Towering dragoon cloudflare 1

ghostwriter/commandcenter/admin.py

@@ -13,6 +13,7 @@
     ExtraFieldSpec,
     GeneralConfiguration,
     NamecheapConfiguration,
+    CloudflareConfiguration,
     ReportConfiguration,
     SlackConfiguration,
     VirusTotalConfiguration,
@@ -23,6 +24,7 @@
 admin.site.register(CloudServicesConfiguration, SingletonModelAdmin)
 admin.site.register(CompanyInformation, SingletonModelAdmin)
 admin.site.register(NamecheapConfiguration, SingletonModelAdmin)
+admin.site.register(CloudflareConfiguration, SingletonModelAdmin)
 admin.site.register(SlackConfiguration, SingletonModelAdmin)
 admin.site.register(VirusTotalConfiguration, SingletonModelAdmin)
 admin.site.register(GeneralConfiguration, SingletonModelAdmin)

ghostwriter/commandcenter/migrations/0001_initial.py

@@ -90,6 +90,21 @@ class Migration(migrations.Migration):
                 "verbose_name": "Namecheap Configuration",
             },
         ),
+        migrations.CreateModel(
+            name="CloudflareConfiguration",
+            fields=[
+                ("id", models.AutoField(auto_created=True, primary_key=True, serialize=False, verbose_name="ID")),
+                ("enable", models.BooleanField(default=False)),
+                ("api_key", models.CharField(default="Cloudflare Global API Key", max_length=255)),
+                ("username", models.CharField(default="Account email", max_length=255)),
+                ("account_id", models.CharField(default="Account ID", max_length=255)),
+                ("client_ip", models.CharField(default="Whitelisted IP Address", max_length=255)),
+                ("page_size", models.IntegerField(default=100)),
+            ],
+            options={
+                "verbose_name": "Cloudflare Configuration",
+            },
+        ),
         migrations.CreateModel(
             name="ReportConfiguration",
             fields=[

ghostwriter/commandcenter/migrations/0034_add_gcp_fields.py

@@ -0,0 +1,92 @@
+# Generated manually to add GCP credential fields
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("commandcenter", "0033_auto_20241204_1810"),  # Replace with your actual previous migration
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_project_id",
+            field=models.CharField(
+                max_length=255,
+                default="your-project-id",
+                verbose_name="GCP Project ID",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_private_key_id",
+            field=models.CharField(
+                max_length=255,
+                default="your-private-key-id",
+                verbose_name="GCP Private Key ID",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_private_key",
+            field=models.TextField(
+                default="your-private-key",
+                verbose_name="GCP Private Key",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_client_email",
+            field=models.CharField(
+                max_length=255,
+                default="your-service-account@project.iam.gserviceaccount.com",
+                verbose_name="GCP Client Email",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_client_id",
+            field=models.CharField(
+                max_length=255,
+                default="your-client-id",
+                verbose_name="GCP Client ID",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_auth_uri",
+            field=models.CharField(
+                max_length=255,
+                default="https://accounts.google.com/o/oauth2/auth",
+                verbose_name="GCP Auth URI",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_token_uri",
+            field=models.CharField(
+                max_length=255,
+                default="https://oauth2.googleapis.com/token",
+                verbose_name="GCP Token URI",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_auth_cert_url",
+            field=models.CharField(
+                max_length=255,
+                default="https://www.googleapis.com/oauth2/v1/certs",
+                verbose_name="GCP Auth Provider Cert URL",
+            ),
+        ),
+        migrations.AddField(
+            model_name="cloudservicesconfiguration",
+            name="gcp_client_cert_url",
+            field=models.TextField(
+                default="https://www.googleapis.com/robot/v1/metadata/x509/your-service-account@project.iam.gserviceaccount.com",
+                verbose_name="GCP Client Cert URL",
+            ),
+        ),
+    ]

ghostwriter/commandcenter/models.py

@@ -74,6 +74,48 @@ class Meta:
     def sanitized_api_key(self):
         return sanitize(self.api_key)
 
+class CloudflareConfiguration(SingletonModel):
+    enable = models.BooleanField(default=False)
+    api_key = models.CharField(max_length=255, default="Cloudflare API key", help_text="Your Cloudflare API key")
+    username = models.CharField(max_length=255, default="Account Email", help_text="Your Cloudflare email")
+    account_id = models.CharField(
+        "Account ID",
+        max_length=255,
+        default="Account ID",
+        help_text="Your Cloudflare Account ID",
+    )
+    client_ip = models.CharField(
+        "Whitelisted IP Address",
+        max_length=255,
+        default="Whitelisted IP Address",
+        help_text="Your external IP address registered with Cloudflare",
+    )
+    page_size = models.IntegerField(
+        "Page Size",
+        default=100,
+        help_text="Maximum number of domains to return (100 is the max allowed)",
+    )
+
+    def __str__(self):
+        return "Cloudflare Configuration"
+
+    class Meta:
+        verbose_name = "Cloudflare Configuration"
+
+    @property
+    def sanitized_api_key(self):
+        return sanitize(self.api_key)
+
+    def __str__(self):
+        return "Cloudflare Configuration"
+
+    class Meta:
+        verbose_name = "Cloudflare Configuration"
+
+    @property
+    def sanitized_api_key(self):
+        return sanitize(self.api_key)
+
 
 class ReportConfiguration(SingletonModel):
     enable_borders = models.BooleanField(default=False, help_text="Enable borders around images in Word documents")
@@ -281,6 +323,16 @@ class CloudServicesConfiguration(SingletonModel):
         default=7,
         help_text="Number of days to delay cloud monitoring notifications for teardown",
     )
+    # GCP-Specific Configuration Fields
+    gcp_project_id = models.CharField("GCP Project ID", max_length=255, default="your-project-id")
+    gcp_private_key_id = models.CharField("GCP Private Key ID", max_length=255, default="your-private-key-id")
+    gcp_private_key = models.TextField("GCP Private Key", default="your-private-key")
+    gcp_client_email = models.CharField("GCP Client Email", max_length=255, default="your-service-account@example.iam.gserviceaccount.com")
+    gcp_client_id = models.CharField("GCP Client ID", max_length=255, default="your-client-id")
+    gcp_auth_uri = models.CharField("GCP Auth URI", max_length=255, default="https://accounts.google.com/o/oauth2/auth")
+    gcp_token_uri = models.CharField("GCP Token URI", max_length=255, default="https://oauth2.googleapis.com/token")
+    gcp_auth_cert_url = models.CharField("GCP Auth Provider Cert URL", max_length=255, default="https://www.googleapis.com/oauth2/v1/certs")
+    gcp_client_cert_url = models.TextField("GCP Client Cert URL", default="https://www.googleapis.com/robot/v1/metadata/x509/your-service-account@example.iam.gserviceaccount.com")
 
     def __str__(self):
         return "Cloud Services Configuration"

ghostwriter/factories.py

@@ -803,6 +803,17 @@ class Meta:
     page_size = 100
 
 
+class CloudflareConfigurationFactory(factory.django.DjangoModelFactory):
+    class Meta:
+        model = "commandcenter.CloudflareConfiguration"
+
+    enable = Faker("boolean")
+    api_key = Faker("credit_card_number")
+    username = Faker("user_name")
+    api_username = Faker("user_name")
+    client_ip = Faker("ipv4_private")
+    page_size = 100
+
 class ReportConfigurationFactory(factory.django.DjangoModelFactory):
     class Meta:
         model = "commandcenter.ReportConfiguration"

ghostwriter/home/templates/home/management.html

@@ -18,6 +18,7 @@
   {% get_solo "commandcenter.CompanyInformation" as company_config %}
   {% get_solo "commandcenter.CloudServicesConfiguration" as cloud_config %}
   {% get_solo "commandcenter.NamecheapConfiguration" as namecheap_config %}
+  {% get_solo "commandcenter.CloudflareConfiguration" as cloudflare_config %}
   {% get_solo "commandcenter.ReportConfiguration" as report_config %}
   {% get_solo "commandcenter.SlackConfiguration" as slack_config %}
   {% get_solo "commandcenter.VirusTotalConfiguration" as vt_config %}
@@ -136,6 +137,37 @@ <h2>API & Notification Configurations</h2>
         <td class="text-justify">Disabled</td>
       </tr>
     {% endif %}
+    {% if cloudflare_config.enable %}
+      <tr>
+        <td class="text-left icon toggle-on-icon">Cloudflare API Enabled</td>
+        <td class="text-justify">{{ cloudflare_config.enable }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon laptop-icon">Cloudflare Whitelisted IP</td>
+        <td class="text-justify">{{ cloudflare_config.client_ip }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon key-icon">Cloudflare API Key</td>
+        <td class="text-justify">{{ cloudflare_config.sanitized_api_key }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon user-icon">Cloudflare Email</td>
+        <td class="text-justify">{{ cloudflare_config.username }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon user-gear-icon">Cloudflare Account ID</td>
+        <td class="text-justify">{{ cloudflare_config.account_id }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon hash-icon">Cloudflare Page Size</td>
+        <td class="text-justify">{{ cloudflare_config.page_size }}</td>
+      </tr>
+    {% else %}
+      <tr>
+        <td class="text-left icon toggle-off-icon">Cloudflare API Enabled</td>
+        <td class="text-justify">Disabled</td>
+      </tr>
+    {% endif %}
 
     <!-- Spacer -->
     <tr>
@@ -165,6 +197,14 @@ <h2>API & Notification Configurations</h2>
         <td class="text-left icon do-icon">Digital Ocean API Key</td>
         <td class="text-justify">{{ cloud_config.sanitized_do_api_key }}</td>
       </tr>
+      <tr>
+        <td class="text-left icon do-icon">GCP Project ID</td>
+        <td class="text-justify">{{ cloud_config.gcp_project_id }}</td>
+      </tr>
+      <tr>
+        <td class="text-left icon do-icon">GCP Private Key ID</td>
+        <td class="text-justify">{{ cloud_config.gcp_private_key_id }}</td>
+      </tr>
     {% else %}
       <tr>
         <td class="text-left icon toggle-off-icon">Cloud Monitoring Enabled</td>
@@ -309,12 +349,18 @@ <h6>Test Configurations</h6>
         <button type="submit" class="js-queue-task btn btn-primary" queue-task-url="{% url 'home:ajax_test_do' %}"
                 queue-task-csrf-token="{{ csrf_token }}">Test Digital Ocean
         </button>
+        <button type="submit" class="js-queue-task btn btn-primary" queue-task-url="{% url 'home:ajax_test_gcp' %}"
+                queue-task-csrf-token="{{ csrf_token }}">Test GCP
+        </button>
       </div>
 
       <div class="btn-group mr-2" role="group" aria-label="API Tests">
         <button class="js-queue-task btn btn-primary" queue-task-url="{% url 'home:ajax_test_namecheap' %}"
                 queue-task-csrf-token="{{ csrf_token }}">Test Namecheap API
         </button>
+        <button class="js-queue-task btn btn-primary" queue-task-url="{% url 'home:ajax_test_cloudflare' %}"
+                queue-task-csrf-token="{{ csrf_token }}">Test Cloudflare API
+        </button>
         <button class="js-queue-task btn btn-primary" queue-task-url="{% url 'home:ajax_test_virustotal' %}"
                 queue-task-csrf-token="{{ csrf_token }}">Test VirusTotal API
         </button>

ghostwriter/home/urls.py

@@ -27,11 +27,21 @@
         views.TestDOConnection.as_view(),
         name="ajax_test_do",
     ),
+    path(
+        "ajax/management/test/gcp",
+        views.TestGCPConnection.as_view(),
+        name="ajax_test_gcp",
+    ),
     path(
         "ajax/management/test/namecheap",
         views.TestNamecheapConnection.as_view(),
         name="ajax_test_namecheap",
     ),
+    path(
+        "ajax/management/test/cloudflare",
+        views.TestCloudflareConnection.as_view(),
+        name="ajax_test_cloudflare",
+    ),
     path(
         "ajax/management/test/slack",
         views.TestSlackConnection.as_view(),