485c3ff45e
CI / Check (push) Has been skipped
CI / Detect Changes (push) Successful in 4s
CI / Deploy Dashboard (push) Has been cancelled
CI / Deploy Docs (push) Has been cancelled
CI / Deploy MCP (push) Has been cancelled
CI / Deploy Agent (push) Has been cancelled
Webhook routes live on the separate webhook server (port 3002). M7.2-C URL form is /webhook/{tenant_id}/{platform}/{repo_id}; mounting unscoped variants on the API router would mismatch handler signatures.
184 lines
6.5 KiB
Rust
184 lines
6.5 KiB
Rust
use axum::routing::{delete, get, patch, post};
|
|
use axum::Router;
|
|
|
|
use crate::api::handlers;
|
|
|
|
pub fn build_router() -> Router {
|
|
Router::new()
|
|
.route("/api/v1/health", get(handlers::health))
|
|
.route("/api/v1/stats/overview", get(handlers::stats_overview))
|
|
.route(
|
|
"/api/v1/settings/ssh-public-key",
|
|
get(handlers::get_ssh_public_key),
|
|
)
|
|
.route("/api/v1/repositories", get(handlers::list_repositories))
|
|
.route("/api/v1/repositories", post(handlers::add_repository))
|
|
.route(
|
|
"/api/v1/repositories/{id}/scan",
|
|
post(handlers::trigger_scan),
|
|
)
|
|
.route(
|
|
"/api/v1/repositories/{id}",
|
|
delete(handlers::delete_repository).patch(handlers::update_repository),
|
|
)
|
|
.route(
|
|
"/api/v1/repositories/{id}/webhook-config",
|
|
get(handlers::get_webhook_config),
|
|
)
|
|
.route("/api/v1/findings", get(handlers::list_findings))
|
|
.route("/api/v1/findings/{id}", get(handlers::get_finding))
|
|
.route(
|
|
"/api/v1/findings/{id}/status",
|
|
patch(handlers::update_finding_status),
|
|
)
|
|
.route(
|
|
"/api/v1/findings/bulk-status",
|
|
patch(handlers::bulk_update_finding_status),
|
|
)
|
|
.route(
|
|
"/api/v1/findings/{id}/feedback",
|
|
patch(handlers::update_finding_feedback),
|
|
)
|
|
.route("/api/v1/sbom", get(handlers::list_sbom))
|
|
.route("/api/v1/sbom/filters", get(handlers::sbom_filters))
|
|
.route("/api/v1/sbom/export", get(handlers::export_sbom))
|
|
.route("/api/v1/sbom/licenses", get(handlers::license_summary))
|
|
.route("/api/v1/sbom/diff", get(handlers::sbom_diff))
|
|
.route("/api/v1/issues", get(handlers::list_issues))
|
|
.route("/api/v1/scan-runs", get(handlers::list_scan_runs))
|
|
// Graph API endpoints
|
|
.route("/api/v1/graph/{repo_id}", get(handlers::graph::get_graph))
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/nodes",
|
|
get(handlers::graph::get_nodes),
|
|
)
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/communities",
|
|
get(handlers::graph::get_communities),
|
|
)
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/impact/{finding_id}",
|
|
get(handlers::graph::get_impact),
|
|
)
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/search",
|
|
get(handlers::graph::search_symbols),
|
|
)
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/file-content",
|
|
get(handlers::graph::get_file_content),
|
|
)
|
|
.route(
|
|
"/api/v1/graph/{repo_id}/build",
|
|
post(handlers::graph::trigger_build),
|
|
)
|
|
// DAST API endpoints
|
|
.route("/api/v1/dast/targets", get(handlers::dast::list_targets))
|
|
.route("/api/v1/dast/targets", post(handlers::dast::add_target))
|
|
.route(
|
|
"/api/v1/dast/targets/{id}/scan",
|
|
post(handlers::dast::trigger_scan),
|
|
)
|
|
.route(
|
|
"/api/v1/dast/scan-runs",
|
|
get(handlers::dast::list_scan_runs),
|
|
)
|
|
.route("/api/v1/dast/findings", get(handlers::dast::list_findings))
|
|
.route(
|
|
"/api/v1/dast/findings/{id}",
|
|
get(handlers::dast::get_finding),
|
|
)
|
|
// Chat / RAG API endpoints
|
|
.route("/api/v1/chat/{repo_id}", post(handlers::chat::chat))
|
|
.route(
|
|
"/api/v1/chat/{repo_id}/build-embeddings",
|
|
post(handlers::chat::build_embeddings),
|
|
)
|
|
.route(
|
|
"/api/v1/chat/{repo_id}/status",
|
|
get(handlers::chat::embedding_status),
|
|
)
|
|
// Help chat (documentation-grounded Q&A)
|
|
.route("/api/v1/help/chat", post(handlers::help_chat::help_chat))
|
|
// CVE notification endpoints
|
|
.route(
|
|
"/api/v1/notifications",
|
|
get(handlers::notifications::list_notifications),
|
|
)
|
|
.route(
|
|
"/api/v1/notifications/count",
|
|
get(handlers::notifications::notification_count),
|
|
)
|
|
.route(
|
|
"/api/v1/notifications/read-all",
|
|
post(handlers::notifications::mark_all_read),
|
|
)
|
|
.route(
|
|
"/api/v1/notifications/{id}/read",
|
|
patch(handlers::notifications::mark_read),
|
|
)
|
|
.route(
|
|
"/api/v1/notifications/{id}/dismiss",
|
|
patch(handlers::notifications::dismiss_notification),
|
|
)
|
|
// Pentest API endpoints
|
|
.route(
|
|
"/api/v1/pentest/lookup-repo",
|
|
get(handlers::pentest::lookup_repo),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions",
|
|
get(handlers::pentest::list_sessions).post(handlers::pentest::create_session),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}",
|
|
get(handlers::pentest::get_session),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/chat",
|
|
post(handlers::pentest::send_message),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/stop",
|
|
post(handlers::pentest::stop_session),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/pause",
|
|
post(handlers::pentest::pause_session),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/resume",
|
|
post(handlers::pentest::resume_session),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/stream",
|
|
get(handlers::pentest::session_stream),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/attack-chain",
|
|
get(handlers::pentest::get_attack_chain),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/messages",
|
|
get(handlers::pentest::get_messages),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/findings",
|
|
get(handlers::pentest::get_session_findings),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/sessions/{id}/export",
|
|
post(handlers::pentest::export_session_report),
|
|
)
|
|
.route(
|
|
"/api/v1/pentest/stats",
|
|
get(handlers::pentest::pentest_stats),
|
|
)
|
|
// Webhook routes live on the separate webhook server (port 3002,
|
|
// see crate::webhooks::server). The M7.2-C tenant-in-URL form is
|
|
// `/webhook/{tenant_id}/{platform}/{repo_id}` and the handlers
|
|
// expect a (tenant_id, repo_id) path tuple. Anything mounting
|
|
// them here on the API server would mismatch the handler
|
|
// signature, so the routes are not exported.
|
|
}
|