feat: add ws1 filtering

hazcod · hazcod · commit 3c0d12c9f70d · 2021-07-13T08:33:38.000+02:00
diff --git a/README.md b/README.md
@@ -46,6 +46,11 @@ ws1:
   api_key: "XXX"
   user: "XXX"
   password: "XXX"
+  # what policies you want to skip
+  # leave user or policy blank to ignore it
+  skip:
+  - policy: "Disk Encryption"
+    user: "some_special_user@company.com"
 
 # email domains used in your Slack workspace for filtering
 # e.g. for a Slack account user@mycompany.com
diff --git a/config/config.go b/config/config.go
@@ -35,6 +35,11 @@ type Config struct {
 		APIKey string `yaml:"api_key" env:"WS1_API_KEY"`
 		User string `yaml:"user" env:"WS1_USER"`
 		Password string `yaml:"password" env:"WS1_PASSWORD"`
+
+		SkipFilters []struct {
+			Policy string `yaml:"policy"`
+			User string `yaml:"user"`
+		}  `yaml:"skip"`
 	} `yaml:"ws1"`
 
 	Email struct {
diff --git a/pkg/ws1/extractor.go b/pkg/ws1/extractor.go
@@ -122,6 +122,18 @@ func GetMessages(config *config.Config, ctx context.Context) (map[string]WS1Resu
 		for _, policy := range device.ComplianceSummary.DeviceCompliance {
 			if policy.CompliantStatus { continue }
 
+			shouldSkip := false
+			for _, filter := range config.WS1.SkipFilters {
+				if filter.Policy != "" && !strings.EqualFold(policy.PolicyName, filter.Policy) {
+					continue
+				}
+				if filter.User != "" && !strings.EqualFold(filter.User, userEmail) {
+					continue
+				}
+				shouldSkip = true
+			}
+			if shouldSkip { continue }
+
 			userDevice.Findings = append(userDevice.Findings, UserDeviceFinding{
 				ComplianceName: policy.PolicyName,
 			})
