// Require utils let base64 = require('plugins/wazuh/utils/base64.js'); import chrome from 'ui/chrome'; // Require App const app = require('ui/modules').get('app/wazuh', []); app.controller('settingsController', function ($scope, $rootScope, $http, $routeParams, $route, $location, testAPI, appState, genericReq, courier, Notifier, errorHandler) { $rootScope.page = "settings"; if ($rootScope.comeFromWizard) { sessionStorage.removeItem('healthCheck'); $rootScope.comeFromWizard = false; } // Initialize const notify = new Notifier({ location: 'Settings' }); let currentApiEntryIndex; $scope.formData = { user : '', password: '', url : '' }; $scope.accept_ssl = true; $scope.editConfiguration = true; $scope.menuNavItem = 'settings'; $scope.load = true; $scope.extensions = appState.getExtensions().extensions; $scope.addManagerContainer = false; $scope.submenuNavItem = "api"; $scope.showEditForm = {}; $scope.formUpdate = { user : null, password: null, url : null, port : null }; const userRegEx = new RegExp(/^.{3,100}$/); const passRegEx = new RegExp(/^.{3,100}$/); const urlRegEx = new RegExp(/^https?:\/\/[a-zA-Z0-9]{1,300}$/); const urlRegExIP = new RegExp(/^https?:\/\/[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$/); const portRegEx = new RegExp(/^[0-9]{2,5}$/); $scope.indexPatterns = []; // Getting the index pattern list into the scope, but selecting only "valid" ones for (let i = 0; i < $route.current.locals.ip.list.length; i ++) { courier.indexPatterns.get($route.current.locals.ip.list[i].id) .then((data) => { let minimum = ["@timestamp", "full_log", "manager.name", "agent.id"]; let minimumCount = 0; for (let j = 0; j < data.fields.length; j++) { if (minimum.includes(data.fields[j].name)) { minimumCount++; } } if (minimumCount == minimum.length) { $scope.indexPatterns.push($route.current.locals.ip.list[i]); } }); } if ($routeParams.tab){ $scope.submenuNavItem = $routeParams.tab; } // Watch tab change $scope.$watch('submenuNavItem', () => { $location.search('tab', $scope.submenuNavItem); }); // Remove API entry $scope.removeManager = async item => { try { let index = $scope.apiEntries.indexOf(item); if (appState.getCurrentAPI() !== undefined && appState.getCurrentAPI() !== null) { if ($scope.apiEntries[index]._id === JSON.parse(appState.getCurrentAPI()).id) { // We are trying to remove the one selected as default errorHandler.handle('Please remove another API.',true); if(!$rootScope.$$phase) $rootScope.$digest(); return; } } await genericReq.request('DELETE', `/api/wazuh-api/apiEntries/${$scope.apiEntries[index]._id}`); $scope.apiEntries.splice(index, 1); $rootScope.apiIsDown = null; if(!$scope.$$phase) $scope.$digest(); return; } catch(error) { errorHandler.handle('Could not remove manager'); if(!$rootScope.$$phase) $rootScope.$digest(); } }; // Get current API index const getCurrentAPIIndex = () => { for(let i = 0, len = $scope.apiEntries.length; i < len; i += 1) { if($scope.apiEntries[i]._id === $scope.currentDefault) { currentApiEntryIndex = i; } } } // Set default API $scope.setDefault = (item) => { let index = $scope.apiEntries.indexOf(item); appState.setClusterInfo($scope.apiEntries[index]._source.cluster_info); if ($scope.apiEntries[index]._source.cluster_info.status == 'disabled'){ appState.setCurrentAPI(JSON.stringify({name: $scope.apiEntries[index]._source.cluster_info.manager, id: $scope.apiEntries[index]._id })); } else { appState.setCurrentAPI(JSON.stringify({name: $scope.apiEntries[index]._source.cluster_info.cluster, id: $scope.apiEntries[index]._id })); } $scope.$emit('updateAPI', {}); $scope.currentDefault = JSON.parse(appState.getCurrentAPI()).id; $scope.extensions = $scope.apiEntries[index]._source.extensions; notify.info(`API ${$scope.apiEntries[index]._source.cluster_info.manager} set as default`); getCurrentAPIIndex(); $scope.extensions.oscap = $scope.apiEntries[index]._source.extensions.oscap; $scope.extensions.audit = $scope.apiEntries[index]._source.extensions.audit; $scope.extensions.pci = $scope.apiEntries[index]._source.extensions.pci; $scope.extensions.aws = $scope.apiEntries[index]._source.extensions.aws; $scope.extensions.virustotal = $scope.apiEntries[index]._source.extensions.virustotal; appState.setExtensions($scope.apiEntries[index]._source.extensions); }; // Get settings function const getSettings = async () => { try { const data = await genericReq.request('GET', '/api/wazuh-api/apiEntries'); for(const entry of data.data) $scope.showEditForm[entry._id] = false; $scope.apiEntries = data.data.length > 0 ? data.data : []; if (appState.getCurrentAPI() !== undefined && appState.getCurrentAPI() !== null) $scope.currentDefault = JSON.parse(appState.getCurrentAPI()).id; getCurrentAPIIndex(); if(!currentApiEntryIndex) return; $scope.extensions.oscap = $scope.apiEntries[currentApiEntryIndex]._source.extensions.oscap; $scope.extensions.audit = $scope.apiEntries[currentApiEntryIndex]._source.extensions.audit; $scope.extensions.pci = $scope.apiEntries[currentApiEntryIndex]._source.extensions.pci; $scope.extensions.aws = $scope.apiEntries[currentApiEntryIndex]._source.extensions.aws; $scope.extensions.virustotal = $scope.apiEntries[currentApiEntryIndex]._source.extensions.virustotal; appState.setExtensions($scope.apiEntries[currentApiEntryIndex]._source.extensions); if(!$scope.$$phase) $scope.$digest(); return; } catch (error) { errorHandler.handle('Error getting API entries'); if(!$rootScope.$$phase) $rootScope.$digest(); } }; const validator = formName => { // Validate user if(!userRegEx.test($scope[formName].user)){ return 'Invalid user field'; } // Validate password if(!passRegEx.test($scope[formName].password)){ return 'Invalid password field'; } // Validate url if(!urlRegEx.test($scope[formName].url) && !urlRegExIP.test($scope[formName].url)){ return 'Invalid url field'; } // Validate port const validatePort = parseInt($scope[formName].port); if(!portRegEx.test($scope[formName].port) || validatePort <= 0 || validatePort >= 99999) { return 'Invalid port field'; } return false; } // Save settings function const saveSettings = async () => { try { const invalid = validator('formData'); if(invalid) { $scope.messageError = invalid; errorHandler.handle(invalid); if(!$rootScope.$$phase) $rootScope.$digest(); return; } const tmpData = { user : $scope.formData.user, password : base64.encode($scope.formData.password), url : $scope.formData.url, port : $scope.formData.port, cluster_info: {}, insecure : 'true', id : (Array.isArray($scope.apiEntries)) ? $scope.apiEntries.length: 0, extensions : appState.getExtensions() }; const config = await genericReq.request('GET', '/api/wazuh-api/configuration', {}); if(config.data && config.data.data && config.data.data.extensions) tmpData.extensions = config.data.data.extensions; const checkData = await testAPI.check(tmpData) // API Check correct. Get Cluster info tmpData.cluster_info = checkData.data; // Insert new API entry const data = await genericReq.request('PUT', '/api/wazuh-api/settings', tmpData); const newEntry = { _id: data.data.response._id, _source: { cluster_info: tmpData.cluster_info, active : tmpData.active, url : tmpData.url, api_user : tmpData.user, api_port : tmpData.port, extensions : tmpData.extensions } }; $scope.apiEntries.push(newEntry); notify.info('Wazuh API successfully added'); $scope.addManagerContainer = false; $scope.formData.user = ""; $scope.formData.password = ""; $scope.formData.url = ""; $scope.formData.port = ""; // Setting current API as default if no one is in the cookies if (!appState.getCurrentAPI()) { // No cookie if ($scope.apiEntries[$scope.apiEntries.length - 1]._source.cluster_info.status === 'disabled') { appState.setCurrentAPI(JSON.stringify({name: $scope.apiEntries[$scope.apiEntries.length - 1]._source.cluster_info.manager, id: $scope.apiEntries[$scope.apiEntries.length - 1]._id })); } else { appState.setCurrentAPI(JSON.stringify({name: $scope.apiEntries[$scope.apiEntries.length - 1]._source.cluster_info.cluster, id: $scope.apiEntries[$scope.apiEntries.length - 1]._id })); } $scope.$emit('updateAPI', {}); $scope.currentDefault = JSON.parse(appState.getCurrentAPI()).id; } await Promise.all([ genericReq.request('GET', '/api/wazuh-api/fetchAgents'), getSettings() ]); if(!$scope.$$phase) $scope.$digest(); return; } catch(error) { if(error.status === 400){ error.message = 'Please, fill all the fields in order to connect with Wazuh RESTful API.' } printError(error); } }; $scope.isUpdating = () => { for(let key in $scope.showEditForm){ if($scope.showEditForm[key]) return true; } return false; }; // Update settings function $scope.updateSettings = async item => { try { $scope.messageErrorUpdate = ''; const invalid = validator('formUpdate'); if(invalid) { $scope.messageErrorUpdate = invalid; return notify.error(invalid); } const index = $scope.apiEntries.indexOf(item); const tmpData = { user: $scope.formUpdate.user, password: base64.encode($scope.formUpdate.password), url: $scope.formUpdate.url, port: $scope.formUpdate.port, cluster_info: {}, insecure: 'true', id: $scope.apiEntries[index]._id, extensions: $scope.apiEntries[index]._source.extensions }; const data = await testAPI.check(tmpData); tmpData.cluster_info = data.data; await genericReq.request('PUT', '/api/wazuh-api/update-settings' , tmpData); $scope.apiEntries[index]._source.cluster_info = tmpData.cluster_info; $rootScope.apiIsDown = null; $scope.apiEntries[index]._source.cluster_info.cluster = tmpData.cluster_info.cluster; $scope.apiEntries[index]._source.cluster_info.manager = tmpData.cluster_info.manager; $scope.apiEntries[index]._source.url = tmpData.url; $scope.apiEntries[index]._source.api_port = tmpData.port; $scope.apiEntries[index]._source.api_user = tmpData.user; $scope.showEditForm[$scope.apiEntries[index]._id] = false; notify.info('Connection success'); if(!$scope.$$phase) $scope.$digest(); return; } catch (error) { printError(error,true); } }; // Check manager connectivity $scope.checkManager = async item => { try { const index = $scope.apiEntries.indexOf(item); const tmpData = { user : $scope.apiEntries[index]._source.api_user, password : $scope.apiEntries[index]._source.api_password, url : $scope.apiEntries[index]._source.url, port : $scope.apiEntries[index]._source.api_port, cluster_info: {}, insecure : 'true', id : $scope.apiEntries[index]._id }; const data = await testAPI.check(tmpData); tmpData.cluster_info = data.data; const tmpUrl = `/api/wazuh-api/updateApiHostname/${$scope.apiEntries[index]._id}`; await genericReq.request('PUT', tmpUrl , { cluster_info: tmpData.cluster_info }); $scope.apiEntries[index]._source.cluster_info = tmpData.cluster_info; $rootScope.apiIsDown = null; notify.info("Connection success"); if(!$scope.$$phase) $scope.$digest(); return; } catch(error) { printError(error); } }; // Process form $scope.processForm = () => { $scope.messageError = ""; saveSettings(); }; // Toggle extension $scope.toggleExtension = async (extension, state) => { try{ if (['oscap','audit','pci','aws','virustotal'].includes(extension)) { await genericReq.request('PUT', `/api/wazuh-api/extension/toggle/${$scope.apiEntries[currentApiEntryIndex]._id}/${extension}/${state}`); $scope.apiEntries[currentApiEntryIndex]._source.extensions[extension] = state; appState.setExtensions($scope.apiEntries[currentApiEntryIndex]._source.extensions); if(!$scope.$$phase) $scope.$digest(); } return; } catch (error){ errorHandler.handle('Invalid request when toggle extension state.'); if(!$rootScope.$$phase) $rootScope.$digest(); } }; $scope.changeIndexPattern = async newIndexPattern => { try { const data = await genericReq.request('GET', `/api/wazuh-elastic/updatePattern/${newIndexPattern}`); appState.setCurrentPattern(newIndexPattern); $scope.$emit('updatePattern', {}); notify.info('Successfully changed the default index-pattern'); $scope.selectedIndexPattern = newIndexPattern; if(!$scope.$$phase) $scope.$digest(); return; } catch (error) { errorHandler.handle('Error while changing the default index-pattern'); if(!$rootScope.$$phase) $rootScope.$digest(); } }; const printError = (error,updating) => { const text = errorHandler.handle(error); if(!updating) $scope.messageError = text; else $scope.messageErrorUpdate = text; if(!$rootScope.$$phase) $rootScope.$digest(); }; const getAppInfo = async () => { try { const data = await genericReq.request('GET', '/api/wazuh-elastic/setup'); $scope.appInfo = {}; $scope.appInfo["app-version"] = data.data.data["app-version"]; $scope.appInfo["installationDate"] = data.data.data["installationDate"]; $scope.appInfo["revision"] = data.data.data["revision"]; $scope.appInfo["index-pattern"] = data.data.data["index-pattern"]; $scope.load = false; if (appState.getCurrentPattern() !== undefined && appState.getCurrentPattern() !== null) { // There's a pattern in the cookies $scope.selectedIndexPattern = appState.getCurrentPattern(); } else { // There's no pattern in the cookies, pick the one in the settings $scope.selectedIndexPattern = data.data.data["index-pattern"]; } if(!$scope.$$phase) $scope.$digest(); return; } catch (error) { errorHandler.handle('Error when loading Wazuh setup info'); if(!$rootScope.$$phase) $rootScope.$digest(); } }; // Loading data getSettings(); getAppInfo(); });