def testNewNotificationReplacesPreviousNotificationOfTheSameType(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent,
"Houston, Houston, we have a prob...")
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
content="Too late to do anything!",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent, "Too late to do anything!")
self.assertFalse(
self.IsTextPresent("Houston, Houston, we have a prob..."))
def testClosingOneNotificationLeavesAnotherIntact(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.INFO,
header="Nothing to worry about!",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent,
"Houston, Houston, we have a prob...")
self.Click("css=#global-notification .alert-error button.close")
self.WaitUntilNot(self.IsTextPresent,
"Houston, Houston, we have a prob...")
self.WaitUntil(self.IsTextPresent, "Nothing to worry about!")
self.Open("/")
self.WaitUntil(self.IsTextPresent, "Nothing to worry about!")
self.assertFalse(
self.IsTextPresent("Houston, Houston, we have a prob..."))
def Run(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com",
show_from=self.TIME_0))
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.INFO,
header="Nothing to worry about!",
link="http://www.google.com",
show_from=self.TIME_1))
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.WARNING,
header="Nothing to worry, we won't see this!",
link="http://www.google.com",
show_from=self.TIME_TOO_EARLY))
replace = {
("%d" % self.TIME_0.AsMicrosecondsSinceEpoch()): "0",
("%d" % self.TIME_1.AsMicrosecondsSinceEpoch()): "0"
}
self.Check("ListPendingGlobalNotifications", replace=replace)
def testGlobalNotificationDisappearsAfterClosing(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent,
"Houston, Houston, we have a prob...")
self.Click("css=#global-notification button.close")
self.WaitUntilNot(self.IsTextPresent,
"Houston, Houston, we have a prob...")
self.Open("/")
self.WaitUntil(self.IsElementPresent, "client_query")
self.WaitUntilNot(self.IsTextPresent,
"Houston, Houston, we have a prob...")
def setUp(self):
super(ApiDeletePendingGlobalNotificationHandlerTest, self).setUp()
self.handler = user_plugin.ApiDeletePendingGlobalNotificationHandler()
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.INFO,
header="Nothing to worry about!",
link="http://www.google.com"))
def testNotificationsOfDifferentTypesAreShownTogether(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.INFO,
header="Nothing to worry about!",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent, "Houston, Houston, we have a prob...")
self.WaitUntil(self.IsTextPresent, "Nothing to worry about!")
def testGlobalNotificationIsShownWhenSet(self):
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
aff4_users.GlobalNotification(
type=aff4_users.GlobalNotification.Type.ERROR,
header="Oh no, we're doomed!",
content="Houston, Houston, we have a prob...",
link="http://www.google.com"))
self.Open("/")
self.WaitUntil(self.IsTextPresent, "Houston, Houston, we have a prob...")
def testNotificationIsReturnedWhenItIsSet(self):
with aff4.FACTORY.Create(users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
users.GlobalNotification(
type=users.GlobalNotification.Type.ERROR,
header="foo",
content="bar",
link="http://www.google.com"))
notifications = self.user.GetPendingGlobalNotifications()
self.assertTrue(notifications)
self.assertEqual(len(notifications), 1)
self.assertEqual(notifications[0].header, "foo")
self.assertEqual(notifications[0].content, "bar")
def testNotificationIsNotReturnedWhenItExpires(self):
with test_lib.FakeTime(100):
with aff4.FACTORY.Create(
users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=users.GlobalNotificationStorage,
mode="rw",
token=self.token) as storage:
storage.AddNotification(
users.GlobalNotification(
type=users.GlobalNotification.Type.ERROR,
header="foo",
content="bar",
duration=rdfvalue.Duration("1h"),
))
with test_lib.FakeTime(101):
notifications = self.user.GetPendingGlobalNotifications()
self.assertTrue(notifications)
with test_lib.FakeTime(100 + 3600 + 1):
notifications = self.user.GetPendingGlobalNotifications()
self.assertFalse(notifications)
def main(argv):
"""Main."""
del argv # Unused.
if flags.FLAGS.subparser_name == "version":
version = config_server.VERSION["packageversion"]
print("GRR configuration updater {}".format(version))
return
token = config_updater_util.GetToken()
grr_config.CONFIG.AddContext(contexts.COMMAND_LINE_CONTEXT)
grr_config.CONFIG.AddContext(contexts.CONFIG_UPDATER_CONTEXT)
if flags.FLAGS.subparser_name == "initialize":
config_lib.ParseConfigCommandLine()
if flags.FLAGS.noprompt:
config_updater_util.InitializeNoPrompt(grr_config.CONFIG,
token=token)
else:
config_updater_util.Initialize(grr_config.CONFIG, token=token)
return
server_startup.Init()
try:
print("Using configuration %s" % grr_config.CONFIG)
except AttributeError:
raise RuntimeError("No valid config specified.")
if flags.FLAGS.subparser_name == "generate_keys":
try:
config_updater_util.GenerateKeys(
grr_config.CONFIG, overwrite_keys=flags.FLAGS.overwrite_keys)
except RuntimeError as e:
# GenerateKeys will raise if keys exist and overwrite_keys is not set.
print("ERROR: %s" % e)
sys.exit(1)
grr_config.CONFIG.Write()
elif flags.FLAGS.subparser_name == "repack_clients":
upload = not flags.FLAGS.noupload
repacking.TemplateRepacker().RepackAllTemplates(upload=upload,
token=token)
elif flags.FLAGS.subparser_name == "show_user":
maintenance_utils.ShowUser(flags.FLAGS.username, token=token)
elif flags.FLAGS.subparser_name == "update_user":
try:
maintenance_utils.UpdateUser(flags.FLAGS.username,
flags.FLAGS.password,
flags.FLAGS.add_labels,
flags.FLAGS.delete_labels,
token=token)
except maintenance_utils.UserError as e:
print(e)
elif flags.FLAGS.subparser_name == "delete_user":
maintenance_utils.DeleteUser(flags.FLAGS.username, token=token)
elif flags.FLAGS.subparser_name == "add_user":
labels = []
if not flags.FLAGS.noadmin:
labels.append("admin")
if flags.FLAGS.labels:
labels.extend(flags.FLAGS.labels)
try:
maintenance_utils.AddUser(flags.FLAGS.username,
flags.FLAGS.password,
labels,
token=token)
except maintenance_utils.UserError as e:
print(e)
elif flags.FLAGS.subparser_name == "upload_python":
python_hack_root_urn = grr_config.CONFIG.Get("Config.python_hack_root")
content = open(flags.FLAGS.file, "rb").read(1024 * 1024 * 30)
aff4_path = flags.FLAGS.dest_path
platform = flags.FLAGS.platform
if not aff4_path:
aff4_path = python_hack_root_urn.Add(platform.lower()).Add(
os.path.basename(flags.FLAGS.file))
if not str(aff4_path).startswith(str(python_hack_root_urn)):
raise ValueError("AFF4 path must start with %s." %
python_hack_root_urn)
context = ["Platform:%s" % platform.title(), "Client Context"]
maintenance_utils.UploadSignedConfigBlob(content,
aff4_path=aff4_path,
client_context=context,
token=token)
elif flags.FLAGS.subparser_name == "upload_exe":
content = open(flags.FLAGS.file, "rb").read(1024 * 1024 * 30)
context = [
"Platform:%s" % flags.FLAGS.platform.title(), "Client Context"
]
if flags.FLAGS.dest_path:
dest_path = rdfvalue.RDFURN(flags.FLAGS.dest_path)
else:
dest_path = grr_config.CONFIG.Get(
"Executables.aff4_path",
context=context).Add(os.path.basename(flags.FLAGS.file))
# Now upload to the destination.
maintenance_utils.UploadSignedConfigBlob(content,
aff4_path=dest_path,
client_context=context,
token=token)
print("Uploaded to %s" % dest_path)
elif flags.FLAGS.subparser_name == "set_var":
config = grr_config.CONFIG
print("Setting %s to %s" % (flags.FLAGS.var, flags.FLAGS.val))
if flags.FLAGS.val.startswith("["): # Allow setting of basic lists.
flags.FLAGS.val = flags.FLAGS.val[1:-1].split(",")
config.Set(flags.FLAGS.var, flags.FLAGS.val)
config.Write()
elif flags.FLAGS.subparser_name == "upload_raw":
if not flags.FLAGS.dest_path:
flags.FLAGS.dest_path = aff4.ROOT_URN.Add("config").Add("raw")
uploaded = config_updater_util.UploadRaw(flags.FLAGS.file,
flags.FLAGS.dest_path,
token=token)
print("Uploaded to %s" % uploaded)
elif flags.FLAGS.subparser_name == "upload_artifact":
yaml.load(open(flags.FLAGS.file, "rb")) # Check it will parse.
try:
artifact.UploadArtifactYamlFile(
open(flags.FLAGS.file, "rb").read(),
overwrite=flags.FLAGS.overwrite_artifact)
except rdf_artifacts.ArtifactDefinitionError as e:
print("Error %s. You may need to set --overwrite_artifact." % e)
elif flags.FLAGS.subparser_name == "delete_artifacts":
artifact_list = flags.FLAGS.artifact
if not artifact_list:
raise ValueError("No artifact to delete given.")
artifact_registry.DeleteArtifactsFromDatastore(artifact_list,
token=token)
print("Artifacts %s deleted." % artifact_list)
elif flags.FLAGS.subparser_name == "download_missing_rekall_profiles":
print("Downloading missing Rekall profiles.")
s = rekall_profile_server.GRRRekallProfileServer()
s.GetMissingProfiles()
elif flags.FLAGS.subparser_name == "set_global_notification":
notification = aff4_users.GlobalNotification(
type=flags.FLAGS.type,
header=flags.FLAGS.header,
content=flags.FLAGS.content,
link=flags.FLAGS.link)
if flags.FLAGS.show_from:
notification.show_from = rdfvalue.RDFDatetime(
).ParseFromHumanReadable(flags.FLAGS.show_from)
if flags.FLAGS.duration:
notification.duration = rdfvalue.Duration().ParseFromHumanReadable(
flags.FLAGS.duration)
print("Setting global notification.")
print(notification)
with aff4.FACTORY.Create(
aff4_users.GlobalNotificationStorage.DEFAULT_PATH,
aff4_type=aff4_users.GlobalNotificationStorage,
mode="rw",
token=token) as storage:
storage.AddNotification(notification)
elif flags.FLAGS.subparser_name == "rotate_server_key":
print("""
You are about to rotate the server key. Note that:
- Clients might experience intermittent connection problems after
the server keys rotated.
- It's not possible to go back to an earlier key. Clients that see a
new certificate will remember the cert's serial number and refuse
to accept any certificate with a smaller serial number from that
point on.
""")
if builtins.input("Continue? [yN]: ").upper() == "Y":
if flags.FLAGS.keylength:
keylength = int(flags.FLAGS.keylength)
else:
keylength = grr_config.CONFIG["Server.rsa_key_length"]
maintenance_utils.RotateServerKey(cn=flags.FLAGS.common_name,
keylength=keylength)
