Merge remote-tracking branch 'origin/v11' into backlog/extend-visualization-creation-flow-to-include-SQL

# Conflicts:
#	backend/src/main/java/com/park/utmstack/service/dto/elastic/SqlSearchDto.java
#	backend/src/main/resources/config/liquibase/master.xml
#	frontend/src/app/data-management/adversary-management/adversary-alerts-graph/adversary-alerts-graph.component.html
#	frontend/src/app/data-management/adversary-management/adversary-alerts-graph/adversary-alerts-graph.component.ts
#	frontend/src/app/log-analyzer/explorer/log-analyzer-view/log-analyzer-view.component.html
#	frontend/src/app/shared/components/code-editor/code-editor.component.html
#	frontend/src/app/shared/components/code-editor/code-editor.component.ts
#	frontend/src/app/shared/directives/enterprise/enterprise.directive.ts
#	frontend/src/app/shared/services/version/app-version.service.ts
#	frontend/src/environments/environment.ts

Author: elmilan06

CHANGELOG.md

@@ -1,12 +1,8 @@
-# UTMStack 11.0.3
+# UTMStack 11.1.4 – Release Notes
 
-This is the release notes for **UTMStack v11.0.3**, a minor update focused on bug fixes and performance improvements.
+The **UTMStack v11.1.4** update delivers important fixes and usability improvements to enhance stability and user experience.
 
-## Fixed Issues
-
-- Fixed a bug in the SOC-AI integration that caused occasional failures when generating insights.
-- Fixed a bug when trying to enroll and authenticate by TFA.
-
-## Enhancements
-
-- SIEM configuration now adapts to the Sovereign Cloud Model implemented by the provider in each region for Azure and Microsoft 365 integrations.
+## Improvements & Fixes
+- Refined the styling of download links to improve clarity and accessibility.
+- Resolved a syntax error in the UTMStack installation command, ensuring smoother setup.
+- Corrected the display of pipeline card statuses and improved accuracy of event processing counts.

README.md

@@ -105,7 +105,7 @@ The installation can be performed using an installer file or an [ISO image](http
 
 - Execute the installer without parameters: `./installer`
 
-Once UTMStack is installed, use admin as the user and the password generated during the installation for the default user to login. You can found the password and other generated configurations in /root/utmstack.yml
+Once UTMStack is installed, use admin as the user and the password generated during the installation for the default user to login. You can find the password and other generated configurations in /root/utmstack.yml
 Note: Use HTTPS in front of your server name or IP to access the login page.
 
 ### Required ports

agent/logservice/processor.go

@@ -174,8 +174,16 @@ func (l *LogProcessor) CleanCountedLogs() {
 	for range ticker.C {
 		dataRetention, err := GetDataRetention()
 		if err != nil {
-			utils.Logger.ErrorF("error getting data retention: %s", err)
-			continue
+			utils.Logger.ErrorF("error getting data retention: %s, creating default retention file", err)
+			if err := SetDataRetention(""); err != nil {
+				utils.Logger.ErrorF("error creating default data retention: %s", err)
+				continue
+			}
+			dataRetention, err = GetDataRetention()
+			if err != nil {
+				utils.Logger.ErrorF("error reading newly created data retention: %s", err)
+				continue
+			}
 		}
 		l.db.Lock()
 		_, err = l.db.DeleteOld(&models.Log{}, dataRetention)

backend/src/main/java/com/park/utmstack/domain/logstash_pipeline/UtmLogstashPipeline.java

@@ -1,17 +1,22 @@
 package com.park.utmstack.domain.logstash_pipeline;
 
+import com.park.utmstack.domain.application_modules.UtmModule;
 import com.park.utmstack.service.logstash_pipeline.enums.PipelineStatus;
+import lombok.*;
+
 import org.hibernate.annotations.GenericGenerator;
 
 import javax.persistence.*;
 import javax.validation.constraints.Size;
 import java.io.Serializable;
 
-/**
- * A UtmLogstashPipeline.
- */
 @Entity
 @Table(name = "utm_logstash_pipeline")
+@Getter
+@Setter
+@NoArgsConstructor
+@AllArgsConstructor
+@Builder
 public class UtmLogstashPipeline implements Serializable {
 
     private static final long serialVersionUID = 1L;
@@ -48,103 +53,14 @@ public class UtmLogstashPipeline implements Serializable {
     @Column(name = "events_out")
     private Long eventsOut;
 
+    @OneToOne
+    @JoinColumn(name = "module_name", referencedColumnName = "module_name", insertable = false, updatable = false)
+    private UtmModule utmModule;
 
-    public UtmLogstashPipeline(){}
-    public UtmLogstashPipeline(Long id, String pipelineId,
-                               String pipelineName,
-                               String pipelineStatus,
-                               String moduleName,
-                               Boolean systemOwner,
-                               String pipelineDescription,
-                               Boolean pipelineInternal,
-                               Long eventsOut) {
-        this.id = id;
-        this.pipelineId = pipelineId;
-        this.pipelineName = pipelineName;
-        this.pipelineStatus = pipelineStatus;
-        this.moduleName = moduleName;
-        this.systemOwner = systemOwner;
-        this.pipelineDescription = pipelineDescription;
-        this.pipelineInternal = pipelineInternal==null?false:pipelineInternal;
-        this.eventsOut = eventsOut==null?0L:eventsOut;
-    }
-
-    public Long getId() {
-        return id;
-    }
-
-    public void setId(Long id) {
-        this.id = id;
-    }
-
-    public String getPipelineId() {
-        return pipelineId;
-    }
-
-    public void setPipelineId(String pipelineId) {
-        this.pipelineId = pipelineId;
-    }
-
-    public String getPipelineName() {
-        return pipelineName;
-    }
-
-    public void setPipelineName(String pipelineName) {
-        this.pipelineName = pipelineName;
-    }
-
-    public String getPipelineStatus() {
-        return pipelineStatus;
-    }
-
-    public void setPipelineStatus(String pipelineStatus) {
-        this.pipelineStatus = pipelineStatus;
-    }
-
-    public String getModuleName() {
-        return moduleName;
-    }
-
-    public void setModuleName(String moduleName) {
-        this.moduleName = moduleName;
-    }
-
-    public Boolean getSystemOwner() {
-        return systemOwner;
-    }
-
-    public void setSystemOwner(Boolean systemOwner) {
-        this.systemOwner = systemOwner;
-    }
-
-    public String getPipelineDescription() {
-        return pipelineDescription;
-    }
-
-    public void setPipelineDescription(String pipelineDescription) {
-        this.pipelineDescription = pipelineDescription;
-    }
-
-    public Boolean getPipelineInternal() {
-        return pipelineInternal;
-    }
-
-    public void setPipelineInternal(Boolean pipelineInternal) {
-        this.pipelineInternal = pipelineInternal;
-    }
-
-    public Long getEventsOut() {
-        return eventsOut;
-    }
-
-    public void setEventsOut(Long eventsOut) {
-        this.eventsOut = eventsOut;
-    }
-
-    public void setDefaults(){
+    public void setDefaults() {
         this.systemOwner = false;
-        this.pipelineInternal = this.pipelineInternal==null?false:this.pipelineInternal;
-        this.eventsOut = this.eventsOut==null?0L:this.eventsOut;
+        this.pipelineInternal = this.pipelineInternal == null ? false : this.pipelineInternal;
+        this.eventsOut = this.eventsOut == null ? 0L : this.eventsOut;
         this.pipelineStatus = PipelineStatus.PIPELINE_STATUS_DOWN.get();
     }
 }

backend/src/main/java/com/park/utmstack/event_processor/EventProcessorManagerService.java

@@ -4,6 +4,8 @@
 import com.park.utmstack.domain.application_modules.UtmModule;
 import com.park.utmstack.domain.application_modules.UtmModuleGroup;
 import com.park.utmstack.domain.application_modules.enums.ModuleName;
+import com.park.utmstack.service.dto.application_modules.ModuleDTO;
+import com.park.utmstack.service.dto.application_modules.UtmModuleMapper;
 import com.park.utmstack.service.web_clients.rest_template.RestTemplateService;
 import com.park.utmstack.util.CipherUtil;
 import lombok.RequiredArgsConstructor;
@@ -34,7 +36,7 @@ public class EventProcessorManagerService {
             System.getenv(Constants.ENV_EVENT_PROCESSOR_HOST) + ":" +
             System.getenv(Constants.ENV_EVENT_PROCESSOR_PORT);
 
-    public void updateModule(UtmModule module) {
+    public void updateModule(ModuleDTO module) {
         final String ctx = CLASSNAME + ".updateModule";
 
         String url = UriComponentsBuilder
@@ -60,10 +62,19 @@ public void updateModule(UtmModule module) {
 
     public void decryptModuleConfig (UtmModule module){
         Set<UtmModuleGroup> groups = module.getModuleGroups();
+        decryptModuleGroupsConfig(groups, module.getModuleName());
+    }
+
+    public void decryptModuleConfig (ModuleDTO moduleDTO){
+        Set<UtmModuleGroup> groups = moduleDTO.getModuleGroups();
+        decryptModuleGroupsConfig(groups, moduleDTO.getModuleName());
+    }
+
+    private void decryptModuleGroupsConfig(Set<UtmModuleGroup> groups, ModuleName moduleName) {
         groups.forEach((gp) -> {
             gp.getModuleGroupConfigurations().forEach((gpc) -> {
                 if ((gpc.getConfDataType().equals(Constants.CONF_TYPE_PASSWORD) && StringUtils.hasText(gpc.getConfValue()))
-                        || (gpc.getConfDataType().equals(Constants.CONF_TYPE_FILE) && StringUtils.hasText(gpc.getConfValue())) && typeFileNeedsDecryptList.contains(module.getModuleName())) {
+                        || (gpc.getConfDataType().equals(Constants.CONF_TYPE_FILE) && StringUtils.hasText(gpc.getConfValue())) && typeFileNeedsDecryptList.contains(moduleName)) {
                     gpc.setConfValue(CipherUtil.decrypt(gpc.getConfValue(), System.getenv(Constants.ENV_ENCRYPTION_KEY)));
                 }
             });

backend/src/main/java/com/park/utmstack/repository/application_modules/UtmModuleRepository.java

@@ -10,6 +10,7 @@
 import org.springframework.stereotype.Repository;
 
 import java.util.List;
+import java.util.Optional;
 
 
 /**
@@ -19,8 +20,8 @@
 @Repository
 public interface UtmModuleRepository extends JpaRepository<UtmModule, Long>, JpaSpecificationExecutor<UtmModule> {
 
-    @EntityGraph(attributePaths = {"moduleGroups", "moduleGroups.moduleGroupConfigurations"})
-    UtmModule findByServerIdAndModuleName(Long serverId, ModuleName shortName);
+    @EntityGraph(attributePaths = {"server", "filters", "moduleGroups", "moduleGroups.moduleGroupConfigurations"})
+    Optional<UtmModule> findByServerIdAndModuleName(Long serverId, ModuleName shortName);
 
     Integer countAllByModuleNameAndModuleActiveIsTrue(ModuleName shortName);
 

backend/src/main/java/com/park/utmstack/service/application_modules/UtmModuleGroupConfigurationService.java

@@ -8,8 +8,9 @@
 import com.park.utmstack.repository.application_modules.UtmModuleRepository;
 import com.park.utmstack.event_processor.EventProcessorManagerService;
 import com.park.utmstack.util.CipherUtil;
+import com.park.utmstack.util.exceptions.ApiException;
 import lombok.RequiredArgsConstructor;
-import org.apache.commons.lang3.SerializationUtils;
+import org.springframework.http.HttpStatus;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
 import org.springframework.util.CollectionUtils;
@@ -53,11 +54,11 @@ public void createConfigurationKeys(List<UtmModuleGroupConfiguration> keys) thro
      * @param keys List of configuration keys to save
      * @throws Exception In case of any error
      */
-    public void updateConfigurationKeys(Long moduleId, List<UtmModuleGroupConfiguration> keys) throws Exception {
+    public UtmModule updateConfigurationKeys(Long moduleId, List<UtmModuleGroupConfiguration> keys) throws Exception {
         final String ctx = CLASSNAME + ".updateConfigurationKeys";
         try {
             if (CollectionUtils.isEmpty(keys))
-                return;
+                throw new ApiException("No configuration keys were provided to update", HttpStatus.BAD_REQUEST);
             for (UtmModuleGroupConfiguration key : keys) {
                 if (key.getConfRequired() && !StringUtils.hasText(key.getConfValue()))
                     throw new Exception(String.format("No value was found for required configuration: %1$s (%2$s)", key.getConfName(), key.getConfKey()));
@@ -67,14 +68,14 @@ public void updateConfigurationKeys(Long moduleId, List<UtmModuleGroupConfigurat
             moduleConfigurationRepository.saveAll(keys);
 
             List<ModuleName> needRestartModules = Arrays.asList(ModuleName.AWS_IAM_USER, ModuleName.AZURE,
-                ModuleName.GCP, ModuleName.SOPHOS);
+                    ModuleName.GCP, ModuleName.SOPHOS);
 
-            moduleRepository.findById(moduleId).ifPresent(module -> {
-                module.setNeedsRestart(needRestartModules.contains(module.getModuleName()));
-                moduleRepository.save(module);
-                UtmModule detached = SerializationUtils.clone(module);
-                eventProcessorManagerService.updateModule(detached);
-            });
+            return moduleRepository.findById(moduleId)
+                    .map(module -> {
+                        module.setNeedsRestart(needRestartModules.contains(module.getModuleName()));
+                        return moduleRepository.save(module);
+                    })
+                    .orElseThrow(() -> new ApiException(String.format("Module with ID %1$s not found", moduleId), HttpStatus.NOT_FOUND));
         } catch (Exception e) {
             throw new Exception(ctx + ": " + e.getMessage());
         }

backend/src/main/java/com/park/utmstack/service/application_modules/UtmModuleService.java

@@ -8,12 +8,10 @@
 import com.park.utmstack.repository.UtmModuleGroupRepository;
 import com.park.utmstack.repository.application_modules.UtmModuleRepository;
 import com.park.utmstack.service.UtmMenuService;
-import com.park.utmstack.event_processor.EventProcessorManagerService;
 import com.park.utmstack.service.dto.application_modules.ModuleActivationDTO;
 import com.park.utmstack.service.index_pattern.UtmIndexPatternService;
 import com.park.utmstack.service.logstash_filter.UtmLogstashFilterService;
 import lombok.RequiredArgsConstructor;
-import org.apache.commons.lang3.SerializationUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.data.domain.Page;
@@ -24,7 +22,6 @@
 
 import java.util.List;
 import java.util.NoSuchElementException;
-import java.util.Objects;
 import java.util.Optional;
 
 /**
@@ -43,7 +40,6 @@ public class UtmModuleService {
     private final UtmIndexPatternService indexPatternService;
     private final UtmLogstashFilterService logstashFilterService;
     private final UtmModuleGroupRepository moduleGroupRepository;
-    private final EventProcessorManagerService eventProcessorManagerService;
 
 
     /**
@@ -56,30 +52,29 @@ public class UtmModuleService {
     public UtmModule activateDeactivate(ModuleActivationDTO moduleActivationDTO) {
         final String ctx = CLASSNAME + ".activateDeactivate";
 
-            long serverId = moduleActivationDTO.getServerId();
-            ModuleName nameShort = moduleActivationDTO.getModuleName();
-            boolean activationStatus = moduleActivationDTO.getActivationStatus();
+        long serverId = moduleActivationDTO.getServerId();
+        ModuleName nameShort = moduleActivationDTO.getModuleName();
+        boolean activationStatus = moduleActivationDTO.getActivationStatus();
 
-            UtmModule module = moduleRepository.findByServerIdAndModuleName(serverId, nameShort);
+        return moduleRepository.findByServerIdAndModuleName(serverId, nameShort)
+                .map(module -> {
+                    module.setModuleActive(activationStatus);
+                    module = moduleRepository.save(module);
 
-            if (Objects.isNull(module))
-                throw new NoSuchElementException(String.format("Definition of the module %1$s not found for the server ID %2$s", nameShort.name(), serverId));
+                    List<ModuleName> nonRemovableConf = List.of(ModuleName.SOC_AI);
 
-            module.setModuleActive(activationStatus);
-            module = moduleRepository.save(module);
+                    if (!activationStatus && !nonRemovableConf.contains(nameShort))
+                        moduleGroupRepository.deleteAllByModuleId(module.getId());
 
-            List<ModuleName> nonRemovableConf = List.of(ModuleName.SOC_AI);
+                    enableDisableModuleMenus(nameShort, activationStatus);
+                    enableDisableModuleIndexPatterns(nameShort, activationStatus);
+                    enableDisableModuleFilter(nameShort, activationStatus);
 
-            if (!activationStatus && !nonRemovableConf.contains(nameShort))
-                moduleGroupRepository.deleteAllByModuleId(module.getId());
-
-            enableDisableModuleMenus(nameShort, activationStatus);
-            enableDisableModuleIndexPatterns(nameShort, activationStatus);
-            enableDisableModuleFilter(nameShort, activationStatus);
-            UtmModule detached = SerializationUtils.clone(module);
-            eventProcessorManagerService.updateModule(detached);
-
-            return module;
+                    return module;
+                })
+                .orElseThrow(() -> new NoSuchElementException(
+                        String.format("Definition of the module %1$s not found for the server ID %2$s", nameShort.name(), serverId)
+                ));
     }
 
     private void enableDisableModuleMenus(ModuleName nameShort, Boolean activationStatus) {
@@ -186,11 +181,12 @@ public Optional<UtmModule> findOne(Long id) {
 
     public UtmModule findByServerIdAndModuleName(Long serverId, ModuleName shortName) {
         final String ctx = CLASSNAME + ".findByServerIdAndModuleName";
-        try {
-            return moduleRepository.findByServerIdAndModuleName(serverId, shortName);
-        } catch (Exception e) {
-            throw new RuntimeException(ctx + ": " + e.getMessage());
-        }
+
+        return moduleRepository.findByServerIdAndModuleName(serverId, shortName)
+                .orElseThrow(() -> new NoSuchElementException(
+                        String.format("%s: The module %s not found for the server ID %s", ctx, shortName.name(), serverId)
+                ));
+
     }
 
     public boolean isModuleActive(ModuleName shortName) {

backend/src/main/java/com/park/utmstack/service/dto/logstash_pipeline/UtmLogstashPipelineDTO.java

@@ -55,7 +55,10 @@ public UtmLogstashPipelineDTO(UtmLogstashPipeline pipeline) {
 
     @JsonIgnore
     public UtmLogstashPipeline getPipeline(UtmLogstashPipeline utmLogstashPipeline) {
-        if (utmLogstashPipeline==null) utmLogstashPipeline = new UtmLogstashPipeline();
+        if (utmLogstashPipeline==null){
+            utmLogstashPipeline = new UtmLogstashPipeline();
+            utmLogstashPipeline.setDefaults();
+        }
         utmLogstashPipeline.setId(this.getId());
         utmLogstashPipeline.setPipelineName(this.getPipelineName());
         utmLogstashPipeline.setModuleName(this.getModuleName());