forked from p34709852/monkey
Island, Agent: Remove per-agent configuration from agent document
Each agent doesn't need to have a separate configuration since the configuration is global and unique agent parameters are not and should not be stored in configuration
This commit is contained in:
parent
1b2ca74b9f
commit
35b4fae326
|
@ -41,7 +41,6 @@ class ControlClient(object):
|
||||||
"ip_addresses": local_ips(),
|
"ip_addresses": local_ips(),
|
||||||
"networks": get_host_subnets(),
|
"networks": get_host_subnets(),
|
||||||
"description": " ".join(platform.uname()),
|
"description": " ".join(platform.uname()),
|
||||||
"config": WormConfiguration.as_dict(),
|
|
||||||
"parent": parent,
|
"parent": parent,
|
||||||
"launch_time": agent_process.get_start_time(),
|
"launch_time": agent_process.get_start_time(),
|
||||||
}
|
}
|
||||||
|
@ -50,7 +49,7 @@ class ControlClient(object):
|
||||||
monkey["tunnel"] = ControlClient.proxies.get("https")
|
monkey["tunnel"] = ControlClient.proxies.get("https")
|
||||||
|
|
||||||
requests.post( # noqa: DUO123
|
requests.post( # noqa: DUO123
|
||||||
"https://%s/api/agent" % (WormConfiguration.current_server,),
|
f"https://{WormConfiguration.current_server}/api/agent",
|
||||||
data=json.dumps(monkey),
|
data=json.dumps(monkey),
|
||||||
headers={"content-type": "application/json"},
|
headers={"content-type": "application/json"},
|
||||||
verify=False,
|
verify=False,
|
||||||
|
@ -173,7 +172,7 @@ class ControlClient(object):
|
||||||
return
|
return
|
||||||
try:
|
try:
|
||||||
reply = requests.get( # noqa: DUO123
|
reply = requests.get( # noqa: DUO123
|
||||||
"https://%s/api/agent/%s/legacy" % (WormConfiguration.current_server, GUID),
|
f"https://{WormConfiguration.current_server}/api/agent/",
|
||||||
verify=False,
|
verify=False,
|
||||||
proxies=ControlClient.proxies,
|
proxies=ControlClient.proxies,
|
||||||
timeout=MEDIUM_REQUEST_TIMEOUT,
|
timeout=MEDIUM_REQUEST_TIMEOUT,
|
||||||
|
@ -210,7 +209,7 @@ class ControlClient(object):
|
||||||
return
|
return
|
||||||
try:
|
try:
|
||||||
requests.patch( # noqa: DUO123
|
requests.patch( # noqa: DUO123
|
||||||
"https://%s/api/agent/%s" % (WormConfiguration.current_server, GUID),
|
f"https://{WormConfiguration.current_server}/api/agent/{GUID}",
|
||||||
data=json.dumps({"config_error": True}),
|
data=json.dumps({"config_error": True}),
|
||||||
headers={"content-type": "application/json"},
|
headers={"content-type": "application/json"},
|
||||||
verify=False,
|
verify=False,
|
||||||
|
|
|
@ -49,7 +49,7 @@ class ControlChannel(IControlChannel):
|
||||||
def get_config(self) -> dict:
|
def get_config(self) -> dict:
|
||||||
try:
|
try:
|
||||||
response = requests.get( # noqa: DUO123
|
response = requests.get( # noqa: DUO123
|
||||||
f"https://{self._control_channel_server}/api/agent/{self._agent_id}",
|
f"https://{self._control_channel_server}/api/agent",
|
||||||
verify=False,
|
verify=False,
|
||||||
proxies=ControlClient.proxies,
|
proxies=ControlClient.proxies,
|
||||||
timeout=SHORT_REQUEST_TIMEOUT,
|
timeout=SHORT_REQUEST_TIMEOUT,
|
||||||
|
|
|
@ -37,7 +37,6 @@ class Monkey(Document):
|
||||||
|
|
||||||
# SCHEMA
|
# SCHEMA
|
||||||
guid = StringField(required=True)
|
guid = StringField(required=True)
|
||||||
config = EmbeddedDocumentField("Config")
|
|
||||||
should_stop = BooleanField()
|
should_stop = BooleanField()
|
||||||
dead = BooleanField()
|
dead = BooleanField()
|
||||||
description = StringField()
|
description = StringField()
|
||||||
|
|
|
@ -21,28 +21,11 @@ class Monkey(AbstractResource):
|
||||||
urls = [
|
urls = [
|
||||||
"/api/agent",
|
"/api/agent",
|
||||||
"/api/agent/<string:guid>",
|
"/api/agent/<string:guid>",
|
||||||
# API Spec: Resource names should alternate with IDs (/api/agents/123/config-format/xyz)
|
|
||||||
"/api/agent/<string:guid>/<string:config_format>",
|
|
||||||
]
|
]
|
||||||
|
|
||||||
# Used by monkey. can't secure.
|
# Used by monkey. can't secure.
|
||||||
def get(self, guid=None, config_format=None, **kw):
|
def get(self):
|
||||||
if not guid:
|
return {"config": ConfigService.format_flat_config_for_agent()}
|
||||||
guid = request.args.get("guid")
|
|
||||||
|
|
||||||
if guid:
|
|
||||||
monkey_json = mongo.db.monkey.find_one_or_404({"guid": guid})
|
|
||||||
# TODO: When the "legacy" format is no longer needed, update this logic and remove the
|
|
||||||
# "/api/agent/<string:guid>/<string:config_format>" route. Also considering not
|
|
||||||
# flattening the config in the first place.
|
|
||||||
if config_format == "legacy":
|
|
||||||
ConfigService.decrypt_flat_config(monkey_json["config"])
|
|
||||||
else:
|
|
||||||
ConfigService.format_flat_config_for_agent(monkey_json["config"])
|
|
||||||
|
|
||||||
return monkey_json
|
|
||||||
|
|
||||||
return {}
|
|
||||||
|
|
||||||
# Used by monkey. can't secure.
|
# Used by monkey. can't secure.
|
||||||
@TestTelemStore.store_exported_telem
|
@TestTelemStore.store_exported_telem
|
||||||
|
@ -54,8 +37,6 @@ class Monkey(AbstractResource):
|
||||||
monkey_json = json.loads(request.data)
|
monkey_json = json.loads(request.data)
|
||||||
update = {"$set": {"modifytime": datetime.now()}}
|
update = {"$set": {"modifytime": datetime.now()}}
|
||||||
monkey = NodeService.get_monkey_by_guid(guid)
|
monkey = NodeService.get_monkey_by_guid(guid)
|
||||||
if "config" in monkey_json:
|
|
||||||
update["$set"]["config"] = monkey_json["config"]
|
|
||||||
if "config_error" in monkey_json:
|
if "config_error" in monkey_json:
|
||||||
update["$set"]["config_error"] = monkey_json["config_error"]
|
update["$set"]["config_error"] = monkey_json["config_error"]
|
||||||
|
|
||||||
|
@ -89,11 +70,6 @@ class Monkey(AbstractResource):
|
||||||
# if new monkey telem, change config according to "new monkeys" config.
|
# if new monkey telem, change config according to "new monkeys" config.
|
||||||
db_monkey = mongo.db.monkey.find_one({"guid": monkey_json["guid"]})
|
db_monkey = mongo.db.monkey.find_one({"guid": monkey_json["guid"]})
|
||||||
|
|
||||||
# Update monkey configuration
|
|
||||||
new_config = ConfigService.get_flat_config(False, False)
|
|
||||||
monkey_json["config"] = monkey_json.get("config", {})
|
|
||||||
monkey_json["config"].update(new_config)
|
|
||||||
|
|
||||||
# try to find new monkey parent
|
# try to find new monkey parent
|
||||||
parent = monkey_json.get("parent")
|
parent = monkey_json.get("parent")
|
||||||
parent_to_add = (monkey_json.get("guid"), None) # default values in case of manual run
|
parent_to_add = (monkey_json.get("guid"), None) # default values in case of manual run
|
||||||
|
|
|
@ -427,11 +427,13 @@ class ConfigService:
|
||||||
}
|
}
|
||||||
|
|
||||||
@staticmethod
|
@staticmethod
|
||||||
def format_flat_config_for_agent(config: Dict):
|
def format_flat_config_for_agent():
|
||||||
|
config = ConfigService.get_flat_config()
|
||||||
ConfigService._remove_credentials_from_flat_config(config)
|
ConfigService._remove_credentials_from_flat_config(config)
|
||||||
ConfigService._format_payloads_from_flat_config(config)
|
ConfigService._format_payloads_from_flat_config(config)
|
||||||
ConfigService._format_pbas_from_flat_config(config)
|
ConfigService._format_pbas_from_flat_config(config)
|
||||||
ConfigService._format_propagation_from_flat_config(config)
|
ConfigService._format_propagation_from_flat_config(config)
|
||||||
|
return config
|
||||||
|
|
||||||
@staticmethod
|
@staticmethod
|
||||||
def _remove_credentials_from_flat_config(config: Dict):
|
def _remove_credentials_from_flat_config(config: Dict):
|
||||||
|
|
Loading…
Reference in New Issue