| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174 |
- # IRIS Source Code
- # Copyright (C) 2024 - DFIR-IRIS
- # contact@dfir-iris.org
- #
- # This program is free software; you can redistribute it and/or
- # modify it under the terms of the GNU Lesser General Public
- # License as published by the Free Software Foundation; either
- # version 3 of the License, or (at your option) any later version.
- #
- # This program is distributed in the hope that it will be useful,
- # but WITHOUT ANY WARRANTY; without even the implied warranty of
- # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
- # Lesser General Public License for more details.
- #
- # You should have received a copy of the GNU Lesser General Public License
- # along with this program; if not, write to the Free Software Foundation,
- # Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
- from graphene_sqlalchemy import SQLAlchemyObjectType
- from graphene_sqlalchemy import SQLAlchemyConnectionField
- from graphene.relay import Node
- from graphene.relay import Connection
- from graphene import Field
- from graphene import Mutation
- from graphene import NonNull
- from graphene import Int
- from graphene import Float
- from graphene import String
- from app.models.cases import Cases
- from app.models.authorization import Permissions
- from app.models.authorization import CaseAccessLevel
- from app.business.iocs import iocs_build_filter_query
- from app.business.cases import cases_create
- from app.business.cases import cases_delete
- from app.business.cases import cases_update
- from app.blueprints.graphql.permissions import permissions_check_current_user_has_some_permission
- from app.blueprints.graphql.permissions import permissions_check_current_user_has_some_case_access
- from app.blueprints.graphql.iocs import IOCConnection
- class CaseObject(SQLAlchemyObjectType):
- class Meta:
- model = Cases
- interfaces = [Node]
- iocs = SQLAlchemyConnectionField(IOCConnection, ioc_id=Int(), ioc_uuid=String(), ioc_value=String(), ioc_type_id=Int(),
- ioc_description=String(), ioc_tlp_id=Int(), ioc_tags=String(), ioc_misp=String(),
- user_id=Float())
- # TODO why is kwargs necessary? Should investigate and try to remove
- @staticmethod
- def resolve_iocs(root, info, ioc_id=None, ioc_uuid=None, ioc_value=None, ioc_type_id=None, ioc_description=None, ioc_tlp_id=None, ioc_tags=None,
- ioc_misp=None, user_id=None, **kwargs):
- permissions_check_current_user_has_some_case_access(root.case_id, [CaseAccessLevel.full_access])
- return iocs_build_filter_query(ioc_id=ioc_id, ioc_uuid=ioc_uuid, ioc_value=ioc_value,
- ioc_type_id=ioc_type_id, ioc_description=ioc_description,
- ioc_tlp_id=ioc_tlp_id, ioc_tags=ioc_tags, ioc_misp=ioc_misp,
- user_id=user_id)
- @staticmethod
- def resolve_case(root, info, case_id):
- permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
- return Cases.query.get(case_id)
- class CaseConnection(Connection):
- class Meta:
- node = CaseObject
- total_count = Int()
- # TODO why is kwargs necessary? Should investigate and try to remove
- @staticmethod
- def resolve_total_count(root, info, **kwargs):
- return root.length
- class CaseCreate(Mutation):
- class Arguments:
- name = NonNull(String)
- description = NonNull(String)
- client_id = NonNull(Int)
- soc_id = String()
- classification_id = Int()
- case = Field(CaseObject)
- @staticmethod
- def mutate(root, info, name, description, client_id, soc_id=None, classification_id=None):
- request = {
- 'case_name': name,
- 'case_description': description,
- 'case_customer': client_id,
- 'case_soc_id': ''
- }
- if soc_id:
- request['case_soc_id'] = soc_id
- if classification_id:
- request['classification_id'] = classification_id
- case = cases_create(request)
- return CaseCreate(case=case)
- class CaseDelete(Mutation):
- class Arguments:
- case_id = NonNull(Float)
- case = Field(CaseObject)
- @staticmethod
- def mutate(root, info, case_id):
- permissions_check_current_user_has_some_permission([Permissions.standard_user])
- permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
- cases_delete(case_id)
- class CaseUpdate(Mutation):
- class Arguments:
- case_id = NonNull(Float)
- name = String()
- description = String()
- soc_id = String()
- classification_id = Int()
- severity_id = Int()
- client_id = Int()
- owner_id = Int()
- state_id = Int()
- review_status_id = Int()
- reviewer_id = Int()
- tags = String()
- case = Field(CaseObject)
- @staticmethod
- def mutate(root, info, case_id, name=None, soc_id=None, classification_id=None, client_id=None, description=None,
- severity_id=None, owner_id=None, state_id=None, reviewer_id=None, tags=None, review_status_id=None):
- request = {}
- if name:
- request['case_name'] = name
- if soc_id:
- request['case_soc_id'] = soc_id
- if classification_id:
- request['classification_id'] = classification_id
- if client_id:
- request['case_customer'] = client_id
- if description:
- request['case_description'] = description
- if severity_id:
- request['severity_id'] = severity_id
- if owner_id:
- request['owner_id'] = owner_id
- if state_id:
- request['state_id'] = state_id
- if reviewer_id:
- request['reviewer_id'] = reviewer_id
- if tags:
- request['case_tags'] = tags
- if review_status_id:
- request['review_status_id'] = review_status_id
- permissions_check_current_user_has_some_permission([Permissions.standard_user])
- permissions_check_current_user_has_some_case_access(case_id, [CaseAccessLevel.full_access])
- case, _ = cases_update(case_id, request)
- return CaseUpdate(case=case)
|
