Error handling and change config

README.md

@@ -36,10 +36,11 @@ Examles of config:
         "password": "changeme"
     },
     "kibana": {
-        "node": "http://localhost:9200",
+        "node": "http://127.0.0.1:5601",
         "username": "elastic",
         "password": "changeme"
-    }
+    },
+    "eventIndex": ""
 }
 ```
 

commands/api.mjs

@@ -3,30 +3,38 @@ import fetch, { Headers } from "node-fetch";
 import config from "../config.json" assert { type: "json" };
 
 export const kibanaFetch = async (url, params, apiVersion = 1) => {
-  let headers = new Headers();
+  try {
+    let headers = new Headers();
 
-  headers.append("Content-Type", "application/json");
-  headers.append("kbn-xsrf", "true");
-  if(config.kibana.apiKey) {
-    headers.set("Authorization", "ApiKey " + config.kibana.apiKey)
-  } else {
-    headers.set(
-      "Authorization",
-      "Basic " +
-        Buffer.from(
-          config.kibana.username + ":" + config.kibana.password
-        ).toString("base64")
-    );
+    headers.append("Content-Type", "application/json");
+    headers.append("kbn-xsrf", "true");
+    if (config.kibana.apiKey) {
+      headers.set("Authorization", "ApiKey " + config.kibana.apiKey);
+    } else {
+      headers.set(
+        "Authorization",
+        "Basic " +
+          Buffer.from(
+            config.kibana.username + ":" + config.kibana.password
+          ).toString("base64")
+      );
+    }
+
+    headers.set("x-elastic-internal-origin", "kibana");
+    headers.set("elastic-api-version", apiVersion);
+    const result = await fetch(new URL(url, config.kibana.node), {
+      headers: headers,
+      ...params,
+    });
+    const data = await result.json();
+    if(data.statusCode && data.statusCode !== 200) {
+      console.log(data)
+      throw new Error(data.message)
+    }
+    return data;
+  } catch (e) {
+    console.log(e);
   }
-
-  headers.set("x-elastic-internal-origin", "kibana");
-  headers.set("elastic-api-version", apiVersion);
-  const result = await fetch(new URL(url, config.kibana.node), {
-    headers: headers,
-    ...params,
-  });
-  const data = await result.json();
-  return data;
 };
 
 export const fetchRiskScore = async () => {
@@ -59,21 +67,25 @@ export const assignAssetCriticality = async ({
 };
 
 export const createRule = () => {
-  return kibanaFetch(`/api/detection_engine/rules`, {
-    method: "POST",
-    body: JSON.stringify({
-      name: "Alert Testing Query",
-      description: "Tests a simple query",
-      enabled: true,
-      risk_score: 70,
-      rule_id: 'rule-1',
-      severity: "high",
-      index: ['auditbeat-*'],
-      type: "query",
-      query: "*:*",
-      from: "2024-01-01T00:00:00.000Z",
-      from: 'now-1h',
-      interval: '1m',
-    }),
-  }, "2023-10-31");
+  return kibanaFetch(
+    `/api/detection_engine/rules`,
+    {
+      method: "POST",
+      body: JSON.stringify({
+        name: "Alert Testing Query",
+        description: "Tests a simple query",
+        enabled: true,
+        risk_score: 70,
+        rule_id: "rule-1",
+        severity: "high",
+        index: ["auditbeat-*"],
+        type: "query",
+        query: "*:*",
+        from: "2024-01-01T00:00:00.000Z",
+        from: "now-1h",
+        interval: "1m",
+      }),
+    },
+    "2023-10-31"
+  );
 };

config.dev.json

@@ -5,7 +5,7 @@
         "password": "changeme"
     },
     "kibana": {
-        "node": "http://localhost:9200",
+        "node": "http://127.0.0.1:5601",
         "username": "elastic",
         "password": "changeme"
     },