feat(peerdb): management via api

knowledge base/owasp zap.md

@@ -0,0 +1,77 @@
+# Zed Attack Proxy
+
+Widely used free and open source web app scanner.
+
+Helps automatically find security vulnerabilities in web applications.
+
+1. [TL;DR](#tldr)
+1. [Further readings](#further-readings)
+   1. [Sources](#sources)
+
+## TL;DR
+
+<details>
+  <summary>Setup</summary>
+
+```sh
+docker pull 'zaproxy/zap-stable'  # or 'ghcr.io/zaproxy/zaproxy:stable'
+```
+
+</details>
+
+<details>
+  <summary>Usage</summary>
+
+```sh
+# Get a shell in the container.
+docker run --rm --name 'zap' -ti 'zaproxy/zap-stable'
+
+# Start the Web UI.
+docker run --rm --name 'web-ui' -d -u 'zap' -p '8080:8080' -p '8090:8090' 'zaproxy/zap-stable' zap-webswing.sh \
+&& open 'http://localhost:8080/zap/'
+
+# Start API scans.
+docker run --rm --name 'api-scan' 'zaproxy/zap-stable' zap-api-scan.py -t 'http://localhost:3000/api/v1/' -f 'openapi'
+```
+
+</details>
+
+<!-- Uncomment if used
+<details>
+  <summary>Real world use cases</summary>
+
+```sh
+```
+
+</details>
+-->
+
+## Further readings
+
+- [Website]
+- [Codebase]
+
+### Sources
+
+- [Documentation]
+
+<!--
+  Reference
+  ═╬═Time══
+  -->
+
+<!-- In-article sections -->
+<!-- Knowledge base -->
+<!-- Files -->
+<!-- Upstream -->
+[codebase]: https://github.com/zaproxy/zaproxy
+[documentation]: https://www.zaproxy.org/docs/
+[website]: https://www.zaproxy.org/
+
+<!--
+https://www.zaproxy.org/docs/docker/about/
+https://www.zaproxy.org/docs/docker/api-scan/
+https://www.zaproxy.org/docs/docker/webswing/
+-->
+
+<!-- Others -->

snippets/peerdb.fish

@@ -0,0 +1,68 @@
+#!/usr/bin/env fish
+
+# List peers
+curl -fsS --url 'http://localhost:3000/api/v1/peers/list' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)"
+
+# Create peers
+# postgres: peer.type=3|'POSTGRES' + postgres_config={…}
+# clickhouse: peer.type=8 + clickhouse_config={…}
+# kafka: peer.type=9 + kafka_config={…}
+curl -fsS --url 'http://localhost:3000/api/v1/peers/create' -X 'POST' \
+	-H 'Content-Type: application/json' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+	-d "{
+		\"peer\": {
+			\"name\": \"some_pg_peer\",
+			\"type\": \"POSTGRES\",
+			\"postgres_config\": {
+				\"host\": \"localhost\",
+				\"port\": 5432,
+				\"user\": \"peerdb\",
+				\"password\": \"$(gopass show -o 'peerdb/db-user')\",
+				\"database\": \"sales\"
+			}
+		}
+	}"
+
+# Update peers
+# Reuse the command for creation but add 'allow_update: true' to the data
+curl -fsS --url 'http://localhost:3000/api/v1/peers/create' -X 'POST' … \
+	-d "{
+		\"peer\": { … },
+		allow_update: true
+	}"
+
+# List mirrors
+curl -fsS --url 'http://localhost:3000/api/v1/mirrors/list' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+| jq '.mirrors[]' -
+
+# Get mirrors' status
+curl -fsS 'http://localhost:3000/api/v1/mirrors/status' -X 'POST' \
+	-H 'Content-Type: application/json' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+	-d '{ "flowJobName": "testing_bq_2" }'
+
+# Get mirrors' configuration
+curl -fsS 'http://localhost:3000/api/v1/mirrors/status' -X 'POST' \
+	-H 'Content-Type: application/json' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+	-d '{
+		"flowJobName": "testing_bq_2",
+		"includeFlowInfo": true
+	}' \
+| jq '.cdcStatus.config' -
+
+# Show alerts' configuration
+curl -fsS --url 'http://localhost:3000/api/v1/alerts/config' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+| jq '.configs[]' -
+
+# Others
+curl -fsS 'http://localhost:3000/api/v1/dynamic_settings' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+| jq '.settings[]' -
+curl -fsS --url 'http://localhost:3000/api/v1/scripts/-1' \
+	-H "Authorization: Basic $(gopass show -o 'peerdb/instance' | xargs printf '%s' ':' | base64)" \
+| jq '.scripts[]' -