2020-02-18 15:02:35 +01:00
|
|
|
<?php
|
|
|
|
|
App::uses('AppModel', 'Model');
|
|
|
|
|
|
|
|
|
|
class EventReport extends AppModel
|
|
|
|
|
{
|
2020-09-17 15:06:55 +02:00
|
|
|
public $actsAs = array(
|
|
|
|
|
'Containable',
|
|
|
|
|
'SysLogLogable.SysLogLogable' => array(
|
|
|
|
|
'userModel' => 'User',
|
|
|
|
|
'userKey' => 'user_id',
|
|
|
|
|
'change' => 'full'
|
|
|
|
|
),
|
|
|
|
|
);
|
2020-02-18 15:02:35 +01:00
|
|
|
|
|
|
|
|
public $validate = array(
|
|
|
|
|
'event_id' => array(
|
|
|
|
|
'numeric' => array(
|
|
|
|
|
'rule' => array('numeric')
|
|
|
|
|
)
|
|
|
|
|
),
|
|
|
|
|
'uuid' => array(
|
|
|
|
|
'uuid' => array(
|
|
|
|
|
'rule' => array('custom', '/^[a-fA-F0-9]{8}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{12}$/'),
|
|
|
|
|
'message' => 'Please provide a valid UUID'
|
|
|
|
|
),
|
|
|
|
|
'unique' => array(
|
|
|
|
|
'rule' => 'isUnique',
|
|
|
|
|
'message' => 'The UUID provided is not unique',
|
|
|
|
|
'required' => 'create'
|
|
|
|
|
)
|
|
|
|
|
),
|
|
|
|
|
'distribution' => array(
|
|
|
|
|
'rule' => array('inList', array('0', '1', '2', '3', '4', '5')),
|
|
|
|
|
'message' => 'Options: Your organisation only, This community only, Connected communities, All communities, Sharing group, Inherit event',
|
|
|
|
|
'required' => true
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
|
2020-09-17 15:06:55 +02:00
|
|
|
public $captureFields = array('uuid', 'name', 'content', 'distribution', 'sharing_group_id', 'timestamp', 'deleted', 'event_id');
|
|
|
|
|
public $defaultContain = array(
|
|
|
|
|
'SharingGroup' => array('fields' => array('id', 'name', 'uuid')),
|
|
|
|
|
'Event' => array(
|
|
|
|
|
'fields' => array('Event.id', 'Event.orgc_id', 'Event.org_id', 'Event.info', 'Event.user_id', 'Event.date'),
|
|
|
|
|
'Orgc' => array('fields' => array('Orgc.id', 'Orgc.name')),
|
|
|
|
|
'Org' => array('fields' => array('Org.id', 'Org.name'))
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
|
2020-02-18 15:02:35 +01:00
|
|
|
public $belongsTo = array(
|
|
|
|
|
'Event' => array(
|
|
|
|
|
'className' => 'Event',
|
|
|
|
|
'foreignKey' => 'event_id'
|
|
|
|
|
),
|
|
|
|
|
'SharingGroup' => array(
|
|
|
|
|
'className' => 'SharingGroup',
|
|
|
|
|
'foreignKey' => 'sharing_group_id'
|
|
|
|
|
),
|
|
|
|
|
);
|
|
|
|
|
|
2020-09-21 11:49:41 +02:00
|
|
|
public function beforeValidate($options = array())
|
2020-02-18 15:02:35 +01:00
|
|
|
{
|
|
|
|
|
parent::beforeValidate();
|
|
|
|
|
// generate UUID if it doesn't exist
|
|
|
|
|
if (empty($this->data['EventReport']['uuid'])) {
|
|
|
|
|
$this->data['EventReport']['uuid'] = CakeText::uuid();
|
|
|
|
|
}
|
|
|
|
|
// generate timestamp if it doesn't exist
|
|
|
|
|
if (empty($this->data['EventReport']['timestamp'])) {
|
|
|
|
|
$date = new DateTime();
|
|
|
|
|
$this->data['EventReport']['timestamp'] = $date->getTimestamp();
|
|
|
|
|
}
|
|
|
|
|
if ($this->data['EventReport']['distribution'] != 4) {
|
|
|
|
|
$this->data['EventReport']['sharing_group_id'] = 0;
|
|
|
|
|
}
|
|
|
|
|
// Set defaults for when some of the mandatory fields don't have defaults
|
|
|
|
|
// These fields all have sane defaults either based on another field, or due to server settings
|
|
|
|
|
if (!isset($this->data['EventReport']['distribution'])) {
|
|
|
|
|
$this->data['EventReport']['distribution'] = Configure::read('MISP.default_attribute_distribution');
|
2020-09-21 11:01:36 +02:00
|
|
|
if ($report['EventReport']['distribution'] == 'event') {
|
|
|
|
|
$report['EventReport']['distribution'] = 5;
|
|
|
|
|
}
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
/**
|
|
|
|
|
* captureReport Gets a report then save it
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param array $report
|
|
|
|
|
* @param int|string $eventId
|
|
|
|
|
* @return array Any errors preventing the capture
|
|
|
|
|
*/
|
|
|
|
|
public function captureReport(array $user, array $report, $eventId)
|
2020-02-18 15:02:35 +01:00
|
|
|
{
|
|
|
|
|
$this->Log = ClassRegistry::init('Log');
|
2020-09-22 10:05:22 +02:00
|
|
|
if (!isset($report['EventReport'])) {
|
|
|
|
|
$report = ['EventReport' => $report];
|
|
|
|
|
}
|
2020-09-17 15:06:55 +02:00
|
|
|
$report['EventReport']['event_id'] = $eventId;
|
2020-02-18 15:02:35 +01:00
|
|
|
$report = $this->captureSG($user, $report);
|
|
|
|
|
$this->create();
|
2020-09-21 11:01:36 +02:00
|
|
|
$errors = $this->saveAndReturnErrors($report, ['fieldList' => $this->captureFields]);
|
|
|
|
|
if (!empty($errors)) {
|
|
|
|
|
$this->Log->createLogEntry($user, 'add', 'EventReport', 0,
|
|
|
|
|
__('Event Report dropped due to validation for Event report %s failed: %s', $report['EventReport']['uuid'], ' failed: ' . $report['EventReport']['name']),
|
|
|
|
|
__('Validation errors: %s.%sFull report: %s', json_encode($errors), PHP_EOL, json_encode($report['EventReport']))
|
|
|
|
|
);
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
|
|
|
|
return $errors;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* addReport Add a report
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param array $report
|
|
|
|
|
* @param int|string $eventId
|
|
|
|
|
* @return array Any errors preventing the addition
|
|
|
|
|
*/
|
|
|
|
|
public function addReport(array $user, array $report, $eventId)
|
2020-09-21 11:14:43 +02:00
|
|
|
{
|
|
|
|
|
$errors = $this->captureReport($user, $report, $eventId);
|
|
|
|
|
if (empty($errors)) {
|
|
|
|
|
$this->Event->unpublishEvent($eventId);
|
|
|
|
|
}
|
|
|
|
|
return $errors;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* editReport Edit a report
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param array $report
|
|
|
|
|
* @param int|string $eventId
|
|
|
|
|
* @param bool $fromPull
|
|
|
|
|
* @param bool $nothingToChange
|
|
|
|
|
* @return array Any errors preventing the edition
|
|
|
|
|
*/
|
|
|
|
|
public function editReport(array $user, array $report, $eventId, $fromPull = false, &$nothingToChange = false)
|
2020-02-18 15:02:35 +01:00
|
|
|
{
|
|
|
|
|
$errors = array();
|
2020-09-17 15:06:55 +02:00
|
|
|
if (!isset($report['EventReport']['uuid'])) {
|
|
|
|
|
$errors[] = __('Event Report doesn\'t have an UUID');
|
2020-08-04 11:45:54 +02:00
|
|
|
return $errors;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
$report['EventReport']['event_id'] = $eventId;
|
2020-09-17 15:06:55 +02:00
|
|
|
$existingReport = $this->find('first', array(
|
|
|
|
|
'conditions' => array('EventReport.uuid' => $report['EventReport']['uuid']),
|
|
|
|
|
'recursive' => -1,
|
|
|
|
|
));
|
|
|
|
|
if (empty($existingReport)) {
|
|
|
|
|
if ($fromPull) {
|
|
|
|
|
return $this->captureReport($user, $report, $eventId);
|
|
|
|
|
} else {
|
|
|
|
|
$errors[] = __('Event Report not found.');
|
|
|
|
|
return $errors;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($fromPull) {
|
|
|
|
|
if (isset($report['EventReport']['timestamp'])) {
|
|
|
|
|
if ($report['EventReport']['timestamp'] <= $existingReport['EventReport']['timestamp']) {
|
|
|
|
|
$nothingToChange = true;
|
|
|
|
|
return array();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2020-08-04 11:45:54 +02:00
|
|
|
unset($report['EventReport']['timestamp']);
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
$errors = $this->saveAndReturnErrors($report, ['fieldList' => $this->captureFields], $errors);
|
2020-09-21 11:14:43 +02:00
|
|
|
if (empty($errors)) {
|
|
|
|
|
$this->Event->unpublishEvent($eventId);
|
|
|
|
|
}
|
|
|
|
|
return $errors;
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
|
|
|
|
|
2020-09-15 17:12:49 +02:00
|
|
|
/**
|
2020-09-21 11:48:05 +02:00
|
|
|
* deleteReport ACL-aware method to delete the report.
|
2020-09-15 17:12:49 +02:00
|
|
|
*
|
2020-09-21 11:48:05 +02:00
|
|
|
* @param array $user
|
|
|
|
|
* @param int|string $id
|
2020-09-15 17:12:49 +02:00
|
|
|
* @param bool $hard
|
2020-09-21 11:48:05 +02:00
|
|
|
* @return array Any errors preventing the deletion
|
2020-09-15 17:12:49 +02:00
|
|
|
*/
|
2020-09-21 11:48:05 +02:00
|
|
|
public function deleteReport(array $user, $id, $hard=false)
|
2020-09-15 17:12:49 +02:00
|
|
|
{
|
2020-09-17 10:08:10 +02:00
|
|
|
$report = $this->fetchIfAuthorized($user, $id, 'delete', $throwErrors=true, $full=false);
|
2020-09-21 11:14:43 +02:00
|
|
|
$errors = [];
|
2020-09-15 17:12:49 +02:00
|
|
|
if ($hard) {
|
2020-09-21 11:14:43 +02:00
|
|
|
$deleted = $this->delete($id, true);
|
|
|
|
|
if (!$deleted) {
|
|
|
|
|
$errors[] = __('Failed to delete report');
|
|
|
|
|
}
|
2020-09-15 17:12:49 +02:00
|
|
|
} else {
|
2020-09-17 10:08:10 +02:00
|
|
|
$report['EventReport']['deleted'] = true;
|
2020-09-21 11:14:43 +02:00
|
|
|
$errors = $this->saveAndReturnErrors($report, ['fieldList' => ['deleted']]);
|
|
|
|
|
}
|
|
|
|
|
if (empty($errors)) {
|
2020-09-22 08:31:14 +02:00
|
|
|
$this->Event->unpublishEvent($report['EventReport']['event_id']);
|
2020-09-15 17:12:49 +02:00
|
|
|
}
|
2020-09-21 11:14:43 +02:00
|
|
|
return $errors;
|
2020-09-15 17:12:49 +02:00
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* restoreReport ACL-aware method to restore a report.
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param int|string $id
|
|
|
|
|
* @return array Any errors preventing the restoration
|
|
|
|
|
*/
|
|
|
|
|
public function restoreReport(array $user, $id)
|
2020-09-15 17:12:49 +02:00
|
|
|
{
|
2020-09-17 10:08:10 +02:00
|
|
|
$report = $this->fetchIfAuthorized($user, $id, 'edit', $throwErrors=true, $full=false);
|
|
|
|
|
$report['EventReport']['deleted'] = false;
|
2020-09-21 11:14:43 +02:00
|
|
|
$errors = $this->saveAndReturnErrors($report, ['fieldList' => ['deleted']]);
|
|
|
|
|
if (empty($errors)) {
|
2020-09-22 08:31:14 +02:00
|
|
|
$this->Event->unpublishEvent($report['EventReport']['event_id']);
|
2020-09-21 11:14:43 +02:00
|
|
|
}
|
|
|
|
|
return $errors;
|
2020-09-15 17:12:49 +02:00
|
|
|
}
|
|
|
|
|
|
2020-09-21 11:48:05 +02:00
|
|
|
private function captureSG(array $user, array $report)
|
2020-08-04 11:45:54 +02:00
|
|
|
{
|
2020-09-17 15:06:55 +02:00
|
|
|
$this->Event = ClassRegistry::init('Event');
|
2020-08-04 11:45:54 +02:00
|
|
|
if (isset($report['EventReport']['distribution']) && $report['EventReport']['distribution'] == 4) {
|
|
|
|
|
$report['EventReport'] = $this->Event->__captureSGForElement($report['EventReport'], $user);
|
|
|
|
|
}
|
|
|
|
|
return $report;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* buildACLConditions Generate ACL conditions for viewing the report
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function buildACLConditions(array $user)
|
2020-02-18 15:02:35 +01:00
|
|
|
{
|
|
|
|
|
$this->Event = ClassRegistry::init('Event');
|
|
|
|
|
$conditions = array();
|
|
|
|
|
if (!$user['Role']['perm_site_admin']) {
|
|
|
|
|
$sgids = $this->Event->cacheSgids($user, true);
|
|
|
|
|
$eventConditions = $this->Event->createEventConditions($user);
|
|
|
|
|
$conditions = array(
|
|
|
|
|
'AND' => array(
|
|
|
|
|
$eventConditions['AND'],
|
|
|
|
|
array(
|
|
|
|
|
'OR' => array(
|
|
|
|
|
'Event.org_id' => $user['org_id'],
|
|
|
|
|
'EventReport.distribution' => array('1', '2', '3', '5'),
|
|
|
|
|
'AND '=> array(
|
|
|
|
|
'EventReport.distribution' => 4,
|
|
|
|
|
'EventReport.sharing_group_id' => $sgids,
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
return $conditions;
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-04 11:45:54 +02:00
|
|
|
/**
|
|
|
|
|
* fetchById Simple ACL-aware method to fetch a report by Id or UUID
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param int|string $reportId
|
2020-09-21 11:48:05 +02:00
|
|
|
* @param bool $throwErrors
|
2020-08-04 11:45:54 +02:00
|
|
|
* @param bool $full
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function simpleFetchById(array $user, $reportId, $throwErrors=true, $full=false)
|
2020-02-18 15:02:35 +01:00
|
|
|
{
|
2020-08-04 11:45:54 +02:00
|
|
|
if (Validation::uuid($reportId)) {
|
|
|
|
|
$temp = $this->find('first', array(
|
|
|
|
|
'recursive' => -1,
|
|
|
|
|
'fields' => array("EventReport.id", "EventReport.uuid"),
|
|
|
|
|
'conditions' => array("EventReport.uuid" => $reportId)
|
|
|
|
|
));
|
|
|
|
|
if (empty($temp)) {
|
|
|
|
|
if ($throwErrors) {
|
|
|
|
|
throw new NotFoundException(__('Invalid report'));
|
|
|
|
|
}
|
|
|
|
|
return array();
|
|
|
|
|
}
|
|
|
|
|
$reportId = $temp['EventReport']['id'];
|
|
|
|
|
} elseif (!is_numeric($reportId)) {
|
|
|
|
|
if ($throwErrors) {
|
|
|
|
|
throw new NotFoundException(__('Invalid report'));
|
|
|
|
|
}
|
|
|
|
|
return array();
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
2020-08-04 11:45:54 +02:00
|
|
|
$options = array('conditions' => array("EventReport.id" => $reportId));
|
|
|
|
|
$report = $this->fetchReports($user, $options, $full=$full);
|
2020-09-18 14:19:59 +02:00
|
|
|
if (!empty($report)) {
|
|
|
|
|
return $report[0];
|
|
|
|
|
}
|
|
|
|
|
if ($throwErrors) {
|
|
|
|
|
throw new NotFoundException(__('Invalid report'));
|
|
|
|
|
}
|
|
|
|
|
return array();
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* fetchReports ACL-aware method. Basically find with ACL
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param array $options
|
|
|
|
|
* @param bool $full
|
|
|
|
|
* @return void
|
|
|
|
|
*/
|
|
|
|
|
public function fetchReports(array $user, array $options = array(), $full=false)
|
2020-08-04 11:45:54 +02:00
|
|
|
{
|
|
|
|
|
$params = array(
|
2020-09-21 10:37:18 +02:00
|
|
|
'conditions' => $this->buildACLConditions($user),
|
2020-09-17 15:06:55 +02:00
|
|
|
'contain' => $this->defaultContain,
|
2020-08-04 11:45:54 +02:00
|
|
|
'recursive' => -1
|
|
|
|
|
);
|
|
|
|
|
if ($full) {
|
|
|
|
|
$params['recursive'] = 1;
|
|
|
|
|
}
|
|
|
|
|
if (isset($options['fields'])) {
|
|
|
|
|
$params['fields'] = $options['fields'];
|
|
|
|
|
}
|
|
|
|
|
if (isset($options['conditions'])) {
|
|
|
|
|
$params['conditions']['AND'][] = $options['conditions'];
|
|
|
|
|
}
|
|
|
|
|
if (isset($options['group'])) {
|
|
|
|
|
$params['group'] = empty($options['group']) ? $options['group'] : false;
|
|
|
|
|
}
|
|
|
|
|
$reports = $this->find('all', $params);
|
|
|
|
|
return $reports;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* fetchIfAuthorized Fetches a report and checks if the user has the authorization to perform the requested operation
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param int|string|array $report
|
|
|
|
|
* @param mixed $authorizations the requested actions to be performed on the report
|
|
|
|
|
* @param bool $throwErrors Should the function throws excpetion if users is not allowed to perform the action
|
|
|
|
|
* @param bool $full
|
|
|
|
|
* @return array The report or an error message
|
|
|
|
|
*/
|
|
|
|
|
public function fetchIfAuthorized(array $user, $report, $authorizations, $throwErrors=true, $full=false)
|
|
|
|
|
{
|
|
|
|
|
$authorizations = is_array($authorizations) ? $authorizations : array($authorizations);
|
|
|
|
|
$possibleAuthorizations = array('view', 'edit', 'delete');
|
|
|
|
|
if (!empty(array_diff($authorizations, $possibleAuthorizations))) {
|
|
|
|
|
throw new NotFoundException(__('Invalid authorization requested'));
|
|
|
|
|
}
|
|
|
|
|
if (isset($report['uuid'])) {
|
|
|
|
|
$report['EventReport'] = $report;
|
|
|
|
|
}
|
|
|
|
|
if (!isset($report['EventReport']['uuid'])) {
|
|
|
|
|
$report = $this->simpleFetchById($user, $report, $throwErrors=$throwErrors, $full=$full);
|
|
|
|
|
if (empty($report)) {
|
|
|
|
|
$message = __('Invalid report');
|
|
|
|
|
return array('authorized' => false, 'error' => $message);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if ($user['Role']['perm_site_admin']) {
|
|
|
|
|
return $report;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (in_array('view', $authorizations) && count($authorizations) == 1) {
|
|
|
|
|
return $report;
|
|
|
|
|
} else {
|
|
|
|
|
if (in_array('edit', $authorizations) || in_array('delete', $authorizations)) {
|
|
|
|
|
$checkResult = $this->canEditReport($user, $report);
|
|
|
|
|
if ($checkResult !== true) {
|
|
|
|
|
if ($throwErrors) {
|
2020-09-15 10:12:58 +02:00
|
|
|
throw new UnauthorizedException($checkResult);
|
2020-08-04 11:45:54 +02:00
|
|
|
}
|
|
|
|
|
return array('authorized' => false, 'error' => $checkResult);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return $report;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-21 11:48:05 +02:00
|
|
|
public function canEditReport(array $user, array $report)
|
2020-08-04 11:45:54 +02:00
|
|
|
{
|
2020-09-15 10:12:58 +02:00
|
|
|
if ($user['Role']['perm_site_admin']) {
|
|
|
|
|
return true;
|
2020-09-18 08:41:32 +02:00
|
|
|
}
|
|
|
|
|
if (empty($report['Event'])) {
|
|
|
|
|
return __('Could not find associated event');
|
|
|
|
|
}
|
|
|
|
|
if ($report['Event']['orgc_id'] != $user['org_id']) {
|
|
|
|
|
return __('Only the creator organisation of the event can modify the report');
|
2020-08-04 11:45:54 +02:00
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
2020-09-21 11:48:05 +02:00
|
|
|
|
2020-09-29 10:35:46 +02:00
|
|
|
public function reArrangeReport(array $report)
|
|
|
|
|
{
|
|
|
|
|
$rearrangeObjects = array('Event', 'SharingGroup');
|
|
|
|
|
if (isset($report['EventReport'])) {
|
|
|
|
|
foreach ($rearrangeObjects as $ro) {
|
|
|
|
|
if (isset($report[$ro]) && !is_null($report[$ro]['id'])) {
|
|
|
|
|
$report['EventReport'][$ro] = $report[$ro];
|
|
|
|
|
}
|
|
|
|
|
unset($report[$ro]);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return $report;
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-21 11:48:05 +02:00
|
|
|
/**
|
|
|
|
|
* getProxyMISPElements Extract MISP Elements from an event and make them accessible by their ID
|
|
|
|
|
*
|
|
|
|
|
* @param array $user
|
|
|
|
|
* @param int|string $eventid
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getProxyMISPElements(array $user, $eventid)
|
2020-09-10 11:26:23 +02:00
|
|
|
{
|
|
|
|
|
$event = $this->Event->fetchEvent($user, ['eventid' => $eventid]);
|
|
|
|
|
if (empty($event)) {
|
|
|
|
|
throw new NotFoundException(__('Invalid Event'));
|
|
|
|
|
}
|
|
|
|
|
$event = $event[0];
|
2020-10-05 14:07:51 +02:00
|
|
|
$attributes = Hash::combine($event, 'Attribute.{n}.uuid', 'Attribute.{n}');
|
2020-10-02 10:48:52 +02:00
|
|
|
$this->AttributeTag = ClassRegistry::init('AttributeTag');
|
|
|
|
|
$allTagNames = Hash::combine($event['EventTag'], '{n}.Tag.name', '{n}.Tag');
|
|
|
|
|
$attributeTags = Hash::combine($this->AttributeTag->getAttributesTags($event['Attribute'], true), '{n}.name', '{n}');
|
|
|
|
|
$allTagNames = array_merge($allTagNames, $attributeTags);
|
2020-09-10 11:26:23 +02:00
|
|
|
$objects = [];
|
|
|
|
|
$templateConditions = [];
|
|
|
|
|
$recordedConditions = [];
|
|
|
|
|
foreach ($event['Object'] as $k => $object) {
|
2020-10-01 11:08:30 +02:00
|
|
|
$objects[$object['uuid']] = $object;
|
2020-10-05 14:07:51 +02:00
|
|
|
$objectAttributes = [];
|
|
|
|
|
foreach ($object['Attribute'] as $i => $objectAttribute) {
|
|
|
|
|
$objectAttributes[$objectAttribute['uuid']] = $object['Attribute'][$i];
|
|
|
|
|
$objectAttributes[$objectAttribute['uuid']]['object_uuid'] = $object['uuid'];
|
|
|
|
|
}
|
|
|
|
|
$attributes = array_merge($attributes, $objectAttributes);
|
2020-10-02 10:48:52 +02:00
|
|
|
$objectAttributeTags = Hash::combine($this->AttributeTag->getAttributesTags($object['Attribute'], true), '{n}.name', '{n}');
|
|
|
|
|
$allTagNames = array_merge($allTagNames, $objectAttributeTags);
|
2020-09-10 11:26:23 +02:00
|
|
|
$uniqueCondition = sprintf('%s.%s', $object['template_uuid'], $object['template_version']);
|
|
|
|
|
if (!isset($recordedConditions[$uniqueCondition])) {
|
|
|
|
|
$templateConditions['OR'][] = [
|
|
|
|
|
'ObjectTemplate.uuid' => $object['template_uuid'],
|
|
|
|
|
'ObjectTemplate.version' => $object['template_version']
|
|
|
|
|
];
|
|
|
|
|
$recordedConditions[$uniqueCondition] = true;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$this->ObjectTemplate = ClassRegistry::init('ObjectTemplate');
|
|
|
|
|
$templates = $this->ObjectTemplate->find('all', array(
|
|
|
|
|
'conditions' => $templateConditions,
|
|
|
|
|
'recursive' => -1,
|
|
|
|
|
'contain' => array(
|
|
|
|
|
'ObjectTemplateElement' => [
|
|
|
|
|
'order' => ['ui-priority' => 'DESC'],
|
|
|
|
|
'fields' => ['object_relation', 'type', 'ui-priority']
|
|
|
|
|
]
|
|
|
|
|
)
|
|
|
|
|
));
|
|
|
|
|
$objectTemplates = [];
|
|
|
|
|
foreach ($templates as $template) {
|
|
|
|
|
$objectTemplates[sprintf('%s.%s', $template['ObjectTemplate']['uuid'], $template['ObjectTemplate']['version'])] = $template;
|
|
|
|
|
}
|
2020-09-29 12:16:50 +02:00
|
|
|
$this->Galaxy = ClassRegistry::init('Galaxy');
|
|
|
|
|
$allowedGalaxies = $this->Galaxy->getAllowedMatrixGalaxies();
|
2020-10-01 11:08:30 +02:00
|
|
|
$allowedGalaxies = Hash::combine($allowedGalaxies, '{n}.Galaxy.uuid', '{n}.Galaxy');
|
2020-09-10 11:26:23 +02:00
|
|
|
$proxyMISPElements = [
|
2020-10-05 14:07:51 +02:00
|
|
|
'attribute' => $attributes,
|
2020-09-10 11:26:23 +02:00
|
|
|
'object' => $objects,
|
2020-09-29 12:16:50 +02:00
|
|
|
'objectTemplates' => $objectTemplates,
|
2020-10-02 10:48:52 +02:00
|
|
|
'galaxymatrix' => $allowedGalaxies,
|
|
|
|
|
'tagname' => $allTagNames
|
2020-09-10 11:26:23 +02:00
|
|
|
];
|
|
|
|
|
return $proxyMISPElements;
|
|
|
|
|
}
|
2020-09-21 11:01:36 +02:00
|
|
|
|
|
|
|
|
private function saveAndReturnErrors($data, $saveOptions = [], $errors = [])
|
|
|
|
|
{
|
|
|
|
|
$saveSuccess = $this->save($data, $saveOptions);
|
|
|
|
|
if (!$saveSuccess) {
|
|
|
|
|
foreach ($this->validationErrors as $validationError) {
|
|
|
|
|
$errors[] = $validationError[0];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return $errors;
|
|
|
|
|
}
|
2020-02-18 15:02:35 +01:00
|
|
|
}
|
