QueueSenderImpl.java

////////////////////////////////////////////////////////////////////////
//
//     Copyright (c) 2009-2013 Denim Group, Ltd.
//
//     The contents of this file are subject to the Mozilla Public License
//     Version 2.0 (the "License"); you may not use this file except in
//     compliance with the License. You may obtain a copy of the License at
//     http://www.mozilla.org/MPL/
//
//     Software distributed under the License is distributed on an "AS IS"
//     basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
//     License for the specific language governing rights and limitations
//     under the License.
//
//     The Original Code is ThreadFix.
//
//     The Initial Developer of the Original Code is Denim Group, Ltd.
//     Portions created by Denim Group, Ltd. are Copyright (C)
//     Denim Group, Ltd. All Rights Reserved.
//
//     Contributor(s): Denim Group, Ltd.
//
////////////////////////////////////////////////////////////////////////
package com.denimgroup.threadfix.service.queue;

import java.util.Calendar;
import java.util.List;

import javax.jms.JMSException;
import javax.jms.MapMessage;

import org.apache.activemq.command.ActiveMQMapMessage;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.jms.core.JmsTemplate;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

import com.denimgroup.threadfix.data.entities.ApplicationChannel;
import com.denimgroup.threadfix.data.entities.RemoteProviderType;
import com.denimgroup.threadfix.service.JobStatusService;
import com.denimgroup.threadfix.service.SanitizedLogger;

/**
 * @author bbeverly
 * 
 */
@Service
@Transactional
public class QueueSenderImpl implements QueueSender {
	protected final SanitizedLogger log = new SanitizedLogger(QueueSenderImpl.class);

	private JmsTemplate jmsTemplate = null;
	private JobStatusService jobStatusService = null;
	
	
	String jmsErrorString = "The JMS system encountered an error that prevented the message from being correctly created.";

	/**
	 * @param jmsTemplate
	 * @param jobStatusService
	 */
	@Autowired
	public QueueSenderImpl(JmsTemplate jmsTemplate, JobStatusService jobStatusService) {
		this.jmsTemplate = jmsTemplate;
		this.jobStatusService = jobStatusService;
	}

	/*
	 * (non-Javadoc)
	 * 
	 * @see
	 * com.denimgroup.threadfix.service.queue.QueueSender#startDefectTrackerSync
	 * ()
	 */
	@Override
	public void startDefectTrackerSync() {
		send(QueueConstants.DEFECT_TRACKER_VULN_UPDATE_TYPE);
	}

	/*
	 * (non-Javadoc)
	 * 
	 * @see
	 * com.denimgroup.threadfix.service.queue.QueueSender#startImportScans()
	 */
	@Override
	public void startImportScans() {
		send(QueueConstants.IMPORT_SCANS_REQUEST);
	}

	/*
	 * (non-Javadoc)
	 * 
	 * @see
	 * com.denimgroup.threadfix.service.queue.QueueSender#addScanToQueue(java
	 * .lang.String, java.lang.Integer)
	 */
	@Override
	public void addScanToQueue(String fileName, Integer channelId, Integer orgId, Integer appId,
			Calendar calendar, ApplicationChannel applicationChannel) {

		String userName = SecurityContextHolder.getContext().getAuthentication().getName();
		
		log.info("User " + userName + " is adding a scan to the queue with the file name " + fileName + ".");
		
		MapMessage scanMap = new ActiveMQMapMessage();
		try {
			scanMap.setString("userName", userName);
			scanMap.setInt("channelId", channelId);
			scanMap.setString("fileName", fileName);
			scanMap.setString("type", QueueConstants.NORMAL_SCAN_TYPE);
			scanMap.setString("urlPath", "/organizations/" + orgId
					+ "/applications/" + appId);
			scanMap.setString("urlText", "Go to Application");
		} catch (JMSException e) {
			log.error(jmsErrorString);
			e.printStackTrace();
		}

		sendMap(scanMap, calendar, applicationChannel);
	}

	/*
	 * (non-Javadoc)
	 * 
	 * @see
	 * com.denimgroup.threadfix.service.queue.QueueSender#addDefectTrackerVulnUpdate
	 * (java.lang.Integer )
	 */
	@Override
	public void addDefectTrackerVulnUpdate(Integer orgId, Integer appId) {
		
		String userName = SecurityContextHolder.getContext().getAuthentication().getName();
		
		log.info("User " + userName + " is adding a defect tracker update for application with ID " + appId + ".");

		if (appId == null)
			return;

		MapMessage defectTrackerVulnMap = new ActiveMQMapMessage();

		try {
			defectTrackerVulnMap.setInt("appId", appId);
			defectTrackerVulnMap.setString("type", QueueConstants.DEFECT_TRACKER_VULN_UPDATE_TYPE);
			defectTrackerVulnMap.setString("urlPath",
					"/organizations/" + orgId + "/applications/" + appId);
			defectTrackerVulnMap.setString("urlText", "Go to Application");
		} catch (JMSException e) {
			log.error(jmsErrorString);
			e.printStackTrace();
		}

		sendMap(defectTrackerVulnMap);
	}

	/*
	 * (non-Javadoc)
	 * 
	 * @see
	 * com.denimgroup.threadfix.service.queue.QueueSender#addSubmitDefect(java
	 * .lang.String, java.lang.String, java.lang.String)
	 */
	@Override
	public void addSubmitDefect(List<Integer> vulnerabilityIds, String summary, 
			String preamble, String component, String version, String severity, 
			String priority, String status, Integer orgId, Integer applicationId) {
		
		String userName = SecurityContextHolder.getContext().getAuthentication().getName();
		
		log.info("User " + userName + " is adding a defect submission to the queue for " + vulnerabilityIds.size() + " vulnerabilities from Application with ID " + applicationId + ".");
		
		MapMessage submitDefectMap = new ActiveMQMapMessage();

		try {
			submitDefectMap.setObject("vulnerabilityIds", vulnerabilityIds);
			submitDefectMap.setString("summary", summary);
			submitDefectMap.setString("preamble", preamble);
			submitDefectMap.setString("component", component);
			submitDefectMap.setString("version", version);
			submitDefectMap.setString("severity", severity);
			submitDefectMap.setString("priority", priority);
			submitDefectMap.setString("status", status);
			submitDefectMap.setString("type", QueueConstants.SUBMIT_DEFECT_TYPE);
			submitDefectMap.setString("urlPath", "/organizations/"
					+ orgId + "/applications/" + applicationId + "/defects");
			submitDefectMap.setString("urlText", "Submit more defects");
		} catch (JMSException e) {
			log.error(jmsErrorString);
			e.printStackTrace();
		}

		sendMap(submitDefectMap);
	}
	
	public void addRemoteProviderImport(RemoteProviderType remoteProviderType) {
		String userName = SecurityContextHolder.getContext().getAuthentication().getName();
		
		log.info("User " + userName + " is adding a remote provider import to the queue for " + 
				remoteProviderType.getName() + ".");
		
		MapMessage remoteProviderImportMap = new ActiveMQMapMessage();

		try {
			remoteProviderImportMap.setObject("remoteProviderTypeId", remoteProviderType.getId());
			remoteProviderImportMap.setString("type", QueueConstants.IMPORT_REMOTE_PROVIDER_SCANS_REQUEST);
		} catch (JMSException e) {
			log.error(jmsErrorString);
			e.printStackTrace();
		}

		sendMap(remoteProviderImportMap);
	}

	private void send(String message) {
		jmsTemplate.convertAndSend("requestQueue", message);
	}

	private void sendMap(MapMessage map) {
		sendMap(map, null, null);
	}
	
	private void sendMap(MapMessage map, Calendar calendar, ApplicationChannel applicationChannel) {
		try {
			if (map.getString("type") != null) {
				Integer jobStatusId = jobStatusService.createNewJobStatus(map.getString("type"),
						"Sent to Queue", map.getString("urlPath"), map.getString("urlText"), 
						calendar, applicationChannel);
				map.setInt("jobStatusId", jobStatusId);
				jmsTemplate.convertAndSend("requestQueue", map);
			}
		} catch (JMSException e) {
			log.error(jmsErrorString);
			e.printStackTrace();
		}
	}
}