Add applied control duplication

backend/core/models.py

@@ -1403,9 +1403,6 @@ def risk_assessments(self):
     def projects(self):
         return {risk_assessment.project for risk_assessment in self.risk_assessments}
 
-    def parent_project(self):
-        pass
-
     def __str__(self):
         return self.name
 

backend/core/serializers.py

@@ -335,6 +335,12 @@ class AppliedControlReadSerializer(AppliedControlWriteSerializer):
     eta_missed = serializers.BooleanField()
 
 
+class AppliedControlDuplicateSerializer(BaseModelSerializer):
+    class Meta:
+        model = AppliedControl
+        fields = ["name", "description", "folder"]
+
+
 class PolicyWriteSerializer(AppliedControlWriteSerializer):
     class Meta:
         model = Policy

backend/core/views.py

@@ -44,7 +44,11 @@
 from rest_framework.renderers import JSONRenderer
 from rest_framework.request import Request
 from rest_framework.response import Response
-from rest_framework.status import HTTP_400_BAD_REQUEST, HTTP_403_FORBIDDEN
+from rest_framework.status import (
+    HTTP_400_BAD_REQUEST,
+    HTTP_403_FORBIDDEN,
+    HTTP_404_NOT_FOUND,
+)
 from rest_framework.utils.serializer_helpers import ReturnDict
 from rest_framework.views import APIView
 
@@ -1039,6 +1043,47 @@ def get_timeline_info(self, request):
             colorMap[domain.name] = next(color_cycle)
         return Response({"entries": entries, "colorMap": colorMap})
 
+    @action(
+        detail=True,
+        name="Duplicate applied control",
+        methods=["post"],
+        serializer_class=AppliedControlDuplicateSerializer,
+    )
+    def duplicate(self, request, pk):
+        (object_ids_view, _, _) = RoleAssignment.get_accessible_object_ids(
+            Folder.get_root_folder(), request.user, AppliedControl
+        )
+        if UUID(pk) not in object_ids_view:
+            return Response(
+                {"results": "applied control duplicated"}, status=HTTP_404_NOT_FOUND
+            )
+
+        applied_control = self.get_object()
+        data = request.data
+        new_folder = Folder.objects.get(id=data["folder"])
+        duplicate_applied_control = AppliedControl.objects.create(
+            reference_control=applied_control.reference_control,
+            name=data["name"],
+            description=data["description"],
+            folder=new_folder,
+            category=applied_control.category,
+            csf_function=applied_control.csf_function,
+            status=applied_control.status,
+            start_date=applied_control.start_date,
+            eta=applied_control.eta,
+            expiry_date=applied_control.expiry_date,
+            link=applied_control.link,
+            effort=applied_control.effort,
+            cost=applied_control.cost,
+        )
+        if data["duplicate_evidences"]:
+            duplicate_related_objects(
+                applied_control, duplicate_applied_control, new_folder, "evidences"
+            )
+            duplicate_applied_control.save()
+
+        return Response({"results": "applied control duplicated"})
+
 
 class PolicyViewSet(AppliedControlViewSet):
     model = Policy

backend/iam/models.py

@@ -2,7 +2,7 @@
 Inspired from Azure IAM model"""
 
 from collections import defaultdict
-from typing import Any, List, Self, Tuple
+from typing import Any, List, Self, Tuple, Generator
 import uuid
 from allauth.account.models import EmailAddress
 from django.utils import timezone
@@ -100,24 +100,22 @@ class Meta:
     def __str__(self) -> str:
         return self.name.__str__()
 
-    def sub_folders(self) -> List[Self]:
+    def get_sub_folders(self) -> Generator[Self, None, None]:
         """Return the list of subfolders"""
 
-        def sub_folders_in(f, sub_folder_list):
-            for sub_folder in f.folder_set.all():
-                sub_folder_list.append(sub_folder)
-                sub_folders_in(sub_folder, sub_folder_list)
-            return sub_folder_list
+        def sub_folders_in(folder):
+            for sub_folder in folder.folder_set.all():
+                yield sub_folder
+                yield from sub_folders_in(sub_folder)
 
-        return sub_folders_in(self, [])
+        yield from sub_folders_in(self)
 
-    def get_parent_folders(self) -> List[Self]:
+    # Should we update data-model.md now that this method is a generator ?
+    def get_parent_folders(self) -> Generator[Self, None, None]:
         """Return the list of parent folders"""
-        return (
-            [self.parent_folder] + Folder.get_parent_folders(self.parent_folder)
-            if self.parent_folder
-            else []
-        )
+        current_folder = self
+        while (current_folder := current_folder.parent_folder) is not None:
+            yield current_folder
 
     @staticmethod
     def _navigate_structure(start, path):
@@ -651,11 +649,11 @@ def get_accessible_folders(
         ]:
             for f in ra.perimeter_folders.all():
                 folders_set.add(f)
-                folders_set.update(f.sub_folders())
+                folders_set.update(f.get_sub_folders())
         # calculate perimeter
         perimeter = set()
         perimeter.add(folder)
-        perimeter.update(folder.sub_folders())
+        perimeter.update(folder.get_sub_folders())
         # return filtered result
         return [
             x.id
@@ -692,7 +690,7 @@ def get_accessible_object_ids(
         folder_for_object = {x: Folder.get_folder(x) for x in all_objects}
         perimeter = set()
         perimeter.add(folder)
-        perimeter.update(folder.sub_folders())
+        perimeter.update(folder.get_sub_folders())
         for ra in [
             x
             for x in RoleAssignment.get_role_assignments(user)
@@ -701,7 +699,7 @@ def get_accessible_object_ids(
             ra_permissions = ra.role.permissions.all()
             for my_folder in perimeter & set(ra.perimeter_folders.all()):
                 target_folders = (
-                    [my_folder] + my_folder.sub_folders()
+                    [my_folder, *my_folder.get_sub_folders()]
                     if ra.is_recursive
                     else [my_folder]
                 )

frontend/messages/ar.json

@@ -649,6 +649,7 @@
 	"ssoSettingsDescription": "قم بتكوين إعدادات تسجيل الدخول الموحد هنا.",
 	"sso": "SSO",
 	"isSso": "هل هو SSO",
+	"duplicateAppliedControl": "تكرار عنصر التحكم المطبق",
 	"suggestion": "اقتراح",
 	"suggestionColon": "اقتراح:",
 	"annotationColon": "ملاحظة:",

frontend/messages/de.json

@@ -677,6 +677,7 @@
 	"back": "Zurückkehren",
 	"duplicate": "Duplikat",
 	"duplicateRiskAssessment": "Duplizieren Sie die Risikobewertung",
+	"duplicateAppliedControl": "Duplizieren Sie das angewendete kontrolle",
 	"size": "Größe",
 	"favicon": "Favicon",
 	"logo": "Logo",

frontend/messages/en.json

@@ -678,6 +678,7 @@
 	"back": "Back",
 	"duplicate": "Duplicate",
 	"duplicateRiskAssessment": "Duplicate the risk assessment",
+	"duplicateAppliedControl": "Duplicate the applied control",
 	"size": "Size",
 	"favicon": "Favicon",
 	"logo": "Logo",

frontend/messages/es.json

@@ -677,6 +677,7 @@
 	"back": "Devolver",
 	"duplicate": "Duplicar",
 	"duplicateRiskAssessment": "Duplicar la evaluación de riesgo",
+	"duplicateAppliedControl": "Duplicar el control aplicado",
 	"size": "Tamaño",
 	"favicon": "Favicon",
 	"logo": "Logo",

frontend/messages/fr.json

@@ -677,6 +677,7 @@
 	"back": "Retour",
 	"duplicate": "Dupliquer",
 	"duplicateRiskAssessment": "Dupliquer l’évaluation de risque",
+	"duplicateAppliedControl": "Dupliquer la mesure appliquée",
 	"size": "Taille",
 	"favicon": "Icône de favori",
 	"logo": "Logo",

frontend/messages/hi.json

@@ -677,6 +677,7 @@
 	"back": "वापस",
 	"duplicate": "प्रतिलिपि",
 	"duplicateRiskAssessment": "जोखिम आकलन की प्रतिलिपि बनाएँ",
+	"duplicateAppliedControl": "लागू नियंत्रण की प्रतिलिपि बनाएँ",
 	"size": "आकार",
 	"favicon": "फ़ेविकॉन",
 	"logo": "प्रतीक चिन्ह",

frontend/messages/it.json

@@ -677,6 +677,7 @@
 	"back": "Ripetere",
 	"duplicate": "Duplicare",
 	"duplicateRiskAssessment": "Duplicare la valutazione del rischio",
+	"duplicateAppliedControl": "Duplica il controllo applicato",
 	"size": "Dimensione",
 	"favicon": "Icona preferita",
 	"logo": "Logo",

frontend/messages/nl.json

@@ -677,6 +677,7 @@
 	"back": "Opbrengst",
 	"duplicate": "Duplicaat",
 	"duplicateRiskAssessment": "Dupliceer de risicobeoordeling",
+	"duplicateAppliedControl": "Dupliceer de toegepaste controle",
 	"size": "Grootte",
 	"favicon": "Favorieten",
 	"logo": "Logo",

frontend/messages/pl.json

@@ -677,6 +677,7 @@
 	"back": "Powrót",
 	"duplicate": "Duplikować",
 	"duplicateRiskAssessment": "Powielić ocenę ryzyka",
+	"duplicateAppliedControl": "Duplikuj zastosowaną kontrolę",
 	"size": "Rozmiar",
 	"favicon": "Favicon",
 	"logo": "Logo",

frontend/messages/pt.json

@@ -677,6 +677,7 @@
 	"back": "Retornar",
 	"duplicate": "Duplicado",
 	"duplicateRiskAssessment": "Duplicar a avaliação de risco",
+	"duplicateAppliedControl": "Duplicar o controle aplicado",
 	"size": "Tamanho",
 	"favicon": "Favicon",
 	"logo": "Logotipo",

frontend/messages/ro.json

@@ -677,6 +677,7 @@
 	"back": "Înapoi",
 	"duplicate": "Dublică",
 	"duplicateRiskAssessment": "Dublarea evaluării riscului",
+	"duplicateAppliedControl": "Duplicați control aplicat",
 	"size": "Mărime",
 	"favicon": "Favicon",
 	"logo": "Logo",

frontend/messages/ur.json

@@ -677,6 +677,7 @@
 	"back": "واپس",
 	"duplicate": "نقل کریں",
 	"duplicateRiskAssessment": "خطرے کی تشخیص کو نقل کریں",
+	"duplicateAppliedControl": "لاگو کنٹرول کی نقل تیار کریں۔",
 	"size": "سائز",
 	"favicon": "فیویکان",
 	"logo": "لوگو",

frontend/src/lib/components/DetailView/DetailView.svelte

@@ -124,6 +124,26 @@
 		modalStore.trigger(modal);
 	}
 
+	function modalAppliedControlDuplicateForm(): void {
+		const modalComponent: ModalComponent = {
+			ref: CreateModal,
+			props: {
+				form: data.duplicateForm,
+				model: data.model,
+				debug: false,
+				duplicate: true,
+				formAction: '?/duplicate'
+			}
+		};
+
+		const modal: ModalSettings = {
+			type: 'component',
+			component: modalComponent,
+			title: m.duplicateAppliedControl()
+		};
+		modalStore.trigger(modal);
+	}
+
 	function modalMailConfirm(id: string, name: string, action: string): void {
 		const modalComponent: ModalComponent = {
 			ref: ConfirmModal,
@@ -315,11 +335,24 @@
 				</button>
 			{/if}
 			{#if displayEditButton()}
-				<a
-					href={`${$page.url.pathname}/edit?next=${$page.url.pathname}`}
-					class="btn variant-filled-primary h-fit"
-					><i class="fa-solid fa-pen-to-square mr-2" data-testid="edit-button" />{m.edit()}</a
-				>
+				<div class="flex flex-col space-y-2 ml-4">
+					<a
+						href={`${$page.url.pathname}/edit?next=${$page.url.pathname}`}
+						class="btn variant-filled-primary h-fit"
+						><i class="fa-solid fa-pen-to-square mr-2" data-testid="edit-button" />{m.edit()}</a
+					>
+					{#if data.urlModel === 'applied-controls'}
+						<span class="pt-4 font-light text-sm">Power-ups:</span>
+						<button
+							class="btn text-gray-100 bg-gradient-to-l from-sky-500 to-green-600"
+							on:click={(_) => modalAppliedControlDuplicateForm()}
+							data-testid="duplicate-button"
+						>
+							<i class="fa-solid fa-copy mr-2"></i>
+							{m.duplicate()}</button
+						>
+					{/if}
+				</div>
 			{/if}
 		</div>
 	</div>

frontend/src/lib/components/Forms/ModelForm.svelte

@@ -50,7 +50,7 @@
 	export let parent: any;
 	export let suggestions: { [key: string]: any } = {};
 	export let cancelButton = true;
-	export let riskAssessmentDuplication = false;
+	export let duplicate = false;
 
 	const URLModel = model.urlModel as urlModel;
 	export let schema = modelSchema(URLModel);
@@ -121,7 +121,7 @@
 	<input type="hidden" name="urlmodel" value={model.urlModel} />
 	<!--NOTE: Not the cleanest pattern, will refactor-->
 	<!--TODO: Refactor-->
-	{#if shape.reference_control}
+	{#if shape.reference_control && !duplicate}
 		<AutocompleteSelect
 			{form}
 			options={getOptions({
@@ -180,11 +180,11 @@
 		<ProjectForm {form} {model} {cacheLocks} {formDataCache} {initialData} />
 	{:else if URLModel === 'folders'}
 		<FolderForm {form} {model} {cacheLocks} {formDataCache} {initialData} />
-	{:else if URLModel === 'risk-assessments' || URLModel === 'risk-assessment-duplicate'}
+	{:else if URLModel === 'risk-assessments'}
 		<RiskAssessmentForm
 			{form}
 			{model}
-			{riskAssessmentDuplication}
+			{duplicate}
 			{cacheLocks}
 			{formDataCache}
 			{initialData}
@@ -200,6 +200,7 @@
 		<AppliedControlsPoliciesForm
 			{form}
 			{model}
+			{duplicate}
 			{cacheLocks}
 			{formDataCache}
 			{schema}