feat: added organization app and fixed organization member fields

Author: ArshiaBP

cloudql/github/plugin.go

@@ -65,6 +65,7 @@ func Plugin(ctx context.Context) *plugin.Plugin {
 			"github_repository_webhook":  tableGithubRepositoryWebhook(),
 			"github_artifact_ai_model":   tableGitHubArtifactAIModel(),
 			"github_organization_role":   tableGitHubOrganizationRole(),
+			"github_organization_app":    tableGitHubOrganizationApp(),
 		},
 	}
 	for key, table := range p.TableMap {

cloudql/github/table_github_organization_app.go

@@ -0,0 +1,82 @@
+package github
+
+import (
+	opengovernance "github.com/opengovern/og-describer-github/discovery/pkg/es"
+	"github.com/turbot/steampipe-plugin-sdk/v5/grpc/proto"
+	"github.com/turbot/steampipe-plugin-sdk/v5/plugin"
+	"github.com/turbot/steampipe-plugin-sdk/v5/plugin/transform"
+)
+
+func tableGitHubOrganizationApp() *plugin.Table {
+	return &plugin.Table{
+		Name:        "github_organization_app",
+		Description: "GitHub organization applications installed in a specific organization.",
+		List: &plugin.ListConfig{
+			Hydrate: opengovernance.ListOrganizationApp,
+		},
+		Get: &plugin.GetConfig{
+			KeyColumns: []*plugin.KeyColumn{
+				{Name: "id", Require: plugin.Required},
+			},
+			Hydrate: opengovernance.GetOrganizationApp,
+		},
+		Columns: commonColumns([]*plugin.Column{
+			{Name: "id", Type: proto.ColumnType_INT, Description: "The unique identifier of the app.",
+				Transform: transform.FromField("Description.ID")},
+
+			{Name: "client_id", Type: proto.ColumnType_STRING, Description: "The client ID of the app.",
+				Transform: transform.FromField("Description.ClientID")},
+
+			{Name: "repository_selection", Type: proto.ColumnType_STRING, Description: "Specifies if the app has access to all or selected repositories.",
+				Transform: transform.FromField("Description.RepositorySelection")},
+
+			{Name: "access_tokens_url", Type: proto.ColumnType_STRING, Description: "URL to generate an installation access token.",
+				Transform: transform.FromField("Description.AccessTokensURL")},
+
+			{Name: "repositories_url", Type: proto.ColumnType_STRING, Description: "URL to list repositories accessible to the app.",
+				Transform: transform.FromField("Description.RepositoriesURL")},
+
+			{Name: "html_url", Type: proto.ColumnType_STRING, Description: "URL to view the app's installation page on GitHub.",
+				Transform: transform.FromField("Description.HTMLURL")},
+
+			{Name: "app_id", Type: proto.ColumnType_INT, Description: "The ID of the GitHub app.",
+				Transform: transform.FromField("Description.AppID")},
+
+			{Name: "app_slug", Type: proto.ColumnType_STRING, Description: "The slug of the GitHub app.",
+				Transform: transform.FromField("Description.AppSlug")},
+
+			{Name: "target_id", Type: proto.ColumnType_INT, Description: "The ID of the target organization.",
+				Transform: transform.FromField("Description.TargetID")},
+
+			{Name: "target_type", Type: proto.ColumnType_STRING, Description: "The type of the target entity (e.g., Organization).",
+				Transform: transform.FromField("Description.TargetType")},
+
+			{Name: "permissions", Type: proto.ColumnType_JSON, Description: "Permissions granted to the app.",
+				Transform: transform.FromField("Description.Permissions")},
+
+			{Name: "events", Type: proto.ColumnType_JSON, Description: "Events the app is subscribed to.",
+				Transform: transform.FromField("Description.Events")},
+
+			{Name: "created_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when the app was created.",
+				Transform: transform.FromField("Description.CreatedAt")},
+
+			{Name: "updated_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when the app was last updated.",
+				Transform: transform.FromField("Description.UpdatedAt")},
+
+			{Name: "single_file_name", Type: proto.ColumnType_STRING, Description: "Name of the single file the app has access to, if applicable.",
+				Transform: transform.FromField("Description.SingleFileName")},
+
+			{Name: "has_multiple_single_files", Type: proto.ColumnType_BOOL, Description: "Indicates if the app has access to multiple single files.",
+				Transform: transform.FromField("Description.HasMultipleSingleFiles")},
+
+			{Name: "single_file_paths", Type: proto.ColumnType_JSON, Description: "Paths of single files the app has access to.",
+				Transform: transform.FromField("Description.SingleFilePaths")},
+
+			{Name: "suspended_by", Type: proto.ColumnType_JSON, Description: "Information about the user who suspended the app, if applicable.",
+				Transform: transform.FromField("Description.SuspendedBy")},
+
+			{Name: "suspended_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when the app was suspended, if applicable.",
+				Transform: transform.FromField("Description.SuspendedAt")},
+		}),
+	}
+}

cloudql/github/table_github_organization_member.go

@@ -9,29 +9,42 @@ import (
 )
 
 func gitHubOrganizationMemberColumns() []*plugin.Column {
-	tableCols := []*plugin.Column{
-		{
-			Name:        "organization",
-			Type:        proto.ColumnType_STRING,
-			Description: "The organization the member is associated with.",
-			Transform:   transform.FromField("Description.Organization")},
-		{
-			Name:        "role",
-			Type:        proto.ColumnType_STRING,
-			Description: "The role this user has in the organization. Returns null if information is not available to viewer.",
-			Transform:   transform.FromField("Description.Role")},
-		{
-			Name:      "has_two_factor_enabled",
-			Type:      proto.ColumnType_BOOL,
+	cols := []*plugin.Column{
+		{Name: "has_two_factor_enabled", Type: proto.ColumnType_BOOL,
 			Transform: transform.FromField("Description.HasTwoFactorEnabled")},
-		{
-			Name:        "login_id",
-			Type:        proto.ColumnType_STRING,
-			Description: "login id",
-			Transform:   transform.FromField("Description.LoginID")},
+		{Name: "organization", Type: proto.ColumnType_STRING, Description: "The team organization",
+			Transform: transform.FromField("Description.Organization")},
+		{Name: "role", Type: proto.ColumnType_STRING, Description: "The team member's role (MEMBER, MAINTAINER).",
+			Transform: transform.FromField("Description.Role")},
+		{Name: "login_id", Type: proto.ColumnType_STRING, Description: "Unique identifier for the user login.",
+			Transform: transform.FromField("Description.LoginID")},
+		{Name: "login", Type: proto.ColumnType_STRING, Description: "The login name of the user.",
+			Transform: transform.FromField("Description.Login")},
+		{Name: "id", Type: proto.ColumnType_INT, Description: "The ID of the user.",
+			Transform: transform.FromField("Description.ID")},
+		{Name: "name", Type: proto.ColumnType_STRING, Description: "The name of the user.",
+			Transform: transform.FromField("Description.Name")},
+		{Name: "node_id", Type: proto.ColumnType_STRING, Description: "The node ID of the user.",
+			Transform: transform.FromField("Description.NodeID")},
+		{Name: "email", Type: proto.ColumnType_STRING, Description: "The email of the user.",
+			Transform: transform.FromField("Description.Email")},
+		{Name: "created_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when user was created.",
+			Transform: transform.FromField("Description.CreatedAt")},
+		{Name: "updated_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when user was updated.",
+			Transform: transform.FromField("Description.UpdatedAt")},
+		{Name: "company", Type: proto.ColumnType_STRING, Description: "The company on the users profile.",
+			Transform: transform.FromField("Description.Company")},
+		{Name: "is_site_admin", Type: proto.ColumnType_BOOL, Description: "If true, user is a site administrator.",
+			Transform: transform.FromField("Description.IsSiteAdmin")},
+		{Name: "location", Type: proto.ColumnType_STRING, Description: "The location of the user.",
+			Transform: transform.FromField("Description.Location")},
+		{Name: "website_url", Type: proto.ColumnType_STRING, Description: "",
+			Transform: transform.FromField("Description.WebsiteURL")},
+		{Name: "status", Type: proto.ColumnType_BOOL, Description: "",
+			Transform: transform.FromField("Description.Status")},
 	}
 
-	return append(tableCols, sharedUserColumns()...)
+	return cols
 }
 
 func tableGitHubOrganizationMember() *plugin.Table {
@@ -41,6 +54,10 @@ func tableGitHubOrganizationMember() *plugin.Table {
 		List: &plugin.ListConfig{
 			Hydrate: opengovernance.ListOrgMembers,
 		},
+		Get: &plugin.GetConfig{
+			KeyColumns: plugin.SingleColumn("id"),
+			Hydrate:    opengovernance.GetOrgMembers,
+		},
 		Columns: commonColumns(gitHubOrganizationMemberColumns()),
 	}
 }

cloudql/github/table_github_team_member.go

@@ -35,15 +35,15 @@ func gitHubTeamMemberColumns() []*plugin.Column {
 		{Name: "login", Type: proto.ColumnType_STRING, Description: "The login name of the user.",
 			Transform: transform.FromField("Description.Login")},
 		{Name: "id", Type: proto.ColumnType_INT, Description: "The ID of the user.",
-			Transform: transform.FromField("Description.Id")},
+			Transform: transform.FromField("Description.ID")},
 		{Name: "name", Type: proto.ColumnType_STRING, Description: "The name of the user.",
 			Transform: transform.FromField("Description.Name")},
 		{Name: "node_id", Type: proto.ColumnType_STRING, Description: "The node ID of the user.",
-			Transform: transform.FromField("Description.NodeId")},
+			Transform: transform.FromField("Description.NodeID")},
 		{Name: "email", Type: proto.ColumnType_STRING, Description: "The email of the user.",
 			Transform: transform.FromField("Description.Email")},
 		{Name: "created_at", Type: proto.ColumnType_TIMESTAMP, Description: "Timestamp when user was created.",
-			Transform: transform.FromField("Description.CreatedAt").NullIfZero().Transform(convertTimestamp)},
+			Transform: transform.FromField("Description.CreatedAt")},
 		{Name: "company", Type: proto.ColumnType_STRING, Description: "The company on the users profile.",
 			Transform: transform.FromField("Description.Company")},
 		{Name: "interaction_ability", Type: proto.ColumnType_JSON, Description: "The interaction ability settings for this user.",

cloudql/github/table_github_team_repository.go

@@ -31,10 +31,10 @@ func tableGitHubTeamRepository() *plugin.Table {
 				Transform: transform.FromField("Description.RepositoryFullName")},
 
 			{Name: "created_at", Type: proto.ColumnType_TIMESTAMP, Description: "",
-				Transform: transform.FromField("Description.CreatedAt").NullIfZero().Transform(convertTimestamp)},
+				Transform: transform.FromField("Description.CreatedAt")},
 
 			{Name: "updated_at", Type: proto.ColumnType_TIMESTAMP, Description: "",
-				Transform: transform.FromField("Description.UpdatedAt").NullIfZero().Transform(convertTimestamp)},
+				Transform: transform.FromField("Description.UpdatedAt")},
 		}),
 	}
 }

discovery/describers/organization_app.go

@@ -0,0 +1,179 @@
+package describers
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"github.com/opengovern/og-describer-github/discovery/pkg/models"
+	model "github.com/opengovern/og-describer-github/discovery/provider"
+	resilientbridge "github.com/opengovern/resilient-bridge"
+	"github.com/opengovern/resilient-bridge/adapters"
+	"strconv"
+	"time"
+)
+
+func ListOrganizationApps(ctx context.Context,
+	githubClient model.GitHubClient,
+	organizationName string,
+	stream *models.StreamSender) ([]models.Resource, error) {
+	sdk := resilientbridge.NewResilientBridge()
+	sdk.RegisterProvider("github", adapters.NewGitHubAdapter(githubClient.Token), &resilientbridge.ProviderConfig{
+		UseProviderLimits: true,
+		MaxRetries:        3,
+		BaseBackoff:       0,
+	})
+
+	var values []models.Resource
+
+	endpoint := fmt.Sprintf("/orgs/%s/installations", organizationName)
+	req := &resilientbridge.NormalizedRequest{
+		Method:   "GET",
+		Endpoint: endpoint,
+		Headers:  map[string]string{"Accept": "application/vnd.github+json"},
+	}
+
+	resp, err := sdk.Request("github", req)
+	if err != nil {
+		return nil, fmt.Errorf("error fetching repos: %w", err)
+	}
+	if resp.StatusCode != 200 {
+		return nil, fmt.Errorf("HTTP error %d: %s", resp.StatusCode, string(resp.Data))
+	}
+
+	var appsResponse OrganizationAppsResponse
+	if err := json.Unmarshal(resp.Data, &appsResponse); err != nil {
+		return nil, fmt.Errorf("error decoding repos list: %w", err)
+	}
+
+	for _, app := range appsResponse.Installations {
+		account := model.Account{
+			Login:             app.Account.Login,
+			ID:                app.Account.ID,
+			NodeID:            app.Account.NodeID,
+			AvatarURL:         app.Account.AvatarURL,
+			GravatarID:        app.Account.GravatarID,
+			URL:               app.Account.URL,
+			HTMLURL:           app.Account.HTMLURL,
+			FollowersURL:      app.Account.FollowersURL,
+			FollowingURL:      app.Account.FollowingURL,
+			GistsURL:          app.Account.GistsURL,
+			StarredURL:        app.Account.StarredURL,
+			SubscriptionsURL:  app.Account.SubscriptionsURL,
+			OrganizationsURL:  app.Account.OrganizationsURL,
+			ReposURL:          app.Account.ReposURL,
+			EventsURL:         app.Account.EventsURL,
+			ReceivedEventsURL: app.Account.ReceivedEventsURL,
+			Type:              app.Account.Type,
+			UserViewType:      app.Account.UserViewType,
+			SiteAdmin:         app.Account.SiteAdmin,
+		}
+		var suspendedBy *model.Account
+		if app.SuspendedBy != nil {
+			suspendedBy = &model.Account{
+				Login:             app.SuspendedBy.Login,
+				ID:                app.SuspendedBy.ID,
+				NodeID:            app.SuspendedBy.NodeID,
+				AvatarURL:         app.SuspendedBy.AvatarURL,
+				GravatarID:        app.SuspendedBy.GravatarID,
+				URL:               app.SuspendedBy.URL,
+				HTMLURL:           app.SuspendedBy.HTMLURL,
+				FollowersURL:      app.SuspendedBy.FollowersURL,
+				FollowingURL:      app.SuspendedBy.FollowingURL,
+				GistsURL:          app.SuspendedBy.GistsURL,
+				StarredURL:        app.SuspendedBy.StarredURL,
+				SubscriptionsURL:  app.SuspendedBy.SubscriptionsURL,
+				OrganizationsURL:  app.SuspendedBy.OrganizationsURL,
+				ReposURL:          app.SuspendedBy.ReposURL,
+				EventsURL:         app.SuspendedBy.EventsURL,
+				ReceivedEventsURL: app.SuspendedBy.ReceivedEventsURL,
+				Type:              app.SuspendedBy.Type,
+				UserViewType:      app.SuspendedBy.UserViewType,
+				SiteAdmin:         app.SuspendedBy.SiteAdmin,
+			}
+		}
+		value := models.Resource{
+			ID:   strconv.Itoa(int(app.ID)),
+			Name: app.AppSlug,
+			Description: model.OrganizationAppDescription{
+				ID:                     app.ID,
+				ClientID:               app.ClientID,
+				Account:                account,
+				RepositorySelection:    app.RepositorySelection,
+				AccessTokensURL:        app.AccessTokensURL,
+				RepositoriesURL:        app.RepositoriesURL,
+				HTMLURL:                app.HTMLURL,
+				AppID:                  app.AppID,
+				AppSlug:                app.AppSlug,
+				TargetID:               app.TargetID,
+				TargetType:             app.TargetType,
+				Permissions:            app.Permissions,
+				Events:                 app.Events,
+				CreatedAt:              app.CreatedAt,
+				UpdatedAt:              app.UpdatedAt,
+				SingleFileName:         app.SingleFileName,
+				HasMultipleSingleFiles: app.HasMultipleSingleFiles,
+				SingleFilePaths:        app.SingleFilePaths,
+				SuspendedBy:            suspendedBy,
+				SuspendedAt:            app.SuspendedAt,
+			},
+		}
+		if stream != nil {
+			if err := (*stream)(value); err != nil {
+				return nil, err
+			}
+		} else {
+			values = append(values, value)
+		}
+	}
+
+	return values, nil
+}
+
+type OrganizationAppsResponse struct {
+	Installations []OrganizationApp `json:"installations"`
+}
+
+type OrganizationApp struct {
+	ID                     int64             `json:"id"`
+	ClientID               string            `json:"client_id"`
+	Account                AccountJSON       `json:"account"`
+	RepositorySelection    string            `json:"repository_selection"`
+	AccessTokensURL        string            `json:"access_tokens_url"`
+	RepositoriesURL        string            `json:"repositories_url"`
+	HTMLURL                string            `json:"html_url"`
+	AppID                  int               `json:"app_id"`
+	AppSlug                string            `json:"app_slug"`
+	TargetID               int64             `json:"target_id"`
+	TargetType             string            `json:"target_type"`
+	Permissions            map[string]string `json:"permissions"`
+	Events                 []string          `json:"events"`
+	CreatedAt              time.Time         `json:"created_at"`
+	UpdatedAt              time.Time         `json:"updated_at"`
+	SingleFileName         *string           `json:"single_file_name"`
+	HasMultipleSingleFiles bool              `json:"has_multiple_single_files"`
+	SingleFilePaths        []string          `json:"single_file_paths"`
+	SuspendedBy            *AccountJSON      `json:"suspended_by"`
+	SuspendedAt            *time.Time        `json:"suspended_at"`
+}
+
+type AccountJSON struct {
+	Login             string `json:"login"`
+	ID                int64  `json:"id"`
+	NodeID            string `json:"node_id"`
+	AvatarURL         string `json:"avatar_url"`
+	GravatarID        string `json:"gravatar_id"`
+	URL               string `json:"url"`
+	HTMLURL           string `json:"html_url"`
+	FollowersURL      string `json:"followers_url"`
+	FollowingURL      string `json:"following_url"`
+	GistsURL          string `json:"gists_url"`
+	StarredURL        string `json:"starred_url"`
+	SubscriptionsURL  string `json:"subscriptions_url"`
+	OrganizationsURL  string `json:"organizations_url"`
+	ReposURL          string `json:"repos_url"`
+	EventsURL         string `json:"events_url"`
+	ReceivedEventsURL string `json:"received_events_url"`
+	Type              string `json:"type"`
+	UserViewType      string `json:"user_view_type"`
+	SiteAdmin         bool   `json:"site_admin"`
+}