From 5bba52bd79dac794fac90a8dc4e9414013875bff Mon Sep 17 00:00:00 2001
From: Zach Wasserman <zach@fleetdm.com>
Date: Tue, 19 Jan 2021 19:57:41 -0800
Subject: [PATCH 1/4] Add support for denylist parameter in scheduled queries

Closes #202
---
 .../datastore_scheduled_queries_test.go       | 12 +++++++++
 ...119174155_AddDenylistToScheduledQueries.go | 25 +++++++++++++++++++
 server/datastore/mysql/scheduled_queries.go   | 17 +++++++------
 server/kolide/packs.go                        |  1 +
 server/kolide/scheduled_queries.go            |  2 ++
 5 files changed, 50 insertions(+), 7 deletions(-)
 create mode 100644 server/datastore/mysql/migrations/tables/20210119174155_AddDenylistToScheduledQueries.go

diff --git a/server/datastore/datastore_scheduled_queries_test.go b/server/datastore/datastore_scheduled_queries_test.go
index 1d719d81e2d1..4e70079f98cd 100644
--- a/server/datastore/datastore_scheduled_queries_test.go
+++ b/server/datastore/datastore_scheduled_queries_test.go
@@ -99,6 +99,18 @@ func testScheduledQuery(t *testing.T, ds kolide.Datastore) {
 	query, err := ds.ScheduledQuery(sq1.ID)
 	require.Nil(t, err)
 	assert.Equal(t, uint(60), query.Interval)
+	assert.Nil(t, query.Denylist)
+
+	denylist := false
+	query.Denylist = &denylist
+
+	query, err = ds.SaveScheduledQuery(query)
+
+	query, err = ds.ScheduledQuery(sq1.ID)
+	require.Nil(t, err)
+	assert.Equal(t, uint(60), query.Interval)
+	require.NotNil(t, query.Denylist)
+	assert.False(t, *query.Denylist)
 }
 
 func testDeleteScheduledQuery(t *testing.T, ds kolide.Datastore) {
diff --git a/server/datastore/mysql/migrations/tables/20210119174155_AddDenylistToScheduledQueries.go b/server/datastore/mysql/migrations/tables/20210119174155_AddDenylistToScheduledQueries.go
new file mode 100644
index 000000000000..1571017a8541
--- /dev/null
+++ b/server/datastore/mysql/migrations/tables/20210119174155_AddDenylistToScheduledQueries.go
@@ -0,0 +1,25 @@
+package tables
+
+import (
+	"database/sql"
+)
+
+func init() {
+	MigrationClient.AddMigration(Up20210119174155, Down20210119174155)
+}
+
+func Up20210119174155(tx *sql.Tx) error {
+	_, err := tx.Exec(`
+		ALTER TABLE scheduled_queries
+		ADD COLUMN denylist TINYINT(1) DEFAULT NULL
+	`)
+	return err
+}
+
+func Down20210119174155(tx *sql.Tx) error {
+	_, err := tx.Exec(`
+		ALTER TABLE scheduled_queries
+		DROP COLUMN denylist
+	`)
+	return err
+}
diff --git a/server/datastore/mysql/scheduled_queries.go b/server/datastore/mysql/scheduled_queries.go
index 6e5d87903b4c..151c862ecd3b 100644
--- a/server/datastore/mysql/scheduled_queries.go
+++ b/server/datastore/mysql/scheduled_queries.go
@@ -21,6 +21,7 @@ func (d *Datastore) ListScheduledQueriesInPack(id uint, opts kolide.ListOptions)
 			sq.platform,
 			sq.version,
 			sq.shard,
+			sq.denylist,
 			q.query,
 			q.id AS query_id
 		FROM scheduled_queries sq
@@ -53,15 +54,16 @@ func (d *Datastore) NewScheduledQuery(sq *kolide.ScheduledQuery, opts ...kolide.
 			` + "`interval`" + `,
 			platform,
 			version,
-			shard
+			shard,
+			denylist
 		)
-		SELECT name, ?, ?, ?, ?, ?, ?, ?, ?
+		SELECT name, ?, ?, ?, ?, ?, ?, ?, ?, ?
 		FROM queries
 		WHERE id = ?
 		`
-	result, err := db.Exec(query, sq.Name, sq.PackID, sq.Snapshot, sq.Removed, sq.Interval, sq.Platform, sq.Version, sq.Shard, sq.QueryID)
+	result, err := db.Exec(query, sq.Name, sq.PackID, sq.Snapshot, sq.Removed, sq.Interval, sq.Platform, sq.Version, sq.Shard, sq.Denylist, sq.QueryID)
 	if err != nil {
-		return nil, errors.Wrap(err, "inserting scheduled query")
+		return nil, errors.Wrap(err, "insert scheduled query")
 	}
 
 	id, _ := result.LastInsertId()
@@ -93,10 +95,10 @@ func (d *Datastore) NewScheduledQuery(sq *kolide.ScheduledQuery, opts ...kolide.
 func (d *Datastore) SaveScheduledQuery(sq *kolide.ScheduledQuery) (*kolide.ScheduledQuery, error) {
 	query := `
 		UPDATE scheduled_queries
-			SET pack_id = ?, query_id = ?, ` + "`interval`" + ` = ?, snapshot = ?, removed = ?, platform = ?, version = ?, shard = ?
+			SET pack_id = ?, query_id = ?, ` + "`interval`" + ` = ?, snapshot = ?, removed = ?, platform = ?, version = ?, shard = ?, denylist = ?
 			WHERE id = ?
 	`
-	result, err := d.db.Exec(query, sq.PackID, sq.QueryID, sq.Interval, sq.Snapshot, sq.Removed, sq.Platform, sq.Version, sq.Shard, sq.ID)
+	result, err := d.db.Exec(query, sq.PackID, sq.QueryID, sq.Interval, sq.Snapshot, sq.Removed, sq.Platform, sq.Version, sq.Shard, sq.Denylist, sq.ID)
 	if err != nil {
 		return nil, errors.Wrap(err, "saving a scheduled query")
 	}
@@ -129,6 +131,7 @@ func (d *Datastore) ScheduledQuery(id uint) (*kolide.ScheduledQuery, error) {
 			sq.shard,
 			sq.query_name,
 			sq.description,
+			sq.denylist,
 			q.query,
 			q.name,
 			q.id AS query_id
@@ -139,7 +142,7 @@ func (d *Datastore) ScheduledQuery(id uint) (*kolide.ScheduledQuery, error) {
 	`
 	sq := &kolide.ScheduledQuery{}
 	if err := d.db.Get(sq, query, id); err != nil {
-		return nil, errors.Wrap(err, "selecting a scheduled query")
+		return nil, errors.Wrap(err, "select scheduled query")
 	}
 
 	return sq, nil
diff --git a/server/kolide/packs.go b/server/kolide/packs.go
index ba7a8e6ab85a..c42932cf9cfc 100644
--- a/server/kolide/packs.go
+++ b/server/kolide/packs.go
@@ -167,6 +167,7 @@ type PackSpecQuery struct {
 	Shard       *uint   `json:"shard,omitempty"`
 	Platform    *string `json:"platform,omitempty"`
 	Version     *string `json:"version,omitempty"`
+	Denylist    *bool   `json:"denylist,omitempty"`
 }
 
 // PackTarget associates a pack with either a host or a label
diff --git a/server/kolide/scheduled_queries.go b/server/kolide/scheduled_queries.go
index d51438ec4292..e20dd9af0b9f 100644
--- a/server/kolide/scheduled_queries.go
+++ b/server/kolide/scheduled_queries.go
@@ -37,6 +37,7 @@ type ScheduledQuery struct {
 	Platform    *string `json:"platform,omitempty"`
 	Version     *string `json:"version,omitempty"`
 	Shard       *uint   `json:"shard"`
+	Denylist    *bool   `json:"denylist"`
 }
 
 type ScheduledQueryPayload struct {
@@ -48,4 +49,5 @@ type ScheduledQueryPayload struct {
 	Platform *string   `json:"platform"`
 	Version  *string   `json:"version"`
 	Shard    *null.Int `json:"shard"`
+	Denylist *bool     `json:"denylist"`
 }

From 5d7aff2a46e6b56fd1c104a692a7d32b90b920f2 Mon Sep 17 00:00:00 2001
From: Zach Wasserman <zach@fleetdm.com>
Date: Thu, 21 Jan 2021 14:57:27 -0800
Subject: [PATCH 2/4] Fix missing query param

---
 server/datastore/mysql/packs.go  | 8 ++++----
 server/service/endpoint_packs.go | 4 +++-
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/server/datastore/mysql/packs.go b/server/datastore/mysql/packs.go
index 445100b0d6b8..a87b43eb6565 100644
--- a/server/datastore/mysql/packs.go
+++ b/server/datastore/mysql/packs.go
@@ -4,8 +4,8 @@ import (
 	"database/sql"
 	"fmt"
 
-	"github.com/jmoiron/sqlx"
 	"github.com/fleetdm/fleet/server/kolide"
+	"github.com/jmoiron/sqlx"
 	"github.com/pkg/errors"
 )
 
@@ -65,16 +65,16 @@ func applyPackSpec(tx *sqlx.Tx, spec *kolide.PackSpec) error {
 		query = `
 			INSERT INTO scheduled_queries (
 				pack_id, query_name, name, description, ` + "`interval`" + `,
-				snapshot, removed, shard, platform, version
+				snapshot, removed, shard, platform, version, denylist
 			)
 			VALUES (
 				?, ?, ?, ?, ?,
-				?, ?, ?, ?, ?
+				?, ?, ?, ?, ?, ?
 			)
 		`
 		_, err := tx.Exec(query,
 			packID, q.QueryName, q.Name, q.Description, q.Interval,
-			q.Snapshot, q.Removed, q.Shard, q.Platform, q.Version,
+			q.Snapshot, q.Removed, q.Shard, q.Platform, q.Version, q.Denylist,
 		)
 		switch {
 		case isChildForeignKeyError(err):
diff --git a/server/service/endpoint_packs.go b/server/service/endpoint_packs.go
index d62e6d2823db..52017ad16126 100644
--- a/server/service/endpoint_packs.go
+++ b/server/service/endpoint_packs.go
@@ -3,8 +3,9 @@ package service
 import (
 	"context"
 
-	"github.com/go-kit/kit/endpoint"
+	"github.com/davecgh/go-spew/spew"
 	"github.com/fleetdm/fleet/server/kolide"
+	"github.com/go-kit/kit/endpoint"
 )
 
 type packResponse struct {
@@ -261,6 +262,7 @@ func (r applyPackSpecsResponse) error() error { return r.Err }
 func makeApplyPackSpecsEndpoint(svc kolide.Service) endpoint.Endpoint {
 	return func(ctx context.Context, request interface{}) (interface{}, error) {
 		req := request.(applyPackSpecsRequest)
+		spew.Dump(req)
 		err := svc.ApplyPackSpecs(ctx, req.Specs)
 		if err != nil {
 			return applyPackSpecsResponse{Err: err}, nil

From f01b43a3eb49189411bcf918808ca3cefedb48d2 Mon Sep 17 00:00:00 2001
From: Zach Wasserman <zach@fleetdm.com>
Date: Mon, 25 Jan 2021 12:49:40 -0800
Subject: [PATCH 3/4] Update tests and fixing missing uses

---
 server/datastore/datastore_packs_test.go | 2 ++
 server/datastore/mysql/packs.go          | 4 ++--
 server/service/endpoint_packs.go         | 1 -
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/server/datastore/datastore_packs_test.go b/server/datastore/datastore_packs_test.go
index 2d82be507328..c1ba78a6d4c1 100644
--- a/server/datastore/datastore_packs_test.go
+++ b/server/datastore/datastore_packs_test.go
@@ -217,6 +217,7 @@ func setupPackSpecsTest(t *testing.T, ds kolide.Datastore) []*kolide.PackSpec {
 					Name:      "foo_snapshot",
 					Interval:  600,
 					Snapshot:  boolPtr(true),
+					Denylist:  boolPtr(false),
 				},
 				kolide.PackSpecQuery{
 					Name:      "q2",
@@ -226,6 +227,7 @@ func setupPackSpecsTest(t *testing.T, ds kolide.Datastore) []*kolide.PackSpec {
 					Shard:     uintPtr(73),
 					Platform:  stringPtr("foobar"),
 					Version:   stringPtr("0.0.0.0.0.1"),
+					Denylist:  boolPtr(true),
 				},
 			},
 		},
diff --git a/server/datastore/mysql/packs.go b/server/datastore/mysql/packs.go
index a87b43eb6565..da3a794b310a 100644
--- a/server/datastore/mysql/packs.go
+++ b/server/datastore/mysql/packs.go
@@ -129,7 +129,7 @@ WHERE pack_id = ? AND pt.type = ? AND pt.target_id = l.id
 			query = `
 SELECT
 query_name, name, description, ` + "`interval`" + `,
-snapshot, removed, shard, platform, version
+snapshot, removed, shard, platform, version, denylist
 FROM scheduled_queries
 WHERE pack_id = ?
 `
@@ -179,7 +179,7 @@ WHERE pack_id = ? AND pt.type = ? AND pt.target_id = l.id
 		query = `
 SELECT
 query_name, name, description, ` + "`interval`" + `,
-snapshot, removed, shard, platform, version
+snapshot, removed, shard, platform, version, denylist
 FROM scheduled_queries
 WHERE pack_id = ?
 `
diff --git a/server/service/endpoint_packs.go b/server/service/endpoint_packs.go
index 52017ad16126..a089fbce5cae 100644
--- a/server/service/endpoint_packs.go
+++ b/server/service/endpoint_packs.go
@@ -262,7 +262,6 @@ func (r applyPackSpecsResponse) error() error { return r.Err }
 func makeApplyPackSpecsEndpoint(svc kolide.Service) endpoint.Endpoint {
 	return func(ctx context.Context, request interface{}) (interface{}, error) {
 		req := request.(applyPackSpecsRequest)
-		spew.Dump(req)
 		err := svc.ApplyPackSpecs(ctx, req.Specs)
 		if err != nil {
 			return applyPackSpecsResponse{Err: err}, nil

From 242c72580fe8ab714618df40223297054d8bf290 Mon Sep 17 00:00:00 2001
From: Zach Wasserman <zach@fleetdm.com>
Date: Mon, 25 Jan 2021 13:03:54 -0800
Subject: [PATCH 4/4] Remove unused import

---
 server/service/endpoint_packs.go | 1 -
 1 file changed, 1 deletion(-)

diff --git a/server/service/endpoint_packs.go b/server/service/endpoint_packs.go
index a089fbce5cae..01a60e26eb25 100644
--- a/server/service/endpoint_packs.go
+++ b/server/service/endpoint_packs.go
@@ -3,7 +3,6 @@ package service
 import (
 	"context"
 
-	"github.com/davecgh/go-spew/spew"
 	"github.com/fleetdm/fleet/server/kolide"
 	"github.com/go-kit/kit/endpoint"
 )