Initial commit

Author: erlihs

ace.sql

@@ -0,0 +1,38 @@
+SET  SERVEROUTPUT ON
+SET FEEDBACK OFF
+WHENEVER SQLERROR EXIT SQL.SQLCODE ROLLBACK
+WHENEVER OSERROR EXIT FAILURE
+
+PROMPT Add Access Control List entry in Oracle Database for Bullshit Bingo
+
+VARIABLE schema_name VARCHAR2(30 CHAR)
+VARIABLE host VARCHAR2(200 CHAR)
+VARIABLE port NUMBER
+VARIABLE privilege VARCHAR2(200 CHAR)
+VARIABLE ace CLOB
+
+ARGUMENT 1 PROMPT 'Enter schema name: '
+ARGUMENT 2 PROMPT 'Enter host name: '
+ARGUMENT 3 PROMPT 'Enter port number: '
+ARGUMENT 4 PROMPT 'Enter privilege: '
+
+EXEC :schema_name:= UPPER('&1');
+EXEC :host:= '&2';
+EXEC :port:= '&3';
+EXEC :privilege := '&4';
+
+EXEC :ace:= '[{"host": "' || :host || '", "port": ' || :port || ', "privilege": "' || :privilege || '"}]';
+
+UNDEFINE 1
+UNDEFINE 2
+UNDEFINE 3
+UNDEFINE 4
+
+PROMPT Starting..
+
+PROMPT Creating ACE
+@./utl/set_schema.sql
+@./utl/acl_append_hosts.sql
+
+PROMPT ..done
+@./utl/reset_schema.sql

api/audit/pck_api_audit.pkb

@@ -0,0 +1,115 @@
+CREATE OR REPLACE PACKAGE BODY pck_api_audit AS
+
+    FUNCTION log ( 
+        p_uuid app_audit.uuid%TYPE,
+        p_severity app_audit.severity%TYPE,
+        p_action app_audit.action%TYPE,
+        p_details app_audit.details%TYPE
+    ) RETURN app_audit.id%TYPE
+    AS
+        v_stack VARCHAR2(2000) := SUBSTR(SQLERRM || CHR(10) || '-- ' || CHR(10) || dbms_utility.format_error_backtrace, 1, 2000);
+        v_request VARCHAR2(2000);
+        v_agent VARCHAR2(2000);
+        v_ip VARCHAR2(2000);
+        v_id app_audit.id%TYPE;
+        PRAGMA AUTONOMOUS_TRANSACTION;
+    BEGIN
+
+        BEGIN
+            v_request := TRIM(owa_util.get_cgi_env('REQUEST_METHOD') || ' ' || owa_util.get_cgi_env('SCRIPT_NAME'));
+            v_agent := TRIM(owa_util.get_cgi_env('HTTP_USER_AGENT'));
+            v_ip := TRIM(owa_util.get_cgi_env('REMOTE_ADDR'));
+        EXCEPTION
+            WHEN OTHERS THEN
+                NULL;
+        END;
+
+        INSERT INTO app_audit (uuid, severity, action, details, stack, agent, ip)
+        VALUES (
+            p_uuid, 
+            p_severity, 
+            p_action, 
+            SUBSTR(CASE WHEN v_request IS NULL THEN NULL ELSE v_request || '?' END || p_details, 1,  2000),
+            CASE WHEN p_severity = 'E' THEN v_stack ELSE NULL END,
+            v_agent, 
+            v_ip
+        ) RETURNING id INTO v_id;
+
+        COMMIT;
+
+        RETURN v_id;
+
+    END;
+
+    FUNCTION mrg(
+        p_key1 VARCHAR2 DEFAULT NULL,
+        p_val1 VARCHAR2 DEFAULT NULL,
+        p_key2 VARCHAR2 DEFAULT NULL,
+        p_val2 VARCHAR2 DEFAULT NULL,
+        p_key3 VARCHAR2 DEFAULT NULL,
+        p_val3 VARCHAR2 DEFAULT NULL,
+        p_key4 VARCHAR2 DEFAULT NULL,
+        p_val4 VARCHAR2 DEFAULT NULL,
+        p_key5 VARCHAR2 DEFAULT NULL,
+        p_val5 VARCHAR2 DEFAULT NULL,
+        p_key6 VARCHAR2 DEFAULT NULL,
+        p_val6 VARCHAR2 DEFAULT NULL
+    ) RETURN VARCHAR2
+    AS
+        v PLS_INTEGER := 160;
+    BEGIN
+    
+        RETURN
+            CASE WHEN p_key1 IS NOT NULL THEN CHR(38) || SUBSTR(p_key1,1,v) || '=' || SUBSTR(p_val1,1,v) ELSE NULL END ||
+            CASE WHEN p_key2 IS NOT NULL THEN CHR(38) || SUBSTR(p_key2,1,v) || '=' || SUBSTR(p_val2,1,v) ELSE NULL END ||
+            CASE WHEN p_key3 IS NOT NULL THEN CHR(38) || SUBSTR(p_key3,1,v) || '=' || SUBSTR(p_val3,1,v) ELSE NULL END ||
+            CASE WHEN p_key4 IS NOT NULL THEN CHR(38) || SUBSTR(p_key4,1,v) || '=' || SUBSTR(p_val4,1,v) ELSE NULL END ||
+            CASE WHEN p_key5 IS NOT NULL THEN CHR(38) || SUBSTR(p_key5,1,v) || '=' || SUBSTR(p_val5,1,v) ELSE NULL END ||
+            CASE WHEN p_key6 IS NOT NULL THEN CHR(38) || SUBSTR(p_key6,1,v) || '=' || SUBSTR(p_val6,1,v) ELSE NULL END ||
+            ''
+        ;
+        
+    END;
+
+    PROCEDURE dbg(
+        p_action app_audit.action%TYPE,
+        p_details app_audit.details%TYPE DEFAULT NULL
+    )
+    AS
+        v_id app_audit.id%TYPE;
+    BEGIN
+        v_id := log(NULL, 'D', p_action, p_details);
+    END;
+
+    PROCEDURE inf(
+        p_action app_audit.action%TYPE,
+        p_details app_audit.details%TYPE DEFAULT NULL
+    )
+    AS
+        v_id app_audit.id%TYPE;
+    BEGIN
+        v_id := log(NULL, 'I', p_action, p_details);
+    END;
+
+    PROCEDURE wrn(
+        p_action app_audit.action%TYPE,
+        p_details app_audit.details%TYPE DEFAULT NULL
+    )
+    AS
+        v_id app_audit.id%TYPE;
+    BEGIN
+        v_id := log(NULL, 'W', p_action, p_details);
+    END;
+
+    PROCEDURE err(
+        p_action app_audit.action%TYPE,
+        p_details app_audit.details%TYPE DEFAULT NULL
+    )
+    AS
+        v_id app_audit.id%TYPE;
+    BEGIN
+        v_id := log(NULL, 'E', p_action, p_details);
+    END;
+
+END;
+/

api/audit/pck_api_audit.pks

@@ -0,0 +1,46 @@
+CREATE OR REPLACE PACKAGE pck_api_audit AS -- Package defines audit logging API
+
+    FUNCTION mrg( -- Helper function to concatenate key-value pairs
+        p_key1 VARCHAR2 DEFAULT NULL, -- Key 1
+        p_val1 VARCHAR2 DEFAULT NULL, -- Value 1
+        p_key2 VARCHAR2 DEFAULT NULL, -- Key 2
+        p_val2 VARCHAR2 DEFAULT NULL, -- Value 2
+        p_key3 VARCHAR2 DEFAULT NULL, -- Key 3
+        p_val3 VARCHAR2 DEFAULT NULL, -- Value 3
+        p_key4 VARCHAR2 DEFAULT NULL, -- Key 4
+        p_val4 VARCHAR2 DEFAULT NULL, -- Value 4
+        p_key5 VARCHAR2 DEFAULT NULL, -- Key 5
+        p_val5 VARCHAR2 DEFAULT NULL, -- Value 5
+        p_key6 VARCHAR2 DEFAULT NULL, -- Key 6
+        p_val6 VARCHAR2 DEFAULT NULL -- Value 6
+    ) RETURN VARCHAR2; -- Concatenated key-value pairs
+
+    FUNCTION log( -- Procedure logs an audit entry
+        p_uuid app_audit.uuid%TYPE, -- User unique ID 
+        p_severity app_audit.severity%TYPE, -- Severity level (D - debug, I - info, W - warning, E - error)
+        p_action app_audit.action%TYPE, -- Action performed
+        p_details app_audit.details%TYPE -- Details
+    ) RETURN app_audit.id%TYPE; -- Log entry identifier
+
+    PROCEDURE dbg( -- Procedure logs a debug entry
+        p_action app_audit.action%TYPE, -- Action performed
+        p_details app_audit.details%TYPE DEFAULT NULL -- Details
+    );
+
+    PROCEDURE inf( -- Procedure logs an info entry
+        p_action app_audit.action%TYPE, -- Action performed
+        p_details app_audit.details%TYPE DEFAULT NULL -- Details
+    );
+
+    PROCEDURE wrn( -- Procedure logs a warning entry
+        p_action app_audit.action%TYPE, -- Action performed
+        p_details app_audit.details%TYPE DEFAULT NULL -- Details
+    );
+
+    PROCEDURE err( -- Procedure logs an error entry
+        p_action app_audit.action%TYPE, -- Action performed
+        p_details app_audit.details%TYPE DEFAULT NULL -- Details
+    );
+
+END;
+/

api/audit/setup_app_audit.sql

@@ -0,0 +1,75 @@
+BEGIN
+   EXECUTE IMMEDIATE '
+CREATE TABLE app_audit (
+   id CHAR(32 CHAR) DEFAULT LOWER(SYS_GUID()) NOT NULL,
+   uuid CHAR(32 CHAR),
+   severity CHAR(1 CHAR) DEFAULT ''I'' NOT NULL,
+   action VARCHAR2(2000 CHAR) NOT NULL,
+   details VARCHAR2(2000 CHAR),
+   stack VARCHAR2(2000 CHAR),
+   created TIMESTAMP(6) DEFAULT SYSTIMESTAMP NOT NULL,
+   agent VARCHAR2(2000 CHAR),
+   ip VARCHAR2(240 CHAR)
+)
+   ';
+EXCEPTION
+   WHEN OTHERS THEN IF SQLCODE NOT IN (-955) THEN RAISE; END IF;
+END;
+/
+
+COMMENT ON TABLE app_audit IS 'Table for storing and processing audit data';
+COMMENT ON COLUMN app_audit.id IS 'Primary key';
+COMMENT ON COLUMN app_audit.uuid IS 'Unique user identifier';
+COMMENT ON COLUMN app_audit.severity IS 'Severity level (D - debug, I - info, W - warning, E - error)';
+COMMENT ON COLUMN app_audit.action IS 'Activity that caused audit record';
+COMMENT ON COLUMN app_audit.details IS 'Detailed information';
+COMMENT ON COLUMN app_audit.created IS 'Date and time when audit record was created';
+COMMENT ON COLUMN app_audit.agent IS 'Browser agent';
+COMMENT ON COLUMN app_audit.ip IS 'IP address';
+
+BEGIN
+   EXECUTE IMMEDIATE '
+ALTER TABLE app_audit ADD CONSTRAINT pk_app_audit PRIMARY KEY (id)
+   ';
+EXCEPTION
+   WHEN OTHERS THEN IF SQLCODE NOT IN (-2260) THEN RAISE; END IF;
+END;
+/
+
+BEGIN
+   EXECUTE IMMEDIATE ' 
+ALTER TABLE app_audit ADD CONSTRAINT csc_app_audit_severity CHECK (severity IN (''D'', ''I'', ''W'', ''E''))
+   ';
+EXCEPTION
+   WHEN OTHERS THEN IF SQLCODE NOT IN (-2260, -2264) THEN RAISE; END IF;
+END;
+/
+
+BEGIN
+   EXECUTE IMMEDIATE '
+CREATE INDEX idx_app_audit_uuid ON app_audit(uuid)
+   ';
+EXCEPTION
+   WHEN OTHERS THEN IF SQLCODE NOT IN (-955) THEN RAISE; END IF;
+END;
+/
+
+BEGIN
+   EXECUTE IMMEDIATE '
+CREATE INDEX idx_app_audit_created ON app_audit(created)
+   ';
+EXCEPTION
+   WHEN OTHERS THEN IF SQLCODE NOT IN (-955) THEN RAISE; END IF;
+END;
+/
+
+DECLARE
+   v_cnt PLS_INTEGER;
+BEGIN
+   SELECT COUNT(id) INTO v_cnt FROM app_audit;
+   IF v_cnt = 0 THEN
+      INSERT INTO app_audit (action) VALUES ('Database created');
+      COMMIT;
+   END IF;
+END;
+/

api/audit/test_audit.sql

@@ -0,0 +1,2 @@
+exec pck_api_audit.inf('Database audited');
+/