Add Question ooi model and create the first bit that generates a question #1407
Conversation
… and answer field Signed-off-by: Donny Peeters <[email protected]>
…to include in ooi_detail.html
Submit json data from form in frontend for json schema form. Style update with css-based indentation. JS fixes: no identifier, remove input names to ignore them on submit and add "less" button.
…n right normalizer
Donnype
changed the title
| with (Path(__file__).parent / "question_schema.json").open() as f: | ||
| schema = json.load(f) |
There was a problem hiding this comment.
I was wondering. If this schema is not expected to change during a worker's lifetime or (statically) shipped with a bit, then you might want to do this reading outside of the function. The performance gain is obviously not significant, but it would make more sense if this schema variable is static.
There was a problem hiding this comment.
It is quite nice to get the feedback of the changes without restarting Octopoes though
There was a problem hiding this comment.
Yes agreed, but it's unlikely that this file be altered during development or production time right? And if it's changed during development, restarting shouldn't take that long.
There was a problem hiding this comment.
Loading the file also doesn't take too long of course. And if there are issues with the file, perhaps we prefer a bit runtime error instead of an import-time error?
There was a problem hiding this comment.
I prefer not to do unnecessary IO calls for things that never change. Changing bit (or plugins in general) code or input should always yield a newer version of that plugin.
Runtime errors are worse because they're much harder to catch. In case of the import-time error, that would mean someone developing an invalid plugin build which of course will be caught during a review.
There was a problem hiding this comment.
Shoudn't we just put the schema in the questionOOI? As this would allow us to also support other questions in our next iterations of this functionality.
There was a problem hiding this comment.
That QuestionOOI would then in turn need to be created by another bit which we can run on each 'network' being created. The flow would then be:
Bit: For each network, there must be a Ports configOOI, of not, create a QuestionOOI with the jsonschema from this PR. The Form is rendered using the schema value from this QuestionOOI.
The input on this form is then ingested by a normlizer specific for this schema, and creates the configOOI, which then also signals the question to be removed.
Bit: The config is used by the OpenPorts bit(s) to see if there are any issues.
There was a problem hiding this comment.
Shoudn't we just put the schema in the questionOOI? As this would allow us to also support other questions in our next iterations of this functionality.
@underdarknl We are putting the schema in the QuestionOOI? We can just add new bits that parse different schema files or parse other schema files in this bit if we want to?
That QuestionOOI would then in turn need to be created by another bit which we can run on each 'network' being created. The flow would then be: Bit: For each network, there must be a Ports configOOI, of not, create a QuestionOOI with the jsonschema from this PR. The Form is rendered using the schema value from this QuestionOOI. The input on this form is then ingested by a normlizer specific for this schema, and creates the configOOI, which then also signals the question to be removed.
Bit: The config is used by the OpenPorts bit(s) to see if there are any issues.
I am not sure I understand. The bits don't do checks such as "if X does not exist yet", instead they are mostly idempotent which makes sense as we can manually retrigger them in the interface as well. The current QuestionOOI natural key setup means that is not an issue.
The flow you describe is also visualized in the issue and this flow is implemented in the subsequent PRs, the only difference being that I made the normalizer generic for now. Or do you see differences?
There was a problem hiding this comment.
@ammar92 If we load all schema's for bits, one can also argue that we are leaving a memory footprint for a bit that runs only when we add a network (=almost never)?
There was a problem hiding this comment.
The idea of loading schema's for future use is not relevant if you ask me, Its like asking us if we want to pre-load the values of other OOI's too.
…-kat-coordination into feature/add-question-ooi-model
Checklist for QA:
What works:
|
* main: (95 commits) Translations for release 1.11 - EN -> NL, PAP (#1439) Add Question ooi model and create the first bit that generates a question (#1407) make port classification configurable (#1418) KATalogus API filtering and pagination (#1405) Fix robot test (#1420) Use the correct clearance level variable in organization member list template (#1427) Fix translation in Debian package (#1432) Reschedule tasks when no results in bytes are found after grace period (#1410) Don't scan hostname nmap in nmap boefje (#1415) Add and use our own CVE API (#1383) Add `task_id` as a query parameter to the `GET /origins` endpoint (#1414) Remove member group checks and check for permission instead (#1275) Bump cryptography from 41.0.0 to 41.0.2 in /boefjes/boefjes/plugins/kat_ssl_certificates (#1396) Bump cryptography from 41.0.1 to 41.0.2 in /bytes (#1397) Build the Debian build image on the main branch (#1387) Add explicit `black` config to all modules (#1395) Fix <no title> in the user guide docs (#1391) Add configurable octpoes request timeout (#1382) Remove hardcoded clearance level in member list for superusers (#1390) Add Debian build depends for CVE API package (#1384) ...
Changes
Add Question ooi model and create the first bit that generates a question.
Issue link
(Partially) closes #288
Proof
Code Checklist
Communication
.envchanges files if required and changed the.env-distaccordingly.Checklist for code reviewers:
Copy-paste the checklist from the docs/source/templates folder into your comment.
Checklist for QA:
Copy-paste the checklist from the docs/source/templates folder into your comment.