[backend/frontend] fix(multi-tenancy): custom dashboard API

RomuDeuxfois · RomuDeuxfois · commit 45b399ec47bb · 2026-05-06T09:10:01.000+02:00
diff --git a/openaev-api/src/main/java/io/openaev/opencti/connectors/service/PrivilegeService.java b/openaev-api/src/main/java/io/openaev/opencti/connectors/service/PrivilegeService.java
@@ -21,6 +21,7 @@
 
 @Service
 @RequiredArgsConstructor
+@Transactional(rollbackFor = Exception.class)
 @Slf4j
 public class PrivilegeService {
 
@@ -33,7 +34,10 @@ public class PrivilegeService {
   private final TenantUserService tenantUserService;
   private final LegacyOpenCTIConnectorMigration legacyOpenCTIConnectorMigration;
 
-  @Transactional
+  /**
+   * Ensures a privileged technical user exists for the given OpenCTI connector. Creates or updates
+   * the user, its group, role, and tenant attachment as needed.
+   */
   public void ensurePrivilegedUserExistsForConnector(ConnectorBase connector) {
     Group group = createWellKnownGroupWithRole(createWellKnownRole());
     String email = CONNECTOR_EMAIL_PATTERN.formatted(connector.getId());
diff --git a/openaev-api/src/main/java/io/openaev/service/stix/SecurityCoverageService.java b/openaev-api/src/main/java/io/openaev/service/stix/SecurityCoverageService.java
@@ -347,7 +347,14 @@ public void pushSecurityCoverageBundleWithExternalURI(Scenario scenario)
     if (tenant == null) {
       throw new IllegalStateException("Scenario tenant ID cannot be null");
     }
-    if (openCTIConnectorService.getConnectorBase(tenant.getId()).isEmpty()) {
+    Optional<ConnectorBase> connector = openCTIConnectorService.getConnectorBase(tenant.getId());
+    if (connector.isEmpty()) {
+      return;
+    }
+    if (!connector.get().isRegistered()) {
+      log.warn(
+          "OpenCTI connector for tenant {} is not registered yet, skipping push of security coverage bundle",
+          tenant.getId());
       return;
     }
 
