From 2752c1a79c7e59dd057935f7f90a0ae45447b7af Mon Sep 17 00:00:00 2001
From: wiaamm <wiaamm@checkpoint.com>
Date: Sun, 16 Feb 2025 10:28:39 +0200
Subject: [PATCH] add all tuning fields

---
 .../openappsec-waf-webhook/webhook_server.py  | 48 ++++++++++++++++---
 1 file changed, 41 insertions(+), 7 deletions(-)

diff --git a/docker/openappsec-waf-webhook/webhook_server.py b/docker/openappsec-waf-webhook/webhook_server.py
index 37b2bd3..3ac663f 100755
--- a/docker/openappsec-waf-webhook/webhook_server.py
+++ b/docker/openappsec-waf-webhook/webhook_server.py
@@ -49,18 +49,52 @@ def configure_logging():
 def get_sidecar_container():
     app.logger.debug("Entering get_sidecar_container()")
     token = os.getenv("TOKEN")
+    custom_fog_enabled = os.getenv("CUSTOM_FOG_ENABLED") == "true"  # Check if it's set to "true"
+    fog_address = os.getenv("FOG_ADDRESS")
+    appsec_proxy = os.getenv("APPSEC_PROXY")
+    
+    # Construct args list based on conditions
+    args = []
+    if token:
+        args.extend(["--token", token])
+    else:
+        args.append("--hybrid-mode")
+    
+    if custom_fog_enabled and fog_address:
+        args.extend(["--fog", fog_address])
+    
+    if appsec_proxy:
+        args.extend(["--proxy", appsec_proxy])
+    
+    optional_env_vars = {
+        "AGENT_TOKEN": os.getenv("AGENT_TOKEN"),
+        "user_email": os.getenv("user_email"),
+        "appsecClassName": os.getenv("appsecClassName"),
+        "SHARED_STORAGE_HOST": os.getenv("SHARED_STORAGE_HOST"),
+        "LEARNING_HOST": os.getenv("LEARNING_HOST"),
+        "TUNING_HOST": os.getenv("TUNING_HOST"),
+        "LOCAL_TUNING_ENABLED": os.getenv("LOCAL_TUNING_ENABLED"),
+        "PLAYGROUND": os.getenv("PLAYGROUND"),
+        "CRDS_SCOPE": os.getenv("CRDS_SCOPE"),
+    }
+    
+    # Base environment variables
+    env = [
+        {"name": "registered_server", "value": "ISTIO Server"}
+    ]
+    
+    # Add optional environment variables if they are set
+    for var_name, var_value in optional_env_vars.items():
+        if var_value is not None:  # Only add if the variable is set
+            env.append({"name": var_name, "value": var_value})
+
     sidecar = {
         "name": "infinity-next-nano-agent",
         "image": FULL_AGENT_IMAGE,
         "imagePullPolicy": "Always",
         "command": ["/cp-nano-agent"],
-        "args": [
-            "--token",
-            token
-        ],
-        "env": [
-            {"name": "registered_server", "value": "NGINX Server"}
-        ],
+        "args": args,
+        "env": env,
         "volumeMounts": [
             {"name": "envoy-attachment-shared", "mountPath": "/envoy/attachment/shared/"}
         ],