccessLevel
from app.business.iocs import iocs_build_filter_query
from app.business.cases import cases_create
from app.business.cases import cases_delete
from app.business.cases import cases_update
from app.blueprints.graphql.permissions import permissions_check_current_user_has_some_permission
from app.blueprints.graphql.permissions import permissions_check_current_user_has_some_case_access
from app.blueprints.graphql.iocs import IOCConnection
class CaseObject(SQLAlchemyObjectType):
class Meta:
model = Cases
interfaces = [Node]
iocs = SQLAlchemyConnectionField(IOCConnection, ioc_id=Int(), ioc_uuid=String(), ioc_value=String(), ioc_type_id=Int(),
ioc_description=String(), ioc_tlp_id=Int(), ioc_tags=String(), ioc_misp=String(),
user_id=Float())
# TODO why is kwargs necessary? Should investigate and try to remove
@staticmethod
def resolve_iocs(root, info, ioc_id=None, ioc_uuid=None, ioc_value=None, ioc_type_id=None, ioc_description=None, ioc_tlp_id=None, ioc_tags=None,
ioc_misp=None, user_id=None, **kwargs):
permissions_check_current_user_has_some_case_access(root.case_id, [CaseAccessLevel.full_access])
return iocs_build_filter_query(ioc_id=ioc_id, ioc_uuid=ioc_uuid, ioc_value=ioc_value,
ioc_type_id=ioc_type_id, ioc_description=ioc_description,
ioc_tlp_id=ioc_tlp_id, ioc_tags=ioc_tags, ioc_misp=ioc_misp,
user_id=user_id)
@staticmethod
def resolve_case(root, info, case_id):
permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
return Cases.query.get(case_id)
class CaseConnection(Connection):
class Meta:
node = CaseObject
total_count = Int()
# TODO why is kwargs necessary? Should investigate and try to remove
@staticmethod
def resolve_total_count(root, info, **kwargs):
return root.length
class CaseCreate(Mutation):
class Arguments:
name = NonNull(String)
description = NonNull(String)
client_id = NonNull(Int)
soc_id = String()
classification_id = Int()
case = Field(CaseObject)
@staticmethod
def mutate(root, info, name, description, client_id, soc_id=None, classification_id=None):
request = {
'case_name': name,
'case_description': description,
'case_customer': client_id,
'case_soc_id': ''
}
if soc_id:
request['case_soc_id'] = soc_id
if classification_id:
request['classification_id'] = classification_id
case = cases_create(request)
return CaseCreate(case=case)
class CaseDelete(Mutation):
class Arguments:
case_id = NonNull(Float)
case = Field(CaseObject)
@staticmethod
def mutate(root, info, case_id):
permissions_check_current_user_has_some_permission([Permissions.standard_user])
permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
cases_delete(case_id)
class CaseUpdate(Mutation):
class Arguments:
case_id = NonNull(Float)
name = String()
description = String()
soc_id = String()
classification_id = Int()
severity_id = Int()
client_id = Int()
owner_id = Int()
state_id = Int()
review_status_id = Int()
reviewer_id = Int()
tags = String()
case = Field(CaseObject)
@staticmethod
def mutate(root, info, case_id, name=None, soc_id=None, classification_id=None, client_id=None, description=None,
severity_id=None, owner_id=None, state_id=None, reviewer_id=None, tags=None, review_status_id=None):
request = {}
if name:
request['case_name'] = name
if soc_id:
request['case_soc_id'] = soc_id
if classification_id:
request['classification_id'] = classification_id
if client_id:
request['case_customer'] = client_id
if description:
request['case_description'] = description
if severity_id:
request['severity_id'] = severity_id
if owner_id:
request['owner_id'] = owner_id
if state_id:
request['state_id'] = state_id
if reviewer_id:
request['reviewer_id'] = reviewer_id
if tags:
request['case_tags'] = tags
if review_status_id:
request['review_status_id'] = review_status_id
permissions_check_current_user_has_some_permission([Permissions.standard_user])
permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
case, _ = cases_update(case_id, request)
return CaseUpdate(case=case)