FlorentinLedy
diff --git a/Diff for: ‎.gitignore
+1 b/Diff for: ‎.gitignore
+1
diff --git a/Diff for: ‎Dockerfile
+1-1 b/Diff for: ‎Dockerfile
+1-1
diff --git a/Diff for: ‎build-11.gradle
+9-4 b/Diff for: ‎build-11.gradle
+9-4
diff --git a/Diff for: ‎build.gradle
+7-4 b/Diff for: ‎build.gradle
+7-4
diff --git a/Diff for: ‎docs/Bug-Trackers-and-Feedback-Channels.md
+42 b/Diff for: ‎docs/Bug-Trackers-and-Feedback-Channels.md
+42
diff --git a/Diff for: ‎src/main/java/com/checkmarx/flow/config/FlowProperties.java
+21 b/Diff for: ‎src/main/java/com/checkmarx/flow/config/FlowProperties.java
+21
diff --git a/Diff for: ‎src/main/java/com/checkmarx/flow/service/EmailService.java
+85-38 b/Diff for: ‎src/main/java/com/checkmarx/flow/service/EmailService.java
+85-38
@@ -31,3 +31,4 @@ cx-flow.log*
 
 ### VSCode ###
 .vscode
+.DS_Store
@@ -4,7 +4,7 @@ WORKDIR app
 RUN apk update && \
     apk upgrade && \
     apk upgrade
-RUN apk add openjdk8=8.302.08-r2 --repository=https://dl-cdn.alpinelinux.org/alpine/edge/community
+RUN apk add openjdk8=8.322.06-r0 --repository=https://dl-cdn.alpinelinux.org/alpine/edge/community
 ENV JAVA_HOME=/usr/lib/jvm/java-1.8-openjdk
 COPY build/libs/*.jar cx-flow.jar
 ENTRYPOINT ["java", "-Xms512m", "-Xmx2048m", "-Djava.security.egd=file:/dev/./urandom", "-Dspring.profiles.active=web", "-jar", "cx-flow.jar"]
 
@@ -2,10 +2,10 @@ import org.gradle.api.tasks.testing.Test
 
 buildscript {
 	ext {
-        CxSBSDK = "0.5.17"
+        CxSBSDK = "0.5.18"
         ConfigProviderVersion = "1.0.9"
         //cxVersion = "8.90.5"
-        springBootVersion = '2.6.6'
+        springBootVersion = '2.7.0'
         sonarqubeVersion = '2.8'
         atlassianVersion = "5.2.0"
         atlassianFugueVersion = "4.7.2"
@@ -63,7 +63,7 @@ configurations {
 ext['tomcat.version'] = '9.0.62'
 ext['groovy.version'] = '3.0.9'
 ext['logback-classic.version'] = '1.2.10'
-ext['spring-core.version'] = '5.3.18'
+ext['spring-core.version'] = '5.3.20'
 
 dependencies {
     compile group: 'com.beust', name: 'jcommander', version: '1.78'
@@ -113,8 +113,10 @@ dependencies {
     compile("com.fasterxml.jackson.core:jackson-annotations:${jacksonVersion}")
     compile("com.fasterxml.jackson.datatype:jackson-datatype-jsr310:${jacksonVersion}")
     compile("com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:${jacksonVersion}")
-    //compile ("org.thymeleaf:thymeleaf:3.0.11.RELEASE")
+
     compile("org.thymeleaf:thymeleaf-spring5:3.0.15.RELEASE")
+    implementation 'ognl:ognl:3.3.2'
+
     compile ("org.apache.httpcomponents:httpclient:4.5.13")
     compile ("org.codehaus.groovy:groovy-all:3.0.9") {
         exclude group: 'org.apache.ant', module: 'ant'
@@ -172,6 +174,9 @@ dependencies {
     compile("javax.persistence:javax.persistence-api:2.2")
     compile group:'org.apache.tomcat', name:'tomcat-juli', version:property('tomcat.version')
     compile group:'org.springframework', name:'spring-core', version:property('spring-core.version')
+
+    implementation group: 'com.sendgrid', name: 'sendgrid-java', version: '4.9.0'
+
 }
 
 springBoot {
 
@@ -1,9 +1,9 @@
 buildscript {
     ext {
-        CxSBSDK = "0.5.17"
+        CxSBSDK = "0.5.18"
         ConfigProviderVersion = "1.0.10"
         //cxVersion = "8.90.5"
-        springBootVersion = '2.6.6'
+        springBootVersion = '2.7.0'
         sonarqubeVersion = '2.8'
         atlassianVersion = "5.2.0"
         atlassianFugueVersion = "4.7.2"
@@ -75,7 +75,7 @@ configurations {
 ext['tomcat.version'] = '9.0.62'
 ext['groovy.version'] = '3.0.9'
 ext['logback-classic.version'] = '1.2.10'
-ext['spring-core.version'] = '5.3.18'
+ext['spring-core.version'] = '5.3.20'
 
 dependencies {
     compile group: 'com.beust', name: 'jcommander', version: '1.78'
@@ -132,8 +132,10 @@ dependencies {
     compile("com.fasterxml.jackson.datatype:jackson-datatype-jsr310:${jacksonVersion}")
     compile("com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:${jacksonVersion}")
     compile("org.apache.httpcomponents:httpclient:4.5.13")
-    //compile("org.thymeleaf:thymeleaf:3.0.11.RELEASE")
+
     compile("org.thymeleaf:thymeleaf-spring5:3.0.15.RELEASE")
+    implementation 'ognl:ognl:3.3.2'
+
     compile("org.codehaus.groovy:groovy-all:3.0.9") {
         exclude group: 'org.apache.ant', module: 'ant'
         exclude group: 'org.webjars', module: 'jquery'
@@ -199,6 +201,7 @@ dependencies {
     compile group:'org.apache.tomcat', name:'tomcat-juli', version:property('tomcat.version')
     compile group:'org.springframework', name:'spring-core', version:property('spring-core.version')
 
+    implementation group: 'com.sendgrid', name: 'sendgrid-java', version: '4.9.0'
 }
 
 springBoot {
 
@@ -18,6 +18,7 @@
 * [CxXML](#cxxml)
 * [Json](#json)
 * [CSV](#csv)
+* [Email](#email)
 * [NONE|WAIT](#none)
 
 ##  <a name="data">Understanding the Data</a>
@@ -313,6 +314,7 @@ Valid options for `bug-tracker-impl` are currently the following ones:
 * Azure
 * CxXML - Only available for SAST 8.x|9.x
 * Csv
+* Email
 * JIRA
 * Json
 * GitHub
@@ -630,6 +632,46 @@ The file system path and the file naming format are required.
 
 **[TIMESTAMP]** → Current timestamp (yyyyMMdd.HHmmss format)
 
+## <a name="email">Email Notifications</a>
+CxFlow works with SMTP and SendGrid to notify users through e-mail. 
+
+```yaml
+cx-flow:
+  bug-tracker: Email
+  mail:
+    host: smtp.gmail.com
+    port: 587
+    username: xxx
+    password: xxx
+    notification: true # Required if using SendGrid
+    sendgrid:
+      api-token: your-sendgrid-token-here
+```
+
+`cx-flow.mail.notification` send two e-mail events: Scan Submitted and Scan Completed. The default is `false` (no e-mail are sent, even if all parameters are configured).
+
+If using SMTP, the following fields are required:
+
+```yaml
+cx-flow:
+  bug-tracker: Email
+  mail:
+    host: smtp.gmail.com
+    port: 587
+    username: xxx
+    password: xxx
+    notification: true
+```
+
+If using SendGrid, only the notification field and the API Token are required.
+
+```yaml
+cx-flow:
+  mail:
+    notification: true # Required if using SendGrid
+    sendgrid:
+      api-token: your-sendgrid-token-here
+```
 
 ## <a name="none">NONE | WAIT</a>
 If you want to trigger scans asynchronously, use **NONE**  
 
@@ -339,6 +339,7 @@ public static class Mail {
         private boolean notificationEnabled = false;
         private boolean allowEmptyMail = false;
         private String template;
+        private SendGrid sendgrid;
 
         public String getHost() {
             return this.host;
@@ -395,6 +396,26 @@ public void setAllowEmptyMail(boolean allowEmptyMail) {
         public String getTemplate() { return template; }
 
         public void setTemplate(String template) { this.template = template; }
+
+        public SendGrid getSendgrid() {
+            return sendgrid;
+        }
+
+        public void setSendgrid(SendGrid sendgrid) {
+            this.sendgrid = sendgrid;
+        }
+    }
+
+    public static class SendGrid {
+        private String apiToken;
+
+        public String getApiToken() {
+            return apiToken;
+        }
+
+        public void setApiToken(String apiToken) {
+            this.apiToken = apiToken;
+        }
     }
 
     public boolean isCxGoEnabled() {
 
@@ -33,23 +33,28 @@ public class EmailService {
     private final FlowProperties flowProperties;
     private final TemplateEngine templateEngine;
     private final JavaMailSender emailSender;
+    private final SendGridService sendGridService;
 
-    @ConstructorProperties({"flowProperties", "templateEngine", "emailSender"})
-    public EmailService(FlowProperties flowProperties, @Qualifier("cxFlowTemplateEngine") TemplateEngine templateEngine, JavaMailSender emailSender) {
+    @ConstructorProperties({"flowProperties", "templateEngine", "emailSender", "sendGridService"})
+    public EmailService(FlowProperties flowProperties,
+                        @Qualifier("cxFlowTemplateEngine") TemplateEngine templateEngine,
+                        JavaMailSender emailSender,
+                        SendGridService sendGridService) {
         this.flowProperties = flowProperties;
         this.templateEngine = templateEngine;
         this.emailSender = emailSender;
+        this.sendGridService = sendGridService;
     }
 
     /**
      * Send email
      *
-     * @param recipients
-     * @param subject
-     * @param ctx
-     * @param template
+     * @param recipients The list of recipients.
+     * @param subject    The subject.
+     * @param ctx        The context. It has information to generate the content.
+     * @param template   What template to use.
      */
-    public void sendmail(List<String> recipients, @NotNull String subject, @NotNull Map<String, Object> ctx, String template) {
+    public void sendSmtpMail(List<String> recipients, @NotNull String subject, @NotNull Map<String, Object> ctx, String template) {
 
         MimeMessagePreparator messagePreparator = mimeMessage -> {
             log.info("Sending email notification.");
@@ -96,9 +101,9 @@ public void sendmail(List<String> recipients, @NotNull String subject, @NotNull
     /**
      * Generate HTML content for email
      *
-     * @param ctx
-     * @param template
-     * @return
+     * @param ctx      The context. It has information to generate the content.
+     * @param template What template to use.
+     * @return The e-mail content, as HTML.
      */
     private String generateContent(Map<String, Object> ctx, String template) {
         Context context = new Context();
@@ -107,42 +112,55 @@ private String generateContent(Map<String, Object> ctx, String template) {
     }
 
     public void sendScanSubmittedEmail(ScanRequest request) {
-        if (isEmailNotificationAllowed()) {
-            String prefixMessage = "Checkmarx Scan submitted for %s/%s ";
-            String scanSubmittedSubject = String.format(prefixMessage, request.getNamespace(), request.getRepoName());
-            String scanSubmittedMessage = String.format(prefixMessage, request.getNamespace(), request.getRepoName());
-            Map<String, Object> emailCtx = prepareEmailContext("Scan Request Submitted", scanSubmittedMessage, request.getRepoUrl());
-            sendmail(request.getEmail(), scanSubmittedSubject, emailCtx, "message.html");
+        if (!isEmailNotificationAllowed()) {
+            log.info("cx-flow.mail.notification not set or set to false. Skipping Scan Submitted e-mail...");
+            return;
         }
+
+        FlowProperties.Mail mail = flowProperties.getMail();
+        String prefixMessage = "Checkmarx Scan submitted for %s/%s ";
+        String scanSubmittedSubject = String.format(prefixMessage, request.getNamespace(), request.getRepoName());
+        Map<String, Object> emailCtx = prepareEmailContext("Scan Request Submitted", scanSubmittedSubject, request.getRepoUrl());
+        sendMail(request.getEmail(), mail, scanSubmittedSubject, emailCtx, "message.html");
     }
 
     public void sendScanCompletedEmail(ScanRequest request, ScanResults results) {
-        if(request.getBugTracker()!=null) {
-            BugTracker.Type bugTrackerType = request.getBugTracker().getType();
-            if (isEmailNotificationAllowed() && !bugTrackerType.equals(BugTracker.Type.NONE) &&
-                    !bugTrackerType.equals(BugTracker.Type.EMAIL)) {
-                prepareAndSendEmail(request, results);
-            }
+        if (!isEmailNotificationAllowed()) {
+            log.info("cx-flow.mail.notification not set or set to false. Skipping Scan Completed e-mail...");
+            return;
+        }
+
+        if (request.getBugTracker() == null) {
+            return;
+        }
+
+        BugTracker.Type bugTrackerType = request.getBugTracker().getType();
+        if (bugTrackerType.equals(BugTracker.Type.NONE) ||
+                !bugTrackerType.equals(BugTracker.Type.EMAIL)) {
+            return;
         }
+
+        prepareAndSendScanCompletedEmail(request, results);
     }
 
     public void handleEmailBugTracker(ScanRequest request, ScanResults results) {
-        if (flowProperties.getMail() != null) {
-            if (ScanUtils.empty(results.getXIssues())) {
-                if (flowProperties.getMail().isEmptyMailAllowed()) {
-                    prepareAndSendEmail(request, results);
-                }
-            } else {
-                prepareAndSendEmail(request, results);
-            }
+        FlowProperties.Mail mail = flowProperties.getMail();
+        if (mail == null) {
+            return;
+        }
+
+        if (ScanUtils.empty(results.getXIssues()) && !mail.isEmptyMailAllowed()) {
+            return;
         }
+
+        prepareAndSendScanCompletedEmail(request, results);
     }
 
     private boolean isEmailNotificationAllowed() {
         return flowProperties.getMail() != null && flowProperties.getMail().isNotificationEnabled();
     }
 
-    public void prepareAndSendEmail(ScanRequest request, ScanResults results) {
+    public void prepareAndSendScanCompletedEmail(ScanRequest request, ScanResults results) {
         String namespace = request.getNamespace();
         String repoName = request.getRepoName();
         String scanCompletedMessage = COMPLETED_PROCESSING.concat(namespace).concat("/").concat(repoName);
@@ -154,20 +172,49 @@ public void prepareAndSendEmail(ScanRequest request, ScanResults results) {
             emailCtx.put("issues", results.getXIssues());
             emailCtx.put("link", results.getLink());
         }
+
         emailCtx.put("repo_fullname", namespace.concat("/").concat(repoName));
 
-        String template = flowProperties.getMail().getTemplate();
+        FlowProperties.Mail mail = flowProperties.getMail();
+        String template = mail.getTemplate();
 
-        if(ScanUtils.empty(template)) {
-            sendmail(request.getEmail(), scanCompletedSubject, emailCtx, "template-demo.html");
-        }
-        else
-        {
-            sendmail(request.getEmail(), scanCompletedSubject, emailCtx, template);
+        if (ScanUtils.empty(template)) {
+            template = "template-demo.html";
         }
+
+        sendMail(request.getEmail(), mail, scanCompletedSubject, emailCtx, template);
         log.info("Email notification sent.");
     }
 
+    /**
+     * Resolves how to send the Scan Submitted e-mail. If `cx-flow.mail.sendgrid` is set, sends through Sendgrid.
+     * Otherwise sends through SMTP.
+     *
+     * @param emails               List of e-mails with all the recipients.
+     * @param mailProperties       Configured properties for mail, through YAML, env variables or command-line arguments.
+     * @param scanCompletedSubject The e-mail subject
+     * @param emailCtx             The e-mail context. Used to generate the content.
+     * @param template             The template chosen.
+     */
+    private void sendMail(List<String> emails, FlowProperties.Mail mailProperties, String scanCompletedSubject,
+                          Map<String, Object> emailCtx, String template) {
+        FlowProperties.SendGrid sendGrid = mailProperties.getSendgrid();
+        if (sendGrid != null && sendGrid.getApiToken() != null) {
+            log.info("Using Sendgrid to send the Scan Completed e-mail notification.");
+            String content = generateContent(emailCtx, template);
+
+            String from = flowProperties.getContact();
+            if (StringUtils.isEmpty(from)) {
+                from = "[email protected]";
+            }
+
+            sendGridService.sendEmailThroughSendGrid(emails, from, sendGrid.getApiToken(), scanCompletedSubject, content);
+        } else {
+            log.info("Using SMTP to send the Scan Completed e-mail notification.");
+            sendSmtpMail(emails, scanCompletedSubject, emailCtx, template);
+        }
+    }
+
     private Map<String, Object> prepareEmailContext(String heading, String message, String repoUrl) {
         Map<String, Object> emailCtx = new HashMap<>();
         emailCtx.put(HEADING_KEY, heading);
Original file line number	Diff line number	Diff line change
`@@ -31,3 +31,4 @@ cx-flow.log*`
`31`	`31`
`32`	`32`	`### VSCode ###`
`33`	`33`	`.vscode`
	`34`	`+.DS_Store`