@backstage-community/plugin-blackduck-backend 0.0.6 → 0.0.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +8 -0
- package/config.d.ts +15 -0
- package/dist/api/BlackDuckRestApi.cjs.js +134 -0
- package/dist/api/BlackDuckRestApi.cjs.js.map +1 -0
- package/dist/index.cjs.js +6 -347
- package/dist/index.cjs.js.map +1 -1
- package/dist/plugin.cjs.js +47 -0
- package/dist/plugin.cjs.js.map +1 -0
- package/dist/service/BlackDuckConfig.cjs.js +45 -0
- package/dist/service/BlackDuckConfig.cjs.js.map +1 -0
- package/dist/service/router.cjs.js +141 -0
- package/dist/service/router.cjs.js.map +1 -0
- package/package.json +9 -9
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,13 @@
|
|
|
1
1
|
# @backstage-community/plugin-blackduck-backend
|
|
2
2
|
|
|
3
|
+
## 0.0.7
|
|
4
|
+
|
|
5
|
+
### Patch Changes
|
|
6
|
+
|
|
7
|
+
- 4876ff1: Backstage version bump to v1.32.2
|
|
8
|
+
- Updated dependencies [4876ff1]
|
|
9
|
+
- @backstage-community/plugin-blackduck-common@0.0.4
|
|
10
|
+
|
|
3
11
|
## 0.0.6
|
|
4
12
|
|
|
5
13
|
### Patch Changes
|
package/config.d.ts
CHANGED
|
@@ -1,3 +1,18 @@
|
|
|
1
|
+
/*
|
|
2
|
+
* Copyright 2024 The Backstage Authors
|
|
3
|
+
*
|
|
4
|
+
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
5
|
+
* you may not use this file except in compliance with the License.
|
|
6
|
+
* You may obtain a copy of the License at
|
|
7
|
+
*
|
|
8
|
+
* http://www.apache.org/licenses/LICENSE-2.0
|
|
9
|
+
*
|
|
10
|
+
* Unless required by applicable law or agreed to in writing, software
|
|
11
|
+
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
12
|
+
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
13
|
+
* See the License for the specific language governing permissions and
|
|
14
|
+
* limitations under the License.
|
|
15
|
+
*/
|
|
1
16
|
export interface Config {
|
|
2
17
|
blackduck?: {
|
|
3
18
|
/**
|
|
@@ -0,0 +1,134 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
class BlackDuckRestApi {
|
|
4
|
+
constructor(logger, host, token) {
|
|
5
|
+
this.logger = logger;
|
|
6
|
+
this.host = host;
|
|
7
|
+
this.token = token;
|
|
8
|
+
this._bearer = "";
|
|
9
|
+
this._limit = 1e3;
|
|
10
|
+
}
|
|
11
|
+
_bearer;
|
|
12
|
+
_limit;
|
|
13
|
+
async auth() {
|
|
14
|
+
try {
|
|
15
|
+
const auth = await fetch(`${this.host}/tokens/authenticate`, {
|
|
16
|
+
method: "POST",
|
|
17
|
+
headers: {
|
|
18
|
+
Authorization: `token ${this.token}`,
|
|
19
|
+
Accept: "application/vnd.blackducksoftware.user-4+json",
|
|
20
|
+
"Content-Type": "application/json"
|
|
21
|
+
}
|
|
22
|
+
});
|
|
23
|
+
const token = await auth.json();
|
|
24
|
+
this.logger.info("Auth Successfull");
|
|
25
|
+
this._bearer = token.bearerToken;
|
|
26
|
+
return token.bearerToken;
|
|
27
|
+
} catch (error) {
|
|
28
|
+
throw error;
|
|
29
|
+
}
|
|
30
|
+
}
|
|
31
|
+
async getProjects(name) {
|
|
32
|
+
const projects = await fetch(
|
|
33
|
+
`${this.host}/projects?limit=999&q=name:${name}`,
|
|
34
|
+
{
|
|
35
|
+
method: "GET",
|
|
36
|
+
headers: {
|
|
37
|
+
Authorization: `Bearer ${this._bearer}`,
|
|
38
|
+
Accept: "application/vnd.blackducksoftware.project-detail-4+json",
|
|
39
|
+
"Content-Type": "application/json"
|
|
40
|
+
}
|
|
41
|
+
}
|
|
42
|
+
);
|
|
43
|
+
this.logger.debug("Retrived Projects!!");
|
|
44
|
+
return projects.json();
|
|
45
|
+
}
|
|
46
|
+
async getVersions(projectUrl, versionName) {
|
|
47
|
+
const versions = await fetch(
|
|
48
|
+
`${projectUrl}/versions?limit=999&q=versionName:${versionName}`,
|
|
49
|
+
{
|
|
50
|
+
method: "GET",
|
|
51
|
+
headers: {
|
|
52
|
+
Authorization: `Bearer ${this._bearer}`,
|
|
53
|
+
Accept: "application/vnd.blackducksoftware.project-detail-5+json",
|
|
54
|
+
"Content-Type": "application/json"
|
|
55
|
+
}
|
|
56
|
+
}
|
|
57
|
+
);
|
|
58
|
+
this.logger.debug("Retrived Versions!!");
|
|
59
|
+
return versions.json();
|
|
60
|
+
}
|
|
61
|
+
async getProjectVersionDetails(projectName, projectVersion) {
|
|
62
|
+
let projectDetail;
|
|
63
|
+
let versionDetail;
|
|
64
|
+
const projects = await this.getProjects(
|
|
65
|
+
projectName
|
|
66
|
+
);
|
|
67
|
+
projects.items.forEach((item) => {
|
|
68
|
+
if (item.name === projectName) {
|
|
69
|
+
projectDetail = item;
|
|
70
|
+
}
|
|
71
|
+
});
|
|
72
|
+
if (projectDetail === void 0) {
|
|
73
|
+
this.logger.error("Provide full project name");
|
|
74
|
+
}
|
|
75
|
+
this.logger.debug(`Fetched Project : ${projectName} details`);
|
|
76
|
+
const versions = await this.getVersions(
|
|
77
|
+
projectDetail._meta.href,
|
|
78
|
+
projectVersion
|
|
79
|
+
);
|
|
80
|
+
versions.items.forEach((item) => {
|
|
81
|
+
if (item.versionName === projectVersion) {
|
|
82
|
+
versionDetail = item;
|
|
83
|
+
}
|
|
84
|
+
});
|
|
85
|
+
if (versionDetail === void 0) {
|
|
86
|
+
this.logger.error("Provide full version name");
|
|
87
|
+
}
|
|
88
|
+
this.logger.debug(
|
|
89
|
+
`Fetched Project : ${projectName}, Version: ${projectVersion} details`
|
|
90
|
+
);
|
|
91
|
+
return versionDetail;
|
|
92
|
+
}
|
|
93
|
+
async getVulnerableComponents(projectName, projectVersion) {
|
|
94
|
+
const versionDetail = await this.getProjectVersionDetails(
|
|
95
|
+
projectName,
|
|
96
|
+
projectVersion
|
|
97
|
+
);
|
|
98
|
+
const vuln_url = `${versionDetail._meta.href}/vulnerable-bom-components?limit=${this._limit}`;
|
|
99
|
+
const vulns = await fetch(vuln_url, {
|
|
100
|
+
method: "GET",
|
|
101
|
+
headers: {
|
|
102
|
+
Authorization: `Bearer ${this._bearer}`,
|
|
103
|
+
Accept: "application/vnd.blackducksoftware.bill-of-materials-6+json",
|
|
104
|
+
"Content-Type": "application/json"
|
|
105
|
+
}
|
|
106
|
+
});
|
|
107
|
+
this.logger.debug(
|
|
108
|
+
`Fetched Project : ${projectName}, Version: ${projectVersion} Vulnerable Components`
|
|
109
|
+
);
|
|
110
|
+
return vulns.json();
|
|
111
|
+
}
|
|
112
|
+
async getRiskProfile(projectName, projectVersion) {
|
|
113
|
+
const versionDetail = await this.getProjectVersionDetails(
|
|
114
|
+
projectName,
|
|
115
|
+
projectVersion
|
|
116
|
+
);
|
|
117
|
+
const risk_profile_url = `${versionDetail._meta.href}/risk-profile`;
|
|
118
|
+
const risk_profile = await fetch(risk_profile_url, {
|
|
119
|
+
method: "GET",
|
|
120
|
+
headers: {
|
|
121
|
+
Authorization: `Bearer ${this._bearer}`,
|
|
122
|
+
// Accept: 'application/vnd.blackducksoftware.component-detail-5+json',
|
|
123
|
+
"Content-Type": "application/json"
|
|
124
|
+
}
|
|
125
|
+
});
|
|
126
|
+
this.logger.debug(
|
|
127
|
+
`Fetched Project : ${projectName}, Version: ${projectVersion} risk profile`
|
|
128
|
+
);
|
|
129
|
+
return risk_profile.json();
|
|
130
|
+
}
|
|
131
|
+
}
|
|
132
|
+
|
|
133
|
+
exports.BlackDuckRestApi = BlackDuckRestApi;
|
|
134
|
+
//# sourceMappingURL=BlackDuckRestApi.cjs.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"BlackDuckRestApi.cjs.js","sources":["../../src/api/BlackDuckRestApi.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { LoggerService } from '@backstage/backend-plugin-api';\nimport {\n BD_REST_API_RESPONSE,\n BD_PROJECT_DETAIL,\n BD_VERISON_DETAIL,\n BD_VERSIONS_API_RESPONSE,\n BD_PROJECTS_API_RESPONSE,\n} from '@backstage-community/plugin-blackduck-common';\n\nexport class BlackDuckRestApi {\n private _bearer: string;\n private _limit: number;\n public constructor(\n private readonly logger: LoggerService,\n private readonly host: string,\n private readonly token: string,\n ) {\n this._bearer = '';\n this._limit = 1000;\n }\n\n public async auth() {\n try {\n const auth = await fetch(`${this.host}/tokens/authenticate`, {\n method: 'POST',\n headers: {\n Authorization: `token ${this.token}`,\n Accept: 'application/vnd.blackducksoftware.user-4+json',\n 'Content-Type': 'application/json',\n },\n });\n const token = await auth.json();\n this.logger.info('Auth Successfull');\n this._bearer = token.bearerToken;\n return token.bearerToken;\n } catch (error) {\n throw error;\n }\n }\n public async getProjects(name: string): Promise<BD_REST_API_RESPONSE> {\n const projects = await fetch(\n `${this.host}/projects?limit=999&q=name:${name}`,\n {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.project-detail-4+json',\n 'Content-Type': 'application/json',\n },\n },\n );\n this.logger.debug('Retrived Projects!!');\n return projects.json();\n }\n\n public async getVersions(\n projectUrl: string,\n versionName: string,\n ): Promise<BD_VERSIONS_API_RESPONSE> {\n const versions = await fetch(\n `${projectUrl}/versions?limit=999&q=versionName:${versionName}`,\n {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.project-detail-5+json',\n 'Content-Type': 'application/json',\n },\n },\n );\n this.logger.debug('Retrived Versions!!');\n return versions.json();\n }\n\n public async getProjectVersionDetails(\n projectName: string,\n projectVersion: string,\n ) {\n let projectDetail: BD_PROJECT_DETAIL | any;\n let versionDetail: BD_VERISON_DETAIL | any;\n const projects: BD_PROJECTS_API_RESPONSE = await this.getProjects(\n projectName,\n );\n projects.items.forEach((item: any) => {\n if (item.name === projectName) {\n projectDetail = item;\n }\n });\n if (projectDetail === undefined) {\n this.logger.error('Provide full project name');\n }\n this.logger.debug(`Fetched Project : ${projectName} details`);\n const versions: BD_VERSIONS_API_RESPONSE = await this.getVersions(\n projectDetail._meta.href,\n projectVersion,\n );\n versions.items.forEach((item: any) => {\n if (item.versionName === projectVersion) {\n versionDetail = item;\n }\n });\n if (versionDetail === undefined) {\n this.logger.error('Provide full version name');\n }\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} details`,\n );\n\n return versionDetail;\n }\n\n public async getVulnerableComponents(\n projectName: string,\n projectVersion: string,\n ) {\n const versionDetail = await this.getProjectVersionDetails(\n projectName,\n projectVersion,\n );\n const vuln_url = `${versionDetail._meta.href}/vulnerable-bom-components?limit=${this._limit}`;\n const vulns: any = await fetch(vuln_url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.bill-of-materials-6+json',\n 'Content-Type': 'application/json',\n },\n });\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} Vulnerable Components`,\n );\n return vulns.json();\n }\n\n public async getRiskProfile(projectName: string, projectVersion: string) {\n const versionDetail = await this.getProjectVersionDetails(\n projectName,\n projectVersion,\n );\n const risk_profile_url = `${versionDetail._meta.href}/risk-profile`;\n const risk_profile: any = await fetch(risk_profile_url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n // Accept: 'application/vnd.blackducksoftware.component-detail-5+json',\n 'Content-Type': 'application/json',\n },\n });\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} risk profile`,\n );\n return risk_profile.json();\n }\n}\n"],"names":[],"mappings":";;AAwBO,MAAM,gBAAiB,CAAA;AAAA,EAGrB,WAAA,CACY,MACA,EAAA,IAAA,EACA,KACjB,EAAA;AAHiB,IAAA,IAAA,CAAA,MAAA,GAAA,MAAA,CAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA,CAAA;AACA,IAAA,IAAA,CAAA,KAAA,GAAA,KAAA,CAAA;AAEjB,IAAA,IAAA,CAAK,OAAU,GAAA,EAAA,CAAA;AACf,IAAA,IAAA,CAAK,MAAS,GAAA,GAAA,CAAA;AAAA,GAChB;AAAA,EATQ,OAAA,CAAA;AAAA,EACA,MAAA,CAAA;AAAA,EAUR,MAAa,IAAO,GAAA;AAClB,IAAI,IAAA;AACF,MAAA,MAAM,OAAO,MAAM,KAAA,CAAM,CAAG,EAAA,IAAA,CAAK,IAAI,CAAwB,oBAAA,CAAA,EAAA;AAAA,QAC3D,MAAQ,EAAA,MAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAS,MAAA,EAAA,IAAA,CAAK,KAAK,CAAA,CAAA;AAAA,UAClC,MAAQ,EAAA,+CAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACD,CAAA,CAAA;AACD,MAAM,MAAA,KAAA,GAAQ,MAAM,IAAA,CAAK,IAAK,EAAA,CAAA;AAC9B,MAAK,IAAA,CAAA,MAAA,CAAO,KAAK,kBAAkB,CAAA,CAAA;AACnC,MAAA,IAAA,CAAK,UAAU,KAAM,CAAA,WAAA,CAAA;AACrB,MAAA,OAAO,KAAM,CAAA,WAAA,CAAA;AAAA,aACN,KAAO,EAAA;AACd,MAAM,MAAA,KAAA,CAAA;AAAA,KACR;AAAA,GACF;AAAA,EACA,MAAa,YAAY,IAA6C,EAAA;AACpE,IAAA,MAAM,WAAW,MAAM,KAAA;AAAA,MACrB,CAAG,EAAA,IAAA,CAAK,IAAI,CAAA,2BAAA,EAA8B,IAAI,CAAA,CAAA;AAAA,MAC9C;AAAA,QACE,MAAQ,EAAA,KAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,UACrC,MAAQ,EAAA,yDAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACF;AAAA,KACF,CAAA;AACA,IAAK,IAAA,CAAA,MAAA,CAAO,MAAM,qBAAqB,CAAA,CAAA;AACvC,IAAA,OAAO,SAAS,IAAK,EAAA,CAAA;AAAA,GACvB;AAAA,EAEA,MAAa,WACX,CAAA,UAAA,EACA,WACmC,EAAA;AACnC,IAAA,MAAM,WAAW,MAAM,KAAA;AAAA,MACrB,CAAA,EAAG,UAAU,CAAA,kCAAA,EAAqC,WAAW,CAAA,CAAA;AAAA,MAC7D;AAAA,QACE,MAAQ,EAAA,KAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,UACrC,MAAQ,EAAA,yDAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACF;AAAA,KACF,CAAA;AACA,IAAK,IAAA,CAAA,MAAA,CAAO,MAAM,qBAAqB,CAAA,CAAA;AACvC,IAAA,OAAO,SAAS,IAAK,EAAA,CAAA;AAAA,GACvB;AAAA,EAEA,MAAa,wBACX,CAAA,WAAA,EACA,cACA,EAAA;AACA,IAAI,IAAA,aAAA,CAAA;AACJ,IAAI,IAAA,aAAA,CAAA;AACJ,IAAM,MAAA,QAAA,GAAqC,MAAM,IAAK,CAAA,WAAA;AAAA,MACpD,WAAA;AAAA,KACF,CAAA;AACA,IAAS,QAAA,CAAA,KAAA,CAAM,OAAQ,CAAA,CAAC,IAAc,KAAA;AACpC,MAAI,IAAA,IAAA,CAAK,SAAS,WAAa,EAAA;AAC7B,QAAgB,aAAA,GAAA,IAAA,CAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAI,kBAAkB,KAAW,CAAA,EAAA;AAC/B,MAAK,IAAA,CAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AAAA,KAC/C;AACA,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA,CAAM,CAAqB,kBAAA,EAAA,WAAW,CAAU,QAAA,CAAA,CAAA,CAAA;AAC5D,IAAM,MAAA,QAAA,GAAqC,MAAM,IAAK,CAAA,WAAA;AAAA,MACpD,cAAc,KAAM,CAAA,IAAA;AAAA,MACpB,cAAA;AAAA,KACF,CAAA;AACA,IAAS,QAAA,CAAA,KAAA,CAAM,OAAQ,CAAA,CAAC,IAAc,KAAA;AACpC,MAAI,IAAA,IAAA,CAAK,gBAAgB,cAAgB,EAAA;AACvC,QAAgB,aAAA,GAAA,IAAA,CAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAI,kBAAkB,KAAW,CAAA,EAAA;AAC/B,MAAK,IAAA,CAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AAAA,KAC/C;AACA,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,QAAA,CAAA;AAAA,KAC9D,CAAA;AAEA,IAAO,OAAA,aAAA,CAAA;AAAA,GACT;AAAA,EAEA,MAAa,uBACX,CAAA,WAAA,EACA,cACA,EAAA;AACA,IAAM,MAAA,aAAA,GAAgB,MAAM,IAAK,CAAA,wBAAA;AAAA,MAC/B,WAAA;AAAA,MACA,cAAA;AAAA,KACF,CAAA;AACA,IAAA,MAAM,WAAW,CAAG,EAAA,aAAA,CAAc,MAAM,IAAI,CAAA,iCAAA,EAAoC,KAAK,MAAM,CAAA,CAAA,CAAA;AAC3F,IAAM,MAAA,KAAA,GAAa,MAAM,KAAA,CAAM,QAAU,EAAA;AAAA,MACvC,MAAQ,EAAA,KAAA;AAAA,MACR,OAAS,EAAA;AAAA,QACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,QACrC,MAAQ,EAAA,4DAAA;AAAA,QACR,cAAgB,EAAA,kBAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,sBAAA,CAAA;AAAA,KAC9D,CAAA;AACA,IAAA,OAAO,MAAM,IAAK,EAAA,CAAA;AAAA,GACpB;AAAA,EAEA,MAAa,cAAe,CAAA,WAAA,EAAqB,cAAwB,EAAA;AACvE,IAAM,MAAA,aAAA,GAAgB,MAAM,IAAK,CAAA,wBAAA;AAAA,MAC/B,WAAA;AAAA,MACA,cAAA;AAAA,KACF,CAAA;AACA,IAAA,MAAM,gBAAmB,GAAA,CAAA,EAAG,aAAc,CAAA,KAAA,CAAM,IAAI,CAAA,aAAA,CAAA,CAAA;AACpD,IAAM,MAAA,YAAA,GAAoB,MAAM,KAAA,CAAM,gBAAkB,EAAA;AAAA,MACtD,MAAQ,EAAA,KAAA;AAAA,MACR,OAAS,EAAA;AAAA,QACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA;AAAA,QAErC,cAAgB,EAAA,kBAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,aAAA,CAAA;AAAA,KAC9D,CAAA;AACA,IAAA,OAAO,aAAa,IAAK,EAAA,CAAA;AAAA,GAC3B;AACF;;;;"}
|
package/dist/index.cjs.js
CHANGED
|
@@ -2,354 +2,13 @@
|
|
|
2
2
|
|
|
3
3
|
Object.defineProperty(exports, '__esModule', { value: true });
|
|
4
4
|
|
|
5
|
-
var
|
|
6
|
-
var
|
|
7
|
-
var
|
|
8
|
-
var pluginPermissionNode = require('@backstage/plugin-permission-node');
|
|
9
|
-
var errors = require('@backstage/errors');
|
|
10
|
-
var pluginPermissionCommon = require('@backstage/plugin-permission-common');
|
|
11
|
-
var backendCommon = require('@backstage/backend-common');
|
|
12
|
-
var pluginBlackduckCommon = require('@backstage-community/plugin-blackduck-common');
|
|
13
|
-
var backendPluginApi = require('@backstage/backend-plugin-api');
|
|
5
|
+
var router = require('./service/router.cjs.js');
|
|
6
|
+
var BlackDuckConfig = require('./service/BlackDuckConfig.cjs.js');
|
|
7
|
+
var plugin = require('./plugin.cjs.js');
|
|
14
8
|
|
|
15
|
-
function _interopDefaultCompat (e) { return e && typeof e === 'object' && 'default' in e ? e : { default: e }; }
|
|
16
9
|
|
|
17
|
-
var express__default = /*#__PURE__*/_interopDefaultCompat(express);
|
|
18
|
-
var Router__default = /*#__PURE__*/_interopDefaultCompat(Router);
|
|
19
10
|
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
this.host = host;
|
|
24
|
-
this.token = token;
|
|
25
|
-
this._bearer = "";
|
|
26
|
-
this._limit = 1e3;
|
|
27
|
-
}
|
|
28
|
-
_bearer;
|
|
29
|
-
_limit;
|
|
30
|
-
async auth() {
|
|
31
|
-
try {
|
|
32
|
-
const auth = await fetch(`${this.host}/tokens/authenticate`, {
|
|
33
|
-
method: "POST",
|
|
34
|
-
headers: {
|
|
35
|
-
Authorization: `token ${this.token}`,
|
|
36
|
-
Accept: "application/vnd.blackducksoftware.user-4+json",
|
|
37
|
-
"Content-Type": "application/json"
|
|
38
|
-
}
|
|
39
|
-
});
|
|
40
|
-
const token = await auth.json();
|
|
41
|
-
this.logger.info("Auth Successfull");
|
|
42
|
-
this._bearer = token.bearerToken;
|
|
43
|
-
return token.bearerToken;
|
|
44
|
-
} catch (error) {
|
|
45
|
-
throw error;
|
|
46
|
-
}
|
|
47
|
-
}
|
|
48
|
-
async getProjects(name) {
|
|
49
|
-
const projects = await fetch(
|
|
50
|
-
`${this.host}/projects?limit=999&q=name:${name}`,
|
|
51
|
-
{
|
|
52
|
-
method: "GET",
|
|
53
|
-
headers: {
|
|
54
|
-
Authorization: `Bearer ${this._bearer}`,
|
|
55
|
-
Accept: "application/vnd.blackducksoftware.project-detail-4+json",
|
|
56
|
-
"Content-Type": "application/json"
|
|
57
|
-
}
|
|
58
|
-
}
|
|
59
|
-
);
|
|
60
|
-
this.logger.debug("Retrived Projects!!");
|
|
61
|
-
return projects.json();
|
|
62
|
-
}
|
|
63
|
-
async getVersions(projectUrl, versionName) {
|
|
64
|
-
const versions = await fetch(
|
|
65
|
-
`${projectUrl}/versions?limit=999&q=versionName:${versionName}`,
|
|
66
|
-
{
|
|
67
|
-
method: "GET",
|
|
68
|
-
headers: {
|
|
69
|
-
Authorization: `Bearer ${this._bearer}`,
|
|
70
|
-
Accept: "application/vnd.blackducksoftware.project-detail-5+json",
|
|
71
|
-
"Content-Type": "application/json"
|
|
72
|
-
}
|
|
73
|
-
}
|
|
74
|
-
);
|
|
75
|
-
this.logger.debug("Retrived Versions!!");
|
|
76
|
-
return versions.json();
|
|
77
|
-
}
|
|
78
|
-
async getProjectVersionDetails(projectName, projectVersion) {
|
|
79
|
-
let projectDetail;
|
|
80
|
-
let versionDetail;
|
|
81
|
-
const projects = await this.getProjects(
|
|
82
|
-
projectName
|
|
83
|
-
);
|
|
84
|
-
projects.items.forEach((item) => {
|
|
85
|
-
if (item.name === projectName) {
|
|
86
|
-
projectDetail = item;
|
|
87
|
-
}
|
|
88
|
-
});
|
|
89
|
-
if (projectDetail === void 0) {
|
|
90
|
-
this.logger.error("Provide full project name");
|
|
91
|
-
}
|
|
92
|
-
this.logger.debug(`Fetched Project : ${projectName} details`);
|
|
93
|
-
const versions = await this.getVersions(
|
|
94
|
-
projectDetail._meta.href,
|
|
95
|
-
projectVersion
|
|
96
|
-
);
|
|
97
|
-
versions.items.forEach((item) => {
|
|
98
|
-
if (item.versionName === projectVersion) {
|
|
99
|
-
versionDetail = item;
|
|
100
|
-
}
|
|
101
|
-
});
|
|
102
|
-
if (versionDetail === void 0) {
|
|
103
|
-
this.logger.error("Provide full version name");
|
|
104
|
-
}
|
|
105
|
-
this.logger.debug(
|
|
106
|
-
`Fetched Project : ${projectName}, Version: ${projectVersion} details`
|
|
107
|
-
);
|
|
108
|
-
return versionDetail;
|
|
109
|
-
}
|
|
110
|
-
async getVulnerableComponents(projectName, projectVersion) {
|
|
111
|
-
const versionDetail = await this.getProjectVersionDetails(
|
|
112
|
-
projectName,
|
|
113
|
-
projectVersion
|
|
114
|
-
);
|
|
115
|
-
const vuln_url = `${versionDetail._meta.href}/vulnerable-bom-components?limit=${this._limit}`;
|
|
116
|
-
const vulns = await fetch(vuln_url, {
|
|
117
|
-
method: "GET",
|
|
118
|
-
headers: {
|
|
119
|
-
Authorization: `Bearer ${this._bearer}`,
|
|
120
|
-
Accept: "application/vnd.blackducksoftware.bill-of-materials-6+json",
|
|
121
|
-
"Content-Type": "application/json"
|
|
122
|
-
}
|
|
123
|
-
});
|
|
124
|
-
this.logger.debug(
|
|
125
|
-
`Fetched Project : ${projectName}, Version: ${projectVersion} Vulnerable Components`
|
|
126
|
-
);
|
|
127
|
-
return vulns.json();
|
|
128
|
-
}
|
|
129
|
-
async getRiskProfile(projectName, projectVersion) {
|
|
130
|
-
const versionDetail = await this.getProjectVersionDetails(
|
|
131
|
-
projectName,
|
|
132
|
-
projectVersion
|
|
133
|
-
);
|
|
134
|
-
const risk_profile_url = `${versionDetail._meta.href}/risk-profile`;
|
|
135
|
-
const risk_profile = await fetch(risk_profile_url, {
|
|
136
|
-
method: "GET",
|
|
137
|
-
headers: {
|
|
138
|
-
Authorization: `Bearer ${this._bearer}`,
|
|
139
|
-
// Accept: 'application/vnd.blackducksoftware.component-detail-5+json',
|
|
140
|
-
"Content-Type": "application/json"
|
|
141
|
-
}
|
|
142
|
-
});
|
|
143
|
-
this.logger.debug(
|
|
144
|
-
`Fetched Project : ${projectName}, Version: ${projectVersion} risk profile`
|
|
145
|
-
);
|
|
146
|
-
return risk_profile.json();
|
|
147
|
-
}
|
|
148
|
-
}
|
|
149
|
-
|
|
150
|
-
async function createRouter(options) {
|
|
151
|
-
const { logger, permissions, config, blackDuckConfig } = options;
|
|
152
|
-
const { httpAuth } = backendCommon.createLegacyAuthAdapters(options);
|
|
153
|
-
const permissionIntegrationRouter = pluginPermissionNode.createPermissionIntegrationRouter({
|
|
154
|
-
permissions: pluginBlackduckCommon.blackduckPermissions
|
|
155
|
-
});
|
|
156
|
-
const router = Router__default.default();
|
|
157
|
-
router.use(express__default.default.json());
|
|
158
|
-
router.use(permissionIntegrationRouter);
|
|
159
|
-
router.get("/health", (_, response) => {
|
|
160
|
-
logger.info("PONG!");
|
|
161
|
-
response.json({ status: "ok" });
|
|
162
|
-
});
|
|
163
|
-
const middleware = rootHttpRouter.MiddlewareFactory.create({ logger, config });
|
|
164
|
-
router.post(
|
|
165
|
-
"/risk-profile/:hostKey/:projectName/:projectVersion",
|
|
166
|
-
async (_request, response) => {
|
|
167
|
-
logger.debug("getting vulnarabilities..");
|
|
168
|
-
const { hostKey, projectName, projectVersion } = _request.params;
|
|
169
|
-
if (!hostKey || !projectName || !projectVersion) {
|
|
170
|
-
response.status(400).json({
|
|
171
|
-
message: "The hostKey, projectName and projectVersion are required"
|
|
172
|
-
});
|
|
173
|
-
return;
|
|
174
|
-
}
|
|
175
|
-
let host;
|
|
176
|
-
let token;
|
|
177
|
-
try {
|
|
178
|
-
const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);
|
|
179
|
-
host = hostConfig.host;
|
|
180
|
-
token = hostConfig.token;
|
|
181
|
-
} catch (error) {
|
|
182
|
-
response.status(400).json({
|
|
183
|
-
message: "The hostKey is not valid."
|
|
184
|
-
});
|
|
185
|
-
return;
|
|
186
|
-
}
|
|
187
|
-
const credentials = await httpAuth.credentials(_request);
|
|
188
|
-
const entityRef = _request.body.entityRef;
|
|
189
|
-
logger.info("getting risk profile for project: ", entityRef);
|
|
190
|
-
if (typeof entityRef !== "string") {
|
|
191
|
-
throw new errors.InputError("Invalid entityRef, not a string");
|
|
192
|
-
}
|
|
193
|
-
const decision = (await permissions.authorize(
|
|
194
|
-
[
|
|
195
|
-
{
|
|
196
|
-
permission: pluginBlackduckCommon.blackduckRiskProfileReadPermission,
|
|
197
|
-
resourceRef: entityRef
|
|
198
|
-
}
|
|
199
|
-
],
|
|
200
|
-
{
|
|
201
|
-
credentials
|
|
202
|
-
}
|
|
203
|
-
))[0];
|
|
204
|
-
if (decision.result !== pluginPermissionCommon.AuthorizeResult.ALLOW) {
|
|
205
|
-
throw new errors.NotAllowedError("Unauthorized");
|
|
206
|
-
}
|
|
207
|
-
const blackDuck = new BlackDuckRestApi(logger, host, token);
|
|
208
|
-
await blackDuck.auth();
|
|
209
|
-
const risk_profile = await blackDuck.getRiskProfile(
|
|
210
|
-
projectName,
|
|
211
|
-
projectVersion
|
|
212
|
-
);
|
|
213
|
-
response.json(risk_profile);
|
|
214
|
-
}
|
|
215
|
-
);
|
|
216
|
-
router.post(
|
|
217
|
-
"/vulns/:hostKey/:projectName/:projectVersion",
|
|
218
|
-
async (_request, response) => {
|
|
219
|
-
const { hostKey, projectName, projectVersion } = _request.params;
|
|
220
|
-
const credentials = await httpAuth.credentials(_request);
|
|
221
|
-
const entityRef = _request.body.entityRef;
|
|
222
|
-
logger.info("getting vulnarabilities for project: ", entityRef);
|
|
223
|
-
if (typeof entityRef !== "string") {
|
|
224
|
-
throw new errors.InputError("Invalid entityRef, not a string");
|
|
225
|
-
}
|
|
226
|
-
if (!hostKey || !projectName || !projectVersion) {
|
|
227
|
-
response.status(400).json({
|
|
228
|
-
message: "The hostKey, projectName and projectVersion are required"
|
|
229
|
-
});
|
|
230
|
-
return;
|
|
231
|
-
}
|
|
232
|
-
let host;
|
|
233
|
-
let token;
|
|
234
|
-
try {
|
|
235
|
-
const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);
|
|
236
|
-
host = hostConfig.host;
|
|
237
|
-
token = hostConfig.token;
|
|
238
|
-
} catch (error) {
|
|
239
|
-
response.status(400).json({
|
|
240
|
-
message: "The hostKey is not valid."
|
|
241
|
-
});
|
|
242
|
-
return;
|
|
243
|
-
}
|
|
244
|
-
const decision = (await permissions.authorize(
|
|
245
|
-
[
|
|
246
|
-
{
|
|
247
|
-
permission: pluginBlackduckCommon.blackduckVulnerabilitiesReadPermission,
|
|
248
|
-
resourceRef: entityRef
|
|
249
|
-
}
|
|
250
|
-
],
|
|
251
|
-
{
|
|
252
|
-
credentials
|
|
253
|
-
}
|
|
254
|
-
))[0];
|
|
255
|
-
logger.info("decision", decision);
|
|
256
|
-
if (decision.result !== pluginPermissionCommon.AuthorizeResult.ALLOW) {
|
|
257
|
-
throw new errors.NotAllowedError("Unauthorized");
|
|
258
|
-
}
|
|
259
|
-
const blackDuck = new BlackDuckRestApi(logger, host, token);
|
|
260
|
-
await blackDuck.auth();
|
|
261
|
-
const vulns = await blackDuck.getVulnerableComponents(
|
|
262
|
-
projectName,
|
|
263
|
-
projectVersion
|
|
264
|
-
);
|
|
265
|
-
response.json(vulns);
|
|
266
|
-
}
|
|
267
|
-
);
|
|
268
|
-
router.use(middleware.error());
|
|
269
|
-
return router;
|
|
270
|
-
}
|
|
271
|
-
|
|
272
|
-
const DEFAULT_HOST_NAME = "default";
|
|
273
|
-
class BlackDuckConfig {
|
|
274
|
-
constructor(hosts, defaultHost) {
|
|
275
|
-
this.hosts = hosts;
|
|
276
|
-
this.defaultHost = defaultHost;
|
|
277
|
-
}
|
|
278
|
-
static fromConfig(config) {
|
|
279
|
-
let hosts = [];
|
|
280
|
-
let defaultHost = DEFAULT_HOST_NAME;
|
|
281
|
-
if (config.has("blackduck.host") && config.has("blackduck.hosts")) {
|
|
282
|
-
throw new Error("Cannot have both blackduck.host and blackduck.hosts");
|
|
283
|
-
}
|
|
284
|
-
if (config.has("blackduck.host") && config.has("blackduck.token")) {
|
|
285
|
-
const singleHost = {
|
|
286
|
-
name: "default",
|
|
287
|
-
host: config.getString("blackduck.host"),
|
|
288
|
-
token: config.getString("blackduck.token")
|
|
289
|
-
};
|
|
290
|
-
hosts = [singleHost];
|
|
291
|
-
} else if (config.has("blackduck.hosts") && config.has("blackduck.default")) {
|
|
292
|
-
hosts = config.getConfigArray("blackduck.hosts").map((hostConfig) => ({
|
|
293
|
-
name: hostConfig.getString("name"),
|
|
294
|
-
host: hostConfig.getString("host"),
|
|
295
|
-
token: hostConfig.getString("token")
|
|
296
|
-
}));
|
|
297
|
-
defaultHost = config.getString("blackduck.default");
|
|
298
|
-
} else {
|
|
299
|
-
throw new Error("Invalid BlackDuck config found");
|
|
300
|
-
}
|
|
301
|
-
return new BlackDuckConfig(hosts, defaultHost);
|
|
302
|
-
}
|
|
303
|
-
getHostConfigByName(name) {
|
|
304
|
-
const hostName = name === DEFAULT_HOST_NAME ? this.defaultHost : name;
|
|
305
|
-
const hostConfig = this.hosts.find((host) => host.name === hostName);
|
|
306
|
-
if (!hostConfig) {
|
|
307
|
-
throw new Error(`No host found with name: ${name}`);
|
|
308
|
-
}
|
|
309
|
-
return hostConfig;
|
|
310
|
-
}
|
|
311
|
-
}
|
|
312
|
-
|
|
313
|
-
const blackduckPlugin = backendPluginApi.createBackendPlugin({
|
|
314
|
-
pluginId: "blackduck",
|
|
315
|
-
register(env) {
|
|
316
|
-
env.registerInit({
|
|
317
|
-
deps: {
|
|
318
|
-
httpRouter: backendPluginApi.coreServices.httpRouter,
|
|
319
|
-
logger: backendPluginApi.coreServices.logger,
|
|
320
|
-
config: backendPluginApi.coreServices.rootConfig,
|
|
321
|
-
permissions: backendPluginApi.coreServices.permissions,
|
|
322
|
-
discovery: backendPluginApi.coreServices.discovery,
|
|
323
|
-
httpAuth: backendPluginApi.coreServices.httpAuth
|
|
324
|
-
},
|
|
325
|
-
async init({
|
|
326
|
-
httpRouter,
|
|
327
|
-
logger,
|
|
328
|
-
config,
|
|
329
|
-
permissions,
|
|
330
|
-
discovery,
|
|
331
|
-
httpAuth
|
|
332
|
-
}) {
|
|
333
|
-
httpRouter.use(
|
|
334
|
-
await createRouter({
|
|
335
|
-
logger,
|
|
336
|
-
config,
|
|
337
|
-
permissions,
|
|
338
|
-
discovery,
|
|
339
|
-
httpAuth,
|
|
340
|
-
blackDuckConfig: BlackDuckConfig.fromConfig(config)
|
|
341
|
-
})
|
|
342
|
-
);
|
|
343
|
-
httpRouter.addAuthPolicy({
|
|
344
|
-
path: "/health",
|
|
345
|
-
allow: "unauthenticated"
|
|
346
|
-
});
|
|
347
|
-
}
|
|
348
|
-
});
|
|
349
|
-
}
|
|
350
|
-
});
|
|
351
|
-
|
|
352
|
-
exports.BlackDuckConfig = BlackDuckConfig;
|
|
353
|
-
exports.createRouter = createRouter;
|
|
354
|
-
exports.default = blackduckPlugin;
|
|
11
|
+
exports.createRouter = router.createRouter;
|
|
12
|
+
exports.BlackDuckConfig = BlackDuckConfig.BlackDuckConfig;
|
|
13
|
+
exports.default = plugin.blackduckPlugin;
|
|
355
14
|
//# sourceMappingURL=index.cjs.js.map
|
package/dist/index.cjs.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.cjs.js","sources":["../src/api/BlackDuckRestApi.ts","../src/service/router.ts","../src/service/BlackDuckConfig.ts","../src/plugin.ts"],"sourcesContent":["import { LoggerService } from '@backstage/backend-plugin-api';\nimport {\n BD_REST_API_RESPONSE,\n BD_PROJECT_DETAIL,\n BD_VERISON_DETAIL,\n BD_VERSIONS_API_RESPONSE,\n BD_PROJECTS_API_RESPONSE,\n} from '@backstage-community/plugin-blackduck-common';\n\nexport class BlackDuckRestApi {\n private _bearer: string;\n private _limit: number;\n public constructor(\n private readonly logger: LoggerService,\n private readonly host: string,\n private readonly token: string,\n ) {\n this._bearer = '';\n this._limit = 1000;\n }\n\n public async auth() {\n try {\n const auth = await fetch(`${this.host}/tokens/authenticate`, {\n method: 'POST',\n headers: {\n Authorization: `token ${this.token}`,\n Accept: 'application/vnd.blackducksoftware.user-4+json',\n 'Content-Type': 'application/json',\n },\n });\n const token = await auth.json();\n this.logger.info('Auth Successfull');\n this._bearer = token.bearerToken;\n return token.bearerToken;\n } catch (error) {\n throw error;\n }\n }\n public async getProjects(name: string): Promise<BD_REST_API_RESPONSE> {\n const projects = await fetch(\n `${this.host}/projects?limit=999&q=name:${name}`,\n {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.project-detail-4+json',\n 'Content-Type': 'application/json',\n },\n },\n );\n this.logger.debug('Retrived Projects!!');\n return projects.json();\n }\n\n public async getVersions(\n projectUrl: string,\n versionName: string,\n ): Promise<BD_VERSIONS_API_RESPONSE> {\n const versions = await fetch(\n `${projectUrl}/versions?limit=999&q=versionName:${versionName}`,\n {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.project-detail-5+json',\n 'Content-Type': 'application/json',\n },\n },\n );\n this.logger.debug('Retrived Versions!!');\n return versions.json();\n }\n\n public async getProjectVersionDetails(\n projectName: string,\n projectVersion: string,\n ) {\n let projectDetail: BD_PROJECT_DETAIL | any;\n let versionDetail: BD_VERISON_DETAIL | any;\n const projects: BD_PROJECTS_API_RESPONSE = await this.getProjects(\n projectName,\n );\n projects.items.forEach((item: any) => {\n if (item.name === projectName) {\n projectDetail = item;\n }\n });\n if (projectDetail === undefined) {\n this.logger.error('Provide full project name');\n }\n this.logger.debug(`Fetched Project : ${projectName} details`);\n const versions: BD_VERSIONS_API_RESPONSE = await this.getVersions(\n projectDetail._meta.href,\n projectVersion,\n );\n versions.items.forEach((item: any) => {\n if (item.versionName === projectVersion) {\n versionDetail = item;\n }\n });\n if (versionDetail === undefined) {\n this.logger.error('Provide full version name');\n }\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} details`,\n );\n\n return versionDetail;\n }\n\n public async getVulnerableComponents(\n projectName: string,\n projectVersion: string,\n ) {\n const versionDetail = await this.getProjectVersionDetails(\n projectName,\n projectVersion,\n );\n const vuln_url = `${versionDetail._meta.href}/vulnerable-bom-components?limit=${this._limit}`;\n const vulns: any = await fetch(vuln_url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n Accept: 'application/vnd.blackducksoftware.bill-of-materials-6+json',\n 'Content-Type': 'application/json',\n },\n });\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} Vulnerable Components`,\n );\n return vulns.json();\n }\n\n public async getRiskProfile(projectName: string, projectVersion: string) {\n const versionDetail = await this.getProjectVersionDetails(\n projectName,\n projectVersion,\n );\n const risk_profile_url = `${versionDetail._meta.href}/risk-profile`;\n const risk_profile: any = await fetch(risk_profile_url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${this._bearer}`,\n // Accept: 'application/vnd.blackducksoftware.component-detail-5+json',\n 'Content-Type': 'application/json',\n },\n });\n this.logger.debug(\n `Fetched Project : ${projectName}, Version: ${projectVersion} risk profile`,\n );\n return risk_profile.json();\n }\n}\n","import { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n DiscoveryService,\n HttpAuthService,\n LoggerService,\n PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { Config } from '@backstage/config';\nimport express from 'express';\nimport Router from 'express-promise-router';\nimport { createPermissionIntegrationRouter } from '@backstage/plugin-permission-node';\nimport { InputError, NotAllowedError } from '@backstage/errors';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport { createLegacyAuthAdapters } from '@backstage/backend-common';\nimport {\n blackduckPermissions,\n blackduckRiskProfileReadPermission,\n blackduckVulnerabilitiesReadPermission,\n} from '@backstage-community/plugin-blackduck-common';\nimport { BlackDuckRestApi } from '../api/BlackDuckRestApi';\nimport { BlackDuckConfig } from './BlackDuckConfig';\n\n/** @public */\nexport interface RouterOptions {\n logger: LoggerService;\n config: Config;\n permissions: PermissionsService;\n discovery: DiscoveryService;\n httpAuth?: HttpAuthService;\n blackDuckConfig: BlackDuckConfig;\n}\n\n/** @public */\nexport async function createRouter(\n options: RouterOptions,\n): Promise<express.Router> {\n const { logger, permissions, config, blackDuckConfig } = options;\n const { httpAuth } = createLegacyAuthAdapters(options);\n const permissionIntegrationRouter = createPermissionIntegrationRouter({\n permissions: blackduckPermissions,\n });\n\n const router = Router();\n router.use(express.json());\n router.use(permissionIntegrationRouter);\n\n router.get('/health', (_, response) => {\n logger.info('PONG!');\n response.json({ status: 'ok' });\n });\n\n const middleware = MiddlewareFactory.create({ logger, config });\n\n router.post(\n '/risk-profile/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n logger.debug('getting vulnarabilities..');\n const { hostKey, projectName, projectVersion } = _request.params;\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting risk profile for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckRiskProfileReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const risk_profile = await blackDuck.getRiskProfile(\n projectName,\n projectVersion,\n );\n response.json(risk_profile);\n },\n );\n\n router.post(\n '/vulns/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n const { hostKey, projectName, projectVersion } = _request.params;\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting vulnarabilities for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckVulnerabilitiesReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n logger.info('decision', decision);\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const vulns = await blackDuck.getVulnerableComponents(\n projectName,\n projectVersion,\n );\n response.json(vulns);\n },\n );\n\n router.use(middleware.error());\n return router;\n}\n","import { Config } from '@backstage/config';\n\n/**\n * @public\n */\nexport interface BlackDuckHostConfig {\n name: string;\n host: string;\n token: string;\n}\n\nconst DEFAULT_HOST_NAME = 'default';\n\n/**\n * blackduckPlugin config\n *\n * @public\n */\nexport class BlackDuckConfig {\n constructor(\n private readonly hosts: BlackDuckHostConfig[],\n private readonly defaultHost: string,\n ) {}\n\n static fromConfig(config: Config): BlackDuckConfig {\n let hosts: BlackDuckHostConfig[] = [];\n let defaultHost: string = DEFAULT_HOST_NAME;\n\n if (config.has('blackduck.host') && config.has('blackduck.hosts')) {\n throw new Error('Cannot have both blackduck.host and blackduck.hosts');\n }\n\n if (config.has('blackduck.host') && config.has('blackduck.token')) {\n const singleHost = {\n name: 'default',\n host: config.getString('blackduck.host'),\n token: config.getString('blackduck.token'),\n };\n hosts = [singleHost];\n } else if (\n config.has('blackduck.hosts') &&\n config.has('blackduck.default')\n ) {\n hosts = config.getConfigArray('blackduck.hosts').map(hostConfig => ({\n name: hostConfig.getString('name'),\n host: hostConfig.getString('host'),\n token: hostConfig.getString('token'),\n }));\n defaultHost = config.getString('blackduck.default');\n } else {\n throw new Error('Invalid BlackDuck config found');\n }\n\n return new BlackDuckConfig(hosts, defaultHost);\n }\n\n getHostConfigByName(name: string): BlackDuckHostConfig {\n const hostName = name === DEFAULT_HOST_NAME ? this.defaultHost : name;\n\n const hostConfig = this.hosts.find(host => host.name === hostName);\n\n if (!hostConfig) {\n throw new Error(`No host found with name: ${name}`);\n }\n\n return hostConfig;\n }\n}\n","import {\n coreServices,\n createBackendPlugin,\n} from '@backstage/backend-plugin-api';\nimport { BlackDuckConfig } from './service/BlackDuckConfig';\nimport { createRouter } from './service/router';\n\n/**\n * blackduckPlugin backend plugin\n *\n * @public\n */\nexport const blackduckPlugin = createBackendPlugin({\n pluginId: 'blackduck',\n register(env) {\n env.registerInit({\n deps: {\n httpRouter: coreServices.httpRouter,\n logger: coreServices.logger,\n config: coreServices.rootConfig,\n permissions: coreServices.permissions,\n discovery: coreServices.discovery,\n httpAuth: coreServices.httpAuth,\n },\n async init({\n httpRouter,\n logger,\n config,\n permissions,\n discovery,\n httpAuth,\n }) {\n httpRouter.use(\n await createRouter({\n logger,\n config,\n permissions,\n discovery,\n httpAuth,\n blackDuckConfig: BlackDuckConfig.fromConfig(config),\n }),\n );\n httpRouter.addAuthPolicy({\n path: '/health',\n allow: 'unauthenticated',\n });\n },\n });\n },\n});\n"],"names":["createLegacyAuthAdapters","createPermissionIntegrationRouter","blackduckPermissions","Router","express","MiddlewareFactory","InputError","blackduckRiskProfileReadPermission","AuthorizeResult","NotAllowedError","blackduckVulnerabilitiesReadPermission","createBackendPlugin","coreServices"],"mappings":";;;;;;;;;;;;;;;;;;;AASO,MAAM,gBAAiB,CAAA;AAAA,EAGrB,WAAA,CACY,MACA,EAAA,IAAA,EACA,KACjB,EAAA;AAHiB,IAAA,IAAA,CAAA,MAAA,GAAA,MAAA,CAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA,CAAA;AACA,IAAA,IAAA,CAAA,KAAA,GAAA,KAAA,CAAA;AAEjB,IAAA,IAAA,CAAK,OAAU,GAAA,EAAA,CAAA;AACf,IAAA,IAAA,CAAK,MAAS,GAAA,GAAA,CAAA;AAAA,GAChB;AAAA,EATQ,OAAA,CAAA;AAAA,EACA,MAAA,CAAA;AAAA,EAUR,MAAa,IAAO,GAAA;AAClB,IAAI,IAAA;AACF,MAAA,MAAM,OAAO,MAAM,KAAA,CAAM,CAAG,EAAA,IAAA,CAAK,IAAI,CAAwB,oBAAA,CAAA,EAAA;AAAA,QAC3D,MAAQ,EAAA,MAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAS,MAAA,EAAA,IAAA,CAAK,KAAK,CAAA,CAAA;AAAA,UAClC,MAAQ,EAAA,+CAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACD,CAAA,CAAA;AACD,MAAM,MAAA,KAAA,GAAQ,MAAM,IAAA,CAAK,IAAK,EAAA,CAAA;AAC9B,MAAK,IAAA,CAAA,MAAA,CAAO,KAAK,kBAAkB,CAAA,CAAA;AACnC,MAAA,IAAA,CAAK,UAAU,KAAM,CAAA,WAAA,CAAA;AACrB,MAAA,OAAO,KAAM,CAAA,WAAA,CAAA;AAAA,aACN,KAAO,EAAA;AACd,MAAM,MAAA,KAAA,CAAA;AAAA,KACR;AAAA,GACF;AAAA,EACA,MAAa,YAAY,IAA6C,EAAA;AACpE,IAAA,MAAM,WAAW,MAAM,KAAA;AAAA,MACrB,CAAG,EAAA,IAAA,CAAK,IAAI,CAAA,2BAAA,EAA8B,IAAI,CAAA,CAAA;AAAA,MAC9C;AAAA,QACE,MAAQ,EAAA,KAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,UACrC,MAAQ,EAAA,yDAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACF;AAAA,KACF,CAAA;AACA,IAAK,IAAA,CAAA,MAAA,CAAO,MAAM,qBAAqB,CAAA,CAAA;AACvC,IAAA,OAAO,SAAS,IAAK,EAAA,CAAA;AAAA,GACvB;AAAA,EAEA,MAAa,WACX,CAAA,UAAA,EACA,WACmC,EAAA;AACnC,IAAA,MAAM,WAAW,MAAM,KAAA;AAAA,MACrB,CAAA,EAAG,UAAU,CAAA,kCAAA,EAAqC,WAAW,CAAA,CAAA;AAAA,MAC7D;AAAA,QACE,MAAQ,EAAA,KAAA;AAAA,QACR,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,UACrC,MAAQ,EAAA,yDAAA;AAAA,UACR,cAAgB,EAAA,kBAAA;AAAA,SAClB;AAAA,OACF;AAAA,KACF,CAAA;AACA,IAAK,IAAA,CAAA,MAAA,CAAO,MAAM,qBAAqB,CAAA,CAAA;AACvC,IAAA,OAAO,SAAS,IAAK,EAAA,CAAA;AAAA,GACvB;AAAA,EAEA,MAAa,wBACX,CAAA,WAAA,EACA,cACA,EAAA;AACA,IAAI,IAAA,aAAA,CAAA;AACJ,IAAI,IAAA,aAAA,CAAA;AACJ,IAAM,MAAA,QAAA,GAAqC,MAAM,IAAK,CAAA,WAAA;AAAA,MACpD,WAAA;AAAA,KACF,CAAA;AACA,IAAS,QAAA,CAAA,KAAA,CAAM,OAAQ,CAAA,CAAC,IAAc,KAAA;AACpC,MAAI,IAAA,IAAA,CAAK,SAAS,WAAa,EAAA;AAC7B,QAAgB,aAAA,GAAA,IAAA,CAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAI,kBAAkB,KAAW,CAAA,EAAA;AAC/B,MAAK,IAAA,CAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AAAA,KAC/C;AACA,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA,CAAM,CAAqB,kBAAA,EAAA,WAAW,CAAU,QAAA,CAAA,CAAA,CAAA;AAC5D,IAAM,MAAA,QAAA,GAAqC,MAAM,IAAK,CAAA,WAAA;AAAA,MACpD,cAAc,KAAM,CAAA,IAAA;AAAA,MACpB,cAAA;AAAA,KACF,CAAA;AACA,IAAS,QAAA,CAAA,KAAA,CAAM,OAAQ,CAAA,CAAC,IAAc,KAAA;AACpC,MAAI,IAAA,IAAA,CAAK,gBAAgB,cAAgB,EAAA;AACvC,QAAgB,aAAA,GAAA,IAAA,CAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAI,kBAAkB,KAAW,CAAA,EAAA;AAC/B,MAAK,IAAA,CAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AAAA,KAC/C;AACA,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,QAAA,CAAA;AAAA,KAC9D,CAAA;AAEA,IAAO,OAAA,aAAA,CAAA;AAAA,GACT;AAAA,EAEA,MAAa,uBACX,CAAA,WAAA,EACA,cACA,EAAA;AACA,IAAM,MAAA,aAAA,GAAgB,MAAM,IAAK,CAAA,wBAAA;AAAA,MAC/B,WAAA;AAAA,MACA,cAAA;AAAA,KACF,CAAA;AACA,IAAA,MAAM,WAAW,CAAG,EAAA,aAAA,CAAc,MAAM,IAAI,CAAA,iCAAA,EAAoC,KAAK,MAAM,CAAA,CAAA,CAAA;AAC3F,IAAM,MAAA,KAAA,GAAa,MAAM,KAAA,CAAM,QAAU,EAAA;AAAA,MACvC,MAAQ,EAAA,KAAA;AAAA,MACR,OAAS,EAAA;AAAA,QACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA,QACrC,MAAQ,EAAA,4DAAA;AAAA,QACR,cAAgB,EAAA,kBAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,sBAAA,CAAA;AAAA,KAC9D,CAAA;AACA,IAAA,OAAO,MAAM,IAAK,EAAA,CAAA;AAAA,GACpB;AAAA,EAEA,MAAa,cAAe,CAAA,WAAA,EAAqB,cAAwB,EAAA;AACvE,IAAM,MAAA,aAAA,GAAgB,MAAM,IAAK,CAAA,wBAAA;AAAA,MAC/B,WAAA;AAAA,MACA,cAAA;AAAA,KACF,CAAA;AACA,IAAA,MAAM,gBAAmB,GAAA,CAAA,EAAG,aAAc,CAAA,KAAA,CAAM,IAAI,CAAA,aAAA,CAAA,CAAA;AACpD,IAAM,MAAA,YAAA,GAAoB,MAAM,KAAA,CAAM,gBAAkB,EAAA;AAAA,MACtD,MAAQ,EAAA,KAAA;AAAA,MACR,OAAS,EAAA;AAAA,QACP,aAAA,EAAe,CAAU,OAAA,EAAA,IAAA,CAAK,OAAO,CAAA,CAAA;AAAA;AAAA,QAErC,cAAgB,EAAA,kBAAA;AAAA,OAClB;AAAA,KACD,CAAA,CAAA;AACD,IAAA,IAAA,CAAK,MAAO,CAAA,KAAA;AAAA,MACV,CAAA,kBAAA,EAAqB,WAAW,CAAA,WAAA,EAAc,cAAc,CAAA,aAAA,CAAA;AAAA,KAC9D,CAAA;AACA,IAAA,OAAO,aAAa,IAAK,EAAA,CAAA;AAAA,GAC3B;AACF;;ACxHA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAA,EAAQ,WAAa,EAAA,MAAA,EAAQ,iBAAoB,GAAA,OAAA,CAAA;AACzD,EAAA,MAAM,EAAE,QAAA,EAAa,GAAAA,sCAAA,CAAyB,OAAO,CAAA,CAAA;AACrD,EAAA,MAAM,8BAA8BC,sDAAkC,CAAA;AAAA,IACpE,WAAa,EAAAC,0CAAA;AAAA,GACd,CAAA,CAAA;AAED,EAAA,MAAM,SAASC,uBAAO,EAAA,CAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA,CAAA;AACzB,EAAA,MAAA,CAAO,IAAI,2BAA2B,CAAA,CAAA;AAEtC,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA,CAAA;AAAA,GAC/B,CAAA,CAAA;AAED,EAAA,MAAM,aAAaC,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA,CAAA;AAE9D,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,qDAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AACxC,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA,CAAA;AAE1D,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,0DAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAI,IAAA,IAAA,CAAA;AACJ,MAAI,IAAA,KAAA,CAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA,CAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA,CAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,2BAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA,CAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,sCAAsC,SAAS,CAAA,CAAA;AAC3D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIC,kBAAW,iCAAiC,CAAA,CAAA;AAAA,OACxD;AAEA,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAC,wDAAA;AAAA,YACZ,WAAa,EAAA,SAAA;AAAA,WACf;AAAA,SACF;AAAA,QACA;AAAA,UACE,WAAA;AAAA,SACF;AAAA,SAEF,CAAC,CAAA,CAAA;AAEH,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA,CAAA;AAAA,OAC1C;AAEA,MAAA,MAAM,SAAY,GAAA,IAAI,gBAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA,CAAA;AACrB,MAAM,MAAA,YAAA,GAAe,MAAM,SAAU,CAAA,cAAA;AAAA,QACnC,WAAA;AAAA,QACA,cAAA;AAAA,OACF,CAAA;AACA,MAAA,QAAA,CAAS,KAAK,YAAY,CAAA,CAAA;AAAA,KAC5B;AAAA,GACF,CAAA;AAEA,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,8CAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA,CAAA;AAC1D,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA,CAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,yCAAyC,SAAS,CAAA,CAAA;AAC9D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIH,kBAAW,iCAAiC,CAAA,CAAA;AAAA,OACxD;AAEA,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,0DAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAI,IAAA,IAAA,CAAA;AACJ,MAAI,IAAA,KAAA,CAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA,CAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA,CAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,2BAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAI,4DAAA;AAAA,YACZ,WAAa,EAAA,SAAA;AAAA,WACf;AAAA,SACF;AAAA,QACA;AAAA,UACE,WAAA;AAAA,SACF;AAAA,SAEF,CAAC,CAAA,CAAA;AACH,MAAO,MAAA,CAAA,IAAA,CAAK,YAAY,QAAQ,CAAA,CAAA;AAChC,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAF,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA,CAAA;AAAA,OAC1C;AAEA,MAAA,MAAM,SAAY,GAAA,IAAI,gBAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA,CAAA;AACrB,MAAM,MAAA,KAAA,GAAQ,MAAM,SAAU,CAAA,uBAAA;AAAA,QAC5B,WAAA;AAAA,QACA,cAAA;AAAA,OACF,CAAA;AACA,MAAA,QAAA,CAAS,KAAK,KAAK,CAAA,CAAA;AAAA,KACrB;AAAA,GACF,CAAA;AAEA,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA,CAAA;AAC7B,EAAO,OAAA,MAAA,CAAA;AACT;;ACxKA,MAAM,iBAAoB,GAAA,SAAA,CAAA;AAOnB,MAAM,eAAgB,CAAA;AAAA,EAC3B,WAAA,CACmB,OACA,WACjB,EAAA;AAFiB,IAAA,IAAA,CAAA,KAAA,GAAA,KAAA,CAAA;AACA,IAAA,IAAA,CAAA,WAAA,GAAA,WAAA,CAAA;AAAA,GAChB;AAAA,EAEH,OAAO,WAAW,MAAiC,EAAA;AACjD,IAAA,IAAI,QAA+B,EAAC,CAAA;AACpC,IAAA,IAAI,WAAsB,GAAA,iBAAA,CAAA;AAE1B,IAAA,IAAI,OAAO,GAAI,CAAA,gBAAgB,KAAK,MAAO,CAAA,GAAA,CAAI,iBAAiB,CAAG,EAAA;AACjE,MAAM,MAAA,IAAI,MAAM,qDAAqD,CAAA,CAAA;AAAA,KACvE;AAEA,IAAA,IAAI,OAAO,GAAI,CAAA,gBAAgB,KAAK,MAAO,CAAA,GAAA,CAAI,iBAAiB,CAAG,EAAA;AACjE,MAAA,MAAM,UAAa,GAAA;AAAA,QACjB,IAAM,EAAA,SAAA;AAAA,QACN,IAAA,EAAM,MAAO,CAAA,SAAA,CAAU,gBAAgB,CAAA;AAAA,QACvC,KAAA,EAAO,MAAO,CAAA,SAAA,CAAU,iBAAiB,CAAA;AAAA,OAC3C,CAAA;AACA,MAAA,KAAA,GAAQ,CAAC,UAAU,CAAA,CAAA;AAAA,KACrB,MAAA,IACE,OAAO,GAAI,CAAA,iBAAiB,KAC5B,MAAO,CAAA,GAAA,CAAI,mBAAmB,CAC9B,EAAA;AACA,MAAA,KAAA,GAAQ,MAAO,CAAA,cAAA,CAAe,iBAAiB,CAAA,CAAE,IAAI,CAAe,UAAA,MAAA;AAAA,QAClE,IAAA,EAAM,UAAW,CAAA,SAAA,CAAU,MAAM,CAAA;AAAA,QACjC,IAAA,EAAM,UAAW,CAAA,SAAA,CAAU,MAAM,CAAA;AAAA,QACjC,KAAA,EAAO,UAAW,CAAA,SAAA,CAAU,OAAO,CAAA;AAAA,OACnC,CAAA,CAAA,CAAA;AACF,MAAc,WAAA,GAAA,MAAA,CAAO,UAAU,mBAAmB,CAAA,CAAA;AAAA,KAC7C,MAAA;AACL,MAAM,MAAA,IAAI,MAAM,gCAAgC,CAAA,CAAA;AAAA,KAClD;AAEA,IAAO,OAAA,IAAI,eAAgB,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAAA,GAC/C;AAAA,EAEA,oBAAoB,IAAmC,EAAA;AACrD,IAAA,MAAM,QAAW,GAAA,IAAA,KAAS,iBAAoB,GAAA,IAAA,CAAK,WAAc,GAAA,IAAA,CAAA;AAEjE,IAAA,MAAM,aAAa,IAAK,CAAA,KAAA,CAAM,KAAK,CAAQ,IAAA,KAAA,IAAA,CAAK,SAAS,QAAQ,CAAA,CAAA;AAEjE,IAAA,IAAI,CAAC,UAAY,EAAA;AACf,MAAA,MAAM,IAAI,KAAA,CAAM,CAA4B,yBAAA,EAAA,IAAI,CAAE,CAAA,CAAA,CAAA;AAAA,KACpD;AAEA,IAAO,OAAA,UAAA,CAAA;AAAA,GACT;AACF;;ACvDO,MAAM,kBAAkBE,oCAAoB,CAAA;AAAA,EACjD,QAAU,EAAA,WAAA;AAAA,EACV,SAAS,GAAK,EAAA;AACZ,IAAA,GAAA,CAAI,YAAa,CAAA;AAAA,MACf,IAAM,EAAA;AAAA,QACJ,YAAYC,6BAAa,CAAA,UAAA;AAAA,QACzB,QAAQA,6BAAa,CAAA,MAAA;AAAA,QACrB,QAAQA,6BAAa,CAAA,UAAA;AAAA,QACrB,aAAaA,6BAAa,CAAA,WAAA;AAAA,QAC1B,WAAWA,6BAAa,CAAA,SAAA;AAAA,QACxB,UAAUA,6BAAa,CAAA,QAAA;AAAA,OACzB;AAAA,MACA,MAAM,IAAK,CAAA;AAAA,QACT,UAAA;AAAA,QACA,MAAA;AAAA,QACA,MAAA;AAAA,QACA,WAAA;AAAA,QACA,SAAA;AAAA,QACA,QAAA;AAAA,OACC,EAAA;AACD,QAAW,UAAA,CAAA,GAAA;AAAA,UACT,MAAM,YAAa,CAAA;AAAA,YACjB,MAAA;AAAA,YACA,MAAA;AAAA,YACA,WAAA;AAAA,YACA,SAAA;AAAA,YACA,QAAA;AAAA,YACA,eAAA,EAAiB,eAAgB,CAAA,UAAA,CAAW,MAAM,CAAA;AAAA,WACnD,CAAA;AAAA,SACH,CAAA;AACA,QAAA,UAAA,CAAW,aAAc,CAAA;AAAA,UACvB,IAAM,EAAA,SAAA;AAAA,UACN,KAAO,EAAA,iBAAA;AAAA,SACR,CAAA,CAAA;AAAA,OACH;AAAA,KACD,CAAA,CAAA;AAAA,GACH;AACF,CAAC;;;;;;"}
|
|
1
|
+
{"version":3,"file":"index.cjs.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;;;;;"}
|
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
var backendPluginApi = require('@backstage/backend-plugin-api');
|
|
4
|
+
var BlackDuckConfig = require('./service/BlackDuckConfig.cjs.js');
|
|
5
|
+
var router = require('./service/router.cjs.js');
|
|
6
|
+
|
|
7
|
+
const blackduckPlugin = backendPluginApi.createBackendPlugin({
|
|
8
|
+
pluginId: "blackduck",
|
|
9
|
+
register(env) {
|
|
10
|
+
env.registerInit({
|
|
11
|
+
deps: {
|
|
12
|
+
httpRouter: backendPluginApi.coreServices.httpRouter,
|
|
13
|
+
logger: backendPluginApi.coreServices.logger,
|
|
14
|
+
config: backendPluginApi.coreServices.rootConfig,
|
|
15
|
+
permissions: backendPluginApi.coreServices.permissions,
|
|
16
|
+
discovery: backendPluginApi.coreServices.discovery,
|
|
17
|
+
httpAuth: backendPluginApi.coreServices.httpAuth
|
|
18
|
+
},
|
|
19
|
+
async init({
|
|
20
|
+
httpRouter,
|
|
21
|
+
logger,
|
|
22
|
+
config,
|
|
23
|
+
permissions,
|
|
24
|
+
discovery,
|
|
25
|
+
httpAuth
|
|
26
|
+
}) {
|
|
27
|
+
httpRouter.use(
|
|
28
|
+
await router.createRouter({
|
|
29
|
+
logger,
|
|
30
|
+
config,
|
|
31
|
+
permissions,
|
|
32
|
+
discovery,
|
|
33
|
+
httpAuth,
|
|
34
|
+
blackDuckConfig: BlackDuckConfig.BlackDuckConfig.fromConfig(config)
|
|
35
|
+
})
|
|
36
|
+
);
|
|
37
|
+
httpRouter.addAuthPolicy({
|
|
38
|
+
path: "/health",
|
|
39
|
+
allow: "unauthenticated"
|
|
40
|
+
});
|
|
41
|
+
}
|
|
42
|
+
});
|
|
43
|
+
}
|
|
44
|
+
});
|
|
45
|
+
|
|
46
|
+
exports.blackduckPlugin = blackduckPlugin;
|
|
47
|
+
//# sourceMappingURL=plugin.cjs.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"plugin.cjs.js","sources":["../src/plugin.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n coreServices,\n createBackendPlugin,\n} from '@backstage/backend-plugin-api';\nimport { BlackDuckConfig } from './service/BlackDuckConfig';\nimport { createRouter } from './service/router';\n\n/**\n * blackduckPlugin backend plugin\n *\n * @public\n */\nexport const blackduckPlugin = createBackendPlugin({\n pluginId: 'blackduck',\n register(env) {\n env.registerInit({\n deps: {\n httpRouter: coreServices.httpRouter,\n logger: coreServices.logger,\n config: coreServices.rootConfig,\n permissions: coreServices.permissions,\n discovery: coreServices.discovery,\n httpAuth: coreServices.httpAuth,\n },\n async init({\n httpRouter,\n logger,\n config,\n permissions,\n discovery,\n httpAuth,\n }) {\n httpRouter.use(\n await createRouter({\n logger,\n config,\n permissions,\n discovery,\n httpAuth,\n blackDuckConfig: BlackDuckConfig.fromConfig(config),\n }),\n );\n httpRouter.addAuthPolicy({\n path: '/health',\n allow: 'unauthenticated',\n });\n },\n });\n },\n});\n"],"names":["createBackendPlugin","coreServices","createRouter","BlackDuckConfig"],"mappings":";;;;;;AA2BO,MAAM,kBAAkBA,oCAAoB,CAAA;AAAA,EACjD,QAAU,EAAA,WAAA;AAAA,EACV,SAAS,GAAK,EAAA;AACZ,IAAA,GAAA,CAAI,YAAa,CAAA;AAAA,MACf,IAAM,EAAA;AAAA,QACJ,YAAYC,6BAAa,CAAA,UAAA;AAAA,QACzB,QAAQA,6BAAa,CAAA,MAAA;AAAA,QACrB,QAAQA,6BAAa,CAAA,UAAA;AAAA,QACrB,aAAaA,6BAAa,CAAA,WAAA;AAAA,QAC1B,WAAWA,6BAAa,CAAA,SAAA;AAAA,QACxB,UAAUA,6BAAa,CAAA,QAAA;AAAA,OACzB;AAAA,MACA,MAAM,IAAK,CAAA;AAAA,QACT,UAAA;AAAA,QACA,MAAA;AAAA,QACA,MAAA;AAAA,QACA,WAAA;AAAA,QACA,SAAA;AAAA,QACA,QAAA;AAAA,OACC,EAAA;AACD,QAAW,UAAA,CAAA,GAAA;AAAA,UACT,MAAMC,mBAAa,CAAA;AAAA,YACjB,MAAA;AAAA,YACA,MAAA;AAAA,YACA,WAAA;AAAA,YACA,SAAA;AAAA,YACA,QAAA;AAAA,YACA,eAAA,EAAiBC,+BAAgB,CAAA,UAAA,CAAW,MAAM,CAAA;AAAA,WACnD,CAAA;AAAA,SACH,CAAA;AACA,QAAA,UAAA,CAAW,aAAc,CAAA;AAAA,UACvB,IAAM,EAAA,SAAA;AAAA,UACN,KAAO,EAAA,iBAAA;AAAA,SACR,CAAA,CAAA;AAAA,OACH;AAAA,KACD,CAAA,CAAA;AAAA,GACH;AACF,CAAC;;;;"}
|
|
@@ -0,0 +1,45 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
const DEFAULT_HOST_NAME = "default";
|
|
4
|
+
class BlackDuckConfig {
|
|
5
|
+
constructor(hosts, defaultHost) {
|
|
6
|
+
this.hosts = hosts;
|
|
7
|
+
this.defaultHost = defaultHost;
|
|
8
|
+
}
|
|
9
|
+
static fromConfig(config) {
|
|
10
|
+
let hosts = [];
|
|
11
|
+
let defaultHost = DEFAULT_HOST_NAME;
|
|
12
|
+
if (config.has("blackduck.host") && config.has("blackduck.hosts")) {
|
|
13
|
+
throw new Error("Cannot have both blackduck.host and blackduck.hosts");
|
|
14
|
+
}
|
|
15
|
+
if (config.has("blackduck.host") && config.has("blackduck.token")) {
|
|
16
|
+
const singleHost = {
|
|
17
|
+
name: "default",
|
|
18
|
+
host: config.getString("blackduck.host"),
|
|
19
|
+
token: config.getString("blackduck.token")
|
|
20
|
+
};
|
|
21
|
+
hosts = [singleHost];
|
|
22
|
+
} else if (config.has("blackduck.hosts") && config.has("blackduck.default")) {
|
|
23
|
+
hosts = config.getConfigArray("blackduck.hosts").map((hostConfig) => ({
|
|
24
|
+
name: hostConfig.getString("name"),
|
|
25
|
+
host: hostConfig.getString("host"),
|
|
26
|
+
token: hostConfig.getString("token")
|
|
27
|
+
}));
|
|
28
|
+
defaultHost = config.getString("blackduck.default");
|
|
29
|
+
} else {
|
|
30
|
+
throw new Error("Invalid BlackDuck config found");
|
|
31
|
+
}
|
|
32
|
+
return new BlackDuckConfig(hosts, defaultHost);
|
|
33
|
+
}
|
|
34
|
+
getHostConfigByName(name) {
|
|
35
|
+
const hostName = name === DEFAULT_HOST_NAME ? this.defaultHost : name;
|
|
36
|
+
const hostConfig = this.hosts.find((host) => host.name === hostName);
|
|
37
|
+
if (!hostConfig) {
|
|
38
|
+
throw new Error(`No host found with name: ${name}`);
|
|
39
|
+
}
|
|
40
|
+
return hostConfig;
|
|
41
|
+
}
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
exports.BlackDuckConfig = BlackDuckConfig;
|
|
45
|
+
//# sourceMappingURL=BlackDuckConfig.cjs.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"BlackDuckConfig.cjs.js","sources":["../../src/service/BlackDuckConfig.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { Config } from '@backstage/config';\n\n/**\n * @public\n */\nexport interface BlackDuckHostConfig {\n name: string;\n host: string;\n token: string;\n}\n\nconst DEFAULT_HOST_NAME = 'default';\n\n/**\n * blackduckPlugin config\n *\n * @public\n */\nexport class BlackDuckConfig {\n constructor(\n private readonly hosts: BlackDuckHostConfig[],\n private readonly defaultHost: string,\n ) {}\n\n static fromConfig(config: Config): BlackDuckConfig {\n let hosts: BlackDuckHostConfig[] = [];\n let defaultHost: string = DEFAULT_HOST_NAME;\n\n if (config.has('blackduck.host') && config.has('blackduck.hosts')) {\n throw new Error('Cannot have both blackduck.host and blackduck.hosts');\n }\n\n if (config.has('blackduck.host') && config.has('blackduck.token')) {\n const singleHost = {\n name: 'default',\n host: config.getString('blackduck.host'),\n token: config.getString('blackduck.token'),\n };\n hosts = [singleHost];\n } else if (\n config.has('blackduck.hosts') &&\n config.has('blackduck.default')\n ) {\n hosts = config.getConfigArray('blackduck.hosts').map(hostConfig => ({\n name: hostConfig.getString('name'),\n host: hostConfig.getString('host'),\n token: hostConfig.getString('token'),\n }));\n defaultHost = config.getString('blackduck.default');\n } else {\n throw new Error('Invalid BlackDuck config found');\n }\n\n return new BlackDuckConfig(hosts, defaultHost);\n }\n\n getHostConfigByName(name: string): BlackDuckHostConfig {\n const hostName = name === DEFAULT_HOST_NAME ? this.defaultHost : name;\n\n const hostConfig = this.hosts.find(host => host.name === hostName);\n\n if (!hostConfig) {\n throw new Error(`No host found with name: ${name}`);\n }\n\n return hostConfig;\n }\n}\n"],"names":[],"mappings":";;AA0BA,MAAM,iBAAoB,GAAA,SAAA,CAAA;AAOnB,MAAM,eAAgB,CAAA;AAAA,EAC3B,WAAA,CACmB,OACA,WACjB,EAAA;AAFiB,IAAA,IAAA,CAAA,KAAA,GAAA,KAAA,CAAA;AACA,IAAA,IAAA,CAAA,WAAA,GAAA,WAAA,CAAA;AAAA,GAChB;AAAA,EAEH,OAAO,WAAW,MAAiC,EAAA;AACjD,IAAA,IAAI,QAA+B,EAAC,CAAA;AACpC,IAAA,IAAI,WAAsB,GAAA,iBAAA,CAAA;AAE1B,IAAA,IAAI,OAAO,GAAI,CAAA,gBAAgB,KAAK,MAAO,CAAA,GAAA,CAAI,iBAAiB,CAAG,EAAA;AACjE,MAAM,MAAA,IAAI,MAAM,qDAAqD,CAAA,CAAA;AAAA,KACvE;AAEA,IAAA,IAAI,OAAO,GAAI,CAAA,gBAAgB,KAAK,MAAO,CAAA,GAAA,CAAI,iBAAiB,CAAG,EAAA;AACjE,MAAA,MAAM,UAAa,GAAA;AAAA,QACjB,IAAM,EAAA,SAAA;AAAA,QACN,IAAA,EAAM,MAAO,CAAA,SAAA,CAAU,gBAAgB,CAAA;AAAA,QACvC,KAAA,EAAO,MAAO,CAAA,SAAA,CAAU,iBAAiB,CAAA;AAAA,OAC3C,CAAA;AACA,MAAA,KAAA,GAAQ,CAAC,UAAU,CAAA,CAAA;AAAA,KACrB,MAAA,IACE,OAAO,GAAI,CAAA,iBAAiB,KAC5B,MAAO,CAAA,GAAA,CAAI,mBAAmB,CAC9B,EAAA;AACA,MAAA,KAAA,GAAQ,MAAO,CAAA,cAAA,CAAe,iBAAiB,CAAA,CAAE,IAAI,CAAe,UAAA,MAAA;AAAA,QAClE,IAAA,EAAM,UAAW,CAAA,SAAA,CAAU,MAAM,CAAA;AAAA,QACjC,IAAA,EAAM,UAAW,CAAA,SAAA,CAAU,MAAM,CAAA;AAAA,QACjC,KAAA,EAAO,UAAW,CAAA,SAAA,CAAU,OAAO,CAAA;AAAA,OACnC,CAAA,CAAA,CAAA;AACF,MAAc,WAAA,GAAA,MAAA,CAAO,UAAU,mBAAmB,CAAA,CAAA;AAAA,KAC7C,MAAA;AACL,MAAM,MAAA,IAAI,MAAM,gCAAgC,CAAA,CAAA;AAAA,KAClD;AAEA,IAAO,OAAA,IAAI,eAAgB,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAAA,GAC/C;AAAA,EAEA,oBAAoB,IAAmC,EAAA;AACrD,IAAA,MAAM,QAAW,GAAA,IAAA,KAAS,iBAAoB,GAAA,IAAA,CAAK,WAAc,GAAA,IAAA,CAAA;AAEjE,IAAA,MAAM,aAAa,IAAK,CAAA,KAAA,CAAM,KAAK,CAAQ,IAAA,KAAA,IAAA,CAAK,SAAS,QAAQ,CAAA,CAAA;AAEjE,IAAA,IAAI,CAAC,UAAY,EAAA;AACf,MAAA,MAAM,IAAI,KAAA,CAAM,CAA4B,yBAAA,EAAA,IAAI,CAAE,CAAA,CAAA,CAAA;AAAA,KACpD;AAEA,IAAO,OAAA,UAAA,CAAA;AAAA,GACT;AACF;;;;"}
|
|
@@ -0,0 +1,141 @@
|
|
|
1
|
+
'use strict';
|
|
2
|
+
|
|
3
|
+
var rootHttpRouter = require('@backstage/backend-defaults/rootHttpRouter');
|
|
4
|
+
var express = require('express');
|
|
5
|
+
var Router = require('express-promise-router');
|
|
6
|
+
var pluginPermissionNode = require('@backstage/plugin-permission-node');
|
|
7
|
+
var errors = require('@backstage/errors');
|
|
8
|
+
var pluginPermissionCommon = require('@backstage/plugin-permission-common');
|
|
9
|
+
var backendCommon = require('@backstage/backend-common');
|
|
10
|
+
var pluginBlackduckCommon = require('@backstage-community/plugin-blackduck-common');
|
|
11
|
+
var BlackDuckRestApi = require('../api/BlackDuckRestApi.cjs.js');
|
|
12
|
+
|
|
13
|
+
function _interopDefaultCompat (e) { return e && typeof e === 'object' && 'default' in e ? e : { default: e }; }
|
|
14
|
+
|
|
15
|
+
var express__default = /*#__PURE__*/_interopDefaultCompat(express);
|
|
16
|
+
var Router__default = /*#__PURE__*/_interopDefaultCompat(Router);
|
|
17
|
+
|
|
18
|
+
async function createRouter(options) {
|
|
19
|
+
const { logger, permissions, config, blackDuckConfig } = options;
|
|
20
|
+
const { httpAuth } = backendCommon.createLegacyAuthAdapters(options);
|
|
21
|
+
const permissionIntegrationRouter = pluginPermissionNode.createPermissionIntegrationRouter({
|
|
22
|
+
permissions: pluginBlackduckCommon.blackduckPermissions
|
|
23
|
+
});
|
|
24
|
+
const router = Router__default.default();
|
|
25
|
+
router.use(express__default.default.json());
|
|
26
|
+
router.use(permissionIntegrationRouter);
|
|
27
|
+
router.get("/health", (_, response) => {
|
|
28
|
+
logger.info("PONG!");
|
|
29
|
+
response.json({ status: "ok" });
|
|
30
|
+
});
|
|
31
|
+
const middleware = rootHttpRouter.MiddlewareFactory.create({ logger, config });
|
|
32
|
+
router.post(
|
|
33
|
+
"/risk-profile/:hostKey/:projectName/:projectVersion",
|
|
34
|
+
async (_request, response) => {
|
|
35
|
+
logger.debug("getting vulnarabilities..");
|
|
36
|
+
const { hostKey, projectName, projectVersion } = _request.params;
|
|
37
|
+
if (!hostKey || !projectName || !projectVersion) {
|
|
38
|
+
response.status(400).json({
|
|
39
|
+
message: "The hostKey, projectName and projectVersion are required"
|
|
40
|
+
});
|
|
41
|
+
return;
|
|
42
|
+
}
|
|
43
|
+
let host;
|
|
44
|
+
let token;
|
|
45
|
+
try {
|
|
46
|
+
const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);
|
|
47
|
+
host = hostConfig.host;
|
|
48
|
+
token = hostConfig.token;
|
|
49
|
+
} catch (error) {
|
|
50
|
+
response.status(400).json({
|
|
51
|
+
message: "The hostKey is not valid."
|
|
52
|
+
});
|
|
53
|
+
return;
|
|
54
|
+
}
|
|
55
|
+
const credentials = await httpAuth.credentials(_request);
|
|
56
|
+
const entityRef = _request.body.entityRef;
|
|
57
|
+
logger.info("getting risk profile for project: ", entityRef);
|
|
58
|
+
if (typeof entityRef !== "string") {
|
|
59
|
+
throw new errors.InputError("Invalid entityRef, not a string");
|
|
60
|
+
}
|
|
61
|
+
const decision = (await permissions.authorize(
|
|
62
|
+
[
|
|
63
|
+
{
|
|
64
|
+
permission: pluginBlackduckCommon.blackduckRiskProfileReadPermission,
|
|
65
|
+
resourceRef: entityRef
|
|
66
|
+
}
|
|
67
|
+
],
|
|
68
|
+
{
|
|
69
|
+
credentials
|
|
70
|
+
}
|
|
71
|
+
))[0];
|
|
72
|
+
if (decision.result !== pluginPermissionCommon.AuthorizeResult.ALLOW) {
|
|
73
|
+
throw new errors.NotAllowedError("Unauthorized");
|
|
74
|
+
}
|
|
75
|
+
const blackDuck = new BlackDuckRestApi.BlackDuckRestApi(logger, host, token);
|
|
76
|
+
await blackDuck.auth();
|
|
77
|
+
const risk_profile = await blackDuck.getRiskProfile(
|
|
78
|
+
projectName,
|
|
79
|
+
projectVersion
|
|
80
|
+
);
|
|
81
|
+
response.json(risk_profile);
|
|
82
|
+
}
|
|
83
|
+
);
|
|
84
|
+
router.post(
|
|
85
|
+
"/vulns/:hostKey/:projectName/:projectVersion",
|
|
86
|
+
async (_request, response) => {
|
|
87
|
+
const { hostKey, projectName, projectVersion } = _request.params;
|
|
88
|
+
const credentials = await httpAuth.credentials(_request);
|
|
89
|
+
const entityRef = _request.body.entityRef;
|
|
90
|
+
logger.info("getting vulnarabilities for project: ", entityRef);
|
|
91
|
+
if (typeof entityRef !== "string") {
|
|
92
|
+
throw new errors.InputError("Invalid entityRef, not a string");
|
|
93
|
+
}
|
|
94
|
+
if (!hostKey || !projectName || !projectVersion) {
|
|
95
|
+
response.status(400).json({
|
|
96
|
+
message: "The hostKey, projectName and projectVersion are required"
|
|
97
|
+
});
|
|
98
|
+
return;
|
|
99
|
+
}
|
|
100
|
+
let host;
|
|
101
|
+
let token;
|
|
102
|
+
try {
|
|
103
|
+
const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);
|
|
104
|
+
host = hostConfig.host;
|
|
105
|
+
token = hostConfig.token;
|
|
106
|
+
} catch (error) {
|
|
107
|
+
response.status(400).json({
|
|
108
|
+
message: "The hostKey is not valid."
|
|
109
|
+
});
|
|
110
|
+
return;
|
|
111
|
+
}
|
|
112
|
+
const decision = (await permissions.authorize(
|
|
113
|
+
[
|
|
114
|
+
{
|
|
115
|
+
permission: pluginBlackduckCommon.blackduckVulnerabilitiesReadPermission,
|
|
116
|
+
resourceRef: entityRef
|
|
117
|
+
}
|
|
118
|
+
],
|
|
119
|
+
{
|
|
120
|
+
credentials
|
|
121
|
+
}
|
|
122
|
+
))[0];
|
|
123
|
+
logger.info("decision", decision);
|
|
124
|
+
if (decision.result !== pluginPermissionCommon.AuthorizeResult.ALLOW) {
|
|
125
|
+
throw new errors.NotAllowedError("Unauthorized");
|
|
126
|
+
}
|
|
127
|
+
const blackDuck = new BlackDuckRestApi.BlackDuckRestApi(logger, host, token);
|
|
128
|
+
await blackDuck.auth();
|
|
129
|
+
const vulns = await blackDuck.getVulnerableComponents(
|
|
130
|
+
projectName,
|
|
131
|
+
projectVersion
|
|
132
|
+
);
|
|
133
|
+
response.json(vulns);
|
|
134
|
+
}
|
|
135
|
+
);
|
|
136
|
+
router.use(middleware.error());
|
|
137
|
+
return router;
|
|
138
|
+
}
|
|
139
|
+
|
|
140
|
+
exports.createRouter = createRouter;
|
|
141
|
+
//# sourceMappingURL=router.cjs.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"router.cjs.js","sources":["../../src/service/router.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n DiscoveryService,\n HttpAuthService,\n LoggerService,\n PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { Config } from '@backstage/config';\nimport express from 'express';\nimport Router from 'express-promise-router';\nimport { createPermissionIntegrationRouter } from '@backstage/plugin-permission-node';\nimport { InputError, NotAllowedError } from '@backstage/errors';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport { createLegacyAuthAdapters } from '@backstage/backend-common';\nimport {\n blackduckPermissions,\n blackduckRiskProfileReadPermission,\n blackduckVulnerabilitiesReadPermission,\n} from '@backstage-community/plugin-blackduck-common';\nimport { BlackDuckRestApi } from '../api/BlackDuckRestApi';\nimport { BlackDuckConfig } from './BlackDuckConfig';\n\n/** @public */\nexport interface RouterOptions {\n logger: LoggerService;\n config: Config;\n permissions: PermissionsService;\n discovery: DiscoveryService;\n httpAuth?: HttpAuthService;\n blackDuckConfig: BlackDuckConfig;\n}\n\n/** @public */\nexport async function createRouter(\n options: RouterOptions,\n): Promise<express.Router> {\n const { logger, permissions, config, blackDuckConfig } = options;\n const { httpAuth } = createLegacyAuthAdapters(options);\n const permissionIntegrationRouter = createPermissionIntegrationRouter({\n permissions: blackduckPermissions,\n });\n\n const router = Router();\n router.use(express.json());\n router.use(permissionIntegrationRouter);\n\n router.get('/health', (_, response) => {\n logger.info('PONG!');\n response.json({ status: 'ok' });\n });\n\n const middleware = MiddlewareFactory.create({ logger, config });\n\n router.post(\n '/risk-profile/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n logger.debug('getting vulnarabilities..');\n const { hostKey, projectName, projectVersion } = _request.params;\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting risk profile for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckRiskProfileReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const risk_profile = await blackDuck.getRiskProfile(\n projectName,\n projectVersion,\n );\n response.json(risk_profile);\n },\n );\n\n router.post(\n '/vulns/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n const { hostKey, projectName, projectVersion } = _request.params;\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting vulnarabilities for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckVulnerabilitiesReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n logger.info('decision', decision);\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const vulns = await blackDuck.getVulnerableComponents(\n projectName,\n projectVersion,\n );\n response.json(vulns);\n },\n );\n\n router.use(middleware.error());\n return router;\n}\n"],"names":["createLegacyAuthAdapters","createPermissionIntegrationRouter","blackduckPermissions","Router","express","MiddlewareFactory","InputError","blackduckRiskProfileReadPermission","AuthorizeResult","NotAllowedError","BlackDuckRestApi","blackduckVulnerabilitiesReadPermission"],"mappings":";;;;;;;;;;;;;;;;;AAgDA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAA,EAAQ,WAAa,EAAA,MAAA,EAAQ,iBAAoB,GAAA,OAAA,CAAA;AACzD,EAAA,MAAM,EAAE,QAAA,EAAa,GAAAA,sCAAA,CAAyB,OAAO,CAAA,CAAA;AACrD,EAAA,MAAM,8BAA8BC,sDAAkC,CAAA;AAAA,IACpE,WAAa,EAAAC,0CAAA;AAAA,GACd,CAAA,CAAA;AAED,EAAA,MAAM,SAASC,uBAAO,EAAA,CAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA,CAAA;AACzB,EAAA,MAAA,CAAO,IAAI,2BAA2B,CAAA,CAAA;AAEtC,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA,CAAA;AAAA,GAC/B,CAAA,CAAA;AAED,EAAA,MAAM,aAAaC,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA,CAAA;AAE9D,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,qDAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA,CAAA;AACxC,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA,CAAA;AAE1D,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,0DAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAI,IAAA,IAAA,CAAA;AACJ,MAAI,IAAA,KAAA,CAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA,CAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA,CAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,2BAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA,CAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,sCAAsC,SAAS,CAAA,CAAA;AAC3D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIC,kBAAW,iCAAiC,CAAA,CAAA;AAAA,OACxD;AAEA,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAC,wDAAA;AAAA,YACZ,WAAa,EAAA,SAAA;AAAA,WACf;AAAA,SACF;AAAA,QACA;AAAA,UACE,WAAA;AAAA,SACF;AAAA,SAEF,CAAC,CAAA,CAAA;AAEH,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA,CAAA;AAAA,OAC1C;AAEA,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA,CAAA;AACrB,MAAM,MAAA,YAAA,GAAe,MAAM,SAAU,CAAA,cAAA;AAAA,QACnC,WAAA;AAAA,QACA,cAAA;AAAA,OACF,CAAA;AACA,MAAA,QAAA,CAAS,KAAK,YAAY,CAAA,CAAA;AAAA,KAC5B;AAAA,GACF,CAAA;AAEA,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,8CAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA,CAAA;AAC1D,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA,CAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,yCAAyC,SAAS,CAAA,CAAA;AAC9D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIJ,kBAAW,iCAAiC,CAAA,CAAA;AAAA,OACxD;AAEA,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,0DAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAI,IAAA,IAAA,CAAA;AACJ,MAAI,IAAA,KAAA,CAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA,CAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA,CAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA,2BAAA;AAAA,SACV,CAAA,CAAA;AACD,QAAA,OAAA;AAAA,OACF;AAEA,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAK,4DAAA;AAAA,YACZ,WAAa,EAAA,SAAA;AAAA,WACf;AAAA,SACF;AAAA,QACA;AAAA,UACE,WAAA;AAAA,SACF;AAAA,SAEF,CAAC,CAAA,CAAA;AACH,MAAO,MAAA,CAAA,IAAA,CAAK,YAAY,QAAQ,CAAA,CAAA;AAChC,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAH,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA,CAAA;AAAA,OAC1C;AAEA,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA,CAAA;AACrB,MAAM,MAAA,KAAA,GAAQ,MAAM,SAAU,CAAA,uBAAA;AAAA,QAC5B,WAAA;AAAA,QACA,cAAA;AAAA,OACF,CAAA;AACA,MAAA,QAAA,CAAS,KAAK,KAAK,CAAA,CAAA;AAAA,KACrB;AAAA,GACF,CAAA;AAEA,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA,CAAA;AAC7B,EAAO,OAAA,MAAA,CAAA;AACT;;;;"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@backstage-community/plugin-blackduck-backend",
|
|
3
|
-
"version": "0.0.
|
|
3
|
+
"version": "0.0.7",
|
|
4
4
|
"main": "dist/index.cjs.js",
|
|
5
5
|
"types": "dist/index.d.ts",
|
|
6
6
|
"license": "Apache-2.0",
|
|
@@ -33,23 +33,23 @@
|
|
|
33
33
|
"postpack": "backstage-cli package postpack"
|
|
34
34
|
},
|
|
35
35
|
"dependencies": {
|
|
36
|
-
"@backstage-community/plugin-blackduck-common": "^0.0.
|
|
36
|
+
"@backstage-community/plugin-blackduck-common": "^0.0.4",
|
|
37
37
|
"@backstage/backend-common": "^0.25.0",
|
|
38
|
-
"@backstage/backend-defaults": "^0.5.
|
|
39
|
-
"@backstage/backend-plugin-api": "^1.0.
|
|
38
|
+
"@backstage/backend-defaults": "^0.5.2",
|
|
39
|
+
"@backstage/backend-plugin-api": "^1.0.1",
|
|
40
40
|
"@backstage/config": "^1.2.0",
|
|
41
41
|
"@backstage/errors": "^1.2.4",
|
|
42
42
|
"@backstage/plugin-permission-common": "^0.8.1",
|
|
43
|
-
"@backstage/plugin-permission-node": "^0.8.
|
|
43
|
+
"@backstage/plugin-permission-node": "^0.8.4",
|
|
44
44
|
"express": "^4.17.1",
|
|
45
45
|
"express-promise-router": "^4.1.0",
|
|
46
46
|
"node-fetch": "^2.6.7"
|
|
47
47
|
},
|
|
48
48
|
"devDependencies": {
|
|
49
|
-
"@backstage/backend-test-utils": "^1.0.
|
|
50
|
-
"@backstage/cli": "^0.
|
|
51
|
-
"@backstage/plugin-auth-backend": "^0.23.
|
|
52
|
-
"@backstage/plugin-auth-backend-module-guest-provider": "^0.2.
|
|
49
|
+
"@backstage/backend-test-utils": "^1.0.2",
|
|
50
|
+
"@backstage/cli": "^0.28.0",
|
|
51
|
+
"@backstage/plugin-auth-backend": "^0.23.1",
|
|
52
|
+
"@backstage/plugin-auth-backend-module-guest-provider": "^0.2.1",
|
|
53
53
|
"@types/express": "*",
|
|
54
54
|
"@types/supertest": "^6.0.0",
|
|
55
55
|
"msw": "^2.3.1",
|