- Add external agency
-
-
-
-
+
+
-
-
+ });
+
- {% endblock %}
-
+
+
+ Add external agency
+
+
+
-
+
+ +
+
+
-
-
- + +
-
-
-
-
-
+{% endblock %}
diff --git a/src/pe_reports/stakeholder/views.py b/src/pe_reports/stakeholder/views.py
index ed0ae20c..a18d8c46 100644
--- a/src/pe_reports/stakeholder/views.py
+++ b/src/pe_reports/stakeholder/views.py
@@ -6,18 +6,30 @@
import json
import logging
import os
+import re
import socket
# Third-Party Libraries
+from bs4 import BeautifulSoup
from flask import Blueprint, flash, redirect, render_template, url_for
+import nltk
+from nltk import pos_tag, word_tokenize
import psycopg2
import psycopg2.extras
import requests
+import spacy
+
+# If you are getting errors saying that a "en_core_web_lg" is loaded. Run the command " python -m spacy download en_core_web_trf" but might have to chagne the name fo the spacy model
+import spacy.cli
# cisagov Libraries
from pe_reports.data.config import config
from pe_reports.stakeholder.forms import InfoFormExternal
+spacy.cli.download("en_core_web_lg")
+nlp = spacy.load("en_core_web_lg")
+# TODO
+
LOGGER = logging.getLogger(__name__)
# CSG credentials
@@ -519,6 +531,74 @@ def getalluserinfo():
)
+def getNames(url):
+ """Get the names from url data."""
+ doc = nlp(getAbout(url))
+
+ d = []
+
+ for ent in doc.ents:
+ d.append((ent.label_, ent.text))
+
+ return d
+
+
+def getAbout(url):
+ """Get stakeholder about page."""
+ thepage = requests.get(url).text
+
+ soup = BeautifulSoup(thepage, "lxml")
+
+ body = soup.body.text
+
+ body = body.replace("\n", " ")
+ body = body.replace("\t", " ")
+ body = body.replace("\r", " ")
+ body = body.replace("\xa0", " ")
+ # body = re.sub(r'[^ws]', '', body)
+
+ return body
+
+
+def theExecs(URL):
+ """Gather all executives names from data returned from about page url."""
+ mytext = getAbout(URL)
+
+ tokens = word_tokenize(mytext)
+
+ thetag = pos_tag(tokens)
+
+ ne_tree = nltk.ne_chunk(thetag)
+
+ for x in ne_tree:
+ if "PERSON" in x:
+ print(x)
+
+ regex_pattern = re.compile(r"[@_'’!#\-$%^&*()<>?/\|}{~:]")
+
+ thereturn = getNames(URL)
+
+ executives = []
+
+ for hy in thereturn:
+
+ # print(hy)
+
+ if ("PERSON" in hy) and (hy[1] not in executives) and (len(hy[1]) < 50):
+ # executives.append(hy[1])
+ # print(hy[1])
+
+ # if not regex_pattern.search(hy[1]) and len(hy[1].split()) > 1 and not difflib.get_close_matches(hy[1], executives):
+ if not regex_pattern.search(hy[1]) and len(hy[1].split()) > 1:
+ person = hy[1].split(" ")
+ if len(person) <= 1:
+ # print(person)
+ executives.append(hy[1])
+ # print(f'{hy[0]} {hy[1]}')
+ # print(executives)
+ return executives
+
+
@stakeholder_blueprint.route("/stakeholder", methods=["GET", "POST"])
def stakeholder():
"""Process form information, instantiate form and render page template."""
@@ -542,6 +622,7 @@ def stakeholder():
formExternal.custRootDomain.data = ""
formExternal.custExecutives.data = ""
allDomain = getAgencies(cust)
+ allExecutives = list(theExecs(custExecutives))
allSubDomain = getSubdomain(custRootDomainValue)
allValidIP = getallsubdomainIPS(custRootDomainValue)
@@ -570,7 +651,7 @@ def stakeholder():
custDomainAliases,
custRootDomain,
allValidIP,
- custExecutives,
+ allExecutives,
)
else:
diff --git a/src/pe_reports/stakeholder_full/__init__.py b/src/pe_reports/stakeholder_full/__init__.py
new file mode 100644
index 00000000..ababb128
--- /dev/null
+++ b/src/pe_reports/stakeholder_full/__init__.py
@@ -0,0 +1 @@
+"""Init file for module implementation."""
diff --git a/src/pe_reports/stakeholder_full/forms.py b/src/pe_reports/stakeholder_full/forms.py
new file mode 100644
index 00000000..1513d95d
--- /dev/null
+++ b/src/pe_reports/stakeholder_full/forms.py
@@ -0,0 +1,34 @@
+"""Create the stakeholder data input form."""
+
+# Third-Party Libraries
+from flask_wtf import FlaskForm
+from wtforms import StringField, SubmitField
+from wtforms.validators import DataRequired
+
+
+class InfoFormExternal(FlaskForm):
+ """Create web form to take user input on organization information/details."""
+
+ cust = StringField(
+ "What is the cyhy id for the stakeholder?", validators=[DataRequired()]
+ )
+ # TODO: The following form field may be used in a future update. Issue #208
+ # custIP = StringField(
+ # "What is the stakeholder ip/cidr? *comma separate entries",
+ # validators=[DataRequired()],
+ # )
+ custRootDomain = StringField(
+ "What is the root domain for this stakeholder? " "*comma separate entries"
+ )
+ custDomainAliases = StringField(
+ "What are the organization aliases? " "*comma separate entries"
+ )
+ # TODO: The following form field may be used in a future update. Issue #208
+ # custSubDomain = StringField(
+ # "What is the sub-domain for this stakeholder?" " *comma separate entries"
+ # )
+ custExecutives = StringField(
+ "What is the url for the Excutives for this stakeholder? "
+ "*comma separate entries"
+ )
+ submit = SubmitField("Submit", render_kw={"onclick": "loading()"})
diff --git a/src/pe_reports/stakeholder_full/templates/stakeholder_full_UI/home_stakeholder_full.html b/src/pe_reports/stakeholder_full/templates/stakeholder_full_UI/home_stakeholder_full.html
new file mode 100644
index 00000000..ac761591
--- /dev/null
+++ b/src/pe_reports/stakeholder_full/templates/stakeholder_full_UI/home_stakeholder_full.html
@@ -0,0 +1,117 @@
+{% extends "base.html" %} {% block content %}
+
+
+  }})
+
diff --git a/src/pe_reports/stakeholder_full/views.py b/src/pe_reports/stakeholder_full/views.py
new file mode 100644
index 00000000..158318c5
--- /dev/null
+++ b/src/pe_reports/stakeholder_full/views.py
@@ -0,0 +1,678 @@
+"""Classes and associated functions that render the UI app pages."""
+
+# Standard Python Libraries
+import datetime
+from datetime import date
+from ipaddress import ip_address, ip_network
+import json
+import logging
+import os
+import re
+
+# import os
+import socket
+
+# Third-Party Libraries
+from bs4 import BeautifulSoup
+from flask import Blueprint, flash, redirect, render_template, url_for
+import nltk
+from nltk import pos_tag, word_tokenize
+import numpy as np
+import pandas as pd
+import psycopg2
+import psycopg2.extras
+import requests
+import spacy
+
+# cisagov Libraries
+from adhoc.enumerate_subs_from_root import enumerate_and_save_subs, query_roots
+from adhoc.fill_cidrs_from_cyhy_assets import fill_cidrs
+from adhoc.fill_ips_from_cidrs import fill_ips_from_cidrs
+from adhoc.link_subs_and_ips_from_ips import connect_subs_from_ips
+from adhoc.link_subs_and_ips_from_subs import connect_ips_from_subs
+from adhoc.shodan_dedupe import dedupe
+from pe_reports.data.config import config
+from pe_reports.data.db_query import execute_values, get_orgs_df
+from pe_reports.stakeholder_full.forms import InfoFormExternal
+
+# import traceback
+
+
+# If you are getting errors saying that a "en_core_web_lg" is loaded. Run the command " python -m spacy download en_core_web_trf" but might have to chagne the name fo the spacy model
+nlp = spacy.load("en_core_web_lg")
+
+LOGGER = logging.getLogger(__name__)
+
+# CSG credentials
+API_Client_ID = os.getenv("CSGUSER")
+API_Client_secret = os.environ.get("CSGSECRET")
+API_WHOIS = os.environ.get("WHOIS_VAR")
+
+conn = None
+cursor = None
+thedateToday = date.today().strftime("%Y-%m-%d")
+
+
+def getToken():
+ """Get authorization token from Cybersixgill (CSG)."""
+ LOGGER.info(API_Client_ID)
+ LOGGER.info(API_Client_secret)
+ d = {
+ "grant_type": "client_credentials",
+ "client_id": f"{API_Client_ID}",
+ "client_secret": f"{API_Client_secret}",
+ }
+ r = requests.post("https://api.cybersixgill.com/auth/token", data=d)
+ LOGGER.info(r)
+ r = r.text.split(":")
+ r = r[1].lstrip('"').rsplit('"')[0]
+ return r
+
+
+def getAgencies(cyhy_db_id):
+ """Get all agency names from P&E database."""
+ global conn, cursor
+
+ try:
+ params = config()
+
+ conn = psycopg2.connect(**params)
+
+ if conn:
+ LOGGER.info(
+ "There was a connection made to"
+ "the database and the query was executed."
+ )
+
+ cursor = conn.cursor(cursor_factory=psycopg2.extras.DictCursor)
+
+ query = """
+ select organizations_uid, name
+ from organizations
+ where cyhy_db_name = %s;"""
+
+ cursor.execute(query, (cyhy_db_id))
+
+ result = cursor.fetchall()
+ resultDict = {}
+
+ for row in result:
+ # row[0] = org UUID
+ # row[1] = org name
+ resultDict[f"{row[0]}"] = f"{row[1]}"
+ return resultDict
+
+ except (Exception, psycopg2.DatabaseError) as err:
+ LOGGER.error("There was a problem logging into the psycopg database %s", err)
+ finally:
+ if conn is not None:
+ cursor.close()
+ conn.close()
+ LOGGER.info("The connection/query was completed and closed.")
+
+ return resultDict
+
+
+def set_org_to_report_on(cyhy_db_id):
+ """Query cyhy assets."""
+ sql = """
+ SELECT *
+ FROM organizations o
+ where o.cyhy_db_name = %(org_id)s
+ """
+ params = config()
+ conn = psycopg2.connect(**params)
+ df = pd.read_sql_query(sql, conn, params={"org_id": cyhy_db_id})
+
+ if len(df) < 1:
+ LOGGER.error("No org found for that cyhy id")
+ return 0
+
+ for i, row in df.iterrows():
+ if row["report_on"] is True and row["premium_report"] is True:
+ continue
+ cursor = conn.cursor()
+ sql = """UPDATE organizations
+ SET report_on = True, premium_report = True
+ WHERE organizations_uid = %s"""
+ uid = row["organizations_uid"]
+ cursor.execute(sql, [uid])
+ conn.commit()
+ cursor.close()
+ conn.close()
+ return df
+
+
+def get_data_source_uid(source):
+ """Get data source uid."""
+ params = config()
+ conn = psycopg2.connect(**params)
+ cur = conn.cursor()
+ sql = """SELECT * FROM data_source WHERE name = '{}'"""
+ cur.execute(sql.format(source))
+ source = cur.fetchone()[0]
+ cur.close()
+ cur = conn.cursor()
+ # Update last_run in data_source table
+ date = datetime.datetime.today().strftime("%Y-%m-%d")
+ sql = """update data_source set last_run = '{}'
+ where name = '{}';"""
+ cur.execute(sql.format(date, source))
+ cur.close()
+ conn.close()
+ return source
+
+
+def get_cidrs_and_ips(org_uid):
+ """Query all cidrs and ips for an organization."""
+ params = config()
+ conn = psycopg2.connect(**params)
+ cur = conn.cursor()
+ sql = """SELECT network from cidrs where
+ organizations_uid = %s;"""
+ cur.execute(sql, [org_uid])
+ cidrs = cur.fetchall()
+ sql = """
+ SELECT i.ip
+ FROM ips i
+ join ips_subs ip_s on ip_s.ip_hash = i.ip_hash
+ join sub_domains sd on sd.sub_domain_uid = ip_s.sub_domain_uid
+ join root_domains rd on rd.root_domain_uid = sd.root_domain_uid
+ WHERE rd.organizations_uid = %s
+ AND i.origin_cidr is null;
+ """
+ cur.execute(sql, [org_uid])
+ ips = cur.fetchall()
+ conn.close()
+ cidrs_ips = cidrs + ips
+ # cidrs_ips = [item for sublist in cidrs_ips for item in sublist]
+ cidrs_ips = [x[0] for x in cidrs_ips]
+ cidrs_ips = validateIP(cidrs_ips)
+ # cidrs_ips.remove("0.0.0.9")
+ # cidrs_ips.remove("0.0.0.1")
+ # cidrs_ips.remove("0.0.0.4")
+ # cidrs_ips.remove("0.0.0.2")
+ # cidrs_ips.remove("10.171.32.57")
+ # cidrs_ips.remove("10.171.40.44")
+ # cidrs_ips.remove("10.176.56.23")
+ # cidrs_ips.remove("127.0.0.1")
+ LOGGER.info(cidrs_ips)
+ return cidrs_ips
+
+
+def insert_roots(org, domain_list):
+ """Insert root domains into the database."""
+ source_uid = get_data_source_uid("P&E")
+ roots_list = []
+ for domain in domain_list:
+ try:
+ ip = socket.gethostbyname(domain)
+ except Exception:
+ ip = np.nan
+ root = {
+ "organizations_uid": org["organizations_uid"],
+ "root_domain": domain,
+ "ip_address": ip,
+ "data_source_uid": source_uid,
+ "enumerate_subs": True,
+ }
+ roots_list.append(root)
+
+ roots = pd.DataFrame(roots_list)
+ LOGGER.info(roots)
+ except_clause = """ ON CONFLICT (root_domain, organizations_uid)
+ DO NOTHING;"""
+ params = config()
+ conn = psycopg2.connect(**params)
+ execute_values(conn, roots, "public.root_domains", except_clause)
+
+
+def getRootID(org_UUID):
+ """Get all root domain names from P&E database."""
+ global conn, cursor
+ resultDict = {}
+ try:
+ params = config()
+
+ conn = psycopg2.connect(**params)
+
+ if conn:
+ LOGGER.info(
+ "There was a connection made to the database and the query was executed "
+ )
+
+ cursor = conn.cursor(cursor_factory=psycopg2.extras.DictCursor)
+ query = "select root_domain_uid, organization_name from"
+ " root_domains where organizations_uid='{}';"
+
+ cursor.execute(query.format(org_UUID))
+
+ result = cursor.fetchall()
+
+ for row in result:
+ # row[0] = root UUID
+ # row[1] = org name
+ resultDict[f"{row[1]}"] = f"{row[0]}"
+ return resultDict
+
+ except (Exception, psycopg2.DatabaseError) as err:
+ LOGGER.error("There was a problem logging into the psycopg database %s", err)
+ finally:
+ if conn is not None:
+ cursor.close()
+ conn.close()
+ LOGGER.info("The connection/query was completed and closed.")
+
+ return resultDict
+
+
+def setCustomerExternalCSG(
+ customer, customerIP, customerRootDomain, customerSubDomain, customerExecutives
+):
+ """Insert customer not in cyhyDB into the PE-Reports database."""
+ global conn, cursor
+
+ iplist = []
+ domainlist = []
+ try:
+ LOGGER.info("Starting insert into database...")
+
+ params = config()
+
+ conn = psycopg2.connect(**params)
+
+ if conn:
+
+ LOGGER.info(
+ "There was a connection made to"
+ " the database and the query was executed "
+ )
+
+ cursor = conn.cursor()
+
+ for ip in customerIP:
+ iplist.append(ip)
+
+ cursor.execute(
+ f"insert into organizations(domain_name,"
+ f" domain_ip,"
+ f" date_saved) "
+ f"values('{customer}',"
+ f" '{ip}',"
+ f"'{thedateToday}');"
+ )
+ for domain in customerRootDomain:
+ domainlist.append(domain)
+ cursor.execute(
+ f"insert into domain_assets(domain_name,"
+ f" domain_ip,"
+ f" date_saved) "
+ f"values('{customer}',"
+ f" '{ip}', '{thedateToday}');"
+ )
+
+ except (Exception, psycopg2.DatabaseError) as err:
+ LOGGER.error("There was a problem logging into the psycopg database %s", err)
+ finally:
+ if conn is not None:
+ conn.commit()
+ cursor.close()
+ conn.close()
+ LOGGER.info("The connection/query was completed and closed.")
+
+ return iplist
+
+
+def theaddress(domain):
+ """Get actual IP address of domain."""
+ gettheAddress = ""
+ try:
+ gettheAddress = socket.gethostbyname(domain)
+ except socket.gaierror:
+ LOGGER.info("There is a problem with the domain that you selected")
+
+ return gettheAddress
+
+
+def verifyIPv4(custIP):
+ """Verify if parameter is a valid IPv4 IP address."""
+ try:
+ if ip_address(custIP):
+ return True
+
+ else:
+ return False
+
+ except ValueError as err:
+ LOGGER.error("The address is incorrect, %s", err)
+ return False
+
+
+def verifyCIDR(custIP):
+ """Verify if parameter is a valid CIDR block IP address."""
+ try:
+ if ip_network(custIP):
+ return True
+
+ else:
+ return False
+
+ except ValueError as err:
+ LOGGER.error("The CIDR is incorrect, %s", err)
+ return False
+
+
+def validateIP(custIP):
+ """
+ Verify IPv4 and CIDR.
+
+ Collect address information into a list that is ready for DB insertion.
+ """
+ verifiedIP = []
+ for the_ip in custIP:
+ if verifyCIDR(the_ip) or verifyIPv4(the_ip):
+ verifiedIP.append(the_ip)
+ return verifiedIP
+
+
+def getOrganizations():
+ """Get all organization details from Cybersixgill via API."""
+ url = "https://api.cybersixgill.com/multi-tenant/organization"
+
+ headers = {
+ "Content-Type": "application/json",
+ "Cache-Control": "no-cache",
+ "Authorization": f"Bearer {getToken()}",
+ }
+
+ response = requests.get(url, headers=headers).json()
+ return response
+
+
+def setNewCSGOrg(newOrgName, orgAliases, orgdomainNames, orgIP, orgExecs):
+ """Set a new stakeholder name at CSG."""
+ newOrganization = json.dumps(
+ {
+ "name": f"{newOrgName}",
+ "organization_commercial_category": "customer",
+ "countries": ["worldwide"],
+ "industries": ["Government"],
+ }
+ )
+ url = "https://api.cybersixgill.com/multi-tenant/organization"
+
+ headers = {
+ "Content-Type": "application/json",
+ "Cache-Control": "no-cache",
+ "Authorization": f"Bearer {getToken()}",
+ }
+
+ response = requests.post(url, headers=headers, data=newOrganization).json()
+
+ newOrgID = response["id"]
+
+ if newOrgID:
+ LOGGER.info("A new org_id was created: %s", newOrgID)
+
+ setOrganizationUsers(newOrgID)
+ setOrganizationDetails(newOrgID, orgAliases, orgdomainNames, orgIP, orgExecs)
+
+ return response
+
+
+def setOrganizationUsers(org_id):
+ """Set CSG user permissions at new stakeholder."""
+ role1 = "5d23342df5feaf006a8a8929"
+ role2 = "5d23342df5feaf006a8a8927"
+ id_role1 = "610017c216948d7efa077a52"
+ csg_role_id = "role_id"
+ csg_user_id = "user_id"
+ for user in getalluserinfo():
+ userrole = user[csg_role_id]
+ user_id = user[csg_user_id]
+
+ if (
+ (userrole == role1)
+ and (user_id != id_role1)
+ or userrole == role2
+ and user_id != id_role1
+ ):
+
+ url = (
+ f"https://api.cybersixgill.com/multi-tenant/organization/"
+ f"{org_id}/user/{user_id}?role_id={userrole}"
+ )
+
+ headers = {
+ "Content-Type": "application/json",
+ "Cache-Control": "no-cache",
+ "Authorization": f"Bearer {getToken()}",
+ }
+
+ response = requests.post(url, headers=headers).json()
+ LOGGER.info(response)
+
+
+def setOrganizationDetails(org_id, orgAliases, orgDomain, orgIP, orgExecs):
+ """Set stakeholder details at newly created.
+
+ stakeholder at CSG portal via API.
+ """
+ LOGGER.info("The following is from setting details")
+ LOGGER.info("The org_id is %s", org_id)
+ LOGGER.info("The orgAliases is %s", orgAliases)
+ LOGGER.info("The orgDomain is %s", orgDomain)
+ LOGGER.info("The orgIP is %s", orgIP)
+ LOGGER.info("The orgExecs is %s", orgExecs)
+ newOrganizationDetails = json.dumps(
+ {
+ "organization_aliases": {"explicit": orgAliases},
+ "domain_names": {"explicit": orgDomain},
+ "ip_addresses": {"explicit": orgIP},
+ "executives": {"explicit": orgExecs},
+ }
+ )
+ url = f"https://api.cybersixgill.com/multi-tenant/" f"organization/{org_id}/assets"
+
+ headers = {
+ "Content-Type": "application/json",
+ "Cache-Control": "no-cache",
+ "Authorization": f"Bearer {getToken()}",
+ }
+
+ response = requests.put(url, headers=headers, data=newOrganizationDetails).json()
+ LOGGER.info("The response is %s", response)
+
+
+def getalluserinfo():
+ """Get CSG user permission role information from CSG."""
+ userInfo = getOrganizations()[1]["assigned_users"]
+
+ return userInfo
+
+
+stakeholder_full_blueprint = Blueprint(
+ "stakeholder_full", __name__, template_folder="templates/stakeholder_full_UI"
+)
+
+
+def getNames(url):
+ """Retrieve all executive names from URL."""
+ doc = nlp(getAbout(url))
+
+ d = []
+
+ for ent in doc.ents:
+ d.append((ent.label_, ent.text))
+
+ return d
+
+
+def getAbout(url):
+ """Retrieve stakeholder about page."""
+ thepage = requests.get(url).text
+
+ soup = BeautifulSoup(thepage, "lxml")
+
+ body = soup.body.text
+
+ body = body.replace("\n", " ")
+ body = body.replace("\t", " ")
+ body = body.replace("\r", " ")
+ body = body.replace("\xa0", " ")
+ # body = re.sub(r'[^ws]', '', body)
+
+ return body
+
+
+def theExecs(URL):
+ """Isolate executive names from information."""
+ mytext = getAbout(URL)
+
+ tokens = word_tokenize(mytext)
+
+ thetag = pos_tag(tokens)
+
+ ne_tree = nltk.ne_chunk(thetag)
+
+ for x in ne_tree:
+ if "PERSON" in x:
+ print(x)
+
+ regex_pattern = re.compile(r"[@_'’!#\-$%^&*()<>?/\|}{~:]")
+
+ thereturn = getNames(URL)
+
+ executives = []
+
+ for hy in thereturn:
+
+ # print(hy)
+
+ if ("PERSON" in hy) and (hy[1] not in executives) and (len(hy[1]) < 50):
+ # executives.append(hy[1])
+ # print(hy[1])
+
+ # if not regex_pattern.search(hy[1]) and len(hy[1].split()) > 1 and not difflib.get_close_matches(hy[1], executives):
+ if not regex_pattern.search(hy[1]) and len(hy[1].split()) > 1:
+ person = hy[1].split(" ")
+ if len(person) <= 1:
+ # print(person)
+ executives.append(hy[1])
+ # print(f'{hy[0]} {hy[1]}')
+ # print(executives)
+ return executives
+
+
+@stakeholder_full_blueprint.route("/stakeholder_full", methods=["GET", "POST"])
+def stakeholder_full():
+ """Process form information, instantiate form and render page template."""
+ cust = False
+ custDomainAliases = False
+ custRootDomain = False
+ custExecutives = False
+
+ formExternal = InfoFormExternal()
+
+ if formExternal.validate_on_submit():
+ LOGGER.info("Got to the submit validate")
+ cust = formExternal.cust.data
+ custDomainAliases = formExternal.custDomainAliases.data.split(",")
+ custRootDomain = formExternal.custRootDomain.data.replace(" ", "").split(",")
+ # custRootDomainValue = custRootDomain[0]
+ custExecutives = formExternal.custExecutives.data
+ formExternal.cust.data = ""
+ formExternal.custDomainAliases = ""
+ formExternal.custRootDomain.data = ""
+ formExternal.custExecutives.data = ""
+
+ allExecutives = list(theExecs(custExecutives))
+
+ orgs = set_org_to_report_on(cust)
+
+ if orgs.empty:
+ LOGGER.info("No org found for the given cyhy_id")
+ flash(f"{cust} is not a valid cyhy_id", "warning")
+ return redirect(url_for("stakeholder_full.stakeholder_full"))
+ elif len(orgs) == 1:
+ try:
+ # Add roots and enumerate for subs
+ for i, org in orgs.iterrows():
+ insert_roots(org, custRootDomain)
+ LOGGER.info(
+ "root domains have been successfully added to the database"
+ )
+ roots = query_roots(org["organizations_uid"])
+ for j, root in roots.iterrows():
+ enumerate_and_save_subs(
+ root["root_domain_uid"], root["root_domain"]
+ )
+ LOGGER.info(
+ "subdomains have been successfully added to the database"
+ )
+
+ # Fill the cidrs
+ fill_cidrs(orgs)
+ LOGGER.info("Filled all cidrs")
+
+ # Fill IPs table by enumerating CIDRs (all orgs)
+ # fill_ips_from_cidrs()
+
+ # Connect to subs from IPs table (only new orgs)
+ # connect_subs_from_ips(orgs)
+ # LOGGER.info("Filled and linked all IPs")
+
+ # Connect to IPs from subs table (only new orgs)
+ connect_ips_from_subs(orgs)
+
+ allValidIP = get_cidrs_and_ips(orgs["organizations_uid"].iloc[0])
+
+ setNewCSGOrg(
+ cust,
+ custDomainAliases,
+ custRootDomain,
+ allValidIP,
+ allExecutives,
+ )
+
+ # Run pe_dedupe
+ LOGGER.info("Running dedupe:")
+ dedupe(orgs)
+ LOGGER.info("done")
+ except ValueError as e:
+ LOGGER.error(f"An error occured: {e}")
+ flash(f"An error occured: {e}", "warning")
+ return redirect(url_for("stakeholder_full.stakeholder_full"))
+ else:
+ flash(
+ "multiple orgs were found for the provided cyhy_id, this should not be possible",
+ "danger",
+ )
+
+ return render_template(
+ "home_stakeholder_full.html",
+ formExternal=formExternal,
+ cust=cust,
+ custRootDomain=custRootDomain,
+ custExecutives=custExecutives,
+ custDomainAliases=custDomainAliases,
+ )
+
+
+@stakeholder_full_blueprint.route("/link_IPs", methods=["GET", "POST"])
+def link_IPs():
+ """Run link IPs script on all orgs that are set to report_on."""
+ orgs = get_orgs_df()
+ report_orgs = orgs[orgs["report_on"] is True]
+ connect_subs_from_ips(report_orgs)
+ LOGGER.info("Filled and linked all IPs")
+ return "nothing"
+
+
+@stakeholder_full_blueprint.route("/fill_IPs", methods=["GET", "POST"])
+def fill_IPs():
+ """Run link IPs script on all orgs that are set to report_on."""
+ logging.info("Filling IPS")
+ fill_ips_from_cidrs()
+ logging.info("Done Filling IPS")
+ return "nothing"
diff --git a/src/pe_reports/stakeholder_lite/__init__.py b/src/pe_reports/stakeholder_lite/__init__.py
new file mode 100644
index 00000000..ababb128
--- /dev/null
+++ b/src/pe_reports/stakeholder_lite/__init__.py
@@ -0,0 +1 @@
+"""Init file for module implementation."""
diff --git a/src/pe_reports/stakeholder_lite/forms.py b/src/pe_reports/stakeholder_lite/forms.py
new file mode 100644
index 00000000..26f7a30b
--- /dev/null
+++ b/src/pe_reports/stakeholder_lite/forms.py
@@ -0,0 +1,31 @@
+"""Create the stakeholder data input form."""
+
+# Third-Party Libraries
+from flask_wtf import FlaskForm
+from wtforms import StringField, SubmitField
+from wtforms.validators import DataRequired
+
+
+class InfoFormExternal(FlaskForm):
+ """Create web form to take user input on organization information/details."""
+
+ orgCount = StringField("How many organizations?", validators=[DataRequired()])
+ # TODO: The following form field may be used in a future update. Issue #208
+ # custIP = StringField(
+ # "What is the stakeholder ip/cidr? *comma separate entries",
+ # validators=[DataRequired()],
+ # )
+ # custRootDomain = StringField(
+ # "What is the root domain for this stakeholder lite? " "*comma separate entries"
+ # )
+ # custDomainAliases = StringField(
+ # "What are the organization aliases? " "*comma separate entries"
+ # )
+ # # TODO: The following form field may be used in a future update. Issue #208
+ # # custSubDomain = StringField(
+ # # "What is the sub-domain for this stakeholder?" " *comma separate entries"
+ # # )
+ # custExecutives = StringField(
+ # "Who are the executives for this stakeholder? " "*comma separate entries"
+ # )
+ submit = SubmitField("Submit", render_kw={"onclick": "loading()"})
diff --git a/src/pe_reports/stakeholder_lite/templates/stakeholder_lite_UI/home_stakeholder_lite.html b/src/pe_reports/stakeholder_lite/templates/stakeholder_lite_UI/home_stakeholder_lite.html
new file mode 100644
index 00000000..7dfe7415
--- /dev/null
+++ b/src/pe_reports/stakeholder_lite/templates/stakeholder_lite_UI/home_stakeholder_lite.html
@@ -0,0 +1,68 @@
+{% extends "base.html" %} {% block content %}
+
+
+
+
+
+
+ Instructions
+-
+
- + Add all orgs through the "Add New Stakeholders" Form Button + +
- Verify you have added all the orgs for this run +
- + Fill the ips for all orgs by clicking the "Fill Ips" Button. This will + take a while to run + +
- + Launch the "Link Subs from IPs button. This will take over 11 days to + run so just make sure it is started + +
+
+
+
+
+
+
+
+
+
+
+
+ +
+
+
+
+ {% endblock %}
++
+ +
+
+
+
+
+
+
+ Add New Stakeholder
+
+
+
+
+
+
+
+
+ +
+
+
+
+{% endblock %}
diff --git a/src/pe_reports/stakeholder_lite/views.py b/src/pe_reports/stakeholder_lite/views.py
new file mode 100644
index 00000000..462821e8
--- /dev/null
+++ b/src/pe_reports/stakeholder_lite/views.py
@@ -0,0 +1,88 @@
+"""Classes and associated functions that render the UI app pages."""
+
+# Standard Python Libraries
+from datetime import date
+import logging
+import os
+import time
+
+# Third-Party Libraries
+from flask import Blueprint, redirect, render_template, url_for
+
+# cisagov Libraries
+from adhoc.fill_cidrs_from_cyhy_assets import fill_cidrs
+from adhoc.fill_ips_from_cidrs import fill_ips_from_cidrs
+from adhoc.link_subs_and_ips_from_ips import connect_subs_from_ips
+from adhoc.link_subs_and_ips_from_subs import connect_ips_from_subs
+from adhoc.shodan_dedupe import dedupe
+from pe_reports.data.db_query import get_new_orgs
+from pe_reports.stakeholder_lite.forms import InfoFormExternal
+
+LOGGER = logging.getLogger(__name__)
+
+# CSG credentials
+API_Client_ID = os.getenv("CSGUSER")
+API_Client_secret = os.environ.get("CSGSECRET")
+API_WHOIS = os.environ.get("WHOIS_VAR")
+
+conn = None
+cursor = None
+thedateToday = date.today().strftime("%Y-%m-%d")
+
+
+def getAgenciesByCount(orgCount):
+ """Get all agency names from P&E database."""
+ all_orgs_df = get_new_orgs()
+ LOGGER.info(all_orgs_df)
+ new_orgs_df = all_orgs_df.sample(n=orgCount)
+ # TODO: Update new orgs to report_on
+ # TODO: Maybe add assets_collected column so we don't need to collect cidrs everytime
+ LOGGER.info(new_orgs_df)
+ return new_orgs_df
+
+
+stakeholder_lite_blueprint = Blueprint(
+ "stakeholder_lite", __name__, template_folder="templates/stakeholder_lite_UI"
+)
+
+
+@stakeholder_lite_blueprint.route("/stakeholder_lite", methods=["GET", "POST"])
+def stakeholder_lite():
+ """Process form information, instantiate form and render page template."""
+ orgCount = False
+
+ formExternal = InfoFormExternal()
+
+ if formExternal.validate_on_submit():
+ start_time = time.time()
+
+ LOGGER.info("Got to the submit validate")
+ orgCount = int(formExternal.orgCount.data.upper())
+ orgs = getAgenciesByCount(orgCount)
+
+ # Fill cidrs table (only new orgs)
+ fill_cidrs(orgs)
+ LOGGER.info("Filled all cidrs")
+
+ # Fill IPs table by enumerating CIDRs (all orgs)
+ fill_ips_from_cidrs()
+
+ # Connect to subs from IPs table (only new orgs)
+ connect_subs_from_ips(orgs)
+ LOGGER.info("Filled all IPs")
+
+ # Connect to IPs from subs table (only new orgs)
+ connect_ips_from_subs(orgs)
+
+ # Run pe_dedupe
+ LOGGER.info("Running dedupe:")
+ dedupe(orgs)
+
+ LOGGER.info("--- %s seconds ---" % (time.time() - start_time))
+
+ return redirect(url_for("stakeholder_lite.stakeholder_lite"))
+ return render_template(
+ "home_stakeholder_lite.html",
+ formExternal=formExternal,
+ orgCount=orgCount,
+ )
diff --git a/src/pe_reports/templates/base.html b/src/pe_reports/templates/base.html
index 0bfc19a7..d4377a0d 100644
--- a/src/pe_reports/templates/base.html
+++ b/src/pe_reports/templates/base.html
@@ -16,13 +16,15 @@
href="{{ url_for('static', filename='css/custom.css') }}"
/>
+
-
+
+
+
+
+
+
+
+
+ + +
+
+
+
+
+
+
+ Add external agency
+
+
+
+
+
-
-
+
{% with messages = get_flashed_messages(with_categories=true) %}
{% if messages %} {% for category, message in messages %}
Welcome to P&E Reports
- - -
-
{{ message }}
{% endfor %} {% endif %} {% endwith %} {%block content%} {% endblock%}
+