Name

global.ISCConstants

Description

No description available

Script

var ISCConstants = Class.create();
ISCConstants.prototype = {
  initialize: function() {
  },

  type: 'ISCConstants'
};

// Domain
ISCConstants.prototype.DOMAIN_REGEX = /\b^(((([a-zA-Z0-9]){1,2}|([a-zA-Z0-9][a-zA-Z0-9\-]{1,61}[a-zA-Z0-9]))\.(([a-zA-Z0-9]){1,2}|([a-zA-Z0-9][a-zA-Z0-9\-]{1,61}[a-zA-Z0-9]))\.(([a-zA-Z0-9]{2,12}\.[a-zA-Z0-9]{2,12})|([a-zA-Z0-9]{2,25})))|((([a-zA-Z0-9]){1,2}|([a-zA-Z0-9][a-zA-Z0-9\-]{1,61}[a-zA-Z0-9]))\.(([a-zA-Z0-9]{2,12}\.[a-zA-Z0-9]{2,12})|([a-zA-Z0-9]{2,25}))))$\b/;

// Common Variables
ISCConstants.prototype.LOGIN = "login";
ISCConstants.prototype.LOGIN_FAILED = "login.failed";
ISCConstants.prototype.DEFAULT_UNLOCK_ATTEMPTS = 5;
ISCConstants.prototype.MAX_EMAILS_SENT = 3;
ISCConstants.prototype.ADMIN_ROLE_SYS_ID = "2831a114c611228501d4ea6c309d626d";
ISCConstants.prototype.EXTERNAL_USER_ROLE_SYS_ID = "940ba702933002009c8579b4f47ffbe2";
ISCConstants.prototype.SEC_ADMIN_ROLE_SYS_ID = "b2d8f7130a0a0baa5bf52498ecaadeb4";
ISCConstants.prototype.ISC_SCAN_SUITE_SYS_ID = "833655cc1b94101046e87733cd4bcb4e";
ISCConstants.prototype.ISC_EVENTS_RIBBON_INDICATOR_SYS_ID = "183ed3c8b313230026b4e12b86a8dc07";
ISCConstants.prototype.SA_SNC_USER_CLEAR_SYS_ID = "5e5183350a0a0a0a00093b591ece409f";
ISCConstants.prototype.SA_SNC_USER_LOCKOUT_CHECK_SYS_ID = "5e44f9bf0a0a0a0a019a6440b2137767";
ISCConstants.prototype.SA_SNC_USER_LOCKOUT_AUTO_UNLOCK_SYS_ID = "d92636b2975301008e00958e3b297567";
ISCConstants.prototype.UNSUBSCRIBE_ROUTE = "isc?id=security_alert&unsubscribe=true";
ISCConstants.prototype.ISC_HARDENING_ROUTE = "isc?id=security_hardening&req=High&show=All";
ISCConstants.prototype.ISC_PACKAGE_NAME = "Instance Security Center";

// Role names
ISCConstants.prototype.roles = {
  ADMIN: "admin",
  SECURITY_DASHBOARD_USER: "security_dashboard_user",
  SECURITY_ADMIN: "security_admin"
};

// ISC Dashboard Events
ISCConstants.prototype.dashEvents = {
  LOGIN_ADMIN: "login_admin",
  LOGIN_EXTERNAL: "login_external",
  LOGIN_SNC: "login_snc",
  LOGIN_FAILED: "login_failed",
  LOGIN_EXT_AUTH: "login_external_auth",
  LOGIN_AUTH: "login_basic_auth",
  SECURITY_ELEVATION: "security_elevation",
  IMPERSONATION: "impersonation",
  EXPORT: "appsec.security.export"
};

ISCConstants.prototype.dashEventToTable = {
  login_admin: "isc_login_event",
  login_external: "isc_login_event",
  login_snc: "isc_login_event",
  login_failed: "isc_login_event",
  login_external_auth: "isc_login_event",
  login_basic_auth: "isc_login_event",
  security_elevation: "isc_elevation_event",
  impersonation: "isc_impersonation_event",
  "appsec.security.export": "isc_export_event"
};

// ISC Export Metric Reports
ISCConstants.prototype.exportReportIds = {
  EXPORTS_BY_USER: "b56b259a0fa12010b25fea12ff767ec8",
  CLASS_EXPORTS_BY_USER: "a7a0e7680f826010b25fea12ff767ebe",
  EXPORTS_BY_TABLE: "1d3ae55a0fa12010b25fea12ff767e2a",
  CLASS_EXPORTS_BY_TABLE: "adf06f680f826010b25fea12ff767e5c",
};

// ISC Adaptive Auth Metric Reports
ISCConstants.prototype.aaReportIds = {
  POLICY_RESULT_RATES: "7775f3bb0f222010b25fea12ff767e7b",
  EVENT_FAILURE_DISTRIBUTION: "c45573bb0f222010b25fea12ff767e78",
  DENIED_IP_ADDRESSES: "8616bbbb0f222010b25fea12ff767ea3",
  AUTHENTICATED_USER_LOGINS: "0cd5f7bb0f222010b25fea12ff767e6e",
  WEEKLY_AUTHENTICATION_TREND: "182737fb0f222010b25fea12ff767e47",
  EVENT_SUCCESS_DISTRIBUTION: "4401f6290ffa6010b25fea12ff767e2b",
  API_USER_LOGINS: "1333ba690ffa6010b25fea12ff767e2e",
};

// ISC Adaptive Auth Report Filters
ISCConstants.prototype.aaReportFilterMap = {
  "7775f3bb0f222010b25fea12ff767e7b": '',
  "c45573bb0f222010b25fea12ff767e78": 'result=failure^event_type!=',
  "8616bbbb0f222010b25fea12ff767ea3": 'event_type=pre_login',
  "0cd5f7bb0f222010b25fea12ff767e6e": 'event_type!=pre_login',
  "182737fb0f222010b25fea12ff767e47": '',
  "4401f6290ffa6010b25fea12ff767e2b": 'result=success^event_type!=',
  "1333ba690ffa6010b25fea12ff767e2e": 'api_auth_policiesISNOTEMPTY',
};

// ISC Adaptive Auth Glide Properties
ISCConstants.prototype.aaProperties = {
  POLICY_ENABLE: 'glide.authenticate.auth.policy.enabled',
  POLICY_SUCCESS: 'glide.adaptive.auth.log.success.event',
  POLICY_DEBUG: 'glide.authenticate.policy.debug',
  BLOCKING_POLICY_ERROR_CODE: 'glide.authenticate.global.blocking_policy.error_code',
  BLOCKING_POLICY_ERROR_MSG: 'glide.authenticate.global.blocking_policy.error_message'
};

// ISC Adaptive Auth Glide Property Descriptions
ISCConstants.prototype.aaPropertyDesc = {
  'glide.authenticate.auth.policy.enabled': 'Enable Authentication Policy',
  'glide.adaptive.auth.log.success.event': 'Enable event recording of access granted by allow policies. Enabling this property will record all successful user and API logins for post authentication context and may cause a large influx of events in the table.',
  'glide.authenticate.policy.debug': 'Enable debug logging for authentication policies',
  'glide.authenticate.global.blocking_policy.error_code': 'HTTP error code to be displayed to the user when access is blocked by Global Blocking Policy',
  'glide.authenticate.global.blocking_policy.error_message': 'Error message to be displayed to the user when access is blocked by Global Blocking Policy (only applicable when Forbidden(403) HTTP error code is selected)',
};

// ISC Adaptive Auth Glide Property Title
ISCConstants.prototype.aaPropetyTitle = {
  'glide.authenticate.auth.policy.enabled': 'Enable Authentication Policy',
  'glide.adaptive.auth.log.success.event': 'Enable Success Event',
  'glide.authenticate.policy.debug': 'Enable Debug Logs',
  'glide.authenticate.global.blocking_policy.error_code': 'Global Blocking Policy Error',
  'glide.authenticate.global.blocking_policy.error_message': 'Global Blocking Policy Error',
};


// ISC Hardening Categories
ISCConstants.prototype.hardeningCategories = {
  ACCESS_CONTROL: "Access Control",
  ATTACHMENT: "Attachments",
  SESSION_MANAGEMENT: "Session Management",
  EMAIL_SECURITY: "Email Security",
  SECURITY_INCLUSION_LIST: "Security Inclusion List",
  SECURE_COMMUNICATIONS: "Secure Communications",
  SECURITY_BEST_PRACTICES: "Security Best Practices",
  INPUT_VALIDATION: "Input Validation",
};

// Notification Names
ISCConstants.prototype.notificationNames = {
  LOGIN_FAILED: 'Failed Login',
  IMPERSONATION: 'Impersonation',
  NEW_ADMIN_LOGIN: 'Admin Login',
  SECURITY_ELEVATION: 'Security Elevation',
  WEEKLY_DIGEST: 'Weekly Digest',
  HP_ROLE_ADDED: 'HP Role Added',
  ADMIN_UNLOCK: 'Admin Unlock',
  EXPORT: 'Export',
};

// Notification messaging types
ISCConstants.prototype.messagingTypes = {
  SLACK: "slack",
  TEAMS: "teams",
};

// Glide Events
ISCConstants.prototype.events = {
  APPSEC_DOMAIN_NOTIFICATION: "appsec.domain.notification",
  SECURITY_ELEVATED_ROLE: "security.elevated_role",
  IMPERSONATION: "impersonation",
  LOGIN_FAILED_NOTIFICATION: 'appsec.notification.login.failed',
  IMPERSONATION_NOTIFICATION: 'appsec.notification.impersonation',
  NEW_ADMIN_LOGIN_NOTIFICATION: 'appsec.notification.login.new_ip',
  SECURITY_ELEVATION_NOTIFICATION: 'appsec.notification.security.elevation',
  WEEKLY_DIGEST_NOTIFICATION: 'appsec.notification.weekly_digest',
  HP_ROLE_ADDED_NOTIFICATION: 'appsec.notification.hp_role_added',
  ADMIN_UNLOCK_NOTIFICATION: 'appsec.notification.admin_unlock',
  EXPORT_NOTIFICATION: 'appsec.notification.export',
  EXPORT: 'appsec.security.export'
};

// Glide Job Names
ISCConstants.prototype.jobNames = {
  APPSEC_DAILY_DATA_MANAGEMENT: "[AppSec] Daily Data Management",
  APPSEC_DAILY_DATA_COLLECTION: "[PA AppSec] Daily Data Collection"
};

// Glide Tables
ISCConstants.prototype.tables = {
  SYS_USER: "sys_user",
  SYS_EVENT: "sysevent",
  SYSAUTO_PA: "sysauto_pa",
  DOMAIN_LISTING: "appsec_domain_listing",
  HARDENING_CONFIGURATIONS: "appsec_hardening_configurations",
  ISC_SECURITY_CONFIGURATIONS: "isc_security_configurations",
  ISC_DEPENDENCY_GROUPS: "isc_dependency_groups",
  ISC_SECURITY_DEPENDENCIES: "isc_security_dependencies",
  ISC_BANNER_CONFIG: "appsec_isc_banner_configuration",
  DOMAIN_RESULT_SET: "appsec_domain_result_set",
  SEC_DASHBOARD_EVENT_LOG: "isc_event",
  OLD_SEC_DASHBOARD_EVENT_LOG: "appsec_security_dashboard_event_logs",
  SEC_NOTIFICATION_LIST: "appsec_security_notification_list",
  SEC_NOTIFICATION_UNREAD_LIMIT: 5000,
  SEC_NOTIFICATION_TYPES: 'appsec_security_notification_type',
  ISC_EVENT_CONFIGURATION: "appsec_isc_event_configuration",
  SECURITY_UPDATE: "appsec_security_update",
  HARDENING_GUIDE_CATEGORIES: "appsec_hardening_guide_categories",
  SYSAUTO: "sysauto",
  ANNOUNCEMENT: "announcement",
  M2M_ANNOUNCEMENT_PORTAL: "m2m_announcement_portal",
  SYSAUTO_SCRIPT: "sysauto_script",
  USER_HAS_ROLE: 'sys_user_has_role',
  QUARANTINED_FILE: "quarantined_file",
  EMAIL: "sys_email",
  NG_TEMPLATE: "sp_ng_template",
  PA_WIDGETS: "pa_widgets",
  V_USER_SESSION: "v_user_session",
  SYSLOG_TRANSACTION: "syslog_transaction",
  SYS_PROPERTIES: "sys_properties",
  V_PLUGIN: "v_plugin",
  WHITELIST_PACKAGE: "sys_whitelist_package",
  WHITELIST_MEMBER: "sys_whitelist_member",
  IP_ACCESS: "ip_access",
  SYS_HOME: "sys_home",
  SCRIPT_ACTION: "sysevent_script_action",
  USER_NOTIF_PREFS: "cmn_notif_message",
  ISC_LOGIN: "isc_login_event",
  ISC_IMPERSONATION: "isc_impersonation_event",
  ISC_ELEVATION: "isc_elevation_event",
  ISC_EXPORT: "isc_export_event",
  SYS_POLL: "sys_poll",
  ISC_EXP_SETTING: "isc_export_setting",
  DATA_CLASS: "data_classification",
  DICT_CLASS: "m2m_dictionary_dataclass",
  SYS_CHOICE: "sys_choice",
  AA_POLICY: "sys_authentication_policy",
  AA_POLICY_CONTEXT: "sys_auth_policy_context",
  AA_POLICY_MFA: "sys_mfa_policy",
  AUTH_PROFILE_MAPPING: "sys_auth_profile_mapping",
  AUTH_API_ACCESS_POLICIES: "api_access_policies_and_profiles",
  SYS_REPORT: "sys_report",
  API_ACCESS_POLICY: "sys_api_access_policy",
};

// Glide Properties
ISCConstants.prototype.property = {
  USER_MAX_UNLOCK_ATTEMPTS: "glide.user.max_unlock_attempts",
  SERVLET_URI: "glide.servlet.uri",
};

Sys ID

054109830f311010b25fea12ff767e46

Offical Documentation

Official Docs: