This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
HeikoAnkenbrand
MVP Platinum
MVP Platinum
‎2023-02-08 04:29 AM

Feature request / Question - SmartConsole Extensions

I have a small problem when I want to develop more extensive extensions that interact with a gateway. For example, I want to read information on the gateway and use it in my code.

Every time I call and execute the following function

smxProxy.sendRequest("request-commit", {"commands" : ["run-script script-name 'HA Test' script '…

so I always get the following windows to approve the action.
p_approve_1_655654.png
When the script is executed on the gateway, I still get the success window.
p_approve_2_655654.png

This makes interactive communication with the gateway impossible because I have to keep closing the windows.
I understand that this makes sense from a safety point of view. However, it does prevent you from writing interactive javascript code.

Now my question:
- Is there already a switch in the function "smxProxy.sendRequest " to prevent the windows from being displayed?
- Is there another way around this?

If there is no solution:
- Will you integrate this in the future?
- Or can I make a feature request here?

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
0 Kudos
5 Replies
Danny
MVP Platinum
MVP Platinum
‎2023-02-08 04:47 AM

Welcome to the world of SmartConsole Extension limitations😁

Sometimes you'd like to refesh the same query without continuous end user confirmation dialog boxes (example) and sometimes SmartConsole performs an auto-refresh that causes a pile of other issues (example). Check Point's SmartConsole developers promised me to fix both topics in 2023. Fingers crossed they'll do it this year. I'm reminding them every six months.

HeikoAnkenbrand
MVP Platinum
MVP Platinum
‎2023-02-08 06:14 AM
In response to Danny

This does not protect against malicious code being downloaded.

You can also commit the code base64 encoded and and and
Then the user can no longer see it in plain text and the user does not know what he approving.

With the autorefresh and the "smxProxy.sendRequest" + approve window  restrictions, you can't really use the SmartConsole Extension for more complex tasks.

From my point of view, this could be approved when installing the app. Here I would set a selection field and point out the dangers to the user. For example like this:

Picture_approve_2_534534er.jpg

@Ron_Izraeli , @Tomer_Noy , @Alon_Alapi 
Maybe you can discuss this with Dorit and then make the api more open.


➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
Danny
MVP Platinum
MVP Platinum
‎2023-02-08 06:25 AM
In response to HeikoAnkenbrand

This option and many others have been already discussed with the SmartConsole developers.
I would've created many more extensions already if there wouldn't be so many limitations.

(1)
HeikoAnkenbrand
MVP Platinum
MVP Platinum
‎2023-02-08 07:26 AM
In response to Danny

Me too.

I also have good ideas for new extensions that cannot be implemented in this way.

That's a pity, because we could help many users with new extensions.

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
0 Kudos
Henrik_Noerr1
Advisor
‎2023-02-08 11:44 AM
In response to Danny

Please remind them of VSX support 😄 - Cheers

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events