Merge pull request #1375 from akto-api-security/hotfix/clean_inventory

add clean inventory job for non-standard headers
akto-api-security · Aug 21, 2024 · ddede48 · ddede48
2 parents 77780e8 + 6c7dd75
commit ddede48
Show file tree

Hide file tree

Showing 3 changed files with 94 additions and 1 deletion.
diff --git a/apps/dashboard/src/main/java/com/akto/listener/InitializerListener.java b/apps/dashboard/src/main/java/com/akto/listener/InitializerListener.java
@@ -95,6 +95,7 @@
 import com.akto.utils.crons.SyncCron;
 import com.akto.utils.crons.TokenGeneratorCron;
 import com.akto.utils.crons.UpdateSensitiveInfoInApiInfo;
+import com.akto.utils.jobs.CleanInventory;
 import com.akto.utils.jobs.DeactivateCollections;
 import com.akto.utils.billing.OrganizationUtils;
 import com.akto.utils.crons.Crons;
@@ -1968,6 +1969,11 @@ public void accept(Account account) {
                 setUpUpdateCustomCollections();
                 setUpFillCollectionIdArrayJob();
                 setupAutomatedApiGroupsScheduler();
+                /*
+                 * This is a temporary job. 
+                 * TODO: Remove this once traffic pipeline is cleaned.
+                 */
+                CleanInventory.cleanInventoryJobRunner();
             }
         }, 0, TimeUnit.SECONDS);
 

diff --git a/apps/dashboard/src/main/java/com/akto/utils/jobs/CleanInventory.java b/apps/dashboard/src/main/java/com/akto/utils/jobs/CleanInventory.java
@@ -0,0 +1,87 @@
+package com.akto.utils.jobs;
+
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+import java.util.concurrent.Executors;
+import java.util.concurrent.ScheduledExecutorService;
+import java.util.concurrent.TimeUnit;
+import java.util.function.Consumer;
+import java.util.stream.Collectors;
+
+import com.akto.dao.SensitiveSampleDataDao;
+import com.akto.dao.SingleTypeInfoDao;
+import com.akto.dao.context.Context;
+import com.akto.dto.Account;
+import com.akto.dto.type.SingleTypeInfo;
+import com.akto.dto.type.URLMethods;
+import com.akto.log.LoggerMaker;
+import com.akto.log.LoggerMaker.LogDb;
+import com.akto.util.AccountTask;
+import com.mongodb.client.model.Filters;
+
+public class CleanInventory {
+
+    private static final LoggerMaker loggerMaker = new LoggerMaker(CleanInventory.class, LogDb.DASHBOARD);
+
+    final static ScheduledExecutorService scheduler = Executors.newScheduledThreadPool(1);
+
+    public static void cleanInventoryJobRunner() {
+
+        scheduler.scheduleAtFixedRate(new Runnable() {
+            public void run() {
+                AccountTask.instance.executeTask(new Consumer<Account>() {
+                    @Override
+                    public void accept(Account t) {
+                        try {
+                            cleanInventoryJob();
+                        } catch (Exception e) {
+                            loggerMaker.errorAndAddToDb(e, "Error in cleanInventoryJob");
+                        }
+                    }
+                }, "clean-inventory-job");
+            }
+        }, 0, 5, TimeUnit.HOURS);
+
+    }
+
+    private static Set<String> methodSet = new HashSet<>();
+
+    private static Set<String> getMethodSet() {
+
+        if (!methodSet.isEmpty()) {
+            return methodSet;
+        }
+
+        List<String> lowerCaseMethods = Arrays.asList(URLMethods.Method.getValuesArray()).stream()
+                .map(s -> s.name().toLowerCase()).collect(Collectors.toList());
+        List<String> upperCaseMethods = Arrays.asList(URLMethods.Method.getValuesArray()).stream()
+                .map(s -> s.name().toUpperCase()).collect(Collectors.toList());
+        methodSet.addAll(upperCaseMethods);
+        methodSet.addAll(lowerCaseMethods);
+        return methodSet;
+    }
+
+    private static void cleanInventoryJob() {
+
+        int now = Context.now();
+        SingleTypeInfoDao.instance.deleteAll(Filters.nin(SingleTypeInfo._METHOD, getMethodSet()));
+        SensitiveSampleDataDao.instance.deleteAll(Filters.nin("_id.method", getMethodSet()));
+        /*
+         * The above collections implement method as String, thus cleaning them.
+         * Rest of the collections implement method as an ENUM,
+         * thus they will not have any non-standard method.
+         * Any non-standard method will be in the form of "OTHER". Thus ignoring them.
+         */
+
+        int now2 = Context.now();
+        int diff = now2 - now;
+
+        if (diff >= 2) {
+            loggerMaker.infoAndAddToDb(String.format("cleanInventoryJob finished, time taken: %d ", diff));
+        }
+
+    }
+
+}
diff --git a/libs/dao/src/main/java/com/akto/dto/type/URLMethods.java b/libs/dao/src/main/java/com/akto/dto/type/URLMethods.java
@@ -3,7 +3,7 @@
 public class URLMethods {
 
     public enum Method {
-        GET, POST, PUT, DELETE, HEAD, OPTIONS, TRACE, PATCH, OTHER, TRACK;
+        GET, POST, PUT, DELETE, HEAD, OPTIONS, TRACE, PATCH, OTHER, TRACK, CONNECT;
 
         private static final Method[] valuesArray = values();