@backstage-community/plugin-blackduck-backend 0.1.0 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +7 -0
- package/README.md +0 -63
- package/dist/index.d.ts +2 -22
- package/dist/service/router.cjs.js +1 -3
- package/dist/service/router.cjs.js.map +1 -1
- package/package.json +2 -5
package/CHANGELOG.md
CHANGED
package/README.md
CHANGED
|
@@ -31,69 +31,6 @@ const backend = createBackend();
|
|
|
31
31
|
backend.start();
|
|
32
32
|
```
|
|
33
33
|
|
|
34
|
-
### Legacy Backend System
|
|
35
|
-
|
|
36
|
-
Create a file called blackduck.ts inside `packages/backend/src/plugins/` and add the following:
|
|
37
|
-
|
|
38
|
-
### blackduck.ts
|
|
39
|
-
|
|
40
|
-
```typescript
|
|
41
|
-
import {
|
|
42
|
-
createRouter,
|
|
43
|
-
BlackDuckConfig,
|
|
44
|
-
} from '@backstage-community/plugin-blackduck-backend';
|
|
45
|
-
import { Router } from 'express';
|
|
46
|
-
import { PluginEnvironment } from '../types';
|
|
47
|
-
|
|
48
|
-
export default async function createPlugin(
|
|
49
|
-
env: PluginEnvironment,
|
|
50
|
-
): Promise<Router> {
|
|
51
|
-
return await createRouter({
|
|
52
|
-
logger: env.logger,
|
|
53
|
-
config: env.config,
|
|
54
|
-
permissions: env.permissions,
|
|
55
|
-
discovery: env.discovery,
|
|
56
|
-
blackDuckConfig: BlackDuckConfig.fromConfig(env.config),
|
|
57
|
-
});
|
|
58
|
-
}
|
|
59
|
-
```
|
|
60
|
-
|
|
61
|
-
And import the plugin to `packages/backend/src/index.ts`.
|
|
62
|
-
|
|
63
|
-
### src/index.ts
|
|
64
|
-
|
|
65
|
-
```diff
|
|
66
|
-
diff --git a/packages/backend/src/index.ts b/packages/backend/src/index.ts
|
|
67
|
-
index c4736a5..5822302 100644
|
|
68
|
-
--- a/packages/backend/src/index.ts
|
|
69
|
-
+++ b/packages/backend/src/index.ts
|
|
70
|
-
@@ -28,6 +28,7 @@ import scaffolder from './plugins/scaffolder';
|
|
71
|
-
import proxy from './plugins/proxy';
|
|
72
|
-
import techdocs from './plugins/techdocs';
|
|
73
|
-
import search from './plugins/search';
|
|
74
|
-
+import blackduck from './plugins/blackduck';
|
|
75
|
-
import { PluginEnvironment } from './types';
|
|
76
|
-
import { ServerPermissionClient } from '@backstage/plugin-permission-node';
|
|
77
|
-
import { DefaultIdentityClient } from '@backstage/plugin-auth-node';
|
|
78
|
-
@@ -85,6 +86,7 @@ async function main() {
|
|
79
|
-
const techdocsEnv = useHotMemoize(module, () => createEnv('techdocs'));
|
|
80
|
-
const searchEnv = useHotMemoize(module, () => createEnv('search'));
|
|
81
|
-
const appEnv = useHotMemoize(module, () => createEnv('app'));
|
|
82
|
-
+ const blackduckEnv = useHotMemoize(module, () => createEnv('blackduck'));
|
|
83
|
-
|
|
84
|
-
const apiRouter = Router();
|
|
85
|
-
apiRouter.use('/catalog', await catalog(catalogEnv));
|
|
86
|
-
@@ -93,6 +95,7 @@ async function main() {
|
|
87
|
-
apiRouter.use('/techdocs', await techdocs(techdocsEnv));
|
|
88
|
-
apiRouter.use('/proxy', await proxy(proxyEnv));
|
|
89
|
-
apiRouter.use('/search', await search(searchEnv));
|
|
90
|
-
+ apiRouter.use('/blackduck', await blackduck(blackduckEnv));
|
|
91
|
-
|
|
92
|
-
// Add backends ABOVE this line; this 404 handler is the catch-all fallback
|
|
93
|
-
apiRouter.use(notFoundHandler());
|
|
94
|
-
|
|
95
|
-
```
|
|
96
|
-
|
|
97
34
|
## Configuration
|
|
98
35
|
|
|
99
36
|
### Integrate Permission Framework
|
package/dist/index.d.ts
CHANGED
|
@@ -1,7 +1,5 @@
|
|
|
1
|
-
import * as _backstage_backend_plugin_api from '@backstage/backend-plugin-api';
|
|
2
|
-
import { LoggerService, PermissionsService, DiscoveryService, HttpAuthService } from '@backstage/backend-plugin-api';
|
|
3
1
|
import { Config } from '@backstage/config';
|
|
4
|
-
import
|
|
2
|
+
import * as _backstage_backend_plugin_api from '@backstage/backend-plugin-api';
|
|
5
3
|
|
|
6
4
|
/**
|
|
7
5
|
* @public
|
|
@@ -24,24 +22,6 @@ declare class BlackDuckConfig {
|
|
|
24
22
|
getHostConfigByName(name: string): BlackDuckHostConfig;
|
|
25
23
|
}
|
|
26
24
|
|
|
27
|
-
/**
|
|
28
|
-
* @deprecated Please migrate to the new backend system as this will be removed in the future.
|
|
29
|
-
*
|
|
30
|
-
* @public */
|
|
31
|
-
interface RouterOptions {
|
|
32
|
-
logger: LoggerService;
|
|
33
|
-
config: Config;
|
|
34
|
-
permissions: PermissionsService;
|
|
35
|
-
discovery: DiscoveryService;
|
|
36
|
-
httpAuth?: HttpAuthService;
|
|
37
|
-
blackDuckConfig: BlackDuckConfig;
|
|
38
|
-
}
|
|
39
|
-
/**
|
|
40
|
-
* @deprecated Please migrate to the new backend system as this will be removed in the future.
|
|
41
|
-
*
|
|
42
|
-
* @public */
|
|
43
|
-
declare function createRouter(options: RouterOptions): Promise<express.Router>;
|
|
44
|
-
|
|
45
25
|
/**
|
|
46
26
|
* blackduckPlugin backend plugin
|
|
47
27
|
*
|
|
@@ -49,4 +29,4 @@ declare function createRouter(options: RouterOptions): Promise<express.Router>;
|
|
|
49
29
|
*/
|
|
50
30
|
declare const blackduckPlugin: _backstage_backend_plugin_api.BackendFeature;
|
|
51
31
|
|
|
52
|
-
export { BlackDuckConfig, type BlackDuckHostConfig,
|
|
32
|
+
export { BlackDuckConfig, type BlackDuckHostConfig, blackduckPlugin as default };
|
|
@@ -6,7 +6,6 @@ var Router = require('express-promise-router');
|
|
|
6
6
|
var pluginPermissionNode = require('@backstage/plugin-permission-node');
|
|
7
7
|
var errors = require('@backstage/errors');
|
|
8
8
|
var pluginPermissionCommon = require('@backstage/plugin-permission-common');
|
|
9
|
-
var backendCommon = require('@backstage/backend-common');
|
|
10
9
|
var pluginBlackduckCommon = require('@backstage-community/plugin-blackduck-common');
|
|
11
10
|
var BlackDuckRestApi = require('../api/BlackDuckRestApi.cjs.js');
|
|
12
11
|
|
|
@@ -16,8 +15,7 @@ var express__default = /*#__PURE__*/_interopDefaultCompat(express);
|
|
|
16
15
|
var Router__default = /*#__PURE__*/_interopDefaultCompat(Router);
|
|
17
16
|
|
|
18
17
|
async function createRouter(options) {
|
|
19
|
-
const { logger, permissions, config, blackDuckConfig } = options;
|
|
20
|
-
const { httpAuth } = backendCommon.createLegacyAuthAdapters(options);
|
|
18
|
+
const { logger, permissions, config, blackDuckConfig, httpAuth } = options;
|
|
21
19
|
const permissionIntegrationRouter = pluginPermissionNode.createPermissionIntegrationRouter({
|
|
22
20
|
permissions: pluginBlackduckCommon.blackduckPermissions
|
|
23
21
|
});
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"router.cjs.js","sources":["../../src/service/router.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n DiscoveryService,\n HttpAuthService,\n LoggerService,\n PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { Config } from '@backstage/config';\nimport express from 'express';\nimport Router from 'express-promise-router';\nimport { createPermissionIntegrationRouter } from '@backstage/plugin-permission-node';\nimport { InputError, NotAllowedError } from '@backstage/errors';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport { createLegacyAuthAdapters } from '@backstage/backend-common';\nimport {\n blackduckPermissions,\n blackduckRiskProfileReadPermission,\n blackduckVulnerabilitiesReadPermission,\n} from '@backstage-community/plugin-blackduck-common';\nimport { BlackDuckRestApi } from '../api/BlackDuckRestApi';\nimport { BlackDuckConfig } from './BlackDuckConfig';\n\n/**\n * @deprecated Please migrate to the new backend system as this will be removed in the future.\n *\n * @public */\nexport interface RouterOptions {\n logger: LoggerService;\n config: Config;\n permissions: PermissionsService;\n discovery: DiscoveryService;\n httpAuth?: HttpAuthService;\n blackDuckConfig: BlackDuckConfig;\n}\n\n/**\n * @deprecated Please migrate to the new backend system as this will be removed in the future.\n *\n * @public */\nexport async function createRouter(\n options: RouterOptions,\n): Promise<express.Router> {\n const { logger, permissions, config, blackDuckConfig } = options;\n const { httpAuth } = createLegacyAuthAdapters(options);\n const permissionIntegrationRouter = createPermissionIntegrationRouter({\n permissions: blackduckPermissions,\n });\n\n const router = Router();\n router.use(express.json());\n router.use(permissionIntegrationRouter);\n\n router.get('/health', (_, response) => {\n logger.info('PONG!');\n response.json({ status: 'ok' });\n });\n\n const middleware = MiddlewareFactory.create({ logger, config });\n\n router.post(\n '/risk-profile/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n logger.debug('getting vulnarabilities..');\n const { hostKey, projectName, projectVersion } = _request.params;\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting risk profile for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckRiskProfileReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const risk_profile = await blackDuck.getRiskProfile(\n projectName,\n projectVersion,\n );\n response.json(risk_profile);\n },\n );\n\n router.post(\n '/vulns/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n const { hostKey, projectName, projectVersion } = _request.params;\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting vulnarabilities for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckVulnerabilitiesReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n logger.info('decision', decision);\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const vulns = await blackDuck.getVulnerableComponents(\n projectName,\n projectVersion,\n );\n response.json(vulns);\n },\n );\n\n router.use(middleware.error());\n return router;\n}\n"],"names":["createLegacyAuthAdapters","createPermissionIntegrationRouter","blackduckPermissions","Router","express","MiddlewareFactory","InputError","blackduckRiskProfileReadPermission","AuthorizeResult","NotAllowedError","BlackDuckRestApi","blackduckVulnerabilitiesReadPermission"],"mappings":";;;;;;;;;;;;;;;;;AAsDA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAA,EAAQ,WAAa,EAAA,MAAA,EAAQ,iBAAoB,GAAA,OAAA;AACzD,EAAA,MAAM,EAAE,QAAA,EAAa,GAAAA,sCAAA,CAAyB,OAAO,CAAA;AACrD,EAAA,MAAM,8BAA8BC,sDAAkC,CAAA;AAAA,IACpE,WAAa,EAAAC;AAAA,GACd,CAAA;AAED,EAAA,MAAM,SAASC,uBAAO,EAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA;AACzB,EAAA,MAAA,CAAO,IAAI,2BAA2B,CAAA;AAEtC,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA;AAAA,GAC/B,CAAA;AAED,EAAA,MAAM,aAAaC,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA;AAE9D,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,qDAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA;AACxC,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA;AAE1D,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAI,IAAA,IAAA;AACJ,MAAI,IAAA,KAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,sCAAsC,SAAS,CAAA;AAC3D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIC,kBAAW,iCAAiC,CAAA;AAAA;AAGxD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAC,wDAAA;AAAA,YACZ,WAAa,EAAA;AAAA;AACf,SACF;AAAA,QACA;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA;AAAA;AAG1C,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA;AACrB,MAAM,MAAA,YAAA,GAAe,MAAM,SAAU,CAAA,cAAA;AAAA,QACnC,WAAA;AAAA,QACA;AAAA,OACF;AACA,MAAA,QAAA,CAAS,KAAK,YAAY,CAAA;AAAA;AAC5B,GACF;AAEA,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,8CAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA;AAC1D,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,yCAAyC,SAAS,CAAA;AAC9D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIJ,kBAAW,iCAAiC,CAAA;AAAA;AAGxD,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAI,IAAA,IAAA;AACJ,MAAI,IAAA,KAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAK,4DAAA;AAAA,YACZ,WAAa,EAAA;AAAA;AACf,SACF;AAAA,QACA;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AACH,MAAO,MAAA,CAAA,IAAA,CAAK,YAAY,QAAQ,CAAA;AAChC,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAH,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA;AAAA;AAG1C,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA;AACrB,MAAM,MAAA,KAAA,GAAQ,MAAM,SAAU,CAAA,uBAAA;AAAA,QAC5B,WAAA;AAAA,QACA;AAAA,OACF;AACA,MAAA,QAAA,CAAS,KAAK,KAAK,CAAA;AAAA;AACrB,GACF;AAEA,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA;AAC7B,EAAO,OAAA,MAAA;AACT;;;;"}
|
|
1
|
+
{"version":3,"file":"router.cjs.js","sources":["../../src/service/router.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n DiscoveryService,\n HttpAuthService,\n LoggerService,\n PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { Config } from '@backstage/config';\nimport express from 'express';\nimport Router from 'express-promise-router';\nimport { createPermissionIntegrationRouter } from '@backstage/plugin-permission-node';\nimport { InputError, NotAllowedError } from '@backstage/errors';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport {\n blackduckPermissions,\n blackduckRiskProfileReadPermission,\n blackduckVulnerabilitiesReadPermission,\n} from '@backstage-community/plugin-blackduck-common';\nimport { BlackDuckRestApi } from '../api/BlackDuckRestApi';\nimport { BlackDuckConfig } from './BlackDuckConfig';\n\n/** @internal */\nexport interface RouterOptions {\n logger: LoggerService;\n config: Config;\n permissions: PermissionsService;\n discovery: DiscoveryService;\n httpAuth: HttpAuthService;\n blackDuckConfig: BlackDuckConfig;\n}\n\n/** @internal */\nexport async function createRouter(\n options: RouterOptions,\n): Promise<express.Router> {\n const { logger, permissions, config, blackDuckConfig, httpAuth } = options;\n const permissionIntegrationRouter = createPermissionIntegrationRouter({\n permissions: blackduckPermissions,\n });\n\n const router = Router();\n router.use(express.json());\n router.use(permissionIntegrationRouter);\n\n router.get('/health', (_, response) => {\n logger.info('PONG!');\n response.json({ status: 'ok' });\n });\n\n const middleware = MiddlewareFactory.create({ logger, config });\n\n router.post(\n '/risk-profile/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n logger.debug('getting vulnarabilities..');\n const { hostKey, projectName, projectVersion } = _request.params;\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting risk profile for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckRiskProfileReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const risk_profile = await blackDuck.getRiskProfile(\n projectName,\n projectVersion,\n );\n response.json(risk_profile);\n },\n );\n\n router.post(\n '/vulns/:hostKey/:projectName/:projectVersion',\n async (_request, response) => {\n const { hostKey, projectName, projectVersion } = _request.params;\n const credentials = await httpAuth.credentials(_request);\n const entityRef = _request.body.entityRef;\n logger.info('getting vulnarabilities for project: ', entityRef);\n if (typeof entityRef !== 'string') {\n throw new InputError('Invalid entityRef, not a string');\n }\n\n if (!hostKey || !projectName || !projectVersion) {\n response.status(400).json({\n message: 'The hostKey, projectName and projectVersion are required',\n });\n return;\n }\n\n let host: string;\n let token: string;\n\n try {\n const hostConfig = blackDuckConfig.getHostConfigByName(hostKey);\n host = hostConfig.host;\n token = hostConfig.token;\n } catch (error) {\n response.status(400).json({\n message: 'The hostKey is not valid.',\n });\n return;\n }\n\n const decision = (\n await permissions.authorize(\n [\n {\n permission: blackduckVulnerabilitiesReadPermission,\n resourceRef: entityRef,\n },\n ],\n {\n credentials,\n },\n )\n )[0];\n logger.info('decision', decision);\n if (decision.result !== AuthorizeResult.ALLOW) {\n throw new NotAllowedError('Unauthorized');\n }\n\n const blackDuck = new BlackDuckRestApi(logger, host, token);\n\n await blackDuck.auth();\n const vulns = await blackDuck.getVulnerableComponents(\n projectName,\n projectVersion,\n );\n response.json(vulns);\n },\n );\n\n router.use(middleware.error());\n return router;\n}\n"],"names":["createPermissionIntegrationRouter","blackduckPermissions","Router","express","MiddlewareFactory","InputError","blackduckRiskProfileReadPermission","AuthorizeResult","NotAllowedError","BlackDuckRestApi","blackduckVulnerabilitiesReadPermission"],"mappings":";;;;;;;;;;;;;;;;AA+CA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAQ,EAAA,WAAA,EAAa,MAAQ,EAAA,eAAA,EAAiB,UAAa,GAAA,OAAA;AACnE,EAAA,MAAM,8BAA8BA,sDAAkC,CAAA;AAAA,IACpE,WAAa,EAAAC;AAAA,GACd,CAAA;AAED,EAAA,MAAM,SAASC,uBAAO,EAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA;AACzB,EAAA,MAAA,CAAO,IAAI,2BAA2B,CAAA;AAEtC,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA;AAAA,GAC/B,CAAA;AAED,EAAA,MAAM,aAAaC,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA;AAE9D,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,qDAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAA,CAAO,MAAM,2BAA2B,CAAA;AACxC,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA;AAE1D,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAI,IAAA,IAAA;AACJ,MAAI,IAAA,KAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,sCAAsC,SAAS,CAAA;AAC3D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIC,kBAAW,iCAAiC,CAAA;AAAA;AAGxD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAC,wDAAA;AAAA,YACZ,WAAa,EAAA;AAAA;AACf,SACF;AAAA,QACA;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA;AAAA;AAG1C,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA;AACrB,MAAM,MAAA,YAAA,GAAe,MAAM,SAAU,CAAA,cAAA;AAAA,QACnC,WAAA;AAAA,QACA;AAAA,OACF;AACA,MAAA,QAAA,CAAS,KAAK,YAAY,CAAA;AAAA;AAC5B,GACF;AAEA,EAAO,MAAA,CAAA,IAAA;AAAA,IACL,8CAAA;AAAA,IACA,OAAO,UAAU,QAAa,KAAA;AAC5B,MAAA,MAAM,EAAE,OAAA,EAAS,WAAa,EAAA,cAAA,KAAmB,QAAS,CAAA,MAAA;AAC1D,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,QAAQ,CAAA;AACvD,MAAM,MAAA,SAAA,GAAY,SAAS,IAAK,CAAA,SAAA;AAChC,MAAO,MAAA,CAAA,IAAA,CAAK,yCAAyC,SAAS,CAAA;AAC9D,MAAI,IAAA,OAAO,cAAc,QAAU,EAAA;AACjC,QAAM,MAAA,IAAIJ,kBAAW,iCAAiC,CAAA;AAAA;AAGxD,MAAA,IAAI,CAAC,OAAA,IAAW,CAAC,WAAA,IAAe,CAAC,cAAgB,EAAA;AAC/C,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAI,IAAA,IAAA;AACJ,MAAI,IAAA,KAAA;AAEJ,MAAI,IAAA;AACF,QAAM,MAAA,UAAA,GAAa,eAAgB,CAAA,mBAAA,CAAoB,OAAO,CAAA;AAC9D,QAAA,IAAA,GAAO,UAAW,CAAA,IAAA;AAClB,QAAA,KAAA,GAAQ,UAAW,CAAA,KAAA;AAAA,eACZ,KAAO,EAAA;AACd,QAAS,QAAA,CAAA,MAAA,CAAO,GAAG,CAAA,CAAE,IAAK,CAAA;AAAA,UACxB,OAAS,EAAA;AAAA,SACV,CAAA;AACD,QAAA;AAAA;AAGF,MAAM,MAAA,QAAA,GAAA,CACJ,MAAM,WAAY,CAAA,SAAA;AAAA,QAChB;AAAA,UACE;AAAA,YACE,UAAY,EAAAK,4DAAA;AAAA,YACZ,WAAa,EAAA;AAAA;AACf,SACF;AAAA,QACA;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AACH,MAAO,MAAA,CAAA,IAAA,CAAK,YAAY,QAAQ,CAAA;AAChC,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAH,sCAAA,CAAgB,KAAO,EAAA;AAC7C,QAAM,MAAA,IAAIC,uBAAgB,cAAc,CAAA;AAAA;AAG1C,MAAA,MAAM,SAAY,GAAA,IAAIC,iCAAiB,CAAA,MAAA,EAAQ,MAAM,KAAK,CAAA;AAE1D,MAAA,MAAM,UAAU,IAAK,EAAA;AACrB,MAAM,MAAA,KAAA,GAAQ,MAAM,SAAU,CAAA,uBAAA;AAAA,QAC5B,WAAA;AAAA,QACA;AAAA,OACF;AACA,MAAA,QAAA,CAAS,KAAK,KAAK,CAAA;AAAA;AACrB,GACF;AAEA,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA;AAC7B,EAAO,OAAA,MAAA;AACT;;;;"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@backstage-community/plugin-blackduck-backend",
|
|
3
|
-
"version": "0.
|
|
3
|
+
"version": "0.2.0",
|
|
4
4
|
"main": "dist/index.cjs.js",
|
|
5
5
|
"types": "dist/index.d.ts",
|
|
6
6
|
"license": "Apache-2.0",
|
|
@@ -34,7 +34,6 @@
|
|
|
34
34
|
},
|
|
35
35
|
"dependencies": {
|
|
36
36
|
"@backstage-community/plugin-blackduck-common": "^0.1.0",
|
|
37
|
-
"@backstage/backend-common": "^0.25.0",
|
|
38
37
|
"@backstage/backend-defaults": "^0.6.1",
|
|
39
38
|
"@backstage/backend-plugin-api": "^1.1.0",
|
|
40
39
|
"@backstage/config": "^1.3.1",
|
|
@@ -42,8 +41,7 @@
|
|
|
42
41
|
"@backstage/plugin-permission-common": "^0.8.3",
|
|
43
42
|
"@backstage/plugin-permission-node": "^0.8.6",
|
|
44
43
|
"express": "^4.17.1",
|
|
45
|
-
"express-promise-router": "^4.1.0"
|
|
46
|
-
"node-fetch": "^2.6.7"
|
|
44
|
+
"express-promise-router": "^4.1.0"
|
|
47
45
|
},
|
|
48
46
|
"devDependencies": {
|
|
49
47
|
"@backstage/backend-test-utils": "^1.2.0",
|
|
@@ -52,7 +50,6 @@
|
|
|
52
50
|
"@backstage/plugin-auth-backend-module-guest-provider": "^0.2.3",
|
|
53
51
|
"@types/express": "*",
|
|
54
52
|
"@types/supertest": "^6.0.0",
|
|
55
|
-
"msw": "^2.3.1",
|
|
56
53
|
"supertest": "^7.0.0"
|
|
57
54
|
},
|
|
58
55
|
"files": [
|