Skip to content

Commit

Permalink
Merge pull request #20 from snyk-labs/feat/mt-support
Browse files Browse the repository at this point in the history 
feat: Multitenant EU and AU support
  • Loading branch information
@EricFernandezSnyk
EricFernandezSnyk authored Sep 10, 2023
2 parents 3e049cd + 5007c65 commit 5c69a5c
Show file tree
Hide file tree
Showing 9 changed files with 293 additions and 124 deletions.
24 changes: 12 additions & 12 deletions poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion pyproject.toml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[tool.poetry]
name = "snyk-tags"
version = "2.1.0"
version = "2.2.0"
description = "CLI tool designed to manage tags and attributes at scale"
authors = ["EricFernandezSnyk <[email protected]>"]
license = "MIT"
Expand Down
2 changes: 1 addition & 1 deletion snyk_tags/__init__.py
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
# snyk_tags/__init__.py

__app_name__ = "snyk_tags"
__version__ = "2.1.0"
__version__ = "2.2.0"

from logging import ERROR
from sre_constants import SUCCESS
Expand Down
40 changes: 26 additions & 14 deletions snyk_tags/attribute.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,11 +20,14 @@


# Reach to the API and generate tokens
def create_client(token: str) -> httpx.Client:
return httpx.Client(
base_url="https://snyk.io/api/v1",
headers={"Authorization": f"token {token}", "Content-Type": "application/json"},
def create_client(token: str, tenant: str) -> httpx.Client:
base_url = (
f"https://api.{tenant}.snyk.io/v1"
if tenant in ["eu", "au"]
else "https://api.snyk.io/v1"
)
headers = {"Authorization": f"token {token}"}
return httpx.Client(base_url=base_url, headers=headers)


# Apply attributes to a specific project
Expand Down Expand Up @@ -66,19 +69,20 @@ def apply_attributes_to_project(
criticality = typer.style(criticality, bold=True, fg=typer.colors.MAGENTA)
environment = typer.style(environment, bold=True, fg=typer.colors.MAGENTA)
lifecycle = typer.style(lifecycle, bold=True, fg=typer.colors.MAGENTA)

if req.status_code == 200:
logging.info(
f"Successfully added {criticality},{environment},{lifecycle} attributes to Project: {project_name}."
)
if req.status_code == 422:
elif req.status_code == 422:
logging.warning(
f"Data {attribute_data} cannot be processed, make sure you have written the correct values (refer to help or Readme) and that they are in low caps. Error message: {req.json()}."
)
if req.status_code == 404:
elif req.status_code == 404:
logging.error(
f"Project not found, likely a READ-ONLY project. Project: {project_name}. Error message: {req.json()}."
)
if req.status_code == 500:
elif req.status_code == 500:
logging.error(
f"Error message: {req.json()}. Please contact [email protected]."
)
Expand All @@ -93,25 +97,33 @@ def apply_attributes_to_projects(
criticality: list,
environment: list,
lifecycle: list,
tenant: str,
) -> None:
with create_client(token=token) as client:
with create_client(token=token, tenant=tenant) as client:
for org_id in org_ids:
client_v3 = SnykClient(token=token)
projects = client_v3.organizations.get(org_id).projects.all()
base_url = (
f"https://api.{tenant}.snyk.io/rest"
if tenant in ["eu", "au"]
else "https://api.snyk.io/rest"
)
client_v3 = SnykClient(
token=token, url=base_url, version="2023-08-31~experimental"
)
projects = client_v3.get(f"/orgs/{org_id}/projects").json()

badname = 0
rightname = 0

for project in projects:
if project.name.startswith(name):
for project in projects["data"]:
if project["attributes"]["name"].startswith(name):
apply_attributes_to_project(
client=client,
org_id=org_id,
project_id=project.id,
project_id=project["id"],
criticality=criticality,
environment=environment,
lifecycle=lifecycle,
project_name=project.name,
project_name=project["attributes"]["name"],
)
rightname = 1
else:
Expand Down
59 changes: 42 additions & 17 deletions snyk_tags/collection.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,10 +24,14 @@


# Reach to the API and generate tokens
def create_client(token: str) -> httpx.Client:
return httpx.Client(
base_url="https://snyk.io/api/v1", headers={"Authorization": f"token {token}"}
def create_client(token: str, tenant: str) -> httpx.Client:
base_url = (
f"https://api.{tenant}.snyk.io/v1"
if tenant in ["eu", "au"]
else "https://api.snyk.io/v1"
)
headers = {"Authorization": f"token {token}"}
return httpx.Client(base_url=base_url, headers=headers)


# Apply tags to a specific project
Expand All @@ -50,11 +54,11 @@ def apply_tag_to_project(

if req.status_code == 200:
logging.info(f"Successfully added {tag_data} tags to Project: {project_name}.")
if req.status_code == 422:
elif req.status_code == 422:
logging.warning(
f"Tag {key}:{tag} is already applied for Project: {project_name}."
)
if req.status_code == 404:
elif req.status_code == 404:
logging.error(
f"Project not found, likely a READ-ONLY project. Project: {project_name}. Error message: {req.json()}."
)
Expand All @@ -63,28 +67,35 @@ def apply_tag_to_project(

# Tagging loop
def apply_tags_to_projects(
token: str, org_ids: list, name: str, tag: str, key: str
token: str, org_ids: list, name: str, tag: str, key: str, tenant: str
) -> None:
with create_client(token=token) as client:
with create_client(token=token, tenant=tenant) as client:
for org_id in org_ids:
client_v3 = SnykClient(token=token)
projects = client_v3.organizations.get(org_id).projects.all()
base_url = (
f"https://api.{tenant}.snyk.io/rest"
if tenant in ["eu", "au"]
else "https://api.snyk.io/rest"
)
client_v3 = SnykClient(
token=token, url=base_url, version="2023-08-31~experimental"
)
projects = client_v3.get(f"/orgs/{org_id}/projects").json()

badname = 0
rightname = 0
for project in projects:
for project in projects["data"]:
if (
project.name == name
or project.name.startswith(name + "(")
or project.name.startswith(name + ":")
project["attributes"]["name"] == name
or project["attributes"]["name"](name + "(")
or project["attributes"]["name"](name + ":")
):
apply_tag_to_project(
client=client,
org_id=org_id,
project_id=project.id,
project_id=project["id"],
tag=tag,
key=key,
project_name=project.name,
project_name=project["attributes"]["name"],
)
rightname = 1
else:
Expand Down Expand Up @@ -124,6 +135,10 @@ def tag(
..., # Default value of comamand
help=f"Name of the target, for example {repoexample}",
),
tenant: str = typer.Option(
"", # Default value of comamand
help=f"Defaults to US tenant, add 'eu' or 'au' to use EU or AU tenant, use --tenant to change tenant.",
),
tagKey: str = typer.Option(
..., help="Tag key: identifier of the tag" # Default value of comamand
),
Expand All @@ -136,7 +151,7 @@ def tag(
bold=True,
fg=typer.colors.MAGENTA,
)
apply_tags_to_projects(snyktkn, [org_id], target, tagValue, tagKey)
apply_tags_to_projects(snyktkn, [org_id], target, tagValue, tagKey, tenant=tenant)


# Collection command to apply the attributes to the collection
Expand Down Expand Up @@ -165,12 +180,22 @@ def attributes(
lifecycle: str = typer.Option(
"", help=f"Lifecycle attribute: {life}" # Default value of comamand
),
tenant: str = typer.Option(
"", # Default value of comamand
help=f"Defaults to US tenant, add 'eu' or 'au' to use EU or AU tenant, use --tenant to change tenant.",
),
):
typer.secho(
f"\nAdding the attributes {criticality}, {environment} and {lifecycle} to projects within {target} for easy filtering via the UI",
bold=True,
fg=typer.colors.MAGENTA,
)
attribute.apply_attributes_to_projects(
snyktkn, [org_id], target, [criticality], [environment], [lifecycle]
snyktkn,
[org_id],
target,
[criticality],
[environment],
[lifecycle],
tenant=tenant,
)
14 changes: 12 additions & 2 deletions snyk_tags/files.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,10 @@ def target_tag(
snyktkn: str = typer.Option(
..., help="Snyk API token with org admin access", envvar=["SNYK_TOKEN"]
),
tenant: str = typer.Option(
"", # Default value of comamand
help=f"Defaults to US tenant, add 'eu' or 'au' to use EU or AU tenant, use --tenant to change tenant.",
),
):
for path in file:
if path.is_file():
Expand All @@ -47,7 +51,7 @@ def target_tag(
bold=True,
)
collection.apply_tags_to_projects(
snyktkn, [org_id], target, value, key
snyktkn, [org_id], target, value, key, tenant
)
openfile.close()
elif ".json" in openfile.name:
Expand All @@ -62,7 +66,7 @@ def target_tag(
bold=True,
)
collection.apply_tags_to_projects(
snyktkn, [org_id], target, value, key
snyktkn, [org_id], target, value, key, tenant
)
openfile.close()
else:
Expand All @@ -84,6 +88,10 @@ def target_attributes(
snyktkn: str = typer.Option(
..., help="Snyk API token with org admin access", envvar=["SNYK_TOKEN"]
),
tenant: str = typer.Option(
"", # Default value of comamand
help=f"Defaults to US tenant, add 'eu' or 'au' to use EU or AU tenant, use --tenant to change tenant.",
),
):
for path in file:
if path.is_file():
Expand All @@ -108,6 +116,7 @@ def target_attributes(
[criticality],
[environment],
[lifecycle],
tenant,
)
openfile.close()
elif ".json" in openfile.name:
Expand All @@ -130,6 +139,7 @@ def target_attributes(
[criticality],
[environment],
[lifecycle],
tenant,
)
openfile.close()
else:
Expand Down
Loading

0 comments on commit 5c69a5c

Please sign in to comment.