Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: adds initial implementation for the fedramp-transform command #27

Closed
wants to merge 6 commits into from
Closed

feat: adds initial implementation for the fedramp-transform command #27

wants to merge 6 commits into from

Conversation

jpower432
Copy link
Member

@jpower432 jpower432 commented Feb 12, 2024
edited
Loading

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • My code follows the code style of this project.
  • My change requires a change to the documentation. (compliance-trestle PR)
  • I have updated the documentation accordingly. . (compliance-trestle PR)
  • I have added tests to cover my changes.
  • All new and existing tests passed.
  • All commits are signed-off.

Summary

Blocked by #30

Partially addresses #20

This creates the fedramp-transform command and the initial classes.
This only populates the control origination values.

The description, implementation status, and parameter values will be on follow-on PRs.

Key links:

@jpower432
chore: adds FedRAMP SSP Appendix A template to resources
17adc20 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432
feat: adds fedramp-transform command
6d7033d 
Initial population is control origination in the
control summary table

Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432
test: adds unit test for transform command and related classes
e3704f4 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432 jpower432 marked this pull request as ready for review February 13, 2024 21:20
@jpower432 jpower432 mentioned this pull request Feb 14, 2024
Merged
11 tasks
vikas-agarwal76
vikas-agarwal76 reviewed Feb 15, 2024
View reviewed changes
trestle_fedramp/core/ssp_reader.py Outdated
CUST_CONFIGURED = 'customer-configured'
CUST_PROVIDED = 'customer-provided'
INHERITED = 'inherited'

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should these short names be in a const file? Also are these defined by FedRAMP or us?

Copy link
Member Author

@jpower432 jpower432 Feb 15, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These are defined by FedRAMP here. I went back and forth over whether I should define them here or parse the xml file. I ended up defining them since the values seem to be very stable, but I can also see how that would not scale as easily as we add more FedRAMP specific values. Interested in your thoughts since fedramp resources are already being copied over.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also wanted to add that the control origination values in the xml do not cover the hybrid or shared values that are check boxes on the template, but the FedRAMP SSP template shows examples with multiple control origination values. So the logic on handling multiple control origination values and how they translate to hybrid and shared is defined here.

@jpower432
fix: handles control with no labels
0e0670b 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432
chore: moves FEDRAMP constant from class data to const.py
2477f79 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432 jpower432 marked this pull request as draft February 19, 2024 16:54
@jpower432
Copy link
Member Author

jpower432 commented Feb 19, 2024
edited
Loading

@vikas-agarwal76 Putting this back into draft to address feedback I received around which check boxes are marked when properties are present (i.e. supporting multiple boxes being checked instead of a single box for each control)

@jpower432
feat: adds support for multiple checked boxes
7227207 
Signed-off-by: Jennifer Power <barnabei.jennifer@gmail.com>
@jpower432 jpower432 mentioned this pull request Feb 27, 2024
Closed
9 tasks
@jpower432 jpower432 marked this pull request as ready for review February 27, 2024 18:42
@jpower432
Copy link
Member Author

@vikas-agarwal76 I addressed your comment about putting the short-labels in the const.py. I also added support for multiple boxes to be checked at a time to better align with real word use cases.

@jpower432 jpower432 mentioned this pull request Apr 15, 2024
Closed
7 tasks
@jpower432 jpower432 added this to the 0.4.0 milestone Apr 26, 2024
@jpower432
Copy link
Member Author

Closing in favor of #39

@jpower432 jpower432 closed this Jul 29, 2024
@jpower432 jpower432 mentioned this pull request Jul 29, 2024
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vikas-agarwal76 vikas-agarwal76 Awaiting requested review from vikas-agarwal76

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.4.0
Development

Successfully merging this pull request may close these issues.
2 participants
@jpower432 @vikas-agarwal76