sailpoint init

luancazarine · luancazarine · commit 196963186a9e · 2024-12-11T17:54:59.000-03:00
diff --git a/components/sailpoint/actions/list-certification-campaigns/list-certification-campaigns.mjs b/components/sailpoint/actions/list-certification-campaigns/list-certification-campaigns.mjs
@@ -0,0 +1,28 @@
+import sailpoint from "../../sailpoint.app.mjs";
+import { axios } from "@pipedream/platform";
+
+export default {
+  key: "sailpoint-list-certification-campaigns",
+  name: "List Certification Campaigns",
+  description: "Retrieves multiple certification campaigns in IdentityNow. [See the documentation]()",
+  version: "0.0.{{ts}}",
+  type: "action",
+  props: {
+    sailpoint: {
+      type: "app",
+      app: "identitynow",
+    },
+    filter: {
+      propDefinition: [
+        "sailpoint",
+        "filter",
+      ],
+      optional: true,
+    },
+  },
+  async run({ $ }) {
+    const campaigns = await this.sailpoint.retrieveCertificationCampaigns();
+    $.export("$summary", `Successfully retrieved ${campaigns.length} certification campaigns`);
+    return campaigns;
+  },
+};
diff --git a/components/sailpoint/actions/submit-access-request/submit-access-request.mjs b/components/sailpoint/actions/submit-access-request/submit-access-request.mjs
@@ -0,0 +1,37 @@
+import identitynow from "../../identitynow.app.mjs";
+import { axios } from "@pipedream/platform";
+
+export default {
+  key: "identitynow-submit-access-request",
+  name: "Submit Access Request",
+  description: "Sends an access request to IdentityNow. [See the documentation](https://developer.sailpoint.com/docs/api/v2024/create-access-request)",
+  version: "0.0.{{ts}}",
+  type: "action",
+  props: {
+    identitynow,
+    requestedFor: {
+      propDefinition: [
+        identitynow,
+        "requestedFor",
+      ],
+    },
+    requestType: {
+      propDefinition: [
+        identitynow,
+        "requestType",
+      ],
+      optional: true,
+    },
+    requestedItems: {
+      propDefinition: [
+        identitynow,
+        "requestedItems",
+      ],
+    },
+  },
+  async run({ $ }) {
+    const response = await this.identitynow.submitAccessRequest();
+    $.export("$summary", "Access request submitted successfully.");
+    return response;
+  },
+};
diff --git a/components/sailpoint/actions/upload-account-source-file/upload-account-source-file.mjs b/components/sailpoint/actions/upload-account-source-file/upload-account-source-file.mjs
@@ -0,0 +1,30 @@
+import sailpoint from "../../sailpoint.app.mjs";
+import { axios } from "@pipedream/platform";
+
+export default {
+  key: "sailpoint-upload-account-source-file",
+  name: "Upload Account Source File",
+  description: "Uploads a CSV-formatted account source file to IdentityNow. [See the documentation]()",
+  version: "0.0.{{ts}}",
+  type: "action",
+  props: {
+    sailpoint,
+    sourceId: {
+      propDefinition: [
+        sailpoint,
+        "sourceId",
+      ],
+    },
+    csvAccountFile: {
+      propDefinition: [
+        sailpoint,
+        "csvAccountFile",
+      ],
+    },
+  },
+  async run({ $ }) {
+    const response = await this.sailpoint.uploadCsvAccountFile();
+    $.export("$summary", `Successfully uploaded CSV account file for source ${response.id} (${response.name})`);
+    return response;
+  },
+};
diff --git a/components/sailpoint/sailpoint.app.mjs b/components/sailpoint/sailpoint.app.mjs
@@ -0,0 +1,116 @@
+import { axios } from "@pipedream/platform";
+
+export default {
+  type: "app",
+  app: "identitynow",
+  propDefinitions: {
+    // Props for uploading CSV account file
+    sourceId: {
+      type: "string",
+      label: "Source ID",
+      description: "ID of the source to upload the account file.",
+    },
+    csvAccountFile: {
+      type: "string",
+      label: "CSV Account File",
+      description: "CSV-formatted account file content.",
+    },
+    // Props for retrieving certification campaigns
+    filter: {
+      type: "string",
+      label: "Filter",
+      description: "Optional filter to adjust campaign retrieval.",
+      optional: true,
+    },
+    // Props for submitting access request
+    requestedFor: {
+      type: "string[]",
+      label: "Requested For",
+      description: "List of Identity IDs for whom the Access is requested.",
+    },
+    requestType: {
+      type: "string",
+      label: "Request Type",
+      description: "Type of access request.",
+      options: [
+        {
+          label: "Grant Access",
+          value: "GRANT_ACCESS",
+        },
+        {
+          label: "Revoke Access",
+          value: "REVOKE_ACCESS",
+        },
+      ],
+      optional: true,
+    },
+    requestedItems: {
+      type: "string[]",
+      label: "Requested Items",
+      description: "List of requested items as JSON strings.",
+    },
+  },
+  methods: {
+    _baseUrl() {
+      return "https://sailpoint.api.identitynow.com/v2024";
+    },
+    async _makeRequest(opts = {}) {
+      const {
+        $, method = "GET", path = "/", headers, ...otherOpts
+      } = opts;
+      return axios($, {
+        method,
+        url: this._baseUrl() + path,
+        headers: {
+          ...headers,
+          Authorization: `Bearer ${this.$auth.oauth_access_token}`,
+        },
+        ...otherOpts,
+      });
+    },
+    async uploadCsvAccountFile() {
+      const {
+        sourceId, csvAccountFile,
+      } = this;
+      const formData = new FormData();
+      formData.append("file", csvAccountFile, "accounts.csv");
+      return this._makeRequest({
+        method: "POST",
+        path: `/v3/sources/${sourceId}/schemas/accounts`,
+        headers: {
+          ...formData.getHeaders(),
+          "X-SailPoint-Experimental": "true",
+        },
+        data: formData,
+      });
+    },
+    async retrieveCertificationCampaigns() {
+      const { filter } = this;
+      const params = {};
+      if (filter) {
+        params.filter = filter;
+      }
+      return this._makeRequest({
+        method: "GET",
+        path: "/campaigns",
+        params,
+      });
+    },
+    async submitAccessRequest() {
+      const {
+        requestedFor, requestType, requestedItems,
+      } = this;
+      const data = {
+        requestedFor,
+        requestType: requestType || "GRANT_ACCESS",
+        requestedItems: requestedItems.map((item) => JSON.parse(item)),
+      };
+      return this._makeRequest({
+        method: "POST",
+        path: "/access-requests",
+        data,
+      });
+    },
+  },
+  version: `0.0.${Date.now()}`,
+};
diff --git a/components/sailpoint/sources/identity-attribute-change-instant/identity-attribute-change-instant.mjs b/components/sailpoint/sources/identity-attribute-change-instant/identity-attribute-change-instant.mjs
@@ -0,0 +1,98 @@
+import sailpoint from "../../sailpoint.app.mjs";
+import crypto from "crypto";
+import { axios } from "@pipedream/platform";
+
+export default {
+  key: "sailpoint-identity-attribute-change-instant",
+  name: "Identity Attribute Change Instant",
+  description: "Emit new event when any attributes of an identity change. [See the documentation]()",
+  version: "0.0.{{ts}}",
+  type: "source",
+  dedupe: "unique",
+  props: {
+    sailpoint: {
+      type: "app",
+      app: "sailpoint",
+    },
+    http: {
+      type: "$.interface.http",
+      customResponse: true,
+    },
+    db: "$.service.db",
+  },
+  methods: {
+    async createWebhook() {
+      const callbackUrl = this.http.endpoint;
+      const response = await this.sailpoint._makeRequest({
+        method: "POST",
+        path: "/webhooks",
+        data: {
+          triggerId: "idn:identity-attributes-changed",
+          callbackUrl: callbackUrl,
+        },
+      });
+      return response.id;
+    },
+    async deleteWebhook(webhookId) {
+      await this.sailpoint._makeRequest({
+        method: "DELETE",
+        path: `/webhooks/${webhookId}`,
+      });
+    },
+    async listIdentityAttributeChanges() {
+      const response = await this.sailpoint._makeRequest({
+        method: "GET",
+        path: "/identity-attributes-changed",
+        params: {
+          limit: 50,
+          sort: "-timestamp",
+        },
+      });
+      return response.events || [];
+    },
+  },
+  hooks: {
+    async deploy() {
+      const events = await this.listIdentityAttributeChanges();
+      for (const event of events.reverse()) {
+        this.$emit(event.attributes, {
+          id: event.id || event.timestamp.toString(),
+          summary: `Attributes changed for identity ${event.identityId}`,
+          ts: new Date(event.timestamp).getTime(),
+        });
+      }
+    },
+    async activate() {
+      const webhookId = await this.createWebhook();
+      await this.db.set("webhookId", webhookId);
+    },
+    async deactivate() {
+      const webhookId = await this.db.get("webhookId");
+      if (webhookId) {
+        await this.deleteWebhook(webhookId);
+        await this.db.set("webhookId", null);
+      }
+    },
+  },
+  async run(event) {
+    const signature = event.headers["X-Signature"] || event.headers["x-signature"];
+    const secretKey = this.sailpoint.$auth.secret;
+    const computedSignature = crypto
+      .createHmac("sha256", secretKey)
+      .update(event.body)
+      .digest("base64");
+    if (computedSignature !== signature) {
+      await this.http.respond({
+        status: 401,
+        body: "Unauthorized",
+      });
+      return;
+    }
+    const data = JSON.parse(event.body);
+    this.$emit(data.changedAttributes, {
+      id: data.id || data.timestamp.toString(),
+      summary: `Attributes changed for identity ${data.identityId}`,
+      ts: Date.parse(data.timestamp) || Date.now(),
+    });
+  },
+};
diff --git a/components/sailpoint/sources/new-identity-instant/new-identity-instant.mjs b/components/sailpoint/sources/new-identity-instant/new-identity-instant.mjs
