Added CREATED status for new vulnerability (#2840)

Cheshiriks · web-flow · commit 0875faf1ccea · 2023-11-03T13:02:52.000+03:00
* Added CREATED status for new vulnerability
diff --git a/save-backend/src/main/kotlin/com/saveourtool/save/backend/controllers/vulnerability/event/VulnerabilityMetadataListener.kt b/save-backend/src/main/kotlin/com/saveourtool/save/backend/controllers/vulnerability/event/VulnerabilityMetadataListener.kt
@@ -23,7 +23,7 @@ class VulnerabilityMetadataListener(
      */
     @EventListener
     fun createVulnerabilityMetadata(vulnerabilityEvent: VulnerabilityMetadataEvent) {
-        if (vulnerabilityEvent.vulnerabilityMetadata.status == VulnerabilityStatus.PENDING_REVIEW) {
+        if (vulnerabilityEvent.vulnerabilityMetadata.status == VulnerabilityStatus.CREATED) {
             val recipients = userDetailsService.findByRole(Role.SUPER_ADMIN.asSpringSecurityRole())
             val notifications = recipients.map {
                 Notification(
diff --git a/save-backend/src/main/kotlin/com/saveourtool/save/backend/security/VulnerabilityPermissionEvaluator.kt b/save-backend/src/main/kotlin/com/saveourtool/save/backend/security/VulnerabilityPermissionEvaluator.kt
@@ -39,7 +39,8 @@ class VulnerabilityPermissionEvaluator(
         return when {
             authentication.hasRole(Role.SUPER_ADMIN) -> true
             permission == Permission.READ -> true
-            permission == Permission.DELETE -> vulnerability.status == VulnerabilityStatus.PENDING_REVIEW && hasFullPermission(vulnerability, authentication)
+            permission == Permission.DELETE -> (vulnerability.status == VulnerabilityStatus.CREATED || vulnerability.status == VulnerabilityStatus.PENDING_REVIEW) &&
+                    hasFullPermission(vulnerability, authentication)
             else -> hasFullPermission(vulnerability, authentication)
         }
     }
diff --git a/save-cloud-common/src/commonMain/kotlin/com/saveourtool/save/entities/vulnerability/VulnerabilityStatus.kt b/save-cloud-common/src/commonMain/kotlin/com/saveourtool/save/entities/vulnerability/VulnerabilityStatus.kt
@@ -20,6 +20,11 @@ enum class VulnerabilityStatus {
      */
     AUTO_APPROVED,
 
+    /**
+     * Created status
+     */
+    CREATED,
+
     /**
      * Review status
      */
diff --git a/save-cosv/src/main/kotlin/com/saveourtool/save/cosv/service/VulnerabilityMetadataService.kt b/save-cosv/src/main/kotlin/com/saveourtool/save/cosv/service/VulnerabilityMetadataService.kt
@@ -63,10 +63,9 @@ class VulnerabilityMetadataService(
                 existedMetadata.updateBy(cosv, cosvFile, isAutoApprove)
             }
             ?: run {
-                val newMetadata = cosv.toNewMetadata(user, organization, cosvFile, isAutoApprove)
-                applicationEventPublisher.publishEvent(VulnerabilityMetadataEvent(newMetadata))
-                newMetadata
+                cosv.toNewMetadata(user, organization, cosvFile, isAutoApprove)
             }
+        applicationEventPublisher.publishEvent(VulnerabilityMetadataEvent(metadata))
 
         return vulnerabilityMetadataRepository.save(metadata)
     }
@@ -103,7 +102,7 @@ class VulnerabilityMetadataService(
             user = user,
             organization = organization,
             language = getLanguage() ?: VulnerabilityLanguage.OTHER,
-            status = isAutoApprove.toVulnerabilityStatus(),
+            status = toVulnerabilityStatus(isAutoApprove, true),
             latestCosvFile = cosvFile,
         )
 
@@ -162,7 +161,7 @@ class VulnerabilityMetadataService(
             severityNum = entry.getSeverityNumber()
             modified = entry.modified.toJavaLocalDateTime()
             latestCosvFile = cosvFile
-            status = isAutoApprove.toVulnerabilityStatus()
+            status = toVulnerabilityStatus(isAutoApprove, false)
         }
 
         private fun CosvSchema<*, *, *, *>.getSeverityNumber() =
@@ -172,6 +171,12 @@ class VulnerabilityMetadataService(
                     getScore(it)
                 } ?: 0f
 
-        private fun Boolean.toVulnerabilityStatus() = if (this) VulnerabilityStatus.AUTO_APPROVED else VulnerabilityStatus.PENDING_REVIEW
+        private fun toVulnerabilityStatus(isAutoApprove: Boolean, isNew: Boolean) = if (isAutoApprove) {
+            VulnerabilityStatus.AUTO_APPROVED
+        } else if (isNew) {
+            VulnerabilityStatus.CREATED
+        } else {
+            VulnerabilityStatus.PENDING_REVIEW
+        }
     }
 }
diff --git a/save-frontend/src/main/kotlin/com/saveourtool/save/frontend/components/views/vuln/VulnerabilityCollectionView.kt b/save-frontend/src/main/kotlin/com/saveourtool/save/frontend/components/views/vuln/VulnerabilityCollectionView.kt
@@ -325,7 +325,7 @@ private fun getFiltersByTab(
         setIsOwnerTab(false)
         VulnerabilityFilter(
             identifierPrefix = "",
-            statuses = listOf(VulnerabilityStatus.PENDING_REVIEW),
+            statuses = listOf(VulnerabilityStatus.CREATED, VulnerabilityStatus.PENDING_REVIEW),
         )
     }
     VulnerabilityListTab.OWNER -> {
diff --git a/save-frontend/src/main/kotlin/com/saveourtool/save/frontend/components/views/vuln/VulnerabilityHeader.kt b/save-frontend/src/main/kotlin/com/saveourtool/save/frontend/components/views/vuln/VulnerabilityHeader.kt
@@ -281,7 +281,9 @@ internal val headerMenu: FC<HeaderMenuProps> = FC { props ->
                         }
                     }
 
-                    if (props.permissions.isSuperAdmin && props.vulnerability.metadataDto.status == VulnerabilityStatus.PENDING_REVIEW) {
+                    if (props.permissions.isSuperAdmin && props.vulnerability.metadataDto.status.let {
+                        it == VulnerabilityStatus.CREATED || it == VulnerabilityStatus.PENDING_REVIEW
+                    }) {
                         buttonBuilder(label = "Approve".t(), classes = "mr-2 btn-sm", style = "success") {
                             enrollUpdateRequest()
                         }

Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,8 @@ class VulnerabilityPermissionEvaluator(`
`39`	`39`	`return when {`
`40`	`40`	`authentication.hasRole(Role.SUPER_ADMIN) -> true`
`41`	`41`	`permission == Permission.READ -> true`
`42`		`- permission == Permission.DELETE -> vulnerability.status == VulnerabilityStatus.PENDING_REVIEW && hasFullPermission(vulnerability, authentication)`
	`42`	`+ permission == Permission.DELETE -> (vulnerability.status == VulnerabilityStatus.CREATED \|\| vulnerability.status == VulnerabilityStatus.PENDING_REVIEW) &&`
	`43`	`+ hasFullPermission(vulnerability, authentication)`
`43`	`44`	`else -> hasFullPermission(vulnerability, authentication)`
`44`	`45`	`}`
`45`	`46`	`}`
Original file line number	Diff line number	Diff line change
`@@ -63,10 +63,9 @@ class VulnerabilityMetadataService(`
`63`	`63`	`existedMetadata.updateBy(cosv, cosvFile, isAutoApprove)`
`64`	`64`	`}`
`65`	`65`	`?: run {`
`66`		`- val newMetadata = cosv.toNewMetadata(user, organization, cosvFile, isAutoApprove)`
`67`		`- applicationEventPublisher.publishEvent(VulnerabilityMetadataEvent(newMetadata))`
`68`		`- newMetadata`
	`66`	`+ cosv.toNewMetadata(user, organization, cosvFile, isAutoApprove)`
`69`	`67`	`}`
	`68`	`+ applicationEventPublisher.publishEvent(VulnerabilityMetadataEvent(metadata))`
`70`	`69`
`71`	`70`	`return vulnerabilityMetadataRepository.save(metadata)`
`72`	`71`	`}`
`@@ -103,7 +102,7 @@ class VulnerabilityMetadataService(`
`103`	`102`	`user = user,`
`104`	`103`	`organization = organization,`
`105`	`104`	`language = getLanguage() ?: VulnerabilityLanguage.OTHER,`
`106`		`- status = isAutoApprove.toVulnerabilityStatus(),`
	`105`	`+ status = toVulnerabilityStatus(isAutoApprove, true),`
`107`	`106`	`latestCosvFile = cosvFile,`
`108`	`107`	`)`
`109`	`108`
`@@ -162,7 +161,7 @@ class VulnerabilityMetadataService(`
`162`	`161`	`severityNum = entry.getSeverityNumber()`
`163`	`162`	`modified = entry.modified.toJavaLocalDateTime()`
`164`	`163`	`latestCosvFile = cosvFile`
`165`		`- status = isAutoApprove.toVulnerabilityStatus()`
	`164`	`+ status = toVulnerabilityStatus(isAutoApprove, false)`
`166`	`165`	`}`
`167`	`166`
`168`	`167`	`private fun CosvSchema<, , , >.getSeverityNumber() =`
`@@ -172,6 +171,12 @@ class VulnerabilityMetadataService(`
`172`	`171`	`getScore(it)`
`173`	`172`	`} ?: 0f`
`174`	`173`
`175`		`- private fun Boolean.toVulnerabilityStatus() = if (this) VulnerabilityStatus.AUTO_APPROVED else VulnerabilityStatus.PENDING_REVIEW`
	`174`	`+ private fun toVulnerabilityStatus(isAutoApprove: Boolean, isNew: Boolean) = if (isAutoApprove) {`
	`175`	`+ VulnerabilityStatus.AUTO_APPROVED`
	`176`	`+ } else if (isNew) {`
	`177`	`+ VulnerabilityStatus.CREATED`
	`178`	`+ } else {`
	`179`	`+ VulnerabilityStatus.PENDING_REVIEW`
	`180`	`+ }`
`176`	`181`	`}`
`177`	`182`	`}`
Original file line number	Diff line number	Diff line change
`@@ -325,7 +325,7 @@ private fun getFiltersByTab(`
`325`	`325`	`setIsOwnerTab(false)`
`326`	`326`	`VulnerabilityFilter(`
`327`	`327`	`identifierPrefix = "",`
`328`		`- statuses = listOf(VulnerabilityStatus.PENDING_REVIEW),`
	`328`	`+ statuses = listOf(VulnerabilityStatus.CREATED, VulnerabilityStatus.PENDING_REVIEW),`
`329`	`329`	`)`
`330`	`330`	`}`
`331`	`331`	`VulnerabilityListTab.OWNER -> {`
Original file line number	Diff line number	Diff line change
`@@ -281,7 +281,9 @@ internal val headerMenu: FC<HeaderMenuProps> = FC { props ->`
`281`	`281`	`}`
`282`	`282`	`}`
`283`	`283`
`284`		`- if (props.permissions.isSuperAdmin && props.vulnerability.metadataDto.status == VulnerabilityStatus.PENDING_REVIEW) {`
	`284`	`+ if (props.permissions.isSuperAdmin && props.vulnerability.metadataDto.status.let {`
	`285`	`+ it == VulnerabilityStatus.CREATED \|\| it == VulnerabilityStatus.PENDING_REVIEW`
	`286`	`+ }) {`
`285`	`287`	`buttonBuilder(label = "Approve".t(), classes = "mr-2 btn-sm", style = "success") {`
`286`	`288`	`enrollUpdateRequest()`
`287`	`289`	`}`