Cookies are handled for cybereason asynchronous changes #1301
Conversation
…securityalliance#1038) * Async calls to transmission (opencybersecurityalliance#655) * Translation calls will receive proper json types instead of string
Cookies handled for session login and logout asynchronous calls. Response status code corrected.
Codecov ReportBase: 84.92% // Head: 84.85% // Decreases project coverage by
Additional details and impacted files@@ Coverage Diff @@
## async-round2 #1301 +/- ##
================================================
- Coverage 84.92% 84.85% -0.07%
================================================
Files 575 575
Lines 42551 42586 +35
================================================
Hits 36137 36137
- Misses 6414 6449 +35
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. ☔ View full report at Codecov. |
| @@ -0,0 +1 @@ | |||
| aiohttp==3.8.3 | |||
There was a problem hiding this comment.
This could go in the general requirements file since it's possibly not connector-specific. Also I noticed that aiohttp-retry is imported, is that something you could use instead? https://github.com/opencybersecurityalliance/stix-shifter/blob/5.0.1/stix_shifter/requirements.txt#L4
There was a problem hiding this comment.
I would suggest to update aiohttp-retry to latest version 2.8.3
https://pypi.org/project/aiohttp-retry/
There was a problem hiding this comment.
no need for aiohttp==3.8.3 in any requirements file, it is downloaded as a dependancy from aiohttp-retry
There was a problem hiding this comment.
requirements.txt file is removed
|
The |
| response_wrapper = await self.client.call_api(self.LOGIN_ENDPOINT, 'POST', headers=headers, data=self.auth) | ||
|
|
||
| return response_wrapper.response.cookies | ||
| async with aiohttp.ClientSession(headers=headers) as session: |
There was a problem hiding this comment.
Isn't it still possible to use the self.client which is initiated from general RestApiClientAsync?
I am going to try one thing and if successful will suggest further here.
There was a problem hiding this comment.
@baulus ,
We have tried using "self.client," but we couldn't get cookies.
Let us know any possible way to get cookies using "self.client".
There was a problem hiding this comment.
I have added support in RestApiClientAsync to get and set cookies
You will get it once you change the PR target to release/5.0.x and bring your branch up-to-date with release/5.0.x
for getting a cookie you need to use:
url = self.host+self.LOGIN_ENDPOINT
response = await self.client.call_api(url, 'POST', headers=headers, data=self.auth)
cookie = response.get_cookies(url)
for setting cookies just add cookies=cookies in self.client.call_api arguments.
cookies var is dictionary, just like header
There was a problem hiding this comment.
Created a new PR for this changes and target to release/5.0.x branch.
#1313
| @@ -42,7 +42,7 @@ async def create_results_connection(self, query, offset, length): | |||
| query = json.dumps(query) | |||
| response_wrapper = await self.api_client.get_search_results(query) | |||
| if response_wrapper.response.history: # If the authentication is invalid, the history | |||
| if response_wrapper.response.history[0].status_code == 302: # will be returned with 302 status code. | |||
| if response_wrapper.response.history[0].status == 302: # will be returned with 302 status code. | |||
There was a problem hiding this comment.
response_wrapper does not have response.history arguments anymore
you can take a look at any other connector (example)
if this section is not covered with unit test please consider covering them
There was a problem hiding this comment.
response_wrapper contains response.history value, we tested it.
While doing valid authentication it contains empty list.
Invalid authentication it will contains the status value.
This field is required for identify the invalid authentication.
| @@ -116,10 +116,10 @@ async def ping_connection(self): | |||
| try: | |||
| response = await self.api_client.ping_box() | |||
| if response.response.history: # If the authentication is invalid, the history | |||
| if response.response.history[0].status_code == 302: # will be returned with 302 status code. | |||
| if response.response.history[0].status == 302: # will be returned with 302 status code. | |||
There was a problem hiding this comment.
same as the previous comment
# Conflicts: # stix_shifter_modules/alertflex/stix_transmission/ping_connector.py # stix_shifter_modules/cybereason/stix_transmission/api_client.py # stix_shifter_modules/cybereason/stix_transmission/connector.py # stix_shifter_modules/proofpoint/stix_transmission/api_client.py # stix_shifter_utils/stix_transmission/utils/RestApiClientAsync.py
|
Created a new PR #1313 for this and will close this PR. |
|
New PR created for this change #1313 |
Cookies handled for session login and logout asynchronous calls. Response status code corrected.