First release of open core

2026-04-02 10:57:36 -04:00
parent 1c94f12d1c
commit 084c1321fc
101 changed files with 8812 additions and 17 deletions
--- a/pkg/report/drafts.go
+++ b/pkg/report/drafts.go
@@ -0,0 +1,107 @@
+package report
+
+import (
+	"encoding/json"
+	"net/http"
+	"strconv"
+
+	"epigas.gitea.cloud/RiskRancher/core/pkg/auth"
+	domain2 "epigas.gitea.cloud/RiskRancher/core/pkg/domain"
+)
+
+func (h *Handler) HandleSaveDraft(w http.ResponseWriter, r *http.Request) {
+	reportID := r.PathValue("id")
+
+	var draft domain2.DraftTicket
+	if err := json.NewDecoder(r.Body).Decode(&draft); err != nil {
+		http.Error(w, "Invalid JSON", http.StatusBadRequest)
+		return
+	}
+	draft.ReportID = reportID
+
+	if err := h.Store.SaveDraft(r.Context(), draft); err != nil {
+		http.Error(w, "DB Error: "+err.Error(), http.StatusInternalServerError)
+		return
+	}
+
+	w.WriteHeader(http.StatusCreated)
+}
+
+func (h *Handler) HandleGetDrafts(w http.ResponseWriter, r *http.Request) {
+	reportID := r.PathValue("id")
+
+	drafts, err := h.Store.GetDraftsByReport(r.Context(), reportID)
+	if err != nil {
+		http.Error(w, "Failed to get drafts", http.StatusInternalServerError)
+		return
+	}
+
+	w.Header().Set("Content-Type", "application/json")
+	json.NewEncoder(w).Encode(drafts)
+}
+
+func (h *Handler) HandleDeleteDraft(w http.ResponseWriter, r *http.Request) {
+	draftID := r.PathValue("draft_id")
+
+	if err := h.Store.DeleteDraft(r.Context(), draftID); err != nil {
+		http.Error(w, "Failed to delete draft", http.StatusInternalServerError)
+		return
+	}
+
+	w.WriteHeader(http.StatusOK)
+}
+
+func (h *Handler) HandlePromoteDrafts(w http.ResponseWriter, r *http.Request) {
+	reportIDStr := r.PathValue("id")
+	if reportIDStr == "" {
+		http.Error(w, "Invalid Report ID", http.StatusBadRequest)
+		return
+	}
+
+	userIDVal := r.Context().Value(auth.UserIDKey)
+	if userIDVal == nil {
+		http.Error(w, "Unauthorized", http.StatusUnauthorized)
+		return
+	}
+
+	user, err := h.Store.GetUserByID(r.Context(), userIDVal.(int))
+	if err != nil {
+		http.Error(w, "Failed to identify user", http.StatusInternalServerError)
+		return
+	}
+	analystEmail := user.Email
+
+	var payload []domain2.Ticket
+	if err := json.NewDecoder(r.Body).Decode(&payload); err != nil {
+		http.Error(w, "Invalid JSON payload", http.StatusBadRequest)
+		return
+	}
+	if err := h.Store.PromotePentestDrafts(r.Context(), reportIDStr, analystEmail, payload); err != nil {
+		http.Error(w, "Database error during promotion: "+err.Error(), http.StatusInternalServerError)
+		return
+	}
+
+	w.WriteHeader(http.StatusCreated)
+}
+
+func (h *Handler) HandleUpdateDraft(w http.ResponseWriter, r *http.Request) {
+	idStr := r.PathValue("id")
+	draftID, err := strconv.Atoi(idStr)
+	if err != nil {
+		http.Error(w, "Invalid draft ID", http.StatusBadRequest)
+		return
+	}
+
+	var payload domain2.Ticket
+	if err := json.NewDecoder(r.Body).Decode(&payload); err != nil {
+		http.Error(w, "Invalid JSON", http.StatusBadRequest)
+		return
+	}
+
+	if err := h.Store.UpdateDraft(r.Context(), draftID, payload); err != nil {
+		http.Error(w, "Failed to auto-save draft", http.StatusInternalServerError)
+		return
+	}
+
+	w.WriteHeader(http.StatusOK)
+}