use existing property and allow flexible severity failures

Author: dterrybd

src/main/java/com/blackduck/integration/detect/configuration/DetectConfigurationFactory.java

@@ -237,8 +237,9 @@ public DetectToolFilter createToolFilter(RunDecision runDecision, BlackDuckDecis
     public RapidScanOptions createRapidScanOptions() {
         RapidCompareMode rapidCompareMode = detectConfiguration.getValue(DetectProperties.DETECT_BLACKDUCK_RAPID_COMPARE_MODE);
         BlackduckScanMode scanMode= detectConfiguration.getValue(DetectProperties.DETECT_BLACKDUCK_SCAN_MODE);
+        List<PolicyRuleSeverityType> severitiesToFailPolicyCheck = detectConfiguration.getValue(DetectProperties.DETECT_POLICY_CHECK_FAIL_ON_SEVERITIES).representedValues();
         long detectTimeout = findTimeoutInSeconds();
-        return new RapidScanOptions(rapidCompareMode, scanMode, detectTimeout);
+        return new RapidScanOptions(rapidCompareMode, scanMode, detectTimeout, severitiesToFailPolicyCheck);
     }
 
     public BlackduckScanMode createScanMode() {

src/main/java/com/blackduck/integration/detect/lifecycle/run/operation/OperationRunner.java

@@ -27,7 +27,6 @@
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
-import com.blackduck.integration.blackduck.api.generated.enumeration.BomStatusScanStatusType;
 import org.apache.commons.codec.digest.DigestUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.http.entity.ContentType;
@@ -38,6 +37,7 @@
 import com.blackduck.integration.bdio.graph.ProjectDependencyGraph;
 import com.blackduck.integration.bdio.model.externalid.ExternalId;
 import com.blackduck.integration.blackduck.api.generated.discovery.ApiDiscovery;
+import com.blackduck.integration.blackduck.api.generated.enumeration.BomStatusScanStatusType;
 import com.blackduck.integration.blackduck.api.generated.enumeration.PolicyRuleSeverityType;
 import com.blackduck.integration.blackduck.api.generated.view.BomStatusScanView;
 import com.blackduck.integration.blackduck.api.generated.view.DeveloperScansScanView;
@@ -700,7 +700,9 @@ public List<DeveloperScansScanView> waitForRapidResults(BlackDuckRunData blackDu
     }
 
     public final RapidScanResultSummary logRapidReport(List<DeveloperScansScanView> scanResults, BlackduckScanMode mode) throws OperationException {
-        return auditLog.namedInternal("Print Rapid Mode Results", () -> new RapidModeLogReportOperation(exitCodePublisher, rapidScanResultAggregator, mode).perform(scanResults));
+        List<PolicyRuleSeverityType> severitiesToFailPolicyCheck = detectConfigurationFactory.createRapidScanOptions().getSeveritiesToFailPolicyCheck();
+        return auditLog.namedInternal("Print Rapid Mode Results", () -> 
+            new RapidModeLogReportOperation(exitCodePublisher, rapidScanResultAggregator, mode).perform(scanResults, severitiesToFailPolicyCheck));
     }
 
     public final File generateRapidJsonFile(NameVersion projectNameVersion, List<DeveloperScansScanView> scanResults) throws OperationException {

src/main/java/com/blackduck/integration/detect/workflow/blackduck/developer/RapidModeLogReportOperation.java

@@ -6,6 +6,7 @@
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
+import com.blackduck.integration.blackduck.api.generated.enumeration.PolicyRuleSeverityType;
 import com.blackduck.integration.blackduck.api.generated.view.DeveloperScansScanView;
 import com.blackduck.integration.detect.configuration.DetectUserFriendlyException;
 import com.blackduck.integration.detect.configuration.enumeration.BlackduckScanMode;
@@ -28,8 +29,8 @@ public RapidModeLogReportOperation(ExitCodePublisher exitCodePublisher, RapidSca
         this.scanMode = mode.displayName();
     }
 
-    public RapidScanResultSummary perform(List<DeveloperScansScanView> results) throws DetectUserFriendlyException {
-         RapidScanAggregateResult aggregateResult = rapidScanResultAggregator.aggregateData(results);
+    public RapidScanResultSummary perform(List<DeveloperScansScanView> results, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) throws DetectUserFriendlyException {
+        RapidScanAggregateResult aggregateResult = rapidScanResultAggregator.aggregateData(results, severitiesToFailPolicyCheck);
         logger.info(String.format("%s:", scanMode + RapidScanDetectResult.NONPERSISTENT_SCAN_RESULT_DETAILS_HEADING));
         aggregateResult.logResult(new Slf4jIntLogger(logger));
         RapidScanResultSummary summary = aggregateResult.getSummary();

src/main/java/com/blackduck/integration/detect/workflow/blackduck/developer/RapidScanOptions.java

@@ -1,17 +1,22 @@
 package com.blackduck.integration.detect.workflow.blackduck.developer;
 
+import java.util.List;
+
+import com.blackduck.integration.blackduck.api.generated.enumeration.PolicyRuleSeverityType;
 import com.blackduck.integration.detect.configuration.enumeration.BlackduckScanMode;
 import com.blackduck.integration.detect.configuration.enumeration.RapidCompareMode;
 
 public class RapidScanOptions {
     private final RapidCompareMode compareMode;
     private final BlackduckScanMode scanMode;
     private final long detectTimeout;
+    private final List<PolicyRuleSeverityType> severitiesToFailPolicyCheck;
 
-    public RapidScanOptions(RapidCompareMode compareMode, BlackduckScanMode scanMode, long detectTimeout) {
+    public RapidScanOptions(RapidCompareMode compareMode, BlackduckScanMode scanMode, long detectTimeout, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         this.compareMode = compareMode;
         this.scanMode = scanMode;
         this.detectTimeout = detectTimeout;
+        this.severitiesToFailPolicyCheck = severitiesToFailPolicyCheck;
     }
 
     public RapidCompareMode getCompareMode() {
@@ -25,4 +30,8 @@ public BlackduckScanMode getScanMode() {
     public long getDetectTimeout() {
         return detectTimeout;
     }
+    
+    public List<PolicyRuleSeverityType> getSeveritiesToFailPolicyCheck() {
+        return severitiesToFailPolicyCheck;
+    }
 }

src/main/java/com/blackduck/integration/detect/workflow/blackduck/developer/aggregate/RapidScanComponentGroupDetail.java

@@ -5,15 +5,15 @@
 import java.util.Set;
 
 import com.blackduck.integration.blackduck.api.generated.component.*;
+import com.blackduck.integration.blackduck.api.generated.enumeration.PolicyRuleSeverityType;
+
 import org.apache.commons.lang3.StringUtils;
 
 import com.blackduck.integration.blackduck.api.generated.view.DeveloperScansScanView;
 
 public class RapidScanComponentGroupDetail {
 
     private static final String POLICY_SEPARATOR = "/";
-    private static final String POLICY_SEVERITY_BLOCKER = "BLOCKER";
-    private static final String POLICY_SEVERITY_CRITICAL = "CRITICAL";
 
     private final RapidScanDetailGroup group;
     private final Set<String> errorMessages = new LinkedHashSet<>();
@@ -86,12 +86,14 @@ public void addMessages(String errorMessage, String warningMessage) {
     // While it may be possible to reduce the overall message generation code in this class by pushing 
     // some common pieces into a parent class or interface, it is likely not worth altering the libraries 
     // as this may be temporary code.
-    public void addComponentMessages(DeveloperScansScanView resultView, DeveloperScansScanItemsComponentViolatingPoliciesView componentPolicyViolation) {
+    public void addComponentMessages(DeveloperScansScanView resultView, DeveloperScansScanItemsComponentViolatingPoliciesView componentPolicyViolation, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         String baseMessage = getBaseMessage(resultView);
 
         String errorMessage = "", warningMessage = "";
 
-            if (componentPolicyViolation.getPolicySeverity().equals(POLICY_SEVERITY_CRITICAL) || componentPolicyViolation.getPolicySeverity().equals(POLICY_SEVERITY_BLOCKER)) {
+        if (severitiesToFailPolicyCheck.stream()
+                .map(PolicyRuleSeverityType::name)
+                .anyMatch(severity -> severity.equals(componentPolicyViolation.getPolicySeverity()))) {
                 if (errorMessage.equals("")) {
                     errorMessage = baseMessage;
                 } else {
@@ -117,7 +119,7 @@ public void addComponentMessages(DeveloperScansScanView resultView, DeveloperSca
     // While it may be possible to reduce the overall message generation code in this class by pushing 
     // some common pieces into a parent class or interface, it is likely not worth altering the libraries 
     // as this may be temporary code.
-    public void addLicenseMessages(DeveloperScansScanView resultView, DeveloperScansScanItemsPolicyViolationLicensesView licensePolicyViolation) {
+    public void addLicenseMessages(DeveloperScansScanView resultView, DeveloperScansScanItemsPolicyViolationLicensesView licensePolicyViolation, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         String baseMessage = getBaseMessage(resultView);
 
         List<DeveloperScansScanItemsPolicyViolationLicensesViolatingPoliciesView> violatingPolicies = licensePolicyViolation.getViolatingPolicies();
@@ -126,8 +128,10 @@ public void addLicenseMessages(DeveloperScansScanView resultView, DeveloperScans
 
         for (int i = 0; i < violatingPolicies.size(); i++) {
             DeveloperScansScanItemsPolicyViolationLicensesViolatingPoliciesView violation = violatingPolicies.get(i);
-                    
-            if (violation.getPolicySeverity().equals(POLICY_SEVERITY_CRITICAL) || violation.getPolicySeverity().equals(POLICY_SEVERITY_BLOCKER)) {
+            
+            if (severitiesToFailPolicyCheck.stream()
+                    .map(PolicyRuleSeverityType::name)
+                    .anyMatch(severity -> severity.equals(violation.getPolicySeverity()))) {
                 if (errorMessage.equals("")) {
                     errorMessage = baseMessage;
                 } else {
@@ -164,7 +168,7 @@ public void addLicenseMessages(DeveloperScansScanView resultView, DeveloperScans
     // some common pieces into a parent class or interface, it is likely not worth altering the libraries 
     // as this may be temporary code.
     public void addVulnerabilityMessages(DeveloperScansScanView resultView,
-            DeveloperScansScanItemsPolicyViolationVulnerabilitiesView vulnerabilityPolicyViolation) {
+            DeveloperScansScanItemsPolicyViolationVulnerabilitiesView vulnerabilityPolicyViolation, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         String baseMessage = getBaseMessage(resultView);
 
         List<DeveloperScansScanItemsPolicyViolationVulnerabilitiesViolatingPoliciesView> violatingPolicies = vulnerabilityPolicyViolation.getViolatingPolicies();
@@ -174,7 +178,9 @@ public void addVulnerabilityMessages(DeveloperScansScanView resultView,
         for (int i = 0; i < violatingPolicies.size(); i++) {
             DeveloperScansScanItemsPolicyViolationVulnerabilitiesViolatingPoliciesView violation = violatingPolicies.get(i);
 
-            if (violation.getPolicySeverity().equals(POLICY_SEVERITY_CRITICAL) || violation.getPolicySeverity().equals(POLICY_SEVERITY_BLOCKER)) {
+            if (severitiesToFailPolicyCheck.stream()
+                    .map(PolicyRuleSeverityType::name)
+                    .anyMatch(severity -> severity.equals(violation.getPolicySeverity()))) {
                 errorMessage = constructVulnerabilityMessageSegment(baseMessage, errorMessage, violation);
             } else {
                 warningMessage = constructVulnerabilityMessageSegment(baseMessage, warningMessage, violation);
@@ -212,15 +218,17 @@ public void addVulnerabilityMessages(DeveloperScansScanView resultView,
     // While it may be possible to reduce the overall message generation code in this class by pushing
     // some common pieces into a parent class or interface, it is likely not worth altering the libraries
     // as this may be temporary code.
-    public void addViolatingPoliciesMessages(DeveloperScansScanView resultView, List<DeveloperScansScanItemsViolatingPoliciesView> violatingPolicies) {
+    public void addViolatingPoliciesMessages(DeveloperScansScanView resultView, List<DeveloperScansScanItemsViolatingPoliciesView> violatingPolicies, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         String baseMessage = getBaseMessage(resultView);
 
         String errorMessage = "", warningMessage = "";
 
         for (int i = 0; i < violatingPolicies.size(); i++) {
             DeveloperScansScanItemsViolatingPoliciesView violation = violatingPolicies.get(i);
 
-            if (violation.getPolicySeverity().equals(POLICY_SEVERITY_CRITICAL) || violation.getPolicySeverity().equals(POLICY_SEVERITY_BLOCKER)) {
+            if (severitiesToFailPolicyCheck.stream()
+                    .map(PolicyRuleSeverityType::name)
+                    .anyMatch(severity -> severity.equals(violation.getPolicySeverity()))) {
                 if (errorMessage.equals("")) {
                     errorMessage = baseMessage;
                 } else {

src/main/java/com/blackduck/integration/detect/workflow/blackduck/developer/aggregate/RapidScanResultAggregator.java

@@ -13,17 +13,20 @@
 import java.util.stream.Collectors;
 
 import com.blackduck.integration.blackduck.api.generated.component.*;
+import com.blackduck.integration.blackduck.api.generated.enumeration.PolicyRuleSeverityType;
+
 import org.apache.commons.lang3.StringUtils;
 
 import com.blackduck.integration.blackduck.api.generated.view.DeveloperScansScanView;
+import com.blackduck.integration.detect.workflow.blackduck.developer.RapidScanOptions;
 
 public class RapidScanResultAggregator {
 
     private final Map<String, Set<String>> directToTransitiveChildren = new HashMap<>();
     private final Map<String, String[]> directUpgradeGuidanceVersions = new HashMap<>();
 
-    public RapidScanAggregateResult aggregateData(List<DeveloperScansScanView> results) {
-        Collection<RapidScanComponentDetail> componentDetails = aggregateComponentData(results);
+    public RapidScanAggregateResult aggregateData(List<DeveloperScansScanView> results, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
+        Collection<RapidScanComponentDetail> componentDetails = aggregateComponentData(results, severitiesToFailPolicyCheck);
         List<RapidScanComponentDetail> sortedByComponent = componentDetails.stream()
                 .sorted(Comparator.comparing(RapidScanComponentDetail::getComponentIdentifier))
                 .collect(Collectors.toList());
@@ -62,7 +65,7 @@ public RapidScanAggregateResult aggregateData(List<DeveloperScansScanView> resul
                 transitiveGuidance);
     }
 
-    private List<RapidScanComponentDetail> aggregateComponentData(List<DeveloperScansScanView> results) {
+    private List<RapidScanComponentDetail> aggregateComponentData(List<DeveloperScansScanView> results, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         // the key is the component identifier
         List<RapidScanComponentDetail> componentDetails = new LinkedList<>();
 
@@ -110,10 +113,10 @@ private List<RapidScanComponentDetail> aggregateComponentData(List<DeveloperScan
             licenseGroupDetail.addPolicies(licensePolicyNames);
             violatingPoliciesDetail.addPolicies(allViolatedPolicyNames);
 
-            addComponentData(resultView, componentViolations, componentGroupDetail);
-            addVulnerabilityData(resultView, vulnerabilityViolations, securityGroupDetail);
-            addLicenseData(resultView, licenseViolations, licenseGroupDetail);
-            addViolatingPoliciesData(resultView, policyViolationsSuperset, violatingPoliciesDetail);
+            addComponentData(resultView, componentViolations, componentGroupDetail, severitiesToFailPolicyCheck);
+            addVulnerabilityData(resultView, vulnerabilityViolations, securityGroupDetail, severitiesToFailPolicyCheck);
+            addLicenseData(resultView, licenseViolations, licenseGroupDetail, severitiesToFailPolicyCheck);
+            addViolatingPoliciesData(resultView, policyViolationsSuperset, violatingPoliciesDetail, severitiesToFailPolicyCheck);
         }
 
         return componentDetails;
@@ -190,26 +193,26 @@ private RapidScanComponentDetail createDetail(DeveloperScansScanView resultView)
                 securityGroupDetail, licenseGroupDetail, violatingPoliciesDetail);
     }
 
-    private void addVulnerabilityData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsPolicyViolationVulnerabilitiesView> vulnerabilities, RapidScanComponentGroupDetail securityDetail) {
+    private void addVulnerabilityData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsPolicyViolationVulnerabilitiesView> vulnerabilities, RapidScanComponentGroupDetail securityDetail, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         for (DeveloperScansScanItemsPolicyViolationVulnerabilitiesView vulnerabilityPolicyViolation : vulnerabilities) {
-            securityDetail.addVulnerabilityMessages(resultView, vulnerabilityPolicyViolation);
+            securityDetail.addVulnerabilityMessages(resultView, vulnerabilityPolicyViolation, severitiesToFailPolicyCheck);
         }
     }
 
-    private void addLicenseData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsPolicyViolationLicensesView> licenseViolations, RapidScanComponentGroupDetail licenseDetail) {
+    private void addLicenseData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsPolicyViolationLicensesView> licenseViolations, RapidScanComponentGroupDetail licenseDetail, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         for (DeveloperScansScanItemsPolicyViolationLicensesView licensePolicyViolation : licenseViolations) {
-            licenseDetail.addLicenseMessages(resultView, licensePolicyViolation);
+            licenseDetail.addLicenseMessages(resultView, licensePolicyViolation, severitiesToFailPolicyCheck);
         }
     }
 
-    private void addComponentData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsComponentViolatingPoliciesView> componentViolations, RapidScanComponentGroupDetail componentGroupDetail) {
+    private void addComponentData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsComponentViolatingPoliciesView> componentViolations, RapidScanComponentGroupDetail componentGroupDetail, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
         for (DeveloperScansScanItemsComponentViolatingPoliciesView componentPolicyViolation: componentViolations) {
-            componentGroupDetail.addComponentMessages(resultView, componentPolicyViolation);
+            componentGroupDetail.addComponentMessages(resultView, componentPolicyViolation, severitiesToFailPolicyCheck);
         }
     }
 
-    private void addViolatingPoliciesData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsViolatingPoliciesView> allPolicyViolations, RapidScanComponentGroupDetail violatingPoliciesDetail) {
-        violatingPoliciesDetail.addViolatingPoliciesMessages(resultView, allPolicyViolations);
+    private void addViolatingPoliciesData(DeveloperScansScanView resultView, List<DeveloperScansScanItemsViolatingPoliciesView> allPolicyViolations, RapidScanComponentGroupDetail violatingPoliciesDetail, List<PolicyRuleSeverityType> severitiesToFailPolicyCheck) {
+        violatingPoliciesDetail.addViolatingPoliciesMessages(resultView, allPolicyViolations, severitiesToFailPolicyCheck);
     }
 
     /**