mirror of
https://github.com/valitydev/wazuh-kibana-app.git
synced 2024-11-07 10:18:57 +00:00
521 lines
16 KiB
JavaScript
521 lines
16 KiB
JavaScript
/*
|
|
* Wazuh app - Agents controller
|
|
* Copyright (C) 2018 Wazuh, Inc.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* Find more information about this on the LICENSE file.
|
|
*/
|
|
import { uiModules } from 'ui/modules';
|
|
import { FilterHandler } from '../../utils/filter-handler';
|
|
import { generateMetric } from '../../utils/generate-metric';
|
|
import { TabNames } from '../../utils/tab-names';
|
|
import * as FileSaver from '../../services/file-saver';
|
|
import { TabDescription } from '../../../server/reporting/tab-description';
|
|
|
|
import {
|
|
metricsAudit,
|
|
metricsVulnerability,
|
|
metricsScap,
|
|
metricsCiscat,
|
|
metricsVirustotal
|
|
} from '../../utils/agents-metrics';
|
|
|
|
import { ConfigurationHandler } from '../../utils/config-handler';
|
|
|
|
const app = uiModules.get('app/wazuh', []);
|
|
|
|
class AgentsController {
|
|
constructor(
|
|
$scope,
|
|
$location,
|
|
$rootScope,
|
|
appState,
|
|
apiReq,
|
|
errorHandler,
|
|
tabVisualizations,
|
|
shareAgent,
|
|
commonData,
|
|
reportingService,
|
|
visFactoryService,
|
|
csvReq,
|
|
wzTableFilter
|
|
) {
|
|
this.$scope = $scope;
|
|
this.$location = $location;
|
|
this.$rootScope = $rootScope;
|
|
this.appState = appState;
|
|
this.apiReq = apiReq;
|
|
this.errorHandler = errorHandler;
|
|
this.tabVisualizations = tabVisualizations;
|
|
this.shareAgent = shareAgent;
|
|
this.commonData = commonData;
|
|
this.reportingService = reportingService;
|
|
this.visFactoryService = visFactoryService;
|
|
this.csvReq = csvReq;
|
|
this.wzTableFilter = wzTableFilter;
|
|
|
|
// Config on-demand
|
|
this.$scope.isArray = Array.isArray;
|
|
this.configurationHandler = new ConfigurationHandler(apiReq, errorHandler);
|
|
this.$scope.currentConfig = null;
|
|
this.$scope.configurationTab = '';
|
|
this.$scope.configurationSubTab = '';
|
|
this.$scope.integrations = {};
|
|
this.$scope.selectedItem = 0;
|
|
}
|
|
|
|
$onInit() {
|
|
this.$scope.TabDescription = TabDescription;
|
|
|
|
this.$rootScope.reportStatus = false;
|
|
|
|
this.$location.search('_a', null);
|
|
this.filterHandler = new FilterHandler(this.appState.getCurrentPattern());
|
|
this.visFactoryService.clearAll();
|
|
|
|
this.$scope.tabView = this.commonData.checkTabViewLocation();
|
|
this.$scope.tab = this.commonData.checkTabLocation();
|
|
|
|
this.tabHistory = [];
|
|
if (
|
|
this.$scope.tab !== 'configuration' &&
|
|
this.$scope.tab !== 'welcome' &&
|
|
this.$scope.tab !== 'syscollector'
|
|
)
|
|
this.tabHistory.push(this.$scope.tab);
|
|
|
|
// Tab names
|
|
this.$scope.tabNames = TabNames;
|
|
|
|
this.tabVisualizations.assign('agents');
|
|
|
|
this.$scope.hostMonitoringTabs = [
|
|
'general',
|
|
'fim',
|
|
'syscollector'
|
|
];
|
|
this.$scope.systemAuditTabs = ['pm', 'audit', 'oscap', 'ciscat'];
|
|
this.$scope.securityTabs = ['vuls', 'virustotal'];
|
|
this.$scope.complianceTabs = ['pci', 'gdpr'];
|
|
|
|
this.$scope.inArray = (item, array) =>
|
|
item && Array.isArray(array) && array.includes(item);
|
|
|
|
this.$scope.switchSubtab = async (
|
|
subtab,
|
|
force = false,
|
|
onlyAgent = false,
|
|
sameTab = true,
|
|
preserveDiscover = false
|
|
) => this.switchSubtab(subtab, force, onlyAgent, sameTab, preserveDiscover);
|
|
|
|
this.changeAgent = false;
|
|
|
|
this.$scope.switchTab = (tab, force = false) => this.switchTab(tab, force);
|
|
|
|
this.$scope.getAgentStatusClass = agentStatus =>
|
|
agentStatus === 'Active' ? 'teal' : 'red';
|
|
|
|
this.$scope.formatAgentStatus = agentStatus => {
|
|
return ['Active', 'Disconnected'].includes(agentStatus)
|
|
? agentStatus
|
|
: 'Never connected';
|
|
};
|
|
this.$scope.getAgent = async newAgentId => this.getAgent(newAgentId);
|
|
this.$scope.goGroups = (agent, group) => this.goGroups(agent, group);
|
|
this.$scope.analyzeAgents = async searchTerm =>
|
|
this.analyzeAgents(searchTerm);
|
|
this.$scope.downloadCsv = async data_path => this.downloadCsv(data_path);
|
|
|
|
this.$scope.search = (term, specificPath) =>
|
|
this.$scope.$broadcast('wazuhSearch', { term, specificPath });
|
|
|
|
this.$scope.startVis2Png = () => this.startVis2Png();
|
|
|
|
this.$scope.$on('$destroy', () => {
|
|
this.visFactoryService.clearAll();
|
|
});
|
|
|
|
// PCI and GDPR requirements
|
|
Promise.all([this.commonData.getPCI(), this.commonData.getGDPR()])
|
|
.then(data => {
|
|
this.$scope.pciTabs = data[0];
|
|
this.$scope.selectedPciIndex = 0;
|
|
this.$scope.gdprTabs = data[1];
|
|
this.$scope.selectedGdprIndex = 0;
|
|
})
|
|
.catch(error => this.errorHandler.handle(error, 'Agents'));
|
|
|
|
this.$scope.isArray = Array.isArray;
|
|
|
|
this.$scope.goGroup = () => {
|
|
this.shareAgent.setAgent(this.$scope.agent);
|
|
this.$location.path('/manager/groups');
|
|
};
|
|
|
|
//Load
|
|
try {
|
|
this.$scope.getAgent();
|
|
} catch (e) {
|
|
this.errorHandler.handle(
|
|
'Unexpected exception loading controller',
|
|
'Agents'
|
|
);
|
|
}
|
|
|
|
// Config on demand
|
|
this.$scope.getXML = () => this.configurationHandler.getXML(this.$scope);
|
|
this.$scope.getJSON = () => this.configurationHandler.getJSON(this.$scope);
|
|
this.$scope.isString = item => typeof item === 'string';
|
|
this.$scope.hasSize = obj => obj && typeof obj === 'object' && Object.keys(obj).length;
|
|
this.$scope.switchConfigTab = (configurationTab, sections) => this.configurationHandler.switchConfigTab(configurationTab, sections, this.$scope, this.$scope.agent.id);
|
|
this.$scope.switchWodle = wodleName => this.configurationHandler.switchWodle(wodleName, this.$scope, this.$scope.agent.id);
|
|
this.$scope.switchConfigurationTab = configurationTab => this.configurationHandler.switchConfigurationTab(configurationTab, this.$scope);
|
|
this.$scope.switchConfigurationSubTab = configurationSubTab => this.configurationHandler.switchConfigurationSubTab(configurationSubTab, this.$scope);
|
|
this.$scope.updateSelectedItem = i => this.$scope.selectedItem = i;
|
|
this.$scope.getIntegration = list => this.configurationHandler.getIntegration(list, this.$scope);
|
|
}
|
|
|
|
createMetrics(metricsObject) {
|
|
for (let key in metricsObject) {
|
|
this.$scope[key] = () => generateMetric(metricsObject[key]);
|
|
}
|
|
}
|
|
|
|
checkMetrics(tab, subtab) {
|
|
if (subtab === 'panels') {
|
|
switch (tab) {
|
|
case 'audit':
|
|
this.createMetrics(metricsAudit);
|
|
break;
|
|
case 'vuls':
|
|
this.createMetrics(metricsVulnerability);
|
|
break;
|
|
case 'oscap':
|
|
this.createMetrics(metricsScap);
|
|
break;
|
|
case 'ciscat':
|
|
this.createMetrics(metricsCiscat);
|
|
break;
|
|
case 'virustotal':
|
|
this.createMetrics(metricsVirustotal);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
// Switch subtab
|
|
async switchSubtab(
|
|
subtab,
|
|
force = false,
|
|
onlyAgent = false,
|
|
sameTab = true,
|
|
preserveDiscover = false
|
|
) {
|
|
try {
|
|
if (this.$scope.tabView === subtab && !force) return;
|
|
|
|
this.visFactoryService.clear(onlyAgent);
|
|
this.$location.search('tabView', subtab);
|
|
const localChange =
|
|
subtab === 'panels' && this.$scope.tabView === 'discover' && sameTab;
|
|
this.$scope.tabView = subtab;
|
|
|
|
if (
|
|
subtab === 'panels' &&
|
|
this.$scope.tab !== 'configuration' &&
|
|
this.$scope.tab !== 'welcome' &&
|
|
this.$scope.tab !== 'syscollector'
|
|
) {
|
|
const condition =
|
|
(!this.changeAgent && localChange) ||
|
|
(!this.changeAgent && preserveDiscover);
|
|
await this.visFactoryService.buildAgentsVisualizations(
|
|
this.filterHandler,
|
|
this.$scope.tab,
|
|
subtab,
|
|
condition,
|
|
this.$scope.agent.id
|
|
);
|
|
this.changeAgent = false;
|
|
} else {
|
|
this.$rootScope.$emit('changeTabView', {
|
|
tabView: this.$scope.tabView
|
|
});
|
|
}
|
|
|
|
this.checkMetrics(this.$scope.tab, subtab);
|
|
|
|
return;
|
|
} catch (error) {
|
|
this.errorHandler.handle(error, 'Agents');
|
|
return;
|
|
}
|
|
}
|
|
|
|
// Switch tab
|
|
switchTab(tab, force = false) {
|
|
if(tab === 'configuration') {
|
|
this.$scope.switchConfigurationTab('welcome');
|
|
} else {
|
|
this.configurationHandler.reset(this.$scope);
|
|
}
|
|
if (tab !== 'configuration' && tab !== 'welcome' && tab !== 'syscollector')
|
|
this.tabHistory.push(tab);
|
|
if (this.tabHistory.length > 2) this.tabHistory = this.tabHistory.slice(-2);
|
|
this.tabVisualizations.setTab(tab);
|
|
if (this.$scope.tab === tab && !force) return;
|
|
const onlyAgent = this.$scope.tab === tab && force;
|
|
const sameTab = this.$scope.tab === tab;
|
|
this.$location.search('tab', tab);
|
|
const preserveDiscover =
|
|
this.tabHistory.length === 2 &&
|
|
this.tabHistory[0] === this.tabHistory[1] &&
|
|
!force;
|
|
this.$scope.tab = tab;
|
|
|
|
if (this.$scope.tab === 'configuration') {
|
|
this.firstLoad();
|
|
} else {
|
|
this.$scope.switchSubtab(
|
|
'panels',
|
|
true,
|
|
onlyAgent,
|
|
sameTab,
|
|
preserveDiscover
|
|
);
|
|
}
|
|
}
|
|
|
|
// Agent data
|
|
|
|
validateRootCheck() {
|
|
const result = this.commonData.validateRange(this.$scope.agent.rootcheck);
|
|
this.$scope.agent.rootcheck = result;
|
|
}
|
|
|
|
validateSysCheck() {
|
|
const result = this.commonData.validateRange(this.$scope.agent.syscheck);
|
|
this.$scope.agent.syscheck = result;
|
|
}
|
|
|
|
async loadSyscollector(id) {
|
|
try {
|
|
const data = await Promise.all([
|
|
this.apiReq.request('GET', `/syscollector/${id}/hardware`, {}),
|
|
this.apiReq.request('GET', `/syscollector/${id}/os`, {}),
|
|
this.apiReq.request('GET', `/syscollector/${id}/netiface`, {}),
|
|
this.apiReq.request('GET', `/syscollector/${id}/ports`, {}),
|
|
this.apiReq.request('GET', `/syscollector/${id}/packages`, {
|
|
limit: 1,
|
|
select: 'scan_time'
|
|
}),
|
|
this.apiReq.request('GET', `/syscollector/${id}/processes`, {
|
|
limit: 1,
|
|
select: 'scan_time'
|
|
})
|
|
]);
|
|
if (
|
|
!data[0] ||
|
|
!data[0].data ||
|
|
!data[0].data.data ||
|
|
typeof data[0].data.data !== 'object' ||
|
|
!Object.keys(data[0].data.data).length ||
|
|
!data[1] ||
|
|
!data[1].data ||
|
|
!data[1].data.data ||
|
|
typeof data[1].data.data !== 'object' ||
|
|
!Object.keys(data[1].data.data).length
|
|
) {
|
|
this.$scope.syscollector = null;
|
|
} else {
|
|
const netiface = {};
|
|
const ports = {};
|
|
const packagesDate = {};
|
|
const processesDate = {};
|
|
if (data[2] && data[2].data && data[2].data.data)
|
|
Object.assign(netiface, data[2].data.data);
|
|
if (data[3] && data[3].data && data[3].data.data)
|
|
Object.assign(ports, data[3].data.data);
|
|
if (data[4] && data[4].data && data[4].data.data)
|
|
Object.assign(packagesDate, data[4].data.data);
|
|
if (data[5] && data[5].data && data[5].data.data)
|
|
Object.assign(processesDate, data[5].data.data);
|
|
this.$scope.syscollector = {
|
|
hardware: data[0].data.data,
|
|
os: data[1].data.data,
|
|
netiface: netiface,
|
|
ports: ports,
|
|
packagesDate:
|
|
packagesDate && packagesDate.items && packagesDate.items.length
|
|
? packagesDate.items[0].scan_time
|
|
: 'Unknown',
|
|
processesDate:
|
|
processesDate && processesDate.items && processesDate.items.length
|
|
? processesDate.items[0].scan_time
|
|
: 'Unknown'
|
|
};
|
|
}
|
|
return;
|
|
} catch (error) {
|
|
return Promise.reject(error);
|
|
}
|
|
}
|
|
|
|
async getAgent(newAgentId) {
|
|
try {
|
|
this.$scope.load = true;
|
|
this.changeAgent = true;
|
|
|
|
const globalAgent = this.shareAgent.getAgent();
|
|
|
|
const id = this.commonData.checkLocationAgentId(newAgentId, globalAgent);
|
|
|
|
const data = await Promise.all([
|
|
this.apiReq.request('GET', `/agents/${id}`, {}),
|
|
this.apiReq.request('GET', `/syscheck/${id}/last_scan`, {}),
|
|
this.apiReq.request('GET', `/rootcheck/${id}/last_scan`, {})
|
|
]);
|
|
|
|
// Agent
|
|
this.$scope.agent = data[0].data.data;
|
|
if (this.$scope.agent.os) {
|
|
this.$scope.agentOS =
|
|
this.$scope.agent.os.name + ' ' + this.$scope.agent.os.version;
|
|
} else {
|
|
this.$scope.agentOS = 'Unknown';
|
|
}
|
|
|
|
// Syscheck
|
|
this.$scope.agent.syscheck = data[1].data.data;
|
|
this.validateSysCheck();
|
|
|
|
// Rootcheck
|
|
this.$scope.agent.rootcheck = data[2].data.data;
|
|
this.validateRootCheck();
|
|
|
|
this.$scope.switchTab(this.$scope.tab, true);
|
|
|
|
//await this.loadSyscollector(id);
|
|
|
|
this.$scope.load = false;
|
|
if (!this.$scope.$$phase) this.$scope.$digest();
|
|
return;
|
|
} catch (error) {
|
|
this.errorHandler.handle(error, 'Agents');
|
|
}
|
|
return;
|
|
}
|
|
|
|
goGroups(agent, group) {
|
|
this.visFactoryService.clearAll();
|
|
this.shareAgent.setAgent(agent, group);
|
|
this.$location.search('tab', 'groups');
|
|
this.$location.path('/manager');
|
|
}
|
|
|
|
async analyzeAgents(searchTerm) {
|
|
try {
|
|
if (searchTerm) {
|
|
const reqData = await this.apiReq.request('GET', '/agents', {
|
|
search: searchTerm
|
|
});
|
|
return reqData.data.data.items.filter(item => item.id !== '000');
|
|
} else {
|
|
const reqData = await this.apiReq.request('GET', '/agents', {});
|
|
return reqData.data.data.items.filter(item => item.id !== '000');
|
|
}
|
|
} catch (error) {
|
|
this.errorHandler.handle(error, 'Agents');
|
|
}
|
|
return;
|
|
}
|
|
|
|
async downloadCsv(data_path) {
|
|
try {
|
|
this.errorHandler.info(
|
|
'Your download should begin automatically...',
|
|
'CSV'
|
|
);
|
|
const currentApi = JSON.parse(this.appState.getCurrentAPI()).id;
|
|
const output = await this.csvReq.fetch(
|
|
data_path,
|
|
currentApi,
|
|
this.wzTableFilter.get()
|
|
);
|
|
const blob = new Blob([output], { type: 'text/csv' }); // eslint-disable-line
|
|
|
|
FileSaver.saveAs(blob, 'packages.csv');
|
|
|
|
return;
|
|
} catch (error) {
|
|
this.errorHandler.handle(error, 'Download CSV');
|
|
}
|
|
return;
|
|
}
|
|
|
|
async firstLoad() {
|
|
try {
|
|
const globalAgent = this.shareAgent.getAgent();
|
|
this.$scope.configurationError = false;
|
|
this.$scope.load = true;
|
|
|
|
const id = this.commonData.checkLocationAgentId(false, globalAgent);
|
|
|
|
const data = await this.apiReq.request('GET', `/agents/${id}`, {});
|
|
this.$scope.agent = data.data.data;
|
|
this.$scope.groupName = this.$scope.agent.group;
|
|
|
|
if (!this.$scope.groupName) {
|
|
this.$scope.configurationError = true;
|
|
this.$scope.load = false;
|
|
if (!this.$scope.$$phase) this.$scope.$digest();
|
|
return;
|
|
}
|
|
|
|
|
|
this.$scope.load = false;
|
|
|
|
if (this.$scope.tab !== 'configuration')
|
|
this.$scope.switchTab(this.$scope.tab, true);
|
|
|
|
if (!this.$scope.$$phase) this.$scope.$digest();
|
|
return;
|
|
} catch (error) {
|
|
this.errorHandler.handle(error, 'Agents');
|
|
}
|
|
return;
|
|
}
|
|
/** End of agent configuration */
|
|
|
|
startVis2Png() {
|
|
const syscollectorFilters = [];
|
|
if (
|
|
this.$scope.tab === 'syscollector' &&
|
|
this.$scope.agent &&
|
|
this.$scope.agent.id
|
|
) {
|
|
syscollectorFilters.push(
|
|
this.filterHandler.managerQuery(
|
|
this.appState.getClusterInfo().cluster,
|
|
true
|
|
)
|
|
);
|
|
syscollectorFilters.push(
|
|
this.filterHandler.agentQuery(this.$scope.agent.id)
|
|
);
|
|
}
|
|
this.reportingService.startVis2Png(
|
|
this.$scope.tab,
|
|
this.$scope.agent && this.$scope.agent.id ? this.$scope.agent.id : true,
|
|
syscollectorFilters.length ? syscollectorFilters : null
|
|
);
|
|
}
|
|
}
|
|
|
|
app.controller('agentsController', AgentsController);
|