feat: provide endpoint for OpenSearch evaluations including latest evaluation calculation per control

Author: elmilan06

backend/src/main/java/com/park/utmstack/repository/compliance/UtmComplianceControlConfigRepository.java

@@ -7,6 +7,7 @@
 import org.springframework.data.repository.query.Param;
 import org.springframework.stereotype.Repository;
 
+import java.util.List;
 import java.util.Optional;
 
 @Repository
@@ -19,4 +20,13 @@ public interface UtmComplianceControlConfigRepository extends JpaRepository<UtmC
         WHERE c.id = :id
     """)
     Optional<UtmComplianceControlConfig> findByIdWithQueries(@Param("id") Long id);
+
+    @Query("""
+    SELECT DISTINCT c FROM UtmComplianceControlConfig c
+    LEFT JOIN FETCH c.section s
+    LEFT JOIN FETCH c.queriesConfigs q
+    WHERE c.standardSectionId = :sectionId
+    """)
+    List<UtmComplianceControlConfig> findBySectionIdWithQueries(@Param("sectionId") Long sectionId);
+
 }

backend/src/main/java/com/park/utmstack/service/compliance/config/UtmComplianceControlConfigService.java

@@ -11,6 +11,7 @@
 import org.springframework.stereotype.Service;
 
 import javax.transaction.Transactional;
+import java.util.List;
 import java.util.Map;
 import java.util.stream.Collectors;
 
@@ -108,4 +109,12 @@ private void validateControlConfig(UtmComplianceControlConfigDto dto) {
             }
         }
     }
+
+    public List<UtmComplianceControlConfigDto> getControlsBySection(Long sectionId) {
+        var entities = repository.findBySectionIdWithQueries(sectionId);
+        return entities.stream()
+                .map(mapper::toDto)
+                .collect(Collectors.toList());
+    }
+
 }

backend/src/main/java/com/park/utmstack/service/compliance/config/UtmComplianceControlEvaluationService.java

@@ -1,23 +1,40 @@
 package com.park.utmstack.service.compliance.config;
 
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlConfigDto;
 import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationDto;
 import com.park.utmstack.service.elasticsearch.ElasticsearchService;
+import com.park.utmstack.service.mapper.compliance.UtmComplianceControlEvaluationMapper;
 import org.springframework.stereotype.Service;
 
 import java.util.List;
 
 @Service
 public class UtmComplianceControlEvaluationService {
 
-    private final ElasticsearchService elasticsearchService;
+    //private final ElasticsearchService elasticsearchService;
+    private final UtmComplianceControlConfigService configService;
+    private final UtmComplianceControlEvaluationsService evaluationsService;
 
-    public UtmComplianceControlEvaluationService(ElasticsearchService elasticsearchService) {
-        this.elasticsearchService = elasticsearchService;
+    public UtmComplianceControlEvaluationService(ElasticsearchService elasticsearchService,
+                                                 UtmComplianceControlConfigService configService,
+                                                 UtmComplianceControlEvaluationsService evaluationsService) {
+        //this.elasticsearchService = elasticsearchService;
+        this.configService = configService;
+        this.evaluationsService = evaluationsService;
     }
 
-    public List<UtmComplianceControlEvaluationDto> findByControlId(Long controlId) {
-        return elasticsearchService.getControlEvaluations(controlId);
+     public List<UtmComplianceControlEvaluationDto> getControlsWithLastEvaluation(Long sectionId) {
+
+            List<UtmComplianceControlConfigDto> controls =
+                    configService.getControlsBySection(sectionId);
+
+            return controls.stream()
+                    .map(control -> {
+                        var lastEval = evaluationsService.getLastEvaluationForControl(control.getId());
+                        return UtmComplianceControlEvaluationMapper.toDto(control, lastEval);
+                    })
+                    .toList();
+        }
     }
-}
 
 

backend/src/main/java/com/park/utmstack/service/compliance/config/UtmComplianceControlEvaluationsService.java

@@ -0,0 +1,25 @@
+package com.park.utmstack.service.compliance.config;
+
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationsDto;
+import com.park.utmstack.service.elasticsearch.ElasticsearchService;
+import org.springframework.stereotype.Service;
+
+import java.util.List;
+
+@Service
+public class UtmComplianceControlEvaluationsService {
+
+    private final ElasticsearchService elasticsearchService;
+
+    public UtmComplianceControlEvaluationsService(ElasticsearchService elasticsearchService) {
+        this.elasticsearchService = elasticsearchService;
+    }
+
+    public List<UtmComplianceControlEvaluationsDto> findByControlId(Long controlId) {
+        return elasticsearchService.getControlEvaluations(controlId);
+    }
+
+    public UtmComplianceControlEvaluationsDto getLastEvaluationForControl(Long controlId) {
+        return elasticsearchService.getLastEvaluation(controlId);
+    }
+}

backend/src/main/java/com/park/utmstack/service/dto/compliance/UtmComplianceControlEvaluationDto.java

@@ -1,19 +1,23 @@
 package com.park.utmstack.service.dto.compliance;
 
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.park.utmstack.domain.compliance.enums.ComplianceStrategy;
 import lombok.Data;
 
-import java.time.Instant;
 import java.util.List;
 
 @Data
-@JsonIgnoreProperties(ignoreUnknown = true)
 public class UtmComplianceControlEvaluationDto {
+    private Long id;
+    private Long standardSectionId;
+    private UtmComplianceStandardSectionDto section;
 
-    private Long controlId;
     private String controlName;
-    private String status;
-    private Instant timestamp;
-    private List<UtmComplianceQueryEvaluationDto> queryEvaluations;
-}
+    private String controlSolution;
+    private String controlRemediation;
+    private ComplianceStrategy controlStrategy;
+
+    private List<UtmComplianceQueryConfigDto> queriesConfigs;
 
+    private String lastEvaluationStatus;
+    private String lastEvaluationTimestamp;
+}

backend/src/main/java/com/park/utmstack/service/dto/compliance/UtmComplianceControlEvaluationsDto.java

@@ -0,0 +1,18 @@
+package com.park.utmstack.service.dto.compliance;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import lombok.Data;
+
+import java.time.Instant;
+import java.util.List;
+
+@Data
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class UtmComplianceControlEvaluationsDto {
+    private Long controlId;
+    private String controlName;
+    private String status;
+    private Instant timestamp;
+    private List<UtmComplianceQueryEvaluationDto> queryEvaluations;
+}
+

backend/src/main/java/com/park/utmstack/service/elasticsearch/ElasticsearchService.java

@@ -10,8 +10,9 @@
 import com.park.utmstack.service.MailService;
 import com.park.utmstack.service.UtmSpaceNotificationControlService;
 import com.park.utmstack.service.application_events.ApplicationEventService;
-import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationDto;
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationsDto;
 import com.park.utmstack.service.mapper.compliance.UtmComplianceControlEvaluationMapper;
+import com.park.utmstack.service.mapper.compliance.UtmComplianceControlEvaluationsMapper;
 import com.park.utmstack.util.chart_builder.IndexPropertyType;
 import com.park.utmstack.util.exceptions.OpenSearchIndexNotFoundException;
 import com.park.utmstack.util.exceptions.UtmElasticsearchException;
@@ -407,19 +408,54 @@ public <T> SearchSqlResponse<T> searchBySql(SqlQueryRequest request, Class<T> re
         }
     }
 
-    public List<UtmComplianceControlEvaluationDto> getControlEvaluations(Long controlId) {
+    public List<UtmComplianceControlEvaluationsDto> getControlEvaluations(Long controlId) {
         final String ctx = CLASSNAME + ".getControlEvaluations";
         try {
-            Query query = Query.of(q -> q.term(t -> t.field("control_id").value(FieldValue.of(controlId.toString())))
+            Query query = Query.of(q -> q.term(t -> t
+                    .field("control_id")
+                    .value(FieldValue.of(controlId.toString())))
             );
 
-            SearchRequest request = new SearchRequest.Builder().index("v11-log-compliance-evaluation").query(query).size(1000).build();
+            SearchRequest request = new SearchRequest.Builder()
+                    .index("v11-log-compliance-evaluation")
+                    .query(query)
+                    .size(1000)
+                    .build();
+
             SearchResponse<Map> response = search(request, Map.class);
 
-            return response.hits().hits().stream().map(hit -> UtmComplianceControlEvaluationMapper.mapToEvaluationDto(hit.source())).toList();
+            return response.hits().hits().stream().map(hit -> UtmComplianceControlEvaluationsMapper.mapToEvaluationDto(hit.source())).toList();
 
         } catch (Exception e) {
             throw new RuntimeException(ctx + ": " + e.getMessage(), e);
         }
     }
+
+    public UtmComplianceControlEvaluationsDto getLastEvaluation(Long controlId) {
+        try {
+            SearchRequest request = new SearchRequest.Builder()
+                    .index("v11-log-compliance-evaluation")
+                    .query(q -> q.term(t -> t
+                            .field("control_id")
+                            .value(v -> v.longValue(controlId))
+                    ))
+                    .sort(s -> s.field(f -> f.field("timestamp").order(SortOrder.Desc)))
+                    .size(1)
+                    .build();
+
+            SearchResponse<Map> response = client.getClient().search(request, Map.class);
+
+            if (response.hits().hits().isEmpty()) {
+                return null;
+            }
+
+            Map<String, Object> source = response.hits().hits().get(0).source();
+
+            return UtmComplianceControlEvaluationMapper.mapToEvaluationDto(source);
+
+        } catch (Exception e) {
+            throw new RuntimeException("Error fetching last evaluation for control " + controlId, e);
+        }
+    }
+
 }

backend/src/main/java/com/park/utmstack/service/mapper/compliance/UtmComplianceControlEvaluationMapper.java

@@ -1,43 +1,64 @@
 package com.park.utmstack.service.mapper.compliance;
 
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlConfigDto;
 import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationDto;
-import com.park.utmstack.service.dto.compliance.UtmComplianceQueryEvaluationDto;
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationsDto;
 
 import java.time.Instant;
-import java.util.List;
 import java.util.Map;
 
 public class UtmComplianceControlEvaluationMapper {
 
-    private UtmComplianceControlEvaluationMapper() {
-
-    }
-
-    public static UtmComplianceControlEvaluationDto mapToEvaluationDto(Map<String, Object> src) {
+    public static UtmComplianceControlEvaluationDto toDto(
+            UtmComplianceControlConfigDto control,
+            UtmComplianceControlEvaluationsDto controlEvaluations
+    ) {
         UtmComplianceControlEvaluationDto dto = new UtmComplianceControlEvaluationDto();
 
-        dto.setControlId(((Number) src.get("control_id")).longValue());
-        dto.setControlName((String) src.get("control_name"));
-        dto.setStatus((String) src.get("status"));
-        dto.setTimestamp(Instant.parse((String) src.get("timestamp")));
+        dto.setId(control.getId());
+        dto.setStandardSectionId(control.getStandardSectionId());
+        dto.setSection(control.getSection());
+        dto.setControlName(control.getControlName());
+        dto.setControlSolution(control.getControlSolution());
+        dto.setControlRemediation(control.getControlRemediation());
+        dto.setControlStrategy(control.getControlStrategy());
+        dto.setQueriesConfigs(control.getQueriesConfigs());
 
-        List<Map<String, Object>> q = (List<Map<String, Object>>) src.get("query_evaluations");
-        if (q != null) {
-            dto.setQueryEvaluations(q.stream().map(UtmComplianceControlEvaluationMapper::mapQueryEval).toList());
+        //TODO: ELENA - this is a temporary solution, we need to decide how to handle multiple evaluations for the same control
+        if (controlEvaluations != null) {
+            dto.setLastEvaluationStatus(controlEvaluations.getStatus());
+            dto.setLastEvaluationTimestamp(
+                    controlEvaluations.getTimestamp() != null ? controlEvaluations.getTimestamp().toString() : null
+            );
         }
 
         return dto;
     }
 
-    private static UtmComplianceQueryEvaluationDto mapQueryEval(Map<String, Object> src) {
-        UtmComplianceQueryEvaluationDto dto = new UtmComplianceQueryEvaluationDto();
+    public static UtmComplianceControlEvaluationsDto mapToEvaluationDto(Map<String, Object> source) {
+        if (source == null) return null;
+
+        UtmComplianceControlEvaluationsDto dto = new UtmComplianceControlEvaluationsDto();
+
+        dto.setControlId(getLong(source.get("control_id")));
+        dto.setControlName(getString(source.get("control_name")));
+        dto.setStatus(getString(source.get("status")));
 
-        dto.setQueryConfigId(((Number) src.get("queryConfigId")).longValue());
-        dto.setQueryName((String) src.get("queryName"));
-        dto.setHits(((Number) src.get("hits")).intValue());
-        dto.setStatus((String) src.get("status"));
-        dto.setEvidence((List<Map<String, Object>>) src.get("evidence"));
+        Object ts = source.get("timestamp");
+        if (ts != null) {
+            dto.setTimestamp(Instant.parse(ts.toString()));
+        }
 
         return dto;
     }
+
+    private static String getString(Object o) {
+        return o != null ? o.toString() : null;
+    }
+
+    private static Long getLong(Object o) {
+        if (o == null) return null;
+        if (o instanceof Number n) return n.longValue();
+        return Long.parseLong(o.toString());
+    }
 }

backend/src/main/java/com/park/utmstack/service/mapper/compliance/UtmComplianceControlEvaluationsMapper.java

@@ -0,0 +1,43 @@
+package com.park.utmstack.service.mapper.compliance;
+
+import com.park.utmstack.service.dto.compliance.UtmComplianceControlEvaluationsDto;
+import com.park.utmstack.service.dto.compliance.UtmComplianceQueryEvaluationDto;
+
+import java.time.Instant;
+import java.util.List;
+import java.util.Map;
+
+public class UtmComplianceControlEvaluationsMapper {
+
+    private UtmComplianceControlEvaluationsMapper() {
+
+    }
+
+    public static UtmComplianceControlEvaluationsDto mapToEvaluationDto(Map<String, Object> src) {
+        UtmComplianceControlEvaluationsDto dto = new UtmComplianceControlEvaluationsDto();
+
+        dto.setControlId(((Number) src.get("control_id")).longValue());
+        dto.setControlName((String) src.get("control_name"));
+        dto.setStatus((String) src.get("status"));
+        dto.setTimestamp(Instant.parse((String) src.get("timestamp")));
+
+        List<Map<String, Object>> q = (List<Map<String, Object>>) src.get("query_evaluations");
+        if (q != null) {
+            dto.setQueryEvaluations(q.stream().map(UtmComplianceControlEvaluationsMapper::mapQueryEval).toList());
+        }
+
+        return dto;
+    }
+
+    private static UtmComplianceQueryEvaluationDto mapQueryEval(Map<String, Object> src) {
+        UtmComplianceQueryEvaluationDto dto = new UtmComplianceQueryEvaluationDto();
+
+        dto.setQueryConfigId(((Number) src.get("queryConfigId")).longValue());
+        dto.setQueryName((String) src.get("queryName"));
+        dto.setHits(((Number) src.get("hits")).intValue());
+        dto.setStatus((String) src.get("status"));
+        dto.setEvidence((List<Map<String, Object>>) src.get("evidence"));
+
+        return dto;
+    }
+}

backend/src/main/java/com/park/utmstack/web/rest/compliance/config/UtmComplianceControlEvaluationResource.java

@@ -17,10 +17,12 @@ public UtmComplianceControlEvaluationResource(UtmComplianceControlEvaluationServ
         this.evaluationService = evaluationService;
     }
 
-    @GetMapping("/{id}/evaluations")
-    public ResponseEntity<List<UtmComplianceControlEvaluationDto>> getControlEvaluations(@PathVariable Long id) {
-        var evaluations = evaluationService.findByControlId(id);
-        return ResponseEntity.ok(evaluations);
+    @GetMapping("/get-by-section")
+    public ResponseEntity<List<UtmComplianceControlEvaluationDto>> getControlsBySection(
+            @RequestParam Long sectionId) {
+
+        var controls = evaluationService.getControlsWithLastEvaluation(sectionId);
+        return ResponseEntity.ok(controls);
     }
 }