ASA 8404 (#218)

src/main/java/com/hcl/appscan/jenkins/plugin/results/CombinedResultsInspector.java

@@ -0,0 +1,80 @@
+package com.hcl.appscan.jenkins.plugin.results;
+
+import com.hcl.appscan.jenkins.plugin.scanners.Scanner;
+import com.hcl.appscan.sdk.CoreConstants;
+import com.hcl.appscan.sdk.results.IResultsProvider;
+
+import java.util.List;
+import java.util.Map;
+
+public class CombinedResultsInspector {
+
+    private List<FailureCondition> m_conditions;
+    private IResultsProvider m_resultsProvider;
+
+    public CombinedResultsInspector(List<FailureCondition> conditions, IResultsProvider resultsProvider) {
+        m_conditions = conditions;
+        m_resultsProvider = resultsProvider;
+    }
+
+    public boolean shouldFail(Map<String,String> properties) {
+        for(FailureCondition condition : m_conditions) {
+            String type = condition.getFailureType();
+            int threshold = condition.getThreshold();
+            if(exceedsThresholdCombined(type, threshold, properties))
+                return true;
+        }
+        return false;
+    }
+
+    private void issuesCountSAST(Map<String,String> properties) {
+        properties.put("totalCountSAST", String.valueOf(m_resultsProvider.getFindingsCount()));
+        properties.put("criticalCountSAST", String.valueOf(m_resultsProvider.getCriticalCount()));
+        properties.put("highCountSAST", String.valueOf(m_resultsProvider.getHighCount()));
+        properties.put("mediumCountSAST", String.valueOf(m_resultsProvider.getMediumCount()));
+        properties.put("lowCountSAST", String.valueOf(m_resultsProvider.getLowCount()));
+    }
+
+    private boolean exceedsThresholdCombined(String type, int threshold, Map<String,String> properties) {
+        String scanType = properties.get(CoreConstants.SCANNER_TYPE);
+        if (scanType.equals(Scanner.STATIC_ANALYZER)) {
+            issuesCountSAST(properties);
+        } else {
+            switch(type.toLowerCase()) {
+                case "total": //$NON-NLS-1$
+                    if(properties.containsKey("totalCountSAST")) {
+                        int totalCountSAST = Integer.parseInt(properties.remove("totalCountSAST"));
+                        return (totalCountSAST+m_resultsProvider.getFindingsCount()) > threshold;
+                    }
+                    return m_resultsProvider.getFindingsCount() > threshold;
+                case "critical": //$NON-NLS-1$
+                    if(properties.containsKey("criticalCountSAST")) {
+                        int criticalCountSAST = Integer.parseInt(properties.remove("criticalCountSAST"));
+                        return (criticalCountSAST+m_resultsProvider.getCriticalCount()) > threshold;
+                    }
+                    return m_resultsProvider.getCriticalCount() > threshold;
+                case "high": //$NON-NLS-1$
+                    if(properties.containsKey("highCountSAST")) {
+                        int highCountSAST = Integer.parseInt(properties.remove("highCountSAST"));
+                        return (highCountSAST+m_resultsProvider.getHighCount()) > threshold;
+                    }
+                    return m_resultsProvider.getHighCount() > threshold;
+                case "medium": //$NON-NLS-1$
+                    if(properties.containsKey("mediumCountSAST")) {
+                        int mediumCountSAST = Integer.parseInt(properties.remove("mediumCountSAST"));
+                        return (mediumCountSAST+m_resultsProvider.getMediumCount()) > threshold;
+                    }
+                    return m_resultsProvider.getMediumCount() > threshold;
+                case "low": //$NON-NLS-1$
+                    if(properties.containsKey("lowCountSAST")) {
+                        int lowCountSAST = Integer.parseInt(properties.remove("lowCountSAST"));
+                        return (lowCountSAST+m_resultsProvider.getLowCount()) > threshold;
+                    }
+                    return m_resultsProvider.getLowCount() > threshold;
+                default:
+                    return false;
+            }
+        }
+        return false;
+    }
+}

src/main/java/com/hcl/appscan/jenkins/plugin/results/ResultsInspector.java

@@ -10,14 +10,13 @@
 
 import com.hcl.appscan.sdk.results.IResultsProvider;
 
-public class ResultsInspector {
+public class ResultsInspector extends CombinedResultsInspector {
 
 	private List<FailureCondition> m_conditions;
 	private IResultsProvider m_resultsProvider;
 
 	public ResultsInspector(List<FailureCondition> conditions, IResultsProvider resultsProvider) {
-		m_conditions = conditions;
-		m_resultsProvider = resultsProvider;
+		super(conditions, resultsProvider);
 	}
 
 

src/main/java/com/hcl/appscan/jenkins/plugin/scanners/DynamicAnalyzer.java

@@ -12,6 +12,8 @@
 
 import com.hcl.appscan.jenkins.plugin.auth.ASoCCredentials;
 import com.hcl.appscan.jenkins.plugin.builders.AppScanBuildStep;
+import com.hcl.appscan.sdk.CoreConstants;
+import com.hcl.appscan.sdk.logging.IProgress;
 import org.jenkinsci.Symbol;
 import org.kohsuke.stapler.AncestorInPath;
 import org.kohsuke.stapler.DataBoundConstructor;
@@ -196,8 +198,18 @@ public String upgradeLoginScenario(){
 		}
 	}
 
+	public void validations(IAuthenticationProvider authProvider, Map<String, String> properties, IProgress progress) throws AbortException {
+		if (((JenkinsAuthenticationProvider) authProvider).isAppScan360()) {
+			if (properties.containsKey(Scanner.PRESENCE_ID)) {
+				throw new AbortException(Messages.error_presence_AppScan360());
+			}
+		} else if (!properties.containsKey(Scanner.PRESENCE_ID) && !ServiceUtil.isValidUrl(properties.get(TARGET), authProvider, authProvider.getProxy())) {
+			throw new AbortException(Messages.error_url_validation(properties.get(TARGET)));
+		}
+	}
+
 	@Override
-	public Map<String, String> getProperties(VariableResolver<String> resolver) throws hudson.AbortException {
+	public Map<String, String> getProperties(VariableResolver<String> resolver) throws AbortException {
 		Map<String, String> properties = new HashMap<String, String>();
 		if (resolver == null) {
 			properties.put(TARGET, getTarget());
@@ -327,9 +339,9 @@ public FormValidation doCheckScanFile(@QueryParameter String scanFile) {
 
 		public FormValidation doCheckTarget(@QueryParameter String target,@RelativePath("..") @QueryParameter String credentials, @AncestorInPath ItemGroup<?> context, @QueryParameter String presenceId) {
 			JenkinsAuthenticationProvider authProvider = new JenkinsAuthenticationProvider(credentials,context);
-            		if(presenceId != null && presenceId.equals(EMPTY) && !target.equals(EMPTY) && !ServiceUtil.isValidUrl(target, authProvider, authProvider.getProxy())) {
-                		return FormValidation.error(Messages.error_url_validation_ui());
-            		}
+			if(!authProvider.isAppScan360() && presenceId != null && presenceId.equals(EMPTY) && !target.equals(EMPTY) && !ServiceUtil.isValidUrl(target, authProvider, authProvider.getProxy())) {
+				return FormValidation.error(Messages.error_url_validation_ui());
+			}
 			return FormValidation.validateRequired(target);
 		}
 

src/main/java/com/hcl/appscan/jenkins/plugin/scanners/Scanner.java

@@ -6,6 +6,8 @@
 
 package com.hcl.appscan.jenkins.plugin.scanners;
 
+import com.hcl.appscan.sdk.auth.IAuthenticationProvider;
+import com.hcl.appscan.sdk.logging.IProgress;
 import hudson.AbortException;
 import hudson.Util;
 import hudson.model.AbstractDescribableImpl;
@@ -38,7 +40,9 @@ public String getTarget() {
 	}
 
 	public abstract Map<String, String> getProperties(VariableResolver<String> resolver) throws AbortException;
-
+
+	public abstract void validations(IAuthenticationProvider authProvider, Map<String, String> properties, IProgress progress) throws AbortException;
+
 	public abstract String getType();
 
 	protected String resolvePath(String path, VariableResolver<String> resolver) {

src/main/java/com/hcl/appscan/jenkins/plugin/scanners/SoftwareCompositionAnalyzer.java

@@ -7,6 +7,9 @@
 
 import com.hcl.appscan.jenkins.plugin.Messages;
 import com.hcl.appscan.jenkins.plugin.auth.JenkinsAuthenticationProvider;
+import com.hcl.appscan.sdk.auth.IAuthenticationProvider;
+import com.hcl.appscan.sdk.logging.IProgress;
+import hudson.AbortException;
 import hudson.Extension;
 import hudson.RelativePath;
 import hudson.model.ItemGroup;
@@ -37,7 +40,13 @@ public String getType() {
         return SOFTWARE_COMPOSITION_ANALYZER;
     }
 
-    public Map<String, String> getProperties(VariableResolver<String> resolver) {
+    public void validations(IAuthenticationProvider authProvider, Map<String, String> properties, IProgress progress) throws AbortException {
+        if (((JenkinsAuthenticationProvider) authProvider).isAppScan360()) {
+            throw new AbortException(Messages.error_sca_AppScan360());
+        }
+    }
+
+    public Map<String, String> getProperties(VariableResolver<String> resolver) throws AbortException {
         Map<String, String> properties = new HashMap<String, String>();
         properties.put(TARGET, resolver == null ? getTarget() : resolvePath(getTarget(), resolver));
         return properties;