package clipapi import ( "context" "fmt" "io" "time" "github.com/fatih/color" log "github.com/sirupsen/logrus" "github.com/spf13/cobra" "gopkg.in/tomb.v2" "github.com/crowdsecurity/crowdsec/cmd/crowdsec-cli/args" "github.com/crowdsecurity/crowdsec/cmd/crowdsec-cli/require" "github.com/crowdsecurity/crowdsec/pkg/apiserver" "github.com/crowdsecurity/crowdsec/pkg/csconfig" "github.com/crowdsecurity/crowdsec/pkg/database" ) type configGetter = func() *csconfig.Config type cliPapi struct { cfg configGetter } func New(cfg configGetter) *cliPapi { return &cliPapi{ cfg: cfg, } } func (cli *cliPapi) NewCommand() *cobra.Command { cmd := &cobra.Command{ Use: "papi [action]", Short: "Manage interaction with Polling API (PAPI)", DisableAutoGenTag: true, PersistentPreRunE: func(_ *cobra.Command, _ []string) error { cfg := cli.cfg() if err := require.LAPI(cfg); err != nil { return err } if err := require.CAPI(cfg); err != nil { return err } return require.PAPI(cfg) }, } cmd.AddCommand(cli.newStatusCmd()) cmd.AddCommand(cli.newSyncCmd()) return cmd } func (cli *cliPapi) Status(ctx context.Context, out io.Writer, db *database.Client) error { cfg := cli.cfg() apic, err := apiserver.NewAPIC(ctx, cfg.API.Server.OnlineClient, db, cfg.API.Server.ConsoleConfig, cfg.API.Server.CapiWhitelists) if err != nil { return fmt.Errorf("unable to initialize API client: %w", err) } papi, err := apiserver.NewPAPI(apic, db, cfg.API.Server.ConsoleConfig, log.GetLevel()) if err != nil { return fmt.Errorf("unable to initialize PAPI client: %w", err) } perms, err := papi.GetPermissions(ctx) if err != nil { return fmt.Errorf("unable to get PAPI permissions: %w", err) } lastTimestampStr, err := db.GetConfigItem(ctx, apiserver.PapiPullKey) if err != nil { lastTimestampStr = "never" } // both can and did happen if lastTimestampStr == "" || lastTimestampStr == "0001-01-01T00:00:00Z" { lastTimestampStr = "never" } fmt.Fprint(out, "You can successfully interact with Polling API (PAPI)\n") fmt.Fprintf(out, "Console plan: %s\n", perms.Plan) fmt.Fprintf(out, "Last order received: %s\n", lastTimestampStr) fmt.Fprint(out, "PAPI subscriptions:\n") for _, sub := range perms.Categories { fmt.Fprintf(out, " - %s\n", sub) } return nil } func (cli *cliPapi) newStatusCmd() *cobra.Command { cmd := &cobra.Command{ Use: "status", Short: "Get status of the Polling API", Args: args.NoArgs, DisableAutoGenTag: true, RunE: func(cmd *cobra.Command, _ []string) error { cfg := cli.cfg() ctx := cmd.Context() db, err := require.DBClient(ctx, cfg.DbConfig) if err != nil { return err } return cli.Status(ctx, color.Output, db) }, } return cmd } func (cli *cliPapi) sync(ctx context.Context, out io.Writer, db *database.Client) error { cfg := cli.cfg() t := tomb.Tomb{} apic, err := apiserver.NewAPIC(ctx, cfg.API.Server.OnlineClient, db, cfg.API.Server.ConsoleConfig, cfg.API.Server.CapiWhitelists) if err != nil { return fmt.Errorf("unable to initialize API client: %w", err) } t.Go(func() error { return apic.Push(ctx) }) papi, err := apiserver.NewPAPI(apic, db, cfg.API.Server.ConsoleConfig, log.GetLevel()) if err != nil { return fmt.Errorf("unable to initialize PAPI client: %w", err) } t.Go(func() error { return papi.SyncDecisions(ctx) }) err = papi.PullOnce(ctx, time.Time{}, true) if err != nil { return fmt.Errorf("unable to sync decisions: %w", err) } log.Infof("Sending acknowledgements to CAPI") apic.Shutdown() papi.Shutdown() t.Wait() time.Sleep(5 * time.Second) // FIXME: the push done by apic.Push is run inside a sub goroutine, sleep to make sure it's done return nil } func (cli *cliPapi) newSyncCmd() *cobra.Command { cmd := &cobra.Command{ Use: "sync", Short: "Sync with the Polling API, pulling all non-expired orders for the instance", Args: args.NoArgs, DisableAutoGenTag: true, RunE: func(cmd *cobra.Command, _ []string) error { cfg := cli.cfg() ctx := cmd.Context() db, err := require.DBClient(ctx, cfg.DbConfig) if err != nil { return err } return cli.sync(ctx, color.Output, db) }, } return cmd }