db = Datastore("SQL Database") db.OS = "CentOS" db.isHardened = False db.inBoundary = Web_DB db.isSQL = True db.inScope = False my_lambda_to_db = Dataflow(my_lambda, db, "(λ)Periodically cleans DB") my_lambda_to_db.protocol = "SQL" my_lambda_to_db.dstPort = 3306 user_to_web = Dataflow(user, web, "User enters comments (*)") user_to_web.protocol = "HTTP" user_to_web.dstPort = 80 user_to_web.data = 'Comments in HTML or Markdown' user_to_web.order = 1 user_to_web.note = "This is a note\nmulti-line" web_to_user = Dataflow(web, user, "Comments saved (*)") web_to_user.protocol = "HTTP" web_to_user.data = 'Ack of saving or error message, in JSON' web_to_user.order = 2 web_to_db = Dataflow(web, db, "Insert query with comments") web_to_db.protocol = "MySQL" web_to_db.dstPort = 3306 web_to_db.data = 'MySQL insert statement, all literals' web_to_db.order = 3 web_to_db.note = "another note\nin a different place" db_to_web = Dataflow(db, web, "Comments contents")
db = Datastore("SQL Database") db.OS = "CentOS" db.isHardened = False db.inBoundary = server_db db.isSQL = True db.inScope = True my_lambda = Lambda("AWS Lambda") my_lambda.hasAccessControl = True my_lambda.inBoundary = vpc user_to_web = Dataflow(user, web, "User enters comments (*)") user_to_web.protocol = "HTTP" user_to_web.dstPort = 80 user_to_web.data = 'Comments in HTML or Markdown' user_to_web.order = 1 user_to_web.note = "This is a simple web app\nthat stores and retrieves user comments." web_to_db = Dataflow(web, db, "Insert query with comments") web_to_db.protocol = "MySQL" web_to_db.dstPort = 3306 web_to_db.data = 'MySQL insert statement, all literals' web_to_db.order = 2 web_to_db.note = "Web server inserts user comments\ninto it's SQL query and stores them in the DB." db_to_web = Dataflow(db, web, "Retrieve comments") db_to_web.protocol = "MySQL" db_to_web.dstPort = 80 db_to_web.data = 'Web server retrieves comments from DB' db_to_web.order = 3
db.storesSensitiveData = False third_party = Element("3rd party services") third_party.inBoundary = internet third_party_bim = Element("3rd party BIM360 services") third_party_bim.inBoundary = internet user_to_apigee = Dataflow(user, apigee, "User sends API request to Apps service") user_to_apigee.protocol = "HTTPS" user_to_apigee.isEncrypted = True user_to_apigee.authenticatedWith = True user_to_apigee.dstPort = 443 user_to_apigee.data = 'JSON' user_to_apigee.order = 1 apigee_to_server = Dataflow(apigee, server, "Apigee forwards API request to Apps server") apigee_to_server.protocol = "HTTPS" apigee_to_server.isEncrypted = True apigee_to_server.authenticatedWith = True apigee_to_server.dstPort = 443 apigee_to_server.data = 'JSON' apigee_to_server.order = 2 server_to_third_party = Dataflow( server, third_party, "Apps server communicates with 3rd party services") server_to_third_party.authenticatedWith = True server_to_third_party.isEncrypted = True server_to_third_party.dstPort = 0