added the brewnvr innvocation

3 years ago · e35882520f
4 changed files with 124 additions and 1 deletions
--- a/pom.xml
+++ b/pom.xml
@ -49,6 +49,59 @@
      <artifactId>json</artifactId>
      <version>20220320</version>
    </dependency>
+     <dependency>
+      <groupId>io.quarkiverse.tektonclient</groupId>
+      <artifactId>quarkus-tekton-client</artifactId>
+      <version>1.0.1</version>
+    </dependency>
+    <dependency>
+      <groupId>io.quarkus</groupId>
+      <artifactId>quarkus-resteasy-reactive</artifactId>
+    </dependency>
+    <dependency>
+      <groupId>io.quarkus</groupId>
+      <artifactId>quarkus-arc</artifactId>
+    </dependency>
+    <dependency>
+      <groupId>io.quarkus</groupId>
+      <artifactId>quarkus-junit5</artifactId>
+      <scope>test</scope>
+    </dependency>
+    <dependency>
+      <groupId>io.rest-assured</groupId>
+      <artifactId>rest-assured</artifactId>
+      <scope>test</scope>
+    </dependency>
+<!-- https://mvnrepository.com/artifact/jakarta.inject/jakarta.inject-api -->
+<dependency>
+    <groupId>jakarta.inject</groupId>
+    <artifactId>jakarta.inject-api</artifactId>
+    <version>2.0.1</version>
+</dependency>
+<!-- https://mvnrepository.com/artifact/jakarta.ws.rs/jakarta.ws.rs-api -->
+<dependency>
+    <groupId>jakarta.ws.rs</groupId>
+    <artifactId>jakarta.ws.rs-api</artifactId>
+    <version>3.1.0</version>
+</dependency>
+<!-- https://mvnrepository.com/artifact/org.apache.commons/commons-lang3 -->
+<dependency>
+    <groupId>org.apache.commons</groupId>
+    <artifactId>commons-lang3</artifactId>
+    <version>3.12.0</version>
+</dependency>
+<!-- https://mvnrepository.com/artifact/javax.inject/javax.inject -->
+<dependency>
+    <groupId>javax.inject</groupId>
+    <artifactId>javax.inject</artifactId>
+    <version>1</version>
+</dependency>
+    <dependency>
+    <groupId>io.fabric8</groupId>
+    <artifactId>tekton-client</artifactId>
+    <version>6.7.2</version>
+  </dependency>
+
    <!-- https://mvnrepository.com/artifact/org.postgresql/postgresql -->
    <dependency>
      <groupId>org.postgresql</groupId>
--- a/src/main/java/rest/CreateScanRequest.java
+++ b/src/main/java/rest/CreateScanRequest.java
@ -22,6 +22,7 @@ public class CreateScanRequest {
    //all of these need cleaning up to be a more sensible solution
    @RestClient
    CreateScanService createScanService;
+    GreetingResource greetingResource;

    @POST
    @Path("/brew")
@ -30,7 +31,6 @@ public class CreateScanRequest {
    public BrewObj invokeScanAnalyze(@Valid String scanInvocation) throws URISyntaxException {
        JSONObject jsonData = new JSONObject(scanInvocation);
        BrewObj brewObj = BrewObjPayload.constructScanPayload(jsonData);
-
        ConnectDB connectDB = new ConnectDB();
        Connection conn = connectDB.connect();
        Statement stmt = null;
@ -42,6 +42,7 @@ public class CreateScanRequest {
        } catch (SQLException e){
            System.out.println(e);
        } 
+        greetingResource.invokeScanTask(brewObj.brewNvr);
        return brewObj;
    }

--- a/src/main/java/rest/CreateStartScan.java
+++ b/src/main/java/rest/CreateStartScan.java
@ -20,6 +20,7 @@ public class CreateStartScan {

    @RestClient
    CreateScanService createScanService;
+    GreetingResource greetingResource;

    @PUT
    @Path("/{scanId}")
--- a/src/main/java/rest/GreetingResource.java
+++ b/src/main/java/rest/GreetingResource.java
@ -0,0 +1,68 @@
+package rest;
+
+import jakarta.inject.Inject;
+import jakarta.ws.rs.GET;
+import jakarta.ws.rs.Path;
+import jakarta.ws.rs.Produces;
+import jakarta.ws.rs.core.MediaType;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import org.apache.commons.lang3.RandomStringUtils;
+
+import io.fabric8.tekton.client.TektonClient;
+import io.fabric8.tekton.pipeline.v1beta1.ArrayOrString;
+import io.fabric8.tekton.pipeline.v1beta1.Param;
+import io.fabric8.tekton.pipeline.v1beta1.TaskRun;
+import io.fabric8.tekton.pipeline.v1beta1.TaskRunBuilder;
+
+public class GreetingResource {
+
+    public static final String NAMESPACE = "pct-security-tooling";
+    public static final String BUILD_ID = "buildId";
+    public static final String SCAN_PROFILE = "scanProfile";
+    public static final String TASK_REFERENCE = "osh-scan-task";
+    public static final String SERVICE_ACCOUNT = "osh-wrapper-client-sa";
+
+    @Inject
+    TektonClient tektonClient;
+
+    public String listPipelines() {
+        
+        List<String> pipelineList = new ArrayList<>();
+            
+            tektonClient.v1beta1().pipelines()
+            .inNamespace(NAMESPACE)
+            .list()
+            .getItems()
+            .forEach(p -> pipelineList.add(p.getMetadata().getName()));
+
+        return pipelineList.toString();
+    }
+
+    public String invokeScanTask(String buildId) {
+        // String buildId = "xterm-366-8.el9";
+        String scanProfile = "snyk-only-unstable";
+        
+        // random taskrun name generating for now
+        TaskRun taskRun = new TaskRunBuilder().withNewMetadata().withName("osh-scan-taskrun-" + RandomStringUtils.randomAlphanumeric(8).toLowerCase())
+                    .endMetadata()
+                    .withNewSpec()
+                    .withServiceAccountName(SERVICE_ACCOUNT)
+                    .withNewTaskRef()
+                    .withName(TASK_REFERENCE)
+                    .endTaskRef()
+                    .withParams(
+                            new Param("buildId", new ArrayOrString(buildId)),
+                            new Param("scanProfile", new ArrayOrString(scanProfile)))
+                    .endSpec()
+                    .build();
+
+        tektonClient.v1beta1().taskRuns().inNamespace(NAMESPACE).resource(taskRun).create();           
+        
+
+        return "Scan invoked";
+    }
+
+}