RubyGems - foreman_openscap - Versions diffs - 0.4.3 → 0.5.0 - Mend

foreman_openscap 0.4.3 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (153) hide show

data/db/migrate/20151023131950_link_arf_report_directly_to_host.rb ADDED Viewed

@@ -0,0 +1,17 @@
+class LinkArfReportDirectlyToHost < ActiveRecord::Migration
+  def up
+    ForemanOpenscap::ArfReport.all.each do |report|
+      asset = ForemanOpenscap::Asset.where(:id => report.host_id).first
+      report.host_id = asset.host.id
+      report.save!
+    end
+  end
+  def down
+    ForemanOpenscap::ArfReport.all.each do |report|
+      asset = ForemanOpenscap::Asset.where(:assetable_id => report.host_id, :assetable_type => 'Host::Base').first
+      report.host_id = asset.id
+      report.save!
+    end
+  end
+end

data/db/seeds.d/openscap_policy_notification.rb ADDED Viewed

@@ -0,0 +1,9 @@
+policy_notification = {
+  :name => :openscap_policy_summary,
+  :description => N_('A summary of reports for OpenScap policies'),
+  :mailer => 'ForemanOpenscap::PolicyMailer',
+  :method => 'policy_summary',
+  :subscription_type => 'report',
+}
+MailNotification.where(policy_notification).first_or_create

data/lib/foreman_openscap/bulk_upload.rb CHANGED Viewed

@@ -24,10 +24,12 @@ module ForemanOpenscap
         digest = Digest::SHA2.hexdigest(datastream)
         title = content_name(datastream)
         filename = original_filename(datastream)
-        scap_content = Scaptimony::ScapContent.where(:title => title, :digest => digest).first_or_initialize
+        scap_content = ScapContent.where(:title => title, :digest => digest).first_or_initialize
         unless scap_content.persisted?
           scap_content.scap_file = file
           scap_content.original_filename = filename
+          scap_content.location_ids = Location.all.map(&:id) if SETTINGS[:locations_enabled]
+          scap_content.organization_ids = Organization.all.map(&:id) if SETTINGS[:organizations_enabled]
           next puts "## SCAP content is invalid: #{scap_content.errors.full_messages.uniq.join(',')} ##" unless scap_content.valid?
           if scap_content.save
             puts "Saved #{datastream} as #{scap_content.title}"

data/lib/foreman_openscap/engine.rb CHANGED Viewed

@@ -1,5 +1,4 @@
 require 'deface'
-require 'scaptimony/engine'
 module ForemanOpenscap
   class Engine < ::Rails::Engine
@@ -7,11 +6,14 @@ module ForemanOpenscap
     config.autoload_paths += Dir["#{config.root}/app/controllers/concerns"]
     config.autoload_paths += Dir["#{config.root}/app/helpers/concerns"]
     config.autoload_paths += Dir["#{config.root}/app/models/concerns"]
+    config.autoload_paths += Dir["#{config.root}/app/models"]
     config.autoload_paths += Dir["#{config.root}/app/overrides"]
+    config.autoload_paths += Dir["#{config.root}/app/lib"]
+    config.autoload_paths += Dir["#{config.root}/lib"]
+    config.autoload_paths += Dir["#{config.root}/test/"]
     # Add any db migrations
     initializer "foreman_openscap.load_app_instance_data" do |app|
-      app.config.paths['db/migrate'] += Scaptimony::Engine.paths['db/migrate'].existent
       app.config.paths['db/migrate'] += ForemanOpenscap::Engine.paths['db/migrate'].existent
     end
@@ -21,7 +23,7 @@ module ForemanOpenscap
             f.split(File::SEPARATOR, 4).last
           end
         end
     initializer 'foreman_openscap.assets.precompile' do |app|
       app.config.assets.precompile += assets_to_precompile
     end
@@ -37,74 +39,80 @@ module ForemanOpenscap
     initializer 'foreman_openscap.register_plugin', :after => :finisher_hook do |app|
       Foreman::Plugin.register :foreman_openscap do
-        requires_foreman '>= 1.5'
+        requires_foreman '>= 1.11'
         apipie_documented_controllers ["#{ForemanOpenscap::Engine.root}/app/controllers/api/v2/compliance/*.rb"]
+        version = SETTINGS[:version]
+        register_custom_status ForemanOpenscap::ComplianceStatus if version.major.to_i >= 1 && version.minor.to_i >= 10
         # Add permissions
         security_block :foreman_openscap do
-          permission :view_arf_reports, {:scaptimony_arf_reports         => [:index, :show, :parse, :auto_complete_search],
+          permission :view_arf_reports, {:arf_reports => [:index, :show, :parse_html, :show_html,
+                                                          :parse_bzip, :auto_complete_search],
                                          'api/v2/compliance/arf_reports' => [:index, :show],
-                                         :scaptimony_hosts               => [:show]}
-          permission :destroy_arf_reports, {:scaptimony_arf_reports         => [:destroy],
+                                         :compliance_hosts => [:show]}
+          permission :destroy_arf_reports, {:arf_reports => [:destroy],
                                             'api/v2/compliance/arf_reports' => [:destroy]}
           permission :create_arf_reports, {'api/v2/compliance/arf_reports' => [:create]}
-          permission :view_scaptimony_policies, {:scaptimony_policies         => [:index, :show, :parse, :auto_complete_search],
-                                                 :scaptimony_policy_dashboard => [:index],
-                                                 :scaptimony_dashboard        => [:index],
+          permission :view_policies, {:policies => [:index, :show, :parse, :auto_complete_search],
+                                                 :policy_dashboard => [:index],
+                                                 :compliance_dashboard        => [:index],
                                                  'api/v2/compliance/policies' => [:index, :show, :content]},
-                     :resource_type => 'Scaptimony::Policy'
-          permission :edit_scaptimony_policies, {:scaptimony_policies         => [:edit, :update, :scap_content_selected],
+                     :resource_type => 'ForemanOpenscap::Policy'
+          permission :edit_policies, {:policies => [:edit, :update, :scap_content_selected],
                                                  'api/v2/compliance/policies' => [:update]},
-                     :resource_type => 'Scaptimony::Policy'
-          permission :create_scaptimony_policies, {:scaptimony_policies         => [:new, :create],
+                     :resource_type => 'ForemanOpenscap::Policy'
+          permission :create_policies, {:policies => [:new, :create],
                                                    'api/v2/compliance/policies' => [:create]},
-                     :resource_type => 'Scaptimony::Policy'
-          permission :destroy_scaptimony_policies, {:scaptimony_policies         => [:destroy],
+                     :resource_type => 'ForemanOpenscap::Policy'
+          permission :destroy_policies, {:policies => [:destroy],
                                                     'api/v2/compliance/policies' => [:destroy]},
-                     :resource_type => 'Scaptimony::Policy'
-          permission :assign_scaptimony_policies, {:scaptimony_policies => [:select_multiple_hosts, :update_multiple_hosts,
+                     :resource_type => 'ForemanOpenscap::Policy'
+          permission :assign_policies, {:policies => [:select_multiple_hosts, :update_multiple_hosts,
                                                                             :disassociate_multiple_hosts,
                                                                             :remove_policy_from_multiple_hosts]},
-                     :resource_type => 'Scaptimony::Policy'
-          permission :view_scaptimony_scap_contents, {:scaptimony_scap_contents         => [:index, :show, :auto_complete_search],
+                     :resource_type => 'ForemanOpenscap::Policy'
+          permission :view_scap_contents, {:scap_contents => [:index, :show, :auto_complete_search],
                                                       'api/v2/compliance/scap_contents' => [:index, :show]},
-                     :resource_type => 'Scaptimony::ScapContent'
-          permission :edit_scaptimony_scap_contents, {:scaptimony_scap_contents         => [:edit, :update],
+                     :resource_type => 'ForemanOpenscap::ScapContent'
+          permission :edit_scap_contents, {:scap_contents => [:edit, :update],
                                                       'api/v2/compliance/scap_contents' => [:update]},
-                     :resource_type => 'Scaptimony::ScapContent'
-          permission :create_scaptimony_scap_contents, {:scaptimony_scap_contents         => [:new, :create],
+                     :resource_type => 'ForemanOpenscap::ScapContent'
+          permission :create_scap_contents, {:scap_contents => [:new, :create],
                                                         'api/v2/compliance/scap_contents' => [:create]},
-                     :resource_type => 'Scaptimony::ScapContent'
-          permission :destroy_scaptimony_scap_contents, {:scaptimony_scap_contents         => [:destroy],
+                     :resource_type => 'ForemanOpenscap::ScapContent'
+          permission :destroy_scap_contents, {:scap_contents => [:destroy],
                                                          'api/v2/compliance/scap_contents' => [:destroy]},
-                     :resource_type => 'Scaptimony::ScapContent'
+                     :resource_type => 'ForemanOpenscap::ScapContent'
         end
-        role "Compliance viewer", [:view_arf_reports, :view_scaptimony_policies, :view_scaptimony_scap_contents]
-        role "Compliance manager", [:view_arf_reports, :view_scaptimony_policies, :view_scaptimony_scap_contents,
-                                    :destroy_arf_reports, :edit_scaptimony_policies, :edit_scaptimony_scap_contents, :assign_scaptimony_policies,
-                                    :create_scaptimony_policies, :create_scaptimony_scap_contents, :destroy_scaptimony_policies, :destroy_scaptimony_scap_contents]
+        role "Compliance viewer", [:view_arf_reports, :view_policies, :view_scap_contents]
+        role "Compliance manager", [:view_arf_reports, :view_policies, :view_scap_contents,
+                                    :destroy_arf_reports, :edit_policies, :edit_scap_contents, :assign_policies,
+                                    :create_policies, :create_scap_contents, :destroy_policies, :destroy_scap_contents]
         role "Create ARF report", [:create_arf_reports] # special as only Proxy can create
         #add menu entries
         divider :top_menu, :caption => N_('Compliance'), :parent => :hosts_menu
         menu :top_menu, :compliance_policies, :caption => N_('Policies'),
-             :url_hash => {:controller => :'scaptimony_policies', :action => :index},
+             :url_hash => {:controller => :'policies', :action => :index},
              :parent => :hosts_menu
         menu :top_menu, :compliance_contents, :caption => N_('SCAP contents'),
-             :url_hash => {:controller => :'scaptimony_scap_contents', :action => :index},
+             :url_hash => {:controller => :'scap_contents', :action => :index},
              :parent => :hosts_menu
         menu :top_menu, :compliance_reports, :caption => N_('Reports'),
-             :url_hash => {:controller => :'scaptimony_arf_reports', :action => :index},
+             :url_hash => {:controller => :'arf_reports', :action => :index},
              :parent => :hosts_menu
         # add dashboard widget
-        widget 'foreman_openscap_host_reports_widget', :name => N_('OpenSCAP Host reports widget'), :sizex => 4, :sizey => 1
-        widget 'foreman_openscap_reports_breakdown_widget', :name => N_('OpenSCAP Host reports widget'), :sizex => 4, :sizey => 1
+        widget 'compliance_host_reports_widget',
+          :name => N_('OpenSCAP Host reports widget'), :sizex => 4, :sizey => 1
+        widget 'compliance_reports_breakdown_widget',
+          :name => N_('OpenSCAP Reports breakdown widget'), :sizex => 4, :sizey => 1
-        # As 'scaptimony_arf_report_breakdowns' is a view and does not appear in schema.rb, db:test:prepare will not create the view
+        # As 'arf_report_breakdowns' is a view and does not appear in schema.rb, db:test:prepare will not create the view
         # which will make the following tests fail.
         tests_to_skip ({
                           "DashboardIntegrationTest" => ["dashboard page", "dashboard link hosts that had performed modifications",
@@ -121,18 +129,21 @@ module ForemanOpenscap
       Host::Managed.send(:include, ForemanOpenscap::HostExtensions)
       HostsHelper.send(:include, ForemanOpenscap::HostsHelperExtensions)
       Hostgroup.send(:include, ForemanOpenscap::HostgroupExtensions)
-      ::Scaptimony::ArfReport.send(:include, ForemanOpenscap::ArfReportExtensions)
-      ::Scaptimony::Asset.send(:include, ForemanOpenscap::AssetExtensions)
-      ::Scaptimony::Policy.send(:include, ForemanOpenscap::PolicyExtensions)
-      ::Scaptimony::ScapContent.send(:include, ForemanOpenscap::ScapContentExtensions)
+      Report.send(:include, ForemanOpenscap::ComplianceStatusScopedSearch)
     end
     rake_tasks do
       Rake::Task['db:seed'].enhance do
-        Scaptimony::Engine.load_seed
         ForemanOpenscap::Engine.load_seed
       end
     end
+  end
+  def self.table_name_prefix
+    "foreman_openscap_"
+  end
+  def self.use_relative_model_naming?
+    true
   end
 end

data/lib/foreman_openscap/helper.rb CHANGED Viewed

@@ -15,6 +15,14 @@ module ForemanOpenscap::Helper
     asset
   end
+  def self.find_name_or_uuid_by_host(host)
+    if defined?(::Katello::System)
+      host.content_host.uuid
+    else
+      host.name
+    end
+  end
   private
   def self.find_host_by_name_or_uuid(cname)

data/lib/foreman_openscap/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module ForemanOpenscap
-  VERSION = "0.4.3"
+  VERSION = "0.5.0"
 end

data/lib/tasks/foreman_openscap_tasks.rake CHANGED Viewed

@@ -16,6 +16,20 @@ namespace :foreman_openscap do
       ForemanOpenscap::BulkUpload.new.upload_from_files(files_array)
     end
   end
+  task :rubocop do
+    begin
+      require 'rubocop/rake_task'
+      RuboCop::RakeTask.new(:rubocop_foreman_openscap) do |task|
+        task.patterns = ["#{ForemanOpenscap::Engine.root}/app/**/*.rb",
+        "#{ForemanOpenscap::Engine.root}/lib/**/*.rb",
+        "#{ForemanOpenscap::Engine.root}/test/**/*.rb"]
+      end
+    rescue
+      puts 'Rubocop not loaded.'
+    end
+    Rake::Task['rubocop_foreman_openscap'].invoke
+  end
 end
 # Tests

data/test/factories/arf_report_factory.rb CHANGED Viewed

@@ -1,8 +1,11 @@
 FactoryGirl.define do
-  factory :arf_report, :class => Scaptimony::ArfReport do |f|
-    f.asset
-    f.policy
-    f.sequence(:digest) { |n| "#{n}1212aa#{n}"}
-    date '1973-01-13'
+  factory :arf_report, :class => ::ForemanOpenscap::ArfReport do
+    host_id 1
+    policy nil
+    policy_arf_report nil
+    sequence(:reported_at) { |n| Time.new(1490 + n, 01, 13, 15, 24, 00)}
+    logs []
+    status 0
+    metrics {}
   end
-end
+end

data/test/factories/asset_factory.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 FactoryGirl.define do
-  factory :asset, :class => Scaptimony::Asset do |f|
+  factory :asset, :class => ::ForemanOpenscap::Asset do |f|
     f.assetable_id { FactoryGirl.create(:host).id }
     f.assetable_type 'Host::Base'
   end

data/test/factories/compliance_host_factory.rb ADDED Viewed

@@ -0,0 +1,9 @@
+FactoryGirl.define do
+  factory :compliance_host, :class => Host::Managed do
+    sequence(:name) { |n| "host#{n}" }
+    sequence(:hostname) { |n| "hostname#{n}" }
+    root_pass 'xybxa6JUkz63w'
+    policies []
+    asset nil
+  end
+end

data/test/factories/compliance_log_factory.rb ADDED Viewed

@@ -0,0 +1,11 @@
+FactoryGirl.define do
+  factory :compliance_log, :class => :log do
+    result "fail"
+    report
+    level_id 1
+    source nil
+    after(:build) do |log|
+      log.message = FactoryGirl.create(:message)
+    end
+  end
+end

data/test/factories/policy_arf_report_factory.rb ADDED Viewed

@@ -0,0 +1,6 @@
+FactoryGirl.define do
+  factory :policy_arf_report, :class => ForemanOpenscap::PolicyArfReport do
+    policy_id nil
+    arf_report_id nil
+  end
+end

data/test/factories/policy_factory.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 FactoryGirl.define do
-  factory :policy, :class => Scaptimony::Policy do
+  factory :policy, :class => ::ForemanOpenscap::Policy do
     sequence(:name) { |n| "policy#{n}" }
     period 'weekly'
     weekday 'monday'
@@ -7,5 +7,6 @@ FactoryGirl.define do
     scap_content_profile
     day_of_month '1'
     cron_line '* * * * 30'
+    hosts []
   end
-end
+end

data/test/factories/scap_content_related.rb CHANGED Viewed

@@ -1,13 +1,13 @@
 include ActionDispatch::TestProcess
 FactoryGirl.define do
-  factory :scap_content, :class => Scaptimony::ScapContent do |f|
+  factory :scap_content, :class => ::ForemanOpenscap::ScapContent do |f|
     f.title 'fedora'
     f.original_filename 'fedora ds'
     f.scap_file { File.new('../foreman_openscap/test/files/scap_contents/ssg-fedora-ds.xml', 'rb').read }
   end
-  factory :scap_content_profile, :class => Scaptimony::ScapContentProfile do |f|
+  factory :scap_content_profile, :class => ::ForemanOpenscap::ScapContentProfile do |f|
     f.scap_content
     f.profile_id 'xccdf_org.test.common_test_profile'
     f.title 'test Profile for testing'

data/test/functional/api/v2/compliance/arf_reports_controller_test.rb CHANGED Viewed

@@ -3,10 +3,11 @@ require 'test_plugin_helper'
 class Api::V2::Compliance::ArfReportsControllerTest < ActionController::TestCase
   setup do
     # override validation of policy (puppetclass, lookup_key overrides)
-    Scaptimony::Policy.any_instance.stubs(:valid?).returns(true)
+    ForemanOpenscap::Policy.any_instance.stubs(:valid?).returns(true)
+    @asset = FactoryGirl.create(:asset)
+    @report = FactoryGirl.create(:arf_report, :asset => @asset)
   end
   test "should get index" do
-    FactoryGirl.create(:arf_report)
     get :index, {}, set_session_user
     response = ActiveSupport::JSON.decode(@response.body)
     assert_not response['results'].empty?
@@ -14,7 +15,7 @@ class Api::V2::Compliance::ArfReportsControllerTest < ActionController::TestCase
   end
   test "should get show" do
-    get :show, { :id => FactoryGirl.create(:arf_report).to_param }, set_session_user
+    get :show, { :id => @report.to_param }, set_session_user
     response = ActiveSupport::JSON.decode(@response.body)
     refute response['passed'].blank?
     refute response['failed'].blank?

data/test/functional/api/v2/compliance/policies_controller_test.rb CHANGED Viewed

@@ -2,7 +2,7 @@ require 'test_plugin_helper'
 class Api::V2::Compliance::PoliciesControllerTest < ActionController::TestCase
   setup do
-    Scaptimony::Policy.any_instance.stubs(:ensure_needed_puppetclasses).returns(true)
+    ::ForemanOpenscap::Policy.any_instance.stubs(:ensure_needed_puppetclasses).returns(true)
   end
   test "should get index" do
@@ -53,7 +53,7 @@ class Api::V2::Compliance::PoliciesControllerTest < ActionController::TestCase
     policy = FactoryGirl.create(:policy)
     delete :destroy, { :id => policy.id }, set_session_user
     assert_response :ok
-    refute Scaptimony::Policy.exists?(policy.id)
+    refute ForemanOpenscap::Policy.exists?(policy.id)
   end
   test "should return xml of scap content" do

data/test/functional/api/v2/compliance/scap_contents_controller_test.rb CHANGED Viewed

@@ -34,6 +34,8 @@ class Api::V2::Compliance::ScapContentsControllerTest < ActionController::TestCa
   end
   test "should not update invalid scap content"  do
+    skip("Solve 'ActiveRecord::RecordInvalid' error")
+    ProxyAPI::Openscap.any_instance.stubs(:validate_scap_content).returns({'errors' => ['Invalid file']})
     scap_content = FactoryGirl.create(:scap_content)
     put :update, { :id => scap_content.id, :scap_content => {:scap_file => '<xml>blah</xml>'}}, set_session_user
     assert_response :unprocessable_entity
@@ -43,6 +45,6 @@ class Api::V2::Compliance::ScapContentsControllerTest < ActionController::TestCa
     scap_content = FactoryGirl.create(:scap_content)
     delete :destroy, { :id => scap_content.id }, set_session_user
     assert_response :ok
-    refute Scaptimony::ScapContent.exists?(scap_content.id)
+    refute ForemanOpenscap::ScapContent.exists?(scap_content.id)
   end
 end

data/test/lib/foreman_openscap/bulk_upload_test.rb CHANGED Viewed

@@ -7,7 +7,7 @@ class BulkUploadTest < ActiveSupport::TestCase
   test 'upload_from_files should create only one scap content' do
     scap_files = ['../foreman_openscap/test/files/scap_contents/ssg-fedora-ds.xml']
-    assert_difference('Scaptimony::ScapContent.count', 1) do
+    assert_difference('ForemanOpenscap::ScapContent.count', 1) do
       2.times do
         ForemanOpenscap::BulkUpload.new.upload_from_files(scap_files)
       end

data/test/test_plugin_helper.rb CHANGED Viewed

@@ -4,3 +4,33 @@ require 'test_helper'
 # Add plugin to FactoryGirl's paths
 FactoryGirl.definition_file_paths << File.join(File.dirname(__FILE__), 'factories')
 FactoryGirl.reload
+Spork.each_run do
+  class ActionController::TestCase
+    setup :add_smart_proxy
+    private
+    def add_smart_proxy
+      FactoryGirl.create(:smart_proxy, :url => 'http://localhost:8443', :features => [FactoryGirl.create(:feature, :name => 'Openscap')])
+      ::ProxyAPI::Features.any_instance.stubs(:features).returns(['puppet', 'openscap'])
+      ProxyAPI::Openscap.any_instance.stubs(:validate_scap_content).returns({'errors' => []})
+      ProxyAPI::Openscap.any_instance.stubs(:fetch_policies_for_scap_content)
+          .returns({'xccdf_org.ssgproject.content_profile_common' => 'Common Profile for General-Purpose Fedora Systems'})
+    end
+  end
+  class ActiveSupport::TestCase
+    setup :add_smart_proxy
+    private
+    def add_smart_proxy
+      FactoryGirl.create(:smart_proxy, :url => 'http://localhost:8443', :features => [FactoryGirl.create(:feature, :name => 'Openscap')])
+      ::ProxyAPI::Features.any_instance.stubs(:features).returns(['puppet', 'openscap'])
+      ProxyAPI::Openscap.any_instance.stubs(:validate_scap_content).returns({'errors' => []})
+      ProxyAPI::Openscap.any_instance.stubs(:fetch_policies_for_scap_content)
+          .returns({'xccdf_org.ssgproject.content_profile_common' => 'Common Profile for General-Purpose Fedora Systems'})
+    end
+  end
+end