anti/DECNET
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
dev
DECNET/decnet/web/router/ttp/api_export_navigator.py
anti f2b3393669 chore: relicense to AGPL-3.0-or-later and add SPDX headers 
Replaces LICENSE (GPLv3 -> AGPLv3) and prepends
`SPDX-License-Identifier: AGPL-3.0-or-later` to every source file
across decnet/, decnet_web/, tests/, scripts/, and tools/.

Rationale: closes the GPLv3 ASP loophole so any party operating a
modified DECNET as a network service must offer their modified
source. Personal copyright (Samuel Paschuan) + inbound=outbound
contributions make a future unilateral relicense infeasible.

- LICENSE: full AGPL-3.0 text (gnu.org/licenses/agpl-3.0.txt)
- COPYRIGHT: project copyright notice
- tools/add_spdx_headers.py: idempotent header injector
  (shebang- and PEP 263-aware)

Touches 1565 source files (.py, .ts, .tsx, .js, .jsx, .css, .sh).
No behavior change; comments only.
2026-05-22 21:04:16 -04:00

72 lines
2.2 KiB
Python
Raw Permalink Blame History

# SPDX-License-Identifier: AGPL-3.0-or-later
"""GET /api/v1/ttp/export/navigator{,/identity/{uuid}} — Navigator JSON layer.
Empty-but-valid Navigator layer at contract phase per TTP_TAGGING.md
§"UI surface — Empty state": a SOC analyst pasting the JSON into the
official MITRE ATT&CK Navigator sees the file load with no
highlighted techniques — correct, not broken.
"""
from __future__ import annotations
from typing import Any
from fastapi import APIRouter, Depends
from decnet.telemetry import traced as _traced
from decnet.web.db.models import NavigatorLayer, NavigatorTechnique
from decnet.web.dependencies import repo, require_viewer
router = APIRouter()
@router.get(
"/ttp/export/navigator",
tags=["TTP Tagging"],
response_model=NavigatorLayer,
responses={
401: {"description": "Could not validate credentials"},
403: {"description": "Insufficient permissions"},
},
)
@_traced("api.ttp.export_navigator_fleet")
async def api_export_navigator_fleet(
user: dict[str, Any] = Depends(require_viewer),
) -> NavigatorLayer:
"""Fleet-wide Navigator layer."""
rows = await repo.list_distinct_techniques()
techniques = [
NavigatorTechnique(techniqueID=r.technique_id, score=r.count)
for r in rows
]
return NavigatorLayer(
name="DECNET TTP coverage — fleet",
techniques=techniques,
)
@router.get(
"/ttp/export/navigator/identity/{identity_uuid}",
tags=["TTP Tagging"],
response_model=NavigatorLayer,
responses={
401: {"description": "Could not validate credentials"},
403: {"description": "Insufficient permissions"},
404: {"description": "Identity not found"},
},
)
@_traced("api.ttp.export_navigator_identity")
async def api_export_navigator_identity(
identity_uuid: str,
user: dict[str, Any] = Depends(require_viewer),
) -> NavigatorLayer:
"""Per-Identity Navigator layer (the SOC demo)."""
rows = await repo.list_techniques_by_identity(identity_uuid)
techniques = [
NavigatorTechnique(techniqueID=r.technique_id, score=r.count)
for r in rows
]
return NavigatorLayer(
name=f"DECNET TTP coverage — identity {identity_uuid}",
techniques=techniques,
)
Reference in New Issue View Git Blame Copy Permalink