feat: Add option to delete HasSession edges #853

cmd/api/src/api/v2/database_wipe.go

@@ -30,11 +30,14 @@ import (
 	"github.com/specterops/bloodhound/cmd/api/src/model"
 	"github.com/specterops/bloodhound/cmd/api/src/model/appcfg"
 	"github.com/specterops/dawgs/graph"
+	"github.com/specterops/dawgs/ops"
+	"github.com/specterops/dawgs/query"
 )
 
 type DatabaseWipe struct {
-	DeleteCollectedGraphData bool  `json:"deleteCollectedGraphData"`
-	DeleteSourceKinds        []int `json:"deleteSourceKinds"` // an id of 0 represents "sourceless" data
+	DeleteCollectedGraphData bool     `json:"deleteCollectedGraphData"`
+	DeleteSourceKinds        []int    `json:"deleteSourceKinds"` // an id of 0 represents "sourceless" data
+	DeleteRelationships      []string `json:"deleteRelationships"`
 
 	DeleteFileIngestHistory   bool  `json:"deleteFileIngestHistory"`
 	DeleteDataQualityHistory  bool  `json:"deleteDataQualityHistory"`
@@ -63,7 +66,7 @@ func (s Resources) HandleDatabaseWipe(response http.ResponseWriter, request *htt
 	}
 
 	// return `BadRequest` if request is empty
-	isEmptyRequest := !payload.DeleteCollectedGraphData && !payload.DeleteDataQualityHistory && !payload.DeleteFileIngestHistory && len(payload.DeleteAssetGroupSelectors) == 0 && len(payload.DeleteSourceKinds) == 0
+	isEmptyRequest := !payload.DeleteCollectedGraphData && !payload.DeleteDataQualityHistory && !payload.DeleteFileIngestHistory && len(payload.DeleteRelationships) == 0 && len(payload.DeleteAssetGroupSelectors) == 0 && len(payload.DeleteSourceKinds) == 0
 	if isEmptyRequest {
 		api.WriteErrorResponse(
 			request.Context(),
@@ -188,6 +191,13 @@ func (s Resources) HandleDatabaseWipe(response http.ResponseWriter, request *htt
 		}
 	}
 
+	// delete requested graph edges by name
+	if len(payload.DeleteRelationships) > 0 {
+		if failure := s.deleteEdges(request.Context(), &auditEntry, payload.DeleteRelationships); failure {
+			errors = append(errors, "graph edges")
+		}
+	}
+
 	// return a user-friendly error message indicating what operations failed
 	if len(errors) > 0 {
 		api.WriteErrorResponse(
@@ -237,6 +247,35 @@ func (s Resources) deleteDataQualityHistory(ctx context.Context, auditEntry *mod
 	}
 }
 
+func (s Resources) deleteEdges(ctx context.Context, auditEntry *model.AuditEntry, edgeNames []string) (failure bool) {
+	// Use the graph batch API to find and delete relationships matching the provided edge names
+	if err := s.Graph.BatchOperation(ctx, func(batch graph.Batch) error {
+		for _, name := range edgeNames {
+			targetCriteria := query.Kind(query.Relationship(), graph.StringKind(name))
+
+			rels, err := ops.FetchRelationships(batch.Relationships().Filter(targetCriteria))
+			if err != nil {
+				return err
+			}
+
+			for _, rel := range rels {
+				if err := batch.DeleteRelationship(rel.ID); err != nil {
+					return err
+				}
+			}
+		}
+
+		return nil
+	}); err != nil {
+		slog.ErrorContext(ctx, fmt.Sprintf("%s: %s", "there was an error deleting graph edges", err.Error()))
+		s.handleAuditLogForDatabaseWipe(ctx, auditEntry, false, strings.Join(edgeNames, ", "))
+		return true
+	} else {
+		s.handleAuditLogForDatabaseWipe(ctx, auditEntry, true, strings.Join(edgeNames, ", "))
+		return false
+	}
+}
+
 func (s Resources) handleAuditLogForDatabaseWipe(ctx context.Context, auditEntry *model.AuditEntry, success bool, msg string) {
 	if success {
 		auditEntry.Status = model.AuditLogStatusSuccess

cmd/ui/src/views/DatabaseManagement/DatabaseManagement.test.tsx

@@ -102,8 +102,9 @@ describe('DatabaseManagement', () => {
         // [ ] All asset group selectors
         // [ ] File ingest log history
         // [ ] Data quality
+        // [ ] HasSession edges
         const checkboxes = screen.getAllByRole('checkbox');
-        expect(checkboxes.length).toEqual(9);
+        expect(checkboxes.length).toEqual(10);
         expect(deleteButton).toBeInTheDocument();
     });
 

cmd/ui/src/views/DatabaseManagement/DatabaseManagement.tsx

@@ -39,6 +39,7 @@ const initialState: State = {
     deleteCustomHighValueSelectors: false,
     deleteDataQualityHistory: false,
     deleteFileIngestHistory: false,
+    deleteHasSessionEdges: false,
     deleteSourceKinds: [],
 
     noSelectionError: false,
@@ -55,6 +56,7 @@ type State = {
     deleteCustomHighValueSelectors: boolean;
     deleteDataQualityHistory: boolean;
     deleteFileIngestHistory: boolean;
+    deleteHasSessionEdges: boolean;
     deleteSourceKinds: number[];
 
     // error state
@@ -102,6 +104,7 @@ const reducer = (state: State, action: Action): State => {
                 deleteCustomHighValueSelectors: false,
                 deleteDataQualityHistory: false,
                 deleteFileIngestHistory: false,
+                deleteHasSessionEdges: false,
                 deleteSourceKinds: [],
 
                 showSuccessMessage: true,
@@ -131,6 +134,7 @@ const reducer = (state: State, action: Action): State => {
                     state.deleteCustomHighValueSelectors,
                     state.deleteDataQualityHistory,
                     state.deleteFileIngestHistory,
+                    state.deleteHasSessionEdges,
                 ].filter(Boolean).length === 0 && state.deleteSourceKinds.length === 0;
 
             if (noSelection) {
@@ -170,6 +174,7 @@ const useDatabaseManagement = () => {
         deleteCustomHighValueSelectors,
         deleteDataQualityHistory,
         deleteFileIngestHistory,
+        deleteHasSessionEdges,
         deleteSourceKinds,
     } = state;
 
@@ -216,6 +221,7 @@ const useDatabaseManagement = () => {
                 deleteCollectedGraphData,
                 deleteDataQualityHistory,
                 deleteFileIngestHistory,
+                deleteRelationships: deleteHasSessionEdges ? ['HasSession'] : [],
                 deleteSourceKinds,
             },
         });
@@ -254,6 +260,7 @@ const DatabaseManagement: FC = () => {
         deleteCustomHighValueSelectors,
         deleteDataQualityHistory,
         deleteFileIngestHistory,
+        deleteHasSessionEdges,
         deleteSourceKinds,
     } = state;
 
@@ -361,6 +368,17 @@ const DatabaseManagement: FC = () => {
                                     />
                                 }
                             />
+                            <FormControlLabel
+                                label="HasSession edges"
+                                control={
+                                    <Checkbox
+                                        checked={deleteHasSessionEdges}
+                                        onChange={handleCheckbox}
+                                        name='deleteHasSessionEdges'
+                                        disabled={!hasPermission}
+                                    />
+                                }
+                            />
                         </FormGroup>
                     </FormControl>
 

packages/go/openapi/doc/openapi.json

@@ -13316,7 +13316,7 @@
       "post": {
         "operationId": "DeleteBloodHoundDatabase",
         "summary": "Delete your BloodHound data",
-        "description": "Wipes your BloodHound data permanently. Specify the data to delete in the request body. Possible data includes collected graph data, custom high value selectors, file ingest history, and data quality history.",
+        "description": "Wipes your BloodHound data permanently. Specify the data to delete in the request body. Possible data includes collected graph data, relationships of a specific type, custom high value selectors, file ingest history, and data quality history.",
         "tags": [
           "Database",
           "Community",
@@ -13331,6 +13331,12 @@
                   "deleteCollectedGraphData": {
                     "type": "boolean"
                   },
+                  "deleteRelationships": {
+                    "type": "array",
+                    "items": {
+                      "type": "string"
+                    }
+                  },
                   "deleteFileIngestHistory": {
                     "type": "boolean"
                   },

packages/go/openapi/src/paths/data-quality.clear-database.yaml

@@ -21,8 +21,8 @@ post:
   summary: Delete your BloodHound data
   description:
     Wipes your BloodHound data permanently. Specify the data to delete in the request body.
-    Possible data includes collected graph data, custom high value selectors, file ingest history,
-    and data quality history.
+    Possible data includes collected graph data, relationships of specific types, custom high value selectors,
+    file ingest history, and data quality history.
   tags:
     - Database
     - Community
@@ -35,6 +35,10 @@ post:
           properties:
             deleteCollectedGraphData:
               type: boolean
+            deleteRelationships:
+              type: array
+              items:
+                type: string
             deleteFileIngestHistory:
               type: boolean
             deleteDataQualityHistory:

packages/javascript/js-client-library/src/requests.ts

@@ -238,6 +238,7 @@ export interface ClearDatabaseRequest {
     deleteAssetGroupSelectors: number[];
     deleteCollectedGraphData: boolean;
     deleteDataQualityHistory: boolean;
+    deleteRelationships?: string[];
     deleteFileIngestHistory: boolean;
     deleteSourceKinds: number[];
 }