|
1
|
|
|
from flask import current_app, Blueprint, render_template, request, redirect, flash, Response |
|
|
|
|
|
|
2
|
|
|
from spike.model import NaxsiRules, NaxsiRuleSets |
|
3
|
|
|
from time import time, localtime, strftime |
|
4
|
|
|
from spike.model import check_constraint, db |
|
5
|
|
|
from sqlalchemy.exc import SQLAlchemyError |
|
|
|
|
|
|
6
|
|
|
|
|
7
|
|
|
from rules import __get_textual_representation_rule |
|
|
|
|
|
|
8
|
|
|
|
|
9
|
|
|
rulesets = Blueprint('rulesets', __name__) |
|
|
|
|
|
|
10
|
|
|
|
|
11
|
|
|
|
|
12
|
|
|
@rulesets.route("/") |
|
13
|
|
|
def index(): |
|
|
|
|
|
|
14
|
|
|
_rulesets = NaxsiRuleSets.query.order_by(NaxsiRuleSets.name).all() |
|
15
|
|
|
return render_template("/rulesets/index.html", rulesets=_rulesets) |
|
16
|
|
|
|
|
17
|
|
|
@rulesets.route("/plain/") |
|
18
|
|
|
@rulesets.route("/plain/<int:rid>") |
|
19
|
|
|
def plain(rid=0): |
|
20
|
|
|
""" |
|
21
|
|
|
Show the rule `rid` in plain text |
|
22
|
|
|
:param int rid: Rule id |
|
23
|
|
|
""" |
|
24
|
|
|
if not rid: |
|
25
|
|
|
out = ''.join(map(__get_rules_for_ruleset, NaxsiRuleSets.query.all())) |
|
26
|
|
|
else: |
|
27
|
|
|
out = __get_rules_for_ruleset(NaxsiRuleSets.query.filter(NaxsiRuleSets.id == rid).first()) |
|
|
|
|
|
|
28
|
|
|
return Response(out, mimetype='text/plain') |
|
29
|
|
|
|
|
30
|
|
|
|
|
31
|
|
|
@rulesets.route("/view/<int:rid>") |
|
32
|
|
|
def view(rid=0): |
|
|
|
|
|
|
33
|
|
|
if not rid: |
|
34
|
|
|
return redirect("/rulesets/") |
|
35
|
|
|
ruleset = NaxsiRuleSets.query.filter(NaxsiRuleSets.id == rid).first() |
|
36
|
|
|
return render_template("/rulesets/view.html", r=ruleset, rout=__get_rules_for_ruleset(ruleset)) |
|
|
|
|
|
|
37
|
|
|
|
|
38
|
|
|
|
|
39
|
|
|
@rulesets.route("/new", methods=["POST"]) |
|
40
|
|
|
def new(): # TODO filter parameter |
|
|
|
|
|
|
41
|
|
|
rfile = request.form["rfile"].strip().lower() |
|
42
|
|
|
rname = request.form["rname"].strip().upper() |
|
43
|
|
|
|
|
44
|
|
|
cie = check_constraint("ruleset", rfile) |
|
45
|
|
|
if cie: |
|
46
|
|
|
flash("ERROR, ruleset exists: %s " % rfile, "error") |
|
47
|
|
|
return redirect("/rulesets/") |
|
48
|
|
|
|
|
49
|
|
|
db.session.add(NaxsiRuleSets(rfile, rname, "naxsi-ruleset: %s" % rfile, int(time()))) |
|
50
|
|
|
try: |
|
51
|
|
|
db.session.commit() |
|
52
|
|
|
except SQLAlchemyError: |
|
53
|
|
|
db.session.rollback() |
|
54
|
|
|
flash("ERROR while trying to create ruleset: %s " % rfile, "error") |
|
55
|
|
|
|
|
56
|
|
|
flash("OK created: %s " % rfile, "success") |
|
57
|
|
|
return redirect("/rulesets/") |
|
58
|
|
|
|
|
59
|
|
|
|
|
60
|
|
|
def __get_rules_for_ruleset(ruleset, with_header = True): |
|
|
|
|
|
|
61
|
|
|
_rules = NaxsiRules.query.filter( |
|
62
|
|
|
NaxsiRules.ruleset == ruleset.file, |
|
63
|
|
|
NaxsiRules.active == 1 |
|
64
|
|
|
).all() |
|
65
|
|
|
|
|
66
|
|
|
nxruleset = NaxsiRuleSets.query.filter(NaxsiRuleSets.file == ruleset.file).first() |
|
67
|
|
|
db.session.add(nxruleset) |
|
68
|
|
|
db.session.commit() |
|
69
|
|
|
text_rules = ''.join(map(__get_textual_representation_rule, _rules)) |
|
70
|
|
|
|
|
71
|
|
|
if with_header is False: |
|
72
|
|
|
return text_rules |
|
73
|
|
|
|
|
74
|
|
|
header = current_app.config["RULESET_HEADER"] |
|
75
|
|
|
header = header.replace("RULESET_DESC", ruleset.name) |
|
76
|
|
|
header = header.replace("RULESET_FILE", ruleset.file) |
|
77
|
|
|
header = header.replace( "RULESET_DATE", strftime("%F - %H:%M", localtime(time()))) |
|
|
|
|
|
|
78
|
|
|
|
|
79
|
|
|
return header + text_rules |
|
80
|
|
|
|
nbs-system /
spike
Loading history...
This check looks for lines that are too long. You can specify the maximum line length.