metasploit_data_models 4.0.2 → 4.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7160a9465ddf37341f8823e9523185b042f1fb99db31e42a79aa25b583ddb676
-  data.tar.gz: dfff423e1f177a6bdc6bc85b84225c3a243e2528283e49185d188c76d04808c1
+  metadata.gz: 60db39ea159287e80b6c950ee0c32905fce78fbbca7e8c117ed50c7d3f656ca8
+  data.tar.gz: f441e55e9110eb68f33a169ba5beb55977985fe6497164c45a3221643146c8dc
 SHA512:
-  metadata.gz: 7c60f29e7ebff8b3c2f1aa0e7a10a9c06a07f186f57c3539deb24419ba65b5d004897ecada92e313b19c38f37c634dcf2dc55765aea3e0e1ae2b126f6748e597
-  data.tar.gz: 501f97755d40903d2e25b3476538e498f650209df40c9522e98ddf7eb6ab1bd716e28454eb0ceb289991e22a400b10feb0665e776f0f4d4ee55822888247466f
+  metadata.gz: 80823abc0bc2632e626559ab9defb80c04096518079932b95afbab71158180687df6e6f00ea1db0c554f1e01940ed68ab6047be4afa983ff6e97803a2dbd1bb0
+  data.tar.gz: 490d14e31544ad0c9f9e6d8a59bd0b24a5b8da1d7b5fc8f87eb730796fca2791e8abb319d7921e5bc0ef930ddcbb34a8c1ab1f29207b1b3250ba39497cf91bfc

data/app/models/mdm/nexpose_console.rb

@@ -1,6 +1,5 @@
 # A connection to Nexpose from Metasploit.
 class Mdm::NexposeConsole < ApplicationRecord
-  
   #
   # Associations
   #
@@ -80,7 +79,7 @@ class Mdm::NexposeConsole < ApplicationRecord
   # Callbacks
   #
 
-  before_save :strip_protocol
+  before_validation :strip_protocol
 
   #
   # Serializations
@@ -96,10 +95,14 @@ class Mdm::NexposeConsole < ApplicationRecord
   # Validations
   #
 
-  validates :address, :presence => true
+  validates :address, :presence => true, :address_format => true
+
   validates :name, :presence => true
+
   validates :password, :presence => true
+
   validates :port, :numericality => { :only_integer => true }, :inclusion => {:in => 1..65535}
+
   validates :username, :presence => true
 
   #
@@ -110,7 +113,7 @@ class Mdm::NexposeConsole < ApplicationRecord
   #
   # @return [void]
   def strip_protocol
-    self.address.gsub!(/^http(s)*:\/\//i,'')
+    self.address.gsub!(/^http(s)*:\/\//i,'') unless self.address.nil?  
   end
 
   Metasploit::Concern.run(self)

data/app/models/mdm/workspace.rb

@@ -21,11 +21,6 @@ class Mdm::Workspace < ApplicationRecord
            class_name: 'MetasploitDataModels::AutomaticExploitation:MatchSet',
            inverse_of: :workspace
 
-  # @deprecated Use `Mdm::Workspace#core_credentials` defined by `Metasploit::Credential::Engine` to get
-  #   `Metasploit::Credential::Core`s gathered from this workspace's {#hosts} and {#services}.
-  #
-  # Creds gathered from this workspace's {#hosts} and {#services}.
-  has_many :creds, :through => :services, :class_name => 'Mdm::Cred'
 
   # Events that occurred in this workspace.
   has_many :events, dependent: :delete_all, :class_name => 'Mdm::Event'
@@ -80,6 +75,12 @@ class Mdm::Workspace < ApplicationRecord
 
   # Sessions opened on {#hosts} in this workspace.
   has_many :sessions, :through => :hosts, :class_name => 'Mdm::Session'
+  
+  # @deprecated Use `Mdm::Workspace#core_credentials` defined by `Metasploit::Credential::Engine` to get
+  #   `Metasploit::Credential::Core`s gathered from this workspace's {#hosts} and {#services}.
+  #
+  # Creds gathered from this workspace's {#hosts} and {#services}.
+  has_many :creds, :through => :services, :class_name => 'Mdm::Cred'
 
   #
   # Attributes

data/lib/metasploit_data_models/version.rb

@@ -1,6 +1,6 @@
 module MetasploitDataModels
   # VERSION is managed by GemRelease
-  VERSION = '4.0.2'
+  VERSION = '4.1.0'
 
   # @return [String]
   #

data/metasploit_data_models.gemspec

@@ -5,23 +5,15 @@ require 'metasploit_data_models/version'
 Gem::Specification.new do |s|
   s.name        = 'metasploit_data_models'
   s.version     = MetasploitDataModels::VERSION
-  s.authors     = [
-      'Samuel Huckins',
-      'Luke Imhoff',
-      "David 'thelightcosine' Maloney",
-      "Trevor 'burlyscudd' Rosen"
-  ]
-  s.email       = [
-      'shuckins@rapid7.com',
-      'luke_imhoff@rapid7.com',
-      'dmaloney@rapid7.com',
-      'trevor_rosen@rapid7.com'
-  ]
+  s.authors     = ['Metasploit Hackers']
+  s.email       = ['msfdev@metasploit.com']
   s.homepage    = ""
   s.summary     = %q{Database code for MSF and Metasploit Pro}
   s.description = %q{Implements minimal ActiveRecord models and database helper code used in both the Metasploit Framework (MSF) and Metasploit commercial editions.}
 
-  s.files         = `git ls-files`.split("\n")
+  s.files         = `git ls-files`.split("\n").reject { |file|
+    file =~ /^bin/
+  }
   s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
   s.require_paths = %w{app/models app/validators lib}
 
@@ -46,7 +38,7 @@ Gem::Specification.new do |s|
   s.add_runtime_dependency 'activerecord', '~>5.2.2'
   s.add_runtime_dependency 'activesupport', '~>5.2.2'
   s.add_runtime_dependency 'metasploit-concern'
-  s.add_runtime_dependency 'metasploit-model'
+  s.add_runtime_dependency 'metasploit-model', '>=3.1'
   s.add_runtime_dependency 'railties', '~>5.2.2'
 
   # os fingerprinting

data/spec/app/models/mdm/nexpose_console_spec.rb

@@ -32,7 +32,7 @@ RSpec.describe Mdm::NexposeConsole, type: :model do
 
   context '#destroy' do
     it 'should successfully destroy the object' do
-      nexpose_console = FactoryBot.create(:mdm_nexpose_console)
+      nexpose_console = FactoryBot.create(:mdm_nexpose_console, :address => 'localhost')
       expect {
         nexpose_console.destroy
       }.to_not raise_error
@@ -50,6 +50,20 @@ RSpec.describe Mdm::NexposeConsole, type: :model do
         expect(addressless_nexpose_console.errors[:address]).to include("can't be blank")
       end
 
+      it 'should be valid for a valid hostname' do
+        host_nexpose_console = FactoryBot.build(:mdm_nexpose_console, :address => 'testvalue.test.com')
+        expect(host_nexpose_console).to be_valid
+      end
+
+      it 'should be invalid for a malformed hostname' do
+        host_nexpose_consoles = ['testvalue.test.com:', 'testvalue-.test.com', '[testvalue.test.com]']
+        host_nexpose_consoles.each do | entry |
+          host_nexpose_console = FactoryBot.build(:mdm_nexpose_console, :address => entry)
+          expect(host_nexpose_console).not_to be_valid
+          expect(host_nexpose_console.errors[:address]).to include("must be a valid (IP or hostname) address")
+        end
+      end
+
       it 'should be valid for IPv4 format' do
         ipv4_nexpose_console = FactoryBot.build(:mdm_nexpose_console, :address => '192.168.1.120')
         expect(ipv4_nexpose_console).to be_valid

metadata

@@ -1,13 +1,10 @@
 --- !ruby/object:Gem::Specification
 name: metasploit_data_models
 version: !ruby/object:Gem::Version
-  version: 4.0.2
+  version: 4.1.0
 platform: ruby
 authors:
-- Samuel Huckins
-- Luke Imhoff
-- David 'thelightcosine' Maloney
-- Trevor 'burlyscudd' Rosen
+- Metasploit Hackers
 autorequire: 
 bindir: bin
 cert_chain:
@@ -96,7 +93,7 @@ cert_chain:
   JI/W23RbIRksG2pioMhd4dCXq3FLLlkOV1YfCwWixNB+iIhQPPZVaPNfgPhCn4Dt
   DeGjje/qA4fkLtRmOtb9PUBq3ToRDE4=
   -----END CERTIFICATE-----
-date: 2020-07-07 00:00:00.000000000 Z
+date: 2020-10-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: metasploit-yard
@@ -230,14 +227,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '3.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '3.1'
 - !ruby/object:Gem::Dependency
   name: railties
   requirement: !ruby/object:Gem::Requirement
@@ -311,10 +308,7 @@ dependencies:
 description: Implements minimal ActiveRecord models and database helper code used
   in both the Metasploit Framework (MSF) and Metasploit commercial editions.
 email:
-- shuckins@rapid7.com
-- luke_imhoff@rapid7.com
-- dmaloney@rapid7.com
-- trevor_rosen@rapid7.com
+- msfdev@metasploit.com
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -408,11 +402,6 @@ files:
 - app/models/metasploit_data_models/search/visitor/method.rb
 - app/models/metasploit_data_models/search/visitor/relation.rb
 - app/models/metasploit_data_models/search/visitor/where.rb
-- app/validators/ip_format_validator.rb
-- app/validators/parameters_validator.rb
-- app/validators/password_is_strong_validator.rb
-- bin/mdm_console
-- bin/rails
 - config/initializers/arel_helper.rb
 - config/initializers/ipaddr.rb
 - config/locales/en.yml
@@ -649,8 +638,6 @@ files:
 - spec/app/models/metasploit_data_models/search/visitor/method_spec.rb
 - spec/app/models/metasploit_data_models/search/visitor/relation_spec.rb
 - spec/app/models/metasploit_data_models/search/visitor/where_spec.rb
-- spec/app/validators/parameters_validator_spec.rb
-- spec/app/validators/password_is_strong_validator_spec.rb
 - spec/dummy/Rakefile
 - spec/dummy/app/assets/config/manifest.js
 - spec/dummy/app/assets/javascripts/application.js

data/app/validators/ip_format_validator.rb

@@ -1,22 +0,0 @@
-require "ipaddr"
-
-# Validates that attribute is a valid IPv4 or IPv6 address.
-class IpFormatValidator < ActiveModel::EachValidator
-  # Validates that `attribute`'s `value` on `object` is a valid IPv4 or IPv6 address.
-  #
-  # @return [void]
-  def validate_each(object, attribute, value)
-    error_message_block = lambda{ object.errors.add attribute, " must be a valid IPv4 or IPv6 address" }
-    begin
-      if value.is_a? IPAddr
-        potential_ip = value.dup
-      else
-        potential_ip = IPAddr.new(value)
-      end
-      
-      error_message_block.call unless potential_ip.ipv4? || potential_ip.ipv6?
-    rescue ArgumentError
-      error_message_block.call
-    end
-  end
-end

data/app/validators/parameters_validator.rb

@@ -1,129 +0,0 @@
-# Validates that attribute's value is Array<Array(String, String)> which is the only valid type signature for serialized
-# parameters.
-class ParametersValidator < ActiveModel::EachValidator
-  #
-  # CONSTANTS
-  #
-
-  # Sentence explaining the valid type signature for parameters.
-  TYPE_SIGNATURE_SENTENCE = 'Valid parameters are an Array<Array(String, String)>.'
-
-  #
-  # Instance Methods
-  #
-
-  # Validates that `attribute`'s `value` on `record` is `Array<Array(String, String)>` which is the only valid type
-  # signature for serialized parameters.
-  #
-  # @return [void]
-  def validate_each(record, attribute, value)
-    if value.is_a? Array
-      value.each_with_index do |element, index|
-        if element.is_a? Array
-          if element.length != 2
-            extreme = :few
-
-            if element.length > 2
-              extreme = :many
-            end
-
-            length_error = length_error_at(
-                :extreme => extreme,
-                :element => element,
-                :index => index
-            )
-
-            record.errors.add attribute, length_error
-          else
-            parameter_name = element.first
-
-            if parameter_name.is_a? String
-              unless parameter_name.present?
-                error = error_at(
-                    :element => element,
-                    :index => index,
-                    :prefix => "has blank parameter name"
-                )
-                record.errors.add attribute, error
-              end
-            else
-              error = error_at(
-                  :element => element,
-                  :index => index,
-                  :prefix => "has non-String parameter name (#{parameter_name.inspect})"
-              )
-              record.errors.add attribute, error
-            end
-
-            parameter_value = element.second
-
-            unless parameter_value.is_a? String
-              error = error_at(
-                  :element => element,
-                  :index => index,
-                  :prefix => "has non-String parameter value (#{parameter_value.inspect})"
-              )
-              record.errors.add attribute, error
-            end
-          end
-        else
-          error = error_at(
-              :element => element,
-              :index => index,
-              :prefix => 'has non-Array'
-          )
-          record.errors.add attribute, error
-        end
-      end
-    else
-      record.errors.add attribute, "is not an Array.  #{TYPE_SIGNATURE_SENTENCE}"
-    end
-  end
-
-  private
-
-  def error_at(options={})
-    options.assert_valid_keys(:element, :index, :prefix)
-    prefix = options.fetch(:prefix)
-
-    clause = location_clause(
-        :element => options[:element],
-        :index => options[:index]
-    )
-    sentence = "#{prefix} #{clause}."
-
-    sentences = [
-        sentence,
-        TYPE_SIGNATURE_SENTENCE
-    ]
-
-    error = sentences.join("  ")
-
-    error
-  end
-
-  def length_error_at(options={})
-    options.assert_valid_keys(:element, :extreme, :index)
-    extreme = options.fetch(:extreme)
-
-    prefix = "has too #{extreme} elements"
-    error = error_at(
-        :element => options[:element],
-        :index => options[:index],
-        :prefix => prefix
-    )
-
-    error
-  end
-
-  def location_clause(options={})
-    options.assert_valid_keys(:element, :index)
-
-    element = options.fetch(:element)
-    index = options.fetch(:index)
-
-    clause = "at index #{index} (#{element.inspect})"
-
-    clause
-  end
-end

data/app/validators/password_is_strong_validator.rb

@@ -1,117 +0,0 @@
-# Validates that
-class PasswordIsStrongValidator < ActiveModel::EachValidator
-  #
-  # CONSTANTS
-  #
-
-  # Known passwords that should NOT be allowed and should be considered weak.
-  COMMON_PASSWORDS = %w{
-      password pass root admin metasploit
-      msf 123456 qwerty abc123 letmein monkey link182 demo
-      changeme test1234 rapid7
-    }
-
-  # Special characters that are considered to strength passwords and are required once in a strong password.
-  SPECIAL_CHARS = %q{!@"#$%&'()*+,-./:;<=>?[\\]^_`{|}~ }
-
-  # Validates that the `attribute`'s `value` on `record` contains letters, numbers, and at least one special character
-  # without containing the `record.username`, any {COMMON_PASSWORDS} or repetition.
-  def validate_each(record, attribute, value)
-    return if value.blank?
-
-    if is_simple?(value)
-      record.errors[attribute] << "must contain letters, numbers, and at least one special character"
-    end
-
-    if contains_username?(record.username, value)
-      record.errors[attribute] << "must not contain the username"
-    end
-
-    if is_common_password?(value)
-      record.errors[attribute] << "must not be a common password"
-    end
-
-    if contains_repetition?(value)
-      record.errors[attribute] << "must not be a predictable sequence of characters"
-    end
-  end
-
-  private
-
-  def is_simple?(password)
-    not (password =~ /[A-Za-z]/ and password =~ /[0-9]/ and password =~ /[#{Regexp.escape(SPECIAL_CHARS)}]/)
-  end
-
-  def contains_username?(username, password)
-    !!(password =~ /#{username}/i)
-  end
-
-  def is_common_password?(password)
-    COMMON_PASSWORDS.each do |pw|
-      common_pw = [pw] # pw + "!", pw + "1", pw + "12", pw + "123", pw + "1234"]
-      common_pw += mutate_pass(pw)
-      common_pw.each do |common_pass|
-        if password.downcase =~ /#{common_pass}[\d!]*/
-          return true
-        end
-      end
-    end
-    false
-  end
-
-  def mutate_pass(password)
-    mutations = {
-        'a' => '@',
-        'o' => '0',
-        'e' => '3',
-        's' => '$',
-        't' => '7',
-        'l' => '1'
-    }
-
-    iterations = mutations.keys.dup
-    results = []
-
-    # Find PowerSet of all possible mutation combinations
-    iterations = iterations.inject([[]]){|c,y|r=[];c.each{|i|r<<i;r<<i+[y]};r}
-
-    # Iterate through combinations to create each possible mutation
-    iterations.each do |iteration|
-      next if iteration.flatten.empty?
-      first = iteration.shift
-      intermediate = password.gsub(/#{first}/i, mutations[first])
-      iteration.each do |mutator|
-        next unless mutator.kind_of? String
-        intermediate.gsub!(/#{mutator}/i, mutations[mutator])
-      end
-      results << intermediate
-    end
-
-    return results
-  end
-
-
-
-  def contains_repetition?(password)
-    # Password repetition (quite basic) -- no "aaaaaa" or "ababab" or "abcabc" or
-    # "abcdabcd" (but note that the user can use "aaaaaab" or something).
-
-    if password.scan(/./).uniq.size < 2
-      return true
-    end
-
-    if (password.size % 2 == 0) and (password.scan(/../).uniq.size < 2)
-      return true
-    end
-
-    if (password.size % 3 == 0) and (password.scan(/.../).uniq.size < 2)
-      return true
-    end
-
-    if (password.size % 4 == 0) and (password.scan(/..../).uniq.size < 2)
-      return true
-    end
-
-    false
-  end
-end

data/bin/mdm_console

@@ -1,68 +0,0 @@
-#! /usr/bin/env ruby
-
-def mdm_banner
-  banner = {}
-  banner[:color] = "\e[34m"
-  banner[:text] = <<-BANNER
- _______ _______________________ _______ _______ _       _______ __________________
-(       )  ____ \\__   __/  ___  )  ____ \\  ____ ) \\     (  ___  )\\__   __/\\__   __/
-| () () | (    \\/  ) (  | (   ) | (    \\/ (    )| (     | (   ) |   ) (      ) (   
-| || || | (__      | |  | (___) | (_____| (____)| |     | |   | |   | |      | |   
-| |(_)| |  __)     | |  |  ___  |_____  )  _____) |     | |   | |   | |      | |   
-| |   | | (        | |  | (   ) |     ) | (     | |     | |   | |   | |      | |   
-| )   ( | (____/\\  | |  | )   ( |\\____) | )     | (____/\\ (___) |___) (___   | |   
-|/     \\|_______/  )_(  |/     \\|_______)/      (_______/_______)\\_______/   )_(   
-                                                                                   
-
- ______  _______________________ _______ _______ ______  _______ _       _______ 
-(  __  \\(  ___  )__   __/  ___  )       )  ___  )  __  \\(  ____ \\ \\     (  ____ \\
-| (  \\  ) (   ) |  ) (  | (   ) | () () | (   ) | (  \\  ) (    \\/ (     | (    \\/
-| |   ) | (___) |  | |  | (___) | || || | |   | | |   ) | (__   | |     | (_____ 
-| |   | |  ___  |  | |  |  ___  | |(_)| | |   | | |   | |  __)  | |     (_____  )
-| |   ) | (   ) |  | |  | (   ) | |   | | |   | | |   ) | (     | |           ) |
-| (__/  ) )   ( |  | |  | )   ( | )   ( | (___) | (__/  ) (____/\\ (____/Y\\____) |
-(______/|/     \\|  )_(  |/     \\|/     \\|_______)______/(_______/_______|_______)
-BANNER
-  banner
-end
-
-def db_info_file
-  hidden_file = "#{Dir.home}/.mdm.yml"
-  if File.readable?(hidden_file)
-    pro_path = YAML.load_file(hidden_file)['pro_path']
-    return "#{pro_path}/ui/config/database.yml"
-  elsif !ARGV[0].blank?
-    return ARGV[0]
-  else
-    warn "No YAML file of DB info available"
-    exit
-  end
-end
-
-begin
-  require 'pry'
-  require "metasploit_data_models"
-
-  # Set up a DB connection, preferring one from Pro if it's in the normal place
-  # Otherwise get from ARGV[0]
-
-  if File.readable?(db_info_file)
-    connection_info = YAML.load_file(db_info_file)
-    ActiveRecord::Base.establish_connection(connection_info['development'])
-  else
-    warn "Can't access DB -- check file path."
-    exit
-  end
-
-  MetasploitDataModels.require_models
-
-  puts "\n\n\n#{mdm_banner[:color]}#{mdm_banner[:text]}\e[0m\n\n\n"
-
-  Pry.config.prompt = proc { |obj, nest_level, _| "mdm:#{nest_level}> " }
-
-  Pry.start
-  exit
-rescue LoadError
-  warn "Unable to load Pry"
-end
-

data/bin/rails

@@ -1,14 +0,0 @@
-#!/usr/bin/env ruby
-# This command will automatically be run when you run "rails" with Rails gems
-# installed from the root of your application.
-
-ENGINE_ROOT = File.expand_path('..', __dir__)
-ENGINE_PATH = File.expand_path('../lib/metasploit_data_models/engine', __dir__)
-APP_PATH = File.expand_path('../test/dummy/config/application', __dir__)
-
-# Set up gems listed in the Gemfile.
-ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__)
-require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
-
-require 'rails/all'
-require 'rails/engine/commands'

data/spec/app/validators/parameters_validator_spec.rb

@@ -1,342 +0,0 @@
-RSpec.describe ParametersValidator do
-  subject(:parameters_validator) do
-    described_class.new(
-        :attributes => attributes
-    )
-  end
-
-  let(:attribute) do
-    :params
-  end
-
-  let(:attributes) do
-    attribute
-  end
-
-  let(:element) do
-    []
-  end
-
-  let(:index) do
-    rand(100)
-  end
-
-  let(:type_signature_sentence) do
-    'Valid parameters are an Array<Array(String, String)>.'
-  end
-
-  context 'CONSTANTS' do
-    it 'should define TYPE_SIGNATURE_SENTENCE' do
-      expect(described_class::TYPE_SIGNATURE_SENTENCE).to eq(type_signature_sentence)
-    end
-  end
-
-  context '#error_at' do
-    subject(:error_at) do
-      parameters_validator.send(
-          :error_at,
-          :element => element,
-          :index => index,
-          :prefix => prefix
-      )
-    end
-
-    let(:prefix) do
-      'has a prefix'
-    end
-
-    it 'should include prefix' do
-      expect(error_at).to include(prefix)
-    end
-
-    it 'should include location_clause in same sentence as prefix' do
-      location_clause = parameters_validator.send(
-          :location_clause,
-          :element => element,
-          :index => index
-      )
-
-      expect(error_at).to include("#{prefix} #{location_clause}.")
-    end
-
-    it 'should include TYPE_SIGNATURE_SENTENCE' do
-      expect(error_at).to include(type_signature_sentence)
-    end
-  end
-
-  context '#length_error_at' do
-    subject(:length_error_at) do
-      parameters_validator.send(
-          :length_error_at,
-          :element => element,
-          :extreme => extreme,
-          :index => index
-      )
-    end
-
-    let(:extreme) do
-      [:few, :many].sample
-    end
-
-    it 'should include extreme in prefix' do
-      expect(parameters_validator).to receive(:error_at) do |*args|
-        options = args.first
-        expect(options[:prefix]).to include(extreme.to_s)
-      end
-
-      length_error_at
-    end
-  end
-
-  context '#location_clause' do
-    subject(:location_clause) do
-      parameters_validator.send(
-          :location_clause,
-          :element => element,
-          :index => index
-      )
-    end
-
-    it 'should include numerical index' do
-      expect(location_clause).to include("at index #{index}")
-    end
-
-    it 'should include inspect of element' do
-      expect(location_clause).to include(element.inspect)
-    end
-  end
-
-  context '#validate_each' do
-    subject(:errors) do
-      record.errors[attribute]
-    end
-
-    def validate_each
-      parameters_validator.validate_each(record, attribute, value)
-    end
-
-    let(:record) do
-      Object.new.tap { |object|
-        object.extend ActiveModel::Validations
-      }
-    end
-
-    context 'with Array' do
-      let(:value) do
-        []
-      end
-
-      context 'element' do
-        let(:value) do
-          [element]
-        end
-
-        context 'with Array' do
-          let(:element) do
-            []
-          end
-
-          context 'with length < 2' do
-            let(:element) do
-              []
-            end
-
-            it 'should call #length_error_at with :extreme => :few' do
-              expect(parameters_validator).to receive(:length_error_at).with(
-                  hash_including(
-                      :extreme => :few
-                  )
-              )
-
-              validate_each
-            end
-
-            it 'should record error' do
-              validate_each
-
-              expect(errors).not_to be_empty
-            end
-          end
-
-          context 'with length > 2' do
-            let(:element) do
-              ['', '', '']
-            end
-
-            it 'should call #length_error_at with :extreme => :many' do
-              expect(parameters_validator).to receive(:length_error_at).with(
-                  hash_including(
-                      :extreme => :many
-                  )
-              )
-
-              validate_each
-            end
-
-            it 'should record error' do
-              validate_each
-
-              expect(errors).not_to be_empty
-            end
-          end
-
-          context 'with length == 2' do
-            let(:element) do
-              [parameter_name, parameter_value]
-            end
-
-            let(:parameter_name) do
-              'parameter_name'
-            end
-
-            let(:parameter_value) do
-              'parameter_value'
-            end
-
-            context 'parameter name' do
-              context 'with String' do
-                context 'with blank' do
-                  let(:parameter_name) do
-                    ''
-                  end
-
-                  it 'should call error_at with blank parameter name prefix' do
-                    expect(parameters_validator).to receive(:error_at).with(
-                        hash_including(
-                          :prefix => 'has blank parameter name'
-                        )
-                    )
-
-                    validate_each
-                  end
-
-                  it 'should record error' do
-                    validate_each
-
-                    expect(errors).not_to be_empty
-                  end
-                end
-
-                context 'without blank' do
-                  let(:parameter_name) do
-                    'parameter_name'
-                  end
-
-                  it 'should not record error' do
-                    validate_each
-
-                    expect(errors).to be_blank
-                  end
-                end
-              end
-
-              context 'without String' do
-                let(:parameter_name) do
-                  :parameter_name
-                end
-
-                it 'should call error_at with non-String prefix' do
-                  expect(parameters_validator).to receive(:error_at).with(
-                      hash_including(
-                          :prefix => "has non-String parameter name (#{parameter_name.inspect})"
-                      )
-                  )
-
-                  validate_each
-                end
-
-                it 'should record error' do
-                  validate_each
-
-                  expect(errors).not_to be_empty
-                end
-              end
-            end
-
-            context 'parameter value' do
-              context 'with String' do
-                let(:parameter_value) do
-                  'parameter_value'
-                end
-
-                it 'should not record error' do
-                  validate_each
-
-                  expect(errors).to be_blank
-                end
-              end
-
-              context 'without String' do
-                let(:parameter_value) do
-                  0
-                end
-
-                it 'should call error_at with non-String prefix' do
-                  expect(parameters_validator).to receive(:error_at).with(
-                      hash_including(
-                          :prefix => "has non-String parameter value (#{parameter_value.inspect})"
-                      )
-                  )
-
-                  validate_each
-                end
-
-                it 'should record error' do
-                  validate_each
-
-                  expect(errors).not_to be_empty
-                end
-              end
-            end
-          end
-        end
-
-        context 'without Array' do
-          let(:element) do
-            {}
-          end
-
-          it 'should use #error_at with has non-Array for prefix' do
-            expect(parameters_validator).to receive(:error_at).with(
-                hash_including(
-                    :prefix => 'has non-Array'
-                )
-            )
-
-            validate_each
-          end
-
-          it 'should record error' do
-            validate_each
-
-            expect(errors).not_to be_empty
-          end
-        end
-      end
-    end
-
-    context 'without Array' do
-      let(:value) do
-        ''
-      end
-
-      before(:example) do
-        validate_each
-      end
-
-      it 'should error that attribute is not an array' do
-        expect(
-            errors.any? { |error|
-              error.include? 'is not an Array.'
-            }
-        ).to eq(true)
-      end
-
-      it 'should include TYPE_SIGNATURE_SENTENCE' do
-        errors.each do |error|
-          expect(error).to include(type_signature_sentence)
-        end
-      end
-    end
-  end
-end

data/spec/app/validators/password_is_strong_validator_spec.rb

@@ -1,332 +0,0 @@
-RSpec.describe PasswordIsStrongValidator do
-
-  subject(:password_validator) do
-    described_class.new(
-        :attributes => attributes
-    )
-  end
-
-  let(:attribute) do
-    :params
-  end
-
-  let(:attributes) do
-    attribute
-  end
-
-
-  context '#contains_repetition?' do
-
-    it 'should return true for aaaa' do
-      expect(password_validator.send(:contains_repetition?, 'aaaa')).to eq(true)
-    end
-
-    it 'should return true for ababab' do
-      expect(password_validator.send(:contains_repetition?, 'ababab')).to eq(true)
-    end
-
-    it 'should return true for abcabcabc' do
-      expect(password_validator.send(:contains_repetition?, 'abcabcabc')).to eq(true)
-    end
-
-    it 'should return true for abcdabcd' do
-      expect(password_validator.send(:contains_repetition?, 'abcdabcd')).to eq(true)
-    end
-
-    it 'should return false for abcd1234abcd' do
-      expect(password_validator.send(:contains_repetition?, 'abcd1234abcd')).to eq(false)
-    end
-
-  end
-
-
-
-  context '#mutate_pass' do
-
-    variants = [
-      "metasp1oit",
-      "me7asploi7",
-      "me7asp1oi7",
-      "meta$ploit",
-      "meta$p1oit",
-      "me7a$ploi7",
-      "me7a$p1oi7",
-      "m3tasploit",
-      "m3tasp1oit",
-      "m37asploi7",
-      "m37asp1oi7",
-      "m3ta$ploit",
-      "m3ta$p1oit",
-      "m37a$ploi7",
-      "m37a$p1oi7",
-      "metaspl0it",
-      "metasp10it",
-      "me7aspl0i7",
-      "me7asp10i7",
-      "meta$pl0it",
-      "meta$p10it",
-      "me7a$pl0i7",
-      "me7a$p10i7",
-      "m3taspl0it",
-      "m3tasp10it",
-      "m37aspl0i7",
-      "m37asp10i7",
-      "m3ta$pl0it",
-      "m3ta$p10it",
-      "m37a$pl0i7",
-      "m37a$p10i7",
-      "met@sploit",
-      "met@sp1oit",
-      "me7@sploi7",
-      "me7@sp1oi7",
-      "met@$ploit",
-      "met@$p1oit",
-      "me7@$ploi7",
-      "me7@$p1oi7",
-      "m3t@sploit",
-      "m3t@sp1oit",
-      "m37@sploi7",
-      "m37@sp1oi7",
-      "m3t@$ploit",
-      "m3t@$p1oit",
-      "m37@$ploi7",
-      "m37@$p1oi7",
-      "met@spl0it",
-      "met@sp10it",
-      "me7@spl0i7",
-      "me7@sp10i7",
-      "met@$pl0it",
-      "met@$p10it",
-      "me7@$pl0i7",
-      "me7@$p10i7",
-      "m3t@spl0it",
-      "m3t@sp10it",
-      "m37@spl0i7",
-      "m37@sp10i7",
-      "m3t@$pl0it",
-      "m3t@$p10it",
-      "m37@$pl0i7",
-      "m37@$p10i7"
-      ]
-
-    it 'should return all the expected mutations of a password' do
-      expect(password_validator.send(:mutate_pass, 'metasploit')).to eq(variants)
-    end
-
-  end
-
-
-  context '#is_common_password?' do
-
-    PasswordIsStrongValidator::COMMON_PASSWORDS.each do |password|
-
-      it "should return true for #{password}"  do
-        expect(password_validator.send(:is_common_password?, password)).to eq(true)
-      end
-
-      it "should return true for #{password}!"  do
-        expect(password_validator.send(:is_common_password?, "#{password}!")).to eq(true)
-      end
-
-      it "should return true for #{password}1"  do
-        expect(password_validator.send(:is_common_password?, "#{password}1")).to eq(true)
-      end
-
-      it "should return true for #{password}9"  do
-        expect(password_validator.send(:is_common_password?, "#{password}1")).to eq(true)
-      end
-
-      it "should return true for #{password}99"  do
-        expect(password_validator.send(:is_common_password?, "#{password}12")).to eq(true)
-      end
-
-      it "should return true for #{password}123"  do
-        expect(password_validator.send(:is_common_password?, "#{password}123")).to eq(true)
-      end
-
-      it "should return true for #{password}123!" do
-        expect(password_validator.send(:is_common_password?, "#{password}123!")).to eq(true)
-      end
-
-    end
-
-    it "should return true for r00t" do
-      expect(password_validator.send(:is_common_password?, "r00t")).to eq(true)
-    end
-
-    it "should return true for m3t@spl0it" do
-      expect(password_validator.send(:is_common_password?, "m3t@spl0it")).to eq(true)
-    end
-
-    it "should return true for m3t@spl0it123!" do
-      expect(password_validator.send(:is_common_password?, "m3t@spl0it123!")).to eq(true)
-    end
-  end
-
-  context '#contains_username' do
-
-    it 'should return true if username and password are the same' do
-      expect(password_validator.send(:contains_username?, 'admin', 'admin')).to eq(true)
-    end
-
-    it 'should return true if the password contains the username as part of it' do
-      expect(password_validator.send(:contains_username?, 'admin', '123admin123')).to eq(true)
-    end
-
-    it 'should return false otherwise' do
-      expect(password_validator.send(:contains_username?, 'admin', 'foobar')).to eq(false)
-    end
-  end
-
-  context '#is_simple?' do
-
-    it "should return true if no number" do
-      expect(password_validator.send(:is_simple?, "b@carat")).to eq(true)
-    end
-
-    it "should return true if no special char" do
-      expect(password_validator.send(:is_simple?, "bacarat4")).to eq(true)
-    end
-
-    it "should return true if no letters" do
-      expect(password_validator.send(:is_simple?, "1337")).to eq(true)
-    end
-
-    PasswordIsStrongValidator::SPECIAL_CHARS.each_char do |char|
-
-      it "should return false with a #{char}" do
-        expect(password_validator.send(:is_simple?, "bacarat4#{char}")).to eq(false)
-      end
-    end
-  end
-
-  context '#validate_each' do
-
-    subject(:errors) do
-      record.errors[attribute]
-    end
-
-    def validate_each
-      password_validator.validate_each(record, attribute, value)
-    end
-
-    let(:record) {
-      record_class.new.tap { |instance|
-        instance.username = 'admin'
-      }
-    }
-
-    let(:record_class) {
-      Class.new do
-        include ActiveModel::Validations
-
-        #
-        # Attributes
-        #
-
-        attr_accessor :username
-      end
-    }
-
-
-    context 'with a password with no special char' do
-      let(:value) { "bacarat4" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must contain letters, numbers, and at least one special character"' do
-        validate_each
-        expect(errors.include?("must contain letters, numbers, and at least one special character")).to eq(true)
-      end
-    end
-
-    context 'with a password with no numbers' do
-      let(:value) { "b@carat" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must contain letters, numbers, and at least one special character"' do
-        validate_each
-        expect(errors.include?("must contain letters, numbers, and at least one special character")).to eq(true)
-      end
-    end
-
-    context 'with a password with no letters' do
-      let(:value) { "1337@" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must contain letters, numbers, and at least one special character"' do
-        validate_each
-        expect(errors.include?("must contain letters, numbers, and at least one special character")).to eq(true)
-      end
-    end
-
-    context 'with a password containing the username' do
-      let(:value) { "admin1" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must not contain the username"' do
-        validate_each
-        expect(errors.include?("must not contain the username")).to eq(true)
-      end
-    end
-
-    context 'with a common password' do
-      let(:value) { "password" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must not be a common password"' do
-        validate_each
-        expect(errors.include?("must not be a common password")).to eq(true)
-      end
-    end
-
-    context 'with a mutated common password' do
-      let(:value) { "P@ssw0rd1!" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must not be a common password"' do
-        validate_each
-        expect(errors.include?("must not be a common password")).to eq(true)
-      end
-    end
-
-    context 'with a repeated pattern' do
-      let(:value) { "abcdabcd" }
-
-      it 'should record an error' do
-        validate_each
-        expect(errors).not_to be_empty
-      end
-
-      it 'should have an error of "must not be a predictable sequence of characters"' do
-        validate_each
-        expect(errors.include?("must not be a predictable sequence of characters")).to eq(true)
-      end
-    end
-
-  end
-
-end