def defect_finding_review(request, fid):
finding = get_object_or_404(Finding, id=fid)
# in order to close a finding, we need to capture why it was closed
# we can do this with a Note
if request.method == 'POST':
form = DefectFindingForm(request.POST)
if form.is_valid():
now = datetime.now(tz=localtz)
new_note = form.save(commit=False)
new_note.author = request.user
new_note.date = now
new_note.save()
finding.notes.add(new_note)
finding.under_defect_review = False
defect_choice = form.cleaned_data['defect_choice']
if defect_choice == "Close Finding":
finding.active = False
finding.mitigated = now
finding.mitigated_by = request.user
finding.last_reviewed = finding.mitigated
finding.last_reviewed_by = request.user
finding.endpoints.clear()
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
#If the issue id is closed jira will return Reopen Issue
resolution_id = jira_get_resolution_id(jira, issue, "Reopen Issue")
if resolution_id is None:
resolution_id = jira_get_resolution_id(jira, issue, "Resolve Issue")
jira_change_resolution_id(jira, issue, resolution_id)
new_note.entry = new_note.entry + "\nJira issue set to resolved."
else:
#Re-open finding with notes stating why re-open
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
resolution_id = jira_get_resolution_id(jira, issue, "Resolve Issue")
if resolution_id is not None:
jira_change_resolution_id(jira, issue, resolution_id)
new_note.entry = new_note.entry + "\nJira issue re-opened."
#Update Dojo and Jira with a notes
add_comment(finding, new_note, force_push=True)
finding.save()
messages.add_message(request,
messages.SUCCESS,
'Defect Reviewed',
extra_tags='alert-success')
return HttpResponseRedirect(reverse('view_test', args=(finding.test.id,)))
else:
form = DefectFindingForm()
add_breadcrumb(parent=finding, title="Jira Status Review", top_level=False, request=request)
return render(request, 'dojo/defect_finding_review.html',
{'finding': finding,
'user': request.user, 'form': form})
def defect_finding_review(request, fid):
finding = get_object_or_404(Finding, id=fid)
# in order to close a finding, we need to capture why it was closed
# we can do this with a Note
if request.method == 'POST':
form = DefectFindingForm(request.POST)
if form.is_valid():
now = timezone.now()
new_note = form.save(commit=False)
new_note.author = request.user
new_note.date = now
new_note.save()
finding.notes.add(new_note)
finding.under_defect_review = False
defect_choice = form.cleaned_data['defect_choice']
if defect_choice == "Close Finding":
finding.active = False
finding.mitigated = now
finding.mitigated_by = request.user
finding.last_reviewed = finding.mitigated
finding.last_reviewed_by = request.user
finding.endpoints.clear()
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
#If the issue id is closed jira will return Reopen Issue
resolution_id = jira_get_resolution_id(jira, issue, "Reopen Issue")
if resolution_id is None:
resolution_id = jira_get_resolution_id(jira, issue, "Resolve Issue")
jira_change_resolution_id(jira, issue, resolution_id)
new_note.entry = new_note.entry + "\nJira issue set to resolved."
else:
#Re-open finding with notes stating why re-open
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
resolution_id = jira_get_resolution_id(jira, issue, "Resolve Issue")
if resolution_id is not None:
jira_change_resolution_id(jira, issue, resolution_id)
new_note.entry = new_note.entry + "\nJira issue re-opened."
#Update Dojo and Jira with a notes
add_comment(finding, new_note, force_push=True)
finding.save()
messages.add_message(request,
messages.SUCCESS,
'Defect Reviewed',
extra_tags='alert-success')
return HttpResponseRedirect(reverse('view_test', args=(finding.test.id,)))
else:
form = DefectFindingForm()
add_breadcrumb(parent=finding, title="Jira Status Review", top_level=False, request=request)
return render(request, 'dojo/defect_finding_review.html',
{'finding': finding,
'user': request.user, 'form': form})
def handle(self, *args, **options):
findings = Finding.objects.exclude(jira_issue__isnull=True)
findings = findings.filter(verified=True, active=True)
# finding = Finding.objects.get(id=1)
for finding in findings:
# try:
JIRAError.log_to_tempfile = False
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
# Issue Cloned
print(issue.fields.issuelinks[0])
print("Jira Issue: " + str(issue))
print("Resolution: " + str(issue.fields.resolution))
if issue.fields.resolution is not None \
and not finding.under_defect_review:
# print issue.fields.__dict__
print("Jira Issue: " + str(issue) + " changed status")
# Create Jira Note
now = timezone.now()
new_note = Notes()
new_note.entry = "Please Review Jira Request: " + str(
issue) + ". Review status has changed to " + str(
issue.fields.resolution) + "."
new_note.author = User.objects.get(username='******')
new_note.date = now
new_note.save()
finding.notes.add(new_note)
finding.under_defect_review = True
dojo_user = Dojo_User.objects.get(username='******')
finding.defect_review_requested_by = dojo_user
# Create alert to notify user
log_jira_message("Jira issue status change, please review.",
finding)
finding.save()
else:
print("No update necessary")
def handle(self, *args, **options):
findings = Finding.objects.exclude(jira_issue__isnull=True)
findings = findings.filter(verified=True, active=True)
# finding = Finding.objects.get(id=1)
for finding in findings:
# try:
JIRAError.log_to_tempfile = False
jira = get_jira_connection(finding)
j_issue = JIRA_Issue.objects.get(finding=finding)
issue = jira.issue(j_issue.jira_id)
# Issue Cloned
print issue.fields.issuelinks[0]
print "Jira Issue: " + str(issue)
print "Resolution: " + str(issue.fields.resolution)
if issue.fields.resolution is not None \
and finding.under_defect_review == False:
# print issue.fields.__dict__
print "Jira Issue: " + str(issue) + " changed status"
# Create Jira Note
now = timezone.now()
new_note = Notes()
new_note.entry = "Please Review Jira Request: " + str(
issue) + ". Review status has changed to " + str(
issue.fields.resolution) + "."
new_note.author = User.objects.get(username='******')
new_note.date = now
new_note.save()
finding.notes.add(new_note)
finding.under_defect_review = True
dojo_user = Dojo_User.objects.get(username='******')
finding.defect_review_requested_by = dojo_user
# Create alert to notify user
log_jira_message("Jira issue status change, please review.",
finding)
finding.save()
else:
print "No update necessary"
