foreman_openscap 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 85d4887656fc8e0fdb1e995c64da16fde4a837cb
-  data.tar.gz: 7e5dd3ca26c3e763c5701ba5e68dd3b812c38129
+  metadata.gz: 9099dd74d7cf2f5a4d208da949f2985b7e439b68
+  data.tar.gz: 86e35c42bd3592cd233cde1edb2e07447027f1d0
 SHA512:
-  metadata.gz: 70f7f2cbeb0c2ce2ba0016646fe5cc58295d89326ffa0059155962640deeaeff931aa6b76017024550a54e47523b62aea42570b6e962c85afa9750516fd3b112
-  data.tar.gz: 9584c879754e1ca0eecc0499fe273fd134a5e85735a05bd29eb907173a0430563c987250e577055f733d6e7d69dc10c19b59032b0c6ea08caa77f33ae9b6ed4e
+  metadata.gz: 36ddf368e83db6d1f6b155cbe63cd07addfa3bd48a302020878e9f02460b224753e9a26cbb077ed9a26031be89a1b2dbbf69cf45d216c575e4f8fb97d9c62f28
+  data.tar.gz: b5224b0a227ba97923cc6aed1e550a5e28bc291b2b11a70822585dcf5b3c2db1287cee865b60b884c7b1fa625f55f23566d5ad7d3570fcaaf02a19bfbc0cd243

data/README.md

@@ -4,17 +4,21 @@ This plug-in enables automated vulnerability assessment and compliance audit
 of Foreman based infrastructure.
 
 + Current features:
+  + Centralized policy management
   + Collect & achieve OpenSCAP audit results from your infrastructure
-+ Future features:
   + Display audit results
-  + Set-up organization defined targeting (connect set of system, a policy and time schedule)
-  + Set-up periodical audits
   + Search audit results
   + Search for non-compliant systems
++ Future features:
+  + Set-up organization defined targeting (connect set of system, a policy and time schedule)
+  + Set-up periodical audits
   + Search for not audited systems
   + Comparison of audit results
   + Waive known issues (one-time waivers, re-occurring, waivers)
   + Ad-hoc audit of given machine
+  + Support for PreupgradeAssistant evaluation
+  + Vulnerability Assessment (processing OVAL CVE streams)
+  + E-mail notifications
 
 ## Installation
 

data/app/assets/javascript/policy_edit.js

@@ -0,0 +1,14 @@
+function scap_content_selected(element){
+  var attrs = attribute_hash(['scap_content_id']);
+  var url = $(element).attr('data-url');
+  $(element).indicator_show();
+  $.ajax({
+    data: attrs,
+    type: 'post',
+    url: url,
+    complete: function() { $(element).indicator_hide();},
+    success: function(request) {
+      $('#scap_content_profile_select').html(request);
+    }
+  })
+}

data/app/controllers/scaptimony_arf_reports_controller.rb

@@ -0,0 +1,31 @@
+class ScaptimonyArfReportsController < ApplicationController
+  include Foreman::Controller::AutoCompleteSearch
+
+  before_filter :find_by_id, :only => [:show, :destroy]
+
+  def model_of_controller
+    ::Scaptimony::ArfReport
+  end
+
+  # GET /scaptimony/arf_reports
+  def index
+    @arf_reports = resource_base.search_for(params[:search], :order => params[:order]).paginate(:page => params[:page], :per_page => params[:per_page])
+  end
+
+  # GET /scaptimony/arf_reports/1
+  def show
+    self.response_body = @arf_report
+  end
+
+  def destroy
+    if @arf_report.destroy
+      process_success :success_redirect => scaptimony_arf_reports_path
+    else
+      process_error
+    end
+  end
+
+  def find_by_id
+    @arf_report = resource_base.find(params[:id])
+  end
+end

data/app/controllers/scaptimony_dashboard_controller.rb

@@ -0,0 +1,6 @@
+class ScaptimonyDashboardController < ApplicationController
+  include Foreman::Controller::AutoCompleteSearch
+
+  def index
+  end
+end

data/app/controllers/scaptimony_policies_controller.rb

@@ -0,0 +1,58 @@
+class ScaptimonyPoliciesController < ApplicationController
+  include Foreman::Controller::AutoCompleteSearch
+  before_filter :find_by_id, :only => [:show, :edit, :update, :destroy]
+
+  def model_of_controller
+    ::Scaptimony::Policy
+  end
+
+  # GET /scaptimony/policies
+  def index
+    @policies = resource_base.search_for(params[:search])
+  end
+
+  def new
+    @policy = ::Scaptimony::Policy.new
+  end
+
+  def show
+    self.response_body = ::Scaptimony::GuideGenerator.new @policy
+  end
+
+  def create
+    @policy = ::Scaptimony::Policy.new(params[:policy])
+    if @policy.save
+      process_success :success_redirect => scaptimony_policies_path
+    else
+      process_error
+    end
+  end
+
+  def update
+    if @policy.update_attributes(params[:policy])
+      process_success :success_redirect => scaptimony_policies_path
+    else
+      process_error
+    end
+  end
+
+  def destroy
+    if @policy.destroy
+      process_success :success_redirect => scaptimony_policies_path
+    else
+      process_error
+    end
+  end
+
+  def scap_content_selected
+    if params[:scap_content_id] and @scap_content = ::Scaptimony::ScapContent.find(params[:scap_content_id])
+      @policy ||= ::Scaptimony::Policy.new
+      render :partial => 'scap_content_results', :locals => { :policy => @policy }
+    end
+  end
+
+  private
+  def find_by_id
+    @policy = resource_base.find(params[:id])
+  end
+end

data/app/controllers/scaptimony_scap_contents_controller.rb

@@ -0,0 +1,54 @@
+class ScaptimonyScapContentsController < ApplicationController
+  include Foreman::Controller::AutoCompleteSearch
+  before_filter :handle_file_upload, :only => [:create]
+  before_filter :find_by_id, :only => [:show, :edit, :update]
+
+  def model_of_controller
+    ::Scaptimony::ScapContent
+  end
+
+  # GET /scaptimony/scap_contents
+  def index
+    @contents = resource_base.search_for(params[:search])
+  end
+
+  def show
+    send_file @scaptimony_scap_content.path,
+      :type => "application/xml",
+      :filename => @scaptimony_scap_content.original_filename
+  end
+
+  def new
+    @scaptimony_scap_content = ::Scaptimony::ScapContent.new
+  end
+
+  # POST /scaptimony/scap_contents
+  def create
+    @scaptimony_scap_content = ::Scaptimony::ScapContent.new(params[:scap_content])
+    if @scaptimony_scap_content.store
+      process_success :success_redirect => scaptimony_scap_contents_path
+    else
+      process_error
+    end
+  end
+
+  def handle_file_upload
+    return unless params[:scap_content] and
+       t = params[:scap_content][:scap_file]
+    params[:scap_content][:original_filename] = t.original_filename
+    params[:scap_content][:scap_file] = t.read if t.respond_to?(:read)
+  end
+
+  def update
+    if @scaptimony_scap_content.update_attributes(params[:scap_content])
+      process_success :success_redirect => scaptimony_scap_contents_path
+    else
+      process_error
+    end
+  end
+
+  private
+  def find_by_id
+    @scaptimony_scap_content = resource_base.find(params[:id])
+  end
+end

data/app/helpers/arf_reports_helper.rb

@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2014 Red Hat Inc.
+#
+# This software is licensed to you under the GNU General Public License,
+# version 3 (GPLv3). There is NO WARRANTY for this software, express or
+# implied, including the implied warranties of MERCHANTABILITY or FITNESS
+# FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv3
+# along with this software; if not, see http://www.gnu.org/licenses/gpl.txt
+#
+
+module ArfReportsHelper
+  def report_arf_column(event, style = "")
+    style = "label-default" if event == 0
+    content_tag(:span, event, :class=>'label ' + style)
+  end
+end

data/app/helpers/scaptimony_policies_helper.rb

@@ -0,0 +1,7 @@
+module ScaptimonyPoliciesHelper
+  def profiles_selection
+    return @scap_content.scap_content_profiles unless @scap_content.blank?
+    return @policy.scap_content.scap_content_profiles unless @policy.scap_content.blank?
+    return []
+  end
+end

data/app/models/concerns/foreman_openscap/arf_report_extensions.rb

@@ -14,8 +14,7 @@ module ForemanOpenscap
   module ArfReportExtensions
     extend ActiveSupport::Concern
     included do
-      scoped_search :on => :date, :complete_value => true
-      scoped_search :on => :digest
+      scoped_search :in => :asset, :on => :name, :complete_value => :true, :rename => "host"
     end
   end
 end

data/app/models/concerns/foreman_openscap/policy_extensions.rb

@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2014 Red Hat Inc.
+#
+# This software is licensed to you under the GNU General Public License,
+# version 3 (GPLv3). There is NO WARRANTY for this software, express or
+# implied, including the implied warranties of MERCHANTABILITY or FITNESS
+# FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv3
+# along with this software; if not, see http://www.gnu.org/licenses/gpl.txt
+#
+
+require 'scaptimony/policy'
+
+module ForemanOpenscap
+  module PolicyExtensions
+    extend ActiveSupport::Concern
+    included do
+      scoped_search :on => :name, :complete_value => true
+    end
+  end
+end

data/app/models/concerns/foreman_openscap/scap_content_extensions.rb

@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2014 Red Hat Inc.
+#
+# This software is licensed to you under the GNU General Public License,
+# version 3 (GPLv3). There is NO WARRANTY for this software, express or
+# implied, including the implied warranties of MERCHANTABILITY or FITNESS
+# FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv3
+# along with this software; if not, see http://www.gnu.org/licenses/gpl.txt
+#
+
+require 'scaptimony/scap_content'
+
+module ForemanOpenscap
+  module ScapContentExtensions
+    extend ActiveSupport::Concern
+    included do
+      scoped_search :on => :digest
+    end
+  end
+end

data/app/views/scaptimony_arf_reports/_list.html.erb

@@ -0,0 +1,27 @@
+<table class="table table-bordered table-striped ellipsis">
+  <tr>
+    <th><%= sort :host %></th>
+    <th><%= sort :date, :as => _("Date") %></th>
+    <th><%= sort :passed, :as => _("Passed") %></th>
+    <th><%= sort :failed, :as => _("Failed") %></th>
+    <th><%= sort :othered, :as => _("Other") %></th>
+    <th></th>
+  </tr>
+  <% for arf_report in @arf_reports %>
+    <tr>
+      <td><%= name_column(arf_report.asset.host) %></td>
+      <td><%= _("%s ago") % time_ago_in_words(arf_report.date.getlocal) %></td>
+      <td><%= report_arf_column(arf_report.passed, "label-info") %></th>
+      <td><%= report_arf_column(arf_report.failed, "label-danger") %></th>
+      <td><%= report_arf_column(arf_report.othered, "label-warning") %></th>
+      <td>
+        <%= action_buttons(
+          link_to(_("View Report"), hash_for_scaptimony_arf_report_path(:id => arf_report.id)),
+          display_delete_if_authorized(hash_for_scaptimony_arf_report_path(:id => arf_report.id),
+            :confirm => _("Delete compliance report for %s?") % arf_report.asset.host)
+          ) %>
+      </td>
+    </tr>
+  <% end %>
+</table>
+<%= will_paginate_with_info @arf_reports %>

data/app/views/scaptimony_arf_reports/index.html.erb

@@ -0,0 +1,4 @@
+<% title _("Compliance Reports") %>
+
+<%= render :partial => 'list' %>
+

data/app/views/scaptimony_policies/_form.html.erb

@@ -0,0 +1,39 @@
+<%= javascript 'policy_edit' %>
+<%= form_for @policy,
+    :url => (@policy.id? ? scaptimony_policy_path(:id => @policy.id) : scaptimony_policies_path) do |f| %>
+  <%= base_errors_for @policy %>
+
+  <ul class="nav nav-tabs" data-tabs="tabs">
+    <li class="active"><a href="#primary" data-toggle="tab"><%= _("General") %></a></li>
+    <li><a href="#scap_content" data-toggle="tab"><%= _("SCAP Content") %></a></li>
+    <li><a href="#scap_schedule" data-toggle="tab"><%= _("Schedule") %></a></li>
+  </ul>
+  <div class="tab-content">
+    <div class="tab-pane active" id="primary">
+      <%= text_f(f, :name) %>
+      <%= text_f(f, :description, :size => "col-md-8" ) %>
+    </div>
+    <div class="tab-pane" id="scap_content">
+      <%= select_f f, :scap_content_id, Scaptimony::ScapContent.all, :id, :title,
+        {:include_blank => _("Choose existing SCAP Content")},
+        {:label => _("SCAP Content"),
+          :onchange => 'scap_content_selected(this);',
+          :'data-url' => method_path('scap_content_selected')}
+      %>
+      <span id="scap_content_profile_select">
+        <%= select_f f, :scap_content_profile_id, profiles_selection, :id, :title,
+          {:selected => @policy.scap_content_profile_id,
+            :include_blank => _("Default XCCDF profile")},
+          {:label => _("XCCDF Profile"),
+            :disabled => profiles_selection.empty? ? true : false,
+            :help_inline => :indicator}
+        %>
+      </span>
+    </div>
+    <div class="tab-pane" id="scap_schedule">
+      <%= text_f(f, :period) %>
+      <%= text_f(f, :weekday) %>
+    </div>
+    <%= submit_or_cancel f %>
+  </div>
+<% end %>

data/app/views/scaptimony_policies/_list.html.erb

@@ -0,0 +1,34 @@
+<table class="table table-bordered table-striped table-two-pane">
+  <tr>
+    <th>Name</th>
+    <th>Content</th>
+    <th>Profile</th>
+    <th></th>
+  </tr>
+  <% for policy in @policies %>
+    <tr>
+      <td>
+          <%= link_to_if_authorized policy.name,
+                  hash_for_edit_scaptimony_policy_path(:id => policy).merge(
+                       :auth_object => policy, :authorizer => authorizer) %>
+      </td>
+      <td>
+          <% if !policy.scap_content.nil? %>
+            <%= link_to_if_authorized policy.scap_content.title,
+                  hash_for_edit_scaptimony_scap_content_path(:id => policy.scap_content) %>
+          <% end %>
+      </td>
+      <td>
+          <%= policy.scap_content_profile.nil? ? "Default" : policy.scap_content_profile.title %>
+      </td>
+      <td>
+          <%= action_buttons(
+            link_to_if_authorized(_("Show Guide"), hash_for_scaptimony_policy_path(:id => policy.id)),
+            link_to_if_authorized(_("Edit"), hash_for_edit_scaptimony_policy_path(:id => policy.id)),
+            display_delete_if_authorized(hash_for_scaptimony_policy_path(:id => policy.id),
+              :confirm => _("Delete compliance policy %s with all the reports?") % policy.name)
+            ) %>
+      </td>
+    </tr>
+  <% end %>
+</table>

data/app/views/scaptimony_policies/_scap_content_results.html.erb

@@ -0,0 +1,10 @@
+<%= fields_for @policy do |f| %>
+  <%= select_f f, :scap_content_profile_id, profiles_selection, :id, :title,
+    {:selected => @policy.scap_content_profile_id,
+      :include_blank => _("Default XCCDF profile")},
+    {:label => _("XCCDF Profile"),
+      :disabled => profiles_selection.empty? ? true : false,
+      :help_inline => :indicator}
+  %>
+<% end %>
+

data/app/views/scaptimony_policies/edit.html.erb

@@ -0,0 +1,3 @@
+<% title _("Edit Compliance Policy") %>
+
+<%= render :partial => 'form' %>

data/app/views/scaptimony_policies/index.html.erb

@@ -0,0 +1,9 @@
+<%= javascript 'policy_edit' %>
+<% title _("Compliance Policies") %>
+
+<% title_actions(
+  display_link_if_authorized(_("New Compliance Policy"), hash_for_new_scaptimony_policy_path),
+  link_to(_("Help"), :action => "welcome")
+  ) %>
+
+<%= render :partial => 'list' %>

data/app/views/scaptimony_policies/new.html.erb

@@ -0,0 +1,3 @@
+<% title _("New Compliance Policy") %>
+
+<%= render :partial => 'form' %>

data/app/views/scaptimony_policies/welcome.html.erb

@@ -0,0 +1,10 @@
+<% title_actions display_link_if_authorized(_("New Compliance policy"), hash_for_new_scaptimony_policy_path) %>
+
+<% title _("Compliance policy configuration") %>
+<div id="welcome">
+  <p>
+  <%= _('A compliance policy is defined by security professionals who specify desired settings (often in the form of a checklist) that are to be used in the computing environment. Compliance audit is a process of figuring out whether a given object follows all the rules written out in a compliance policy.') %>
+
+  <%= _('In order to define compliance policy, you need to prepare checklist (SCAP content), list of systems and time schedule') %>
+  </p>
+</div>

data/app/views/scaptimony_scap_contents/_form.html.erb

@@ -0,0 +1,18 @@
+<%= form_for @scaptimony_scap_content,
+    :url => (@scaptimony_scap_content.id? ?
+        scaptimony_scap_content_path(:id => @scaptimony_scap_content.id) : scaptimony_scap_contents_path),
+    :html => { :multipart => true } do |f| %>
+
+  <%= base_errors_for @scaptimony_scap_content %>
+
+  <ul class="nav nav-tabs" data-tabs="tabs">
+    <li class="active"><a href="#primary" data-toggle="tab"><%= _("File Upload") %></a></li>
+  </ul>
+  <div class="tab-content">
+    <div class="tab-pane active" id="primary">
+      <%= text_f(f, :title) %>
+      <%= file_field_f f, :scap_file, :help_block  => _("Upload SCAP DataStream file") %>
+    </div>
+    <%= submit_or_cancel f %>
+  </div>
+<% end %>

data/app/views/scaptimony_scap_contents/_list.html.erb

@@ -0,0 +1,27 @@
+<table class="table table-bordered table-striped table-two-pane">
+  <tr>
+    <th>Title</th>
+    <th>Filename</th>
+    <th>Created</th>
+    <th></th>
+  </tr>
+  <% for c in @contents %>
+    <tr>
+      <td>
+          <%= c.title %>
+      </td>
+      <td>
+          <%= c.original_filename %>
+      </td>
+      <td>
+          <%= _("%s ago") % time_ago_in_words(c.created_at.getlocal) %>
+      </td>
+      <td>
+        <%= action_buttons(
+          link_to_if_authorized(_("Edit"), hash_for_edit_scaptimony_scap_content_path(:id => c.id)),
+          link_to_if_authorized(_("Download"), hash_for_scaptimony_scap_content_path(:id => c.id))
+          ) %>
+      </td>
+    </tr>
+  <% end %>
+</table>

data/app/views/scaptimony_scap_contents/edit.html.erb

@@ -0,0 +1,3 @@
+<% title _("Edit SCAP Content") %>
+
+<%= render :partial => 'form' %>

data/app/views/scaptimony_scap_contents/index.html.erb

@@ -0,0 +1,5 @@
+<% title _("SCAP Contents") %>
+
+<% title_actions display_link_if_authorized(_("Upload New SCAP Content"), hash_for_new_scaptimony_scap_content_path) %>
+
+<%= render :partial => 'list' %>

data/app/views/scaptimony_scap_contents/new.html.erb

@@ -0,0 +1,3 @@
+<% title _("Upload new SCAP content file") %>
+
+<%= render :partial => 'form' %>

data/config/routes.rb

@@ -1,6 +1,17 @@
 Rails.application.routes.draw do
 
-  resources :arf_reports, :only => [:index, :show] do
+  scope '/scaptimony' do
+    resources :arf_reports, :only => [:index, :show, :destroy],
+              :as => :scaptimony_arf_reports, :controller => :scaptimony_arf_reports
+    match 'dashboard', :to => 'scaptimony_dashboard#index', :as => "scaptimony_dashboard"
+    resources :policies, :only => [:index, :new, :show, :create, :edit, :update, :destroy],
+              :as => :scaptimony_policies, :controller => :scaptimony_policies do
+      collection do
+        post 'scap_content_selected'
+      end
+    end
+    resources :scap_contents, :only => [:index, :show, :new, :create, :edit, :update],
+      :as => :scaptimony_scap_contents, :controller => :scaptimony_scap_contents
   end
 
   namespace :api do

data/lib/foreman_openscap/engine.rb

@@ -15,24 +15,47 @@ module ForemanOpenscap
       app.config.paths['db/migrate'] += ForemanOpenscap::Engine.paths['db/migrate'].existent
     end
 
+    initializer 'foreman_openscap.assets.precompile' do |app|
+      app.config.assets.precompile += %w(
+        'foreman_openscap/policy_edit.js'
+      )
+    end
+
+    initializer 'foreman_openscap.configure_assets', :group => :assets do
+      SETTINGS[:foreman_openscap] =
+        { :assets => { :precompile => ['foreman_openscap/policy_edit.js']}}
+    end
+
     initializer 'foreman_openscap.register_plugin', :after=> :finisher_hook do |app|
       Foreman::Plugin.register :foreman_openscap do
         requires_foreman '>= 1.5'
 
         # Add permissions
         security_block :foreman_openscap do
-          permission :view_arf_reports, {:arf_reports => [:index, :show] }
+          permission :view_arf_reports, {:scaptimony_arf_reports => [:index, :show],
+                                         :scaptimony_policies => [:index, :show],
+                                         :scaptimony_scap_contents => [:index, :show],
+                                        }
+          permission :edit_compliance, {:scaptimony_arf_reports => [:destroy],
+                                        :scaptimony_policies => [:new, :create, :edit, :update, :destroy],
+                                        :scaptimony_scap_contents => [:new, :create, :edit, :update]
+                                       }
         end
 
-        # Add a new role called 'Discovery' if it doesn't exist
-        role "OpenSCAP reports view", [:view_arf_reports]
+        role "View compliance reports", [:view_arf_reports]
+        role "Edit compliance policies", [:edit_compliance]
 
-        #add menu entry
-        menu :top_menu, :template,
-             :url_hash => {:controller => :'arf_reports', :action => :index },
-             :caption  => 'OpenSCAP Scans',
-             :parent   => :hosts_menu,
-             :after    => :hosts
+        #add menu entries
+        divider :top_menu, :caption => N_('Compliance'), :parent => :hosts_menu
+        menu :top_menu, :compliance_policies, :caption => N_('Policies'),
+             :url_hash => {:controller => :'scaptimony_policies', :action => :index },
+             :parent => :hosts_menu
+        menu :top_menu, :compliance_contents, :caption => N_('SCAP contents'),
+             :url_hash => {:controller => :'scaptimony_scap_contents', :action => :index },
+             :parent => :hosts_menu
+        menu :top_menu, :compliance_reports, :caption => N_('Reports'),
+             :url_hash => {:controller => :'scaptimony_arf_reports', :action => :index },
+             :parent   => :hosts_menu
       end
     end
 
@@ -42,6 +65,8 @@ module ForemanOpenscap
         Host::Managed.send(:include, ForemanOpenscap::HostExtensions)
         HostsHelper.send(:include, ForemanOpenscap::HostsHelperExtensions)
         ::Scaptimony::ArfReport.send(:include, ForemanOpenscap::ArfReportExtensions)
+        ::Scaptimony::Policy.send(:include, ForemanOpenscap::PolicyExtensions)
+        ::Scaptimony::ScapContent.send(:include, ForemanOpenscap::ScapContentExtensions)
       rescue => e
         puts "ForemanOpenscap: skipping engine hook (#{e.to_s})"
       end

data/lib/foreman_openscap/version.rb

@@ -1,3 +1,3 @@
 module ForemanOpenscap
-  VERSION = "0.1.0"
+  VERSION = "0.2.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: foreman_openscap
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Šimon Lukašík
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-10-24 00:00:00.000000000 Z
+date: 2014-12-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: deface
@@ -31,14 +31,34 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- app/views/arf_reports/index.html.erb
-- app/views/arf_reports/_list.html.erb
+- app/views/scaptimony_arf_reports/index.html.erb
+- app/views/scaptimony_arf_reports/_list.html.erb
+- app/views/scaptimony_scap_contents/_form.html.erb
+- app/views/scaptimony_scap_contents/new.html.erb
+- app/views/scaptimony_scap_contents/index.html.erb
+- app/views/scaptimony_scap_contents/_list.html.erb
+- app/views/scaptimony_scap_contents/edit.html.erb
+- app/views/scaptimony_policies/welcome.html.erb
+- app/views/scaptimony_policies/_form.html.erb
+- app/views/scaptimony_policies/new.html.erb
+- app/views/scaptimony_policies/index.html.erb
+- app/views/scaptimony_policies/_list.html.erb
+- app/views/scaptimony_policies/_scap_content_results.html.erb
+- app/views/scaptimony_policies/edit.html.erb
 - app/overrides/dashboard/index/sample_override.html.erb.deface
+- app/helpers/scaptimony_policies_helper.rb
 - app/helpers/concerns/foreman_openscap/hosts_helper_extensions.rb
-- app/controllers/arf_reports_controller.rb
+- app/helpers/arf_reports_helper.rb
+- app/controllers/scaptimony_policies_controller.rb
+- app/controllers/scaptimony_scap_contents_controller.rb
 - app/controllers/api/v2/openscap/arf_reports_controller.rb
+- app/controllers/scaptimony_dashboard_controller.rb
+- app/controllers/scaptimony_arf_reports_controller.rb
+- app/assets/javascript/policy_edit.js
 - app/models/concerns/foreman_openscap/arf_report_extensions.rb
 - app/models/concerns/foreman_openscap/host_extensions.rb
+- app/models/concerns/foreman_openscap/policy_extensions.rb
+- app/models/concerns/foreman_openscap/scap_content_extensions.rb
 - app/models/scaptimony/asset.rb
 - config/routes.rb
 - db/migrate/20141017172055_create_scaptimony_auditable_hosts.rb

data/app/controllers/arf_reports_controller.rb

@@ -1,23 +0,0 @@
-class ArfReportsController < ApplicationController
-  include Foreman::Controller::AutoCompleteSearch
-
-  before_filter :find_by_id, :only => [:show]
-
-  def model_of_controller
-    ::Scaptimony::ArfReport
-  end
-
-  # GET /arf_reports
-  def index
-    @arf_reports = resource_base.search_for(params[:search])
-  end
-
-  # GET /arf_reports/1
-  def show
-    self.response_body = @arf_report
-  end
-
-  def find_by_id
-    @arf_report = resource_base.find(params[:id])
-  end
-end

data/app/views/arf_reports/_list.html.erb

@@ -1,18 +0,0 @@
-<table class="table table-bordered table-striped ellipsis">
-  <tr>
-    <th><%= sort :host %></th>
-    <th><%= sort :policy, :as => _("Policy") %></th>
-    <th><%= sort :date, :as => _("Date") %></th>
-    <th></th>
-  </tr>
-  <% for arf_report in @arf_reports %>
-    <tr>
-      <td><%= name_column(arf_report.asset.host) %></td>
-      <td><%= arf_report.policy.name %></td>
-      <td><%= _("%s ago") % time_ago_in_words(arf_report.date.getlocal) %></td>
-      <td>
-        <%= action_buttons( link_to(_("View Report"), hash_for_arf_report_path(:id => arf_report.id))) %>
-      </td>
-    </tr>
-  <% end %>
-</table>

data/app/views/arf_reports/index.html.erb

@@ -1,4 +0,0 @@
-<% title _("OpenSCAP Reports") %>
-
-<%= render :partial => 'list' %>
-