Example 1 with FlowChangeAction
use of org.apache.nifi.action.FlowChangeAction in project nifi by apache.
the class AccessPolicyAuditor method generateAuditRecord.
/**
* Generates an audit record for the creation of a policy.
*
* @param policy policy
* @param operation operation
* @param actionDetails details
* @return action
*/
public Action generateAuditRecord(AccessPolicy policy, Operation operation, ActionDetails actionDetails) {
FlowChangeAction action = null;
// get the current user
NiFiUser user = NiFiUserUtils.getNiFiUser();
// ensure the user was found
if (user != null) {
// create the policy action for adding this policy
action = new FlowChangeAction();
action.setUserIdentity(user.getIdentity());
action.setOperation(operation);
action.setTimestamp(new Date());
action.setSourceId(policy.getIdentifier());
action.setSourceName(formatPolicyName(policy));
action.setSourceType(Component.AccessPolicy);
if (actionDetails != null) {
action.setActionDetails(actionDetails);
}
}
return action;
}
Also used :
NiFiUser(org.apache.nifi.authorization.user.NiFiUser)
Date(java.util.Date)
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Example 2 with FlowChangeAction
use of org.apache.nifi.action.FlowChangeAction in project nifi by apache.
the class ControllerServiceAuditor method generateAuditRecord.
/**
* Generates an audit record for the creation of a controller service.
*
* @param controllerService service
* @param operation operation
* @param actionDetails details
* @return action
*/
private Action generateAuditRecord(ControllerServiceNode controllerService, Operation operation, ActionDetails actionDetails) {
FlowChangeAction action = null;
// get the current user
NiFiUser user = NiFiUserUtils.getNiFiUser();
// ensure the user was found
if (user != null) {
// create the controller service details
FlowChangeExtensionDetails serviceDetails = new FlowChangeExtensionDetails();
serviceDetails.setType(controllerService.getComponentType());
// create the controller service action for adding this controller service
action = new FlowChangeAction();
action.setUserIdentity(user.getIdentity());
action.setOperation(operation);
action.setTimestamp(new Date());
action.setSourceId(controllerService.getIdentifier());
action.setSourceName(controllerService.getName());
action.setSourceType(Component.ControllerService);
action.setComponentDetails(serviceDetails);
if (actionDetails != null) {
action.setActionDetails(actionDetails);
}
}
return action;
}
Also used :
NiFiUser(org.apache.nifi.authorization.user.NiFiUser)
FlowChangeExtensionDetails(org.apache.nifi.action.component.details.FlowChangeExtensionDetails)
Date(java.util.Date)
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Example 3 with FlowChangeAction
use of org.apache.nifi.action.FlowChangeAction in project nifi by apache.
the class ControllerServiceAuditor method updateControllerServiceAdvice.
/**
* Audits the configuration of a single controller service.
*
* @param proceedingJoinPoint join point
* @param controllerServiceDTO dto
* @param controllerServiceDAO dao
* @return object
* @throws Throwable ex
*/
@Around("within(org.apache.nifi.web.dao.ControllerServiceDAO+) && " + "execution(org.apache.nifi.controller.service.ControllerServiceNode updateControllerService(org.apache.nifi.web.api.dto.ControllerServiceDTO)) && " + "args(controllerServiceDTO) && " + "target(controllerServiceDAO)")
public Object updateControllerServiceAdvice(ProceedingJoinPoint proceedingJoinPoint, ControllerServiceDTO controllerServiceDTO, ControllerServiceDAO controllerServiceDAO) throws Throwable {
// determine the initial values for each property/setting that's changing
ControllerServiceNode controllerService = controllerServiceDAO.getControllerService(controllerServiceDTO.getId());
final Map<String, String> values = extractConfiguredPropertyValues(controllerService, controllerServiceDTO);
final boolean isDisabled = isDisabled(controllerService);
// update the controller service state
final ControllerServiceNode updatedControllerService = (ControllerServiceNode) proceedingJoinPoint.proceed();
// if no exceptions were thrown, add the controller service action...
controllerService = controllerServiceDAO.getControllerService(updatedControllerService.getIdentifier());
// get the current user
NiFiUser user = NiFiUserUtils.getNiFiUser();
// ensure the user was found
if (user != null) {
// determine the updated values
Map<String, String> updatedValues = extractConfiguredPropertyValues(controllerService, controllerServiceDTO);
// create the controller service details
FlowChangeExtensionDetails serviceDetails = new FlowChangeExtensionDetails();
serviceDetails.setType(controllerService.getComponentType());
// create a controller service action
Date actionTimestamp = new Date();
Collection<Action> actions = new ArrayList<>();
// go through each updated value
for (String property : updatedValues.keySet()) {
String newValue = updatedValues.get(property);
String oldValue = values.get(property);
Operation operation = null;
// determine the type of operation
if (oldValue == null || newValue == null || !newValue.equals(oldValue)) {
operation = Operation.Configure;
}
// create a configuration action accordingly
if (operation != null) {
// clear the value if this property is sensitive
final PropertyDescriptor propertyDescriptor = controllerService.getControllerServiceImplementation().getPropertyDescriptor(property);
if (propertyDescriptor != null && propertyDescriptor.isSensitive()) {
if (newValue != null) {
newValue = "********";
}
if (oldValue != null) {
oldValue = "********";
}
} else if (ANNOTATION_DATA.equals(property)) {
if (newValue != null) {
newValue = "<annotation data not shown>";
}
if (oldValue != null) {
oldValue = "<annotation data not shown>";
}
}
final FlowChangeConfigureDetails actionDetails = new FlowChangeConfigureDetails();
actionDetails.setName(property);
actionDetails.setValue(newValue);
actionDetails.setPreviousValue(oldValue);
// create a configuration action
FlowChangeAction configurationAction = new FlowChangeAction();
configurationAction.setUserIdentity(user.getIdentity());
configurationAction.setOperation(operation);
configurationAction.setTimestamp(actionTimestamp);
configurationAction.setSourceId(controllerService.getIdentifier());
configurationAction.setSourceName(controllerService.getName());
configurationAction.setSourceType(Component.ControllerService);
configurationAction.setComponentDetails(serviceDetails);
configurationAction.setActionDetails(actionDetails);
actions.add(configurationAction);
}
}
// determine the new executing state
final boolean updateIsDisabled = isDisabled(updatedControllerService);
// determine if the running state has changed and its not disabled
if (isDisabled != updateIsDisabled) {
// create a controller service action
FlowChangeAction serviceAction = new FlowChangeAction();
serviceAction.setUserIdentity(user.getIdentity());
serviceAction.setTimestamp(new Date());
serviceAction.setSourceId(controllerService.getIdentifier());
serviceAction.setSourceName(controllerService.getName());
serviceAction.setSourceType(Component.ControllerService);
serviceAction.setComponentDetails(serviceDetails);
// set the operation accordingly
if (updateIsDisabled) {
serviceAction.setOperation(Operation.Disable);
} else {
serviceAction.setOperation(Operation.Enable);
}
actions.add(serviceAction);
}
// ensure there are actions to record
if (!actions.isEmpty()) {
// save the actions
saveActions(actions, logger);
}
}
return updatedControllerService;
}
Also used :
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Action(org.apache.nifi.action.Action)
NiFiUser(org.apache.nifi.authorization.user.NiFiUser)
PropertyDescriptor(org.apache.nifi.components.PropertyDescriptor)
ArrayList(java.util.ArrayList)
Operation(org.apache.nifi.action.Operation)
Date(java.util.Date)
ControllerServiceNode(org.apache.nifi.controller.service.ControllerServiceNode)
FlowChangeConfigureDetails(org.apache.nifi.action.details.FlowChangeConfigureDetails)
FlowChangeExtensionDetails(org.apache.nifi.action.component.details.FlowChangeExtensionDetails)
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Around(org.aspectj.lang.annotation.Around)
Example 4 with FlowChangeAction
use of org.apache.nifi.action.FlowChangeAction in project nifi by apache.
the class ProcessGroupAuditor method generateAuditRecord.
/**
* Generates an audit record for the creation of a process group.
*
* @param processGroup group
* @param operation operation
* @param actionDetails details
* @return action
*/
public Action generateAuditRecord(ProcessGroup processGroup, Operation operation, ActionDetails actionDetails) {
FlowChangeAction action = null;
// get the current user
NiFiUser user = NiFiUserUtils.getNiFiUser();
// ensure the user was found
if (user != null) {
// create the process group action for adding this process group
action = new FlowChangeAction();
action.setUserIdentity(user.getIdentity());
action.setOperation(operation);
action.setTimestamp(new Date());
action.setSourceId(processGroup.getIdentifier());
action.setSourceName(processGroup.getName());
action.setSourceType(Component.ProcessGroup);
if (actionDetails != null) {
action.setActionDetails(actionDetails);
}
}
return action;
}
Also used :
NiFiUser(org.apache.nifi.authorization.user.NiFiUser)
Date(java.util.Date)
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Example 5 with FlowChangeAction
use of org.apache.nifi.action.FlowChangeAction in project nifi by apache.
the class ProcessGroupAuditor method saveUpdateAction.
private void saveUpdateAction(final NiFiUser user, final String groupId, final Operation operation) throws Throwable {
ProcessGroupDAO processGroupDAO = getProcessGroupDAO();
ProcessGroup processGroup = processGroupDAO.getProcessGroup(groupId);
// if the user was starting/stopping this process group
FlowChangeAction action = new FlowChangeAction();
action.setUserIdentity(user.getIdentity());
action.setSourceId(processGroup.getIdentifier());
action.setSourceName(processGroup.getName());
action.setSourceType(Component.ProcessGroup);
action.setTimestamp(new Date());
action.setOperation(operation);
// add this action
saveAction(action, logger);
}
Also used :
ProcessGroupDAO(org.apache.nifi.web.dao.ProcessGroupDAO)
ProcessGroup(org.apache.nifi.groups.ProcessGroup)
Date(java.util.Date)
FlowChangeAction(org.apache.nifi.action.FlowChangeAction)
Aggregations
FlowChangeAction (org.apache.nifi.action.FlowChangeAction)39
Date (java.util.Date)34
NiFiUser (org.apache.nifi.authorization.user.NiFiUser)29
Action (org.apache.nifi.action.Action)19
ArrayList (java.util.ArrayList)18
Around (org.aspectj.lang.annotation.Around)15
FlowChangeExtensionDetails (org.apache.nifi.action.component.details.FlowChangeExtensionDetails)13
FlowChangeConfigureDetails (org.apache.nifi.action.details.FlowChangeConfigureDetails)13
Operation (org.apache.nifi.action.Operation)9
ActionDetails (org.apache.nifi.action.details.ActionDetails)7
Component (org.apache.nifi.action.Component)5
FlowChangeRemoteProcessGroupDetails (org.apache.nifi.action.component.details.FlowChangeRemoteProcessGroupDetails)5
PreparedStatement (java.sql.PreparedStatement)3
ResultSet (java.sql.ResultSet)3
SQLException (java.sql.SQLException)3
HashSet (java.util.HashSet)3
ComponentDetails (org.apache.nifi.action.component.details.ComponentDetails)3
FlowChangeConnectDetails (org.apache.nifi.action.details.FlowChangeConnectDetails)3
DataAccessException (org.apache.nifi.admin.dao.DataAccessException)3
PropertyDescriptor (org.apache.nifi.components.PropertyDescriptor)3
