nexpose 7.0.0 → 7.0.1

data/lib/nexpose/scan.rb

@@ -60,8 +60,8 @@ module Nexpose
     #
     def scan_devices_with_schedule(devices, schedules)
       site_id = devices.map(&:site_id).uniq.first
-      xml = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
-      elem = REXML::Element.new('Devices')
+      xml     = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
+      elem    = REXML::Element.new('Devices')
       devices.each do |device|
         elem.add_element('device', 'id' => "#{device.id}")
       end
@@ -107,7 +107,7 @@ module Nexpose
     # @return [Scan] Scan launch information.
     #
     def scan_assets(site_id, assets)
-      xml = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
+      xml   = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
       hosts = REXML::Element.new('Hosts')
       assets.each { |asset| _append_asset!(hosts, asset) }
       xml.add_element(hosts)
@@ -129,7 +129,7 @@ module Nexpose
     # @return [Status] whether the request was successful
     #
     def scan_assets_with_schedule(site_id, assets, schedules)
-      xml = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
+      xml   = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
       hosts = REXML::Element.new('Hosts')
       assets.each { |asset| _append_asset!(hosts, asset) }
       xml.add_element(hosts)
@@ -155,7 +155,7 @@ module Nexpose
     # @return [Status] whether the request was successful
     #
     def scan_ips_with_schedule(site_id, ip_addresses, schedules)
-      xml = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
+      xml   = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
       hosts = REXML::Element.new('Hosts')
       ip_addresses.each do |ip|
         xml.add_element('range', 'from' => ip)
@@ -183,7 +183,7 @@ module Nexpose
     # @return [Scan] Scan launch information.
     #
     def scan_ips(site_id, ip_addresses)
-      xml = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
+      xml   = make_xml('SiteDevicesScanRequest', 'site-id' => site_id)
       hosts = REXML::Element.new('Hosts')
       ip_addresses.each do |ip|
         xml.add_element('range', 'from' => ip)
@@ -199,7 +199,7 @@ module Nexpose
     # @return [Scan] Scan launch information.
     #
     def scan_site(site_id)
-      xml = make_xml('SiteScanRequest', 'site-id' => site_id)
+      xml      = make_xml('SiteScanRequest', 'site-id' => site_id)
       response = execute(xml)
       Scan.parse(response.res) if response.success
     end
@@ -233,7 +233,7 @@ module Nexpose
     def _append_asset!(xml, asset)
       if asset.is_a? Nexpose::IPRange
         xml.add_element('range', 'from' => asset.from, 'to' => asset.to)
-      else  # Assume HostName
+      else # Assume HostName
         host = REXML::Element.new('host')
         host.text = asset
         xml.add_element(host)
@@ -368,8 +368,8 @@ module Nexpose
     #   recently completed first.
     #
     def past_scans(limit = nil)
-      uri = '/data/scan/global/scan-history'
-      rows = AJAX.row_pref_of(limit)
+      uri    = '/data/scan/global/scan-history'
+      rows   = AJAX.row_pref_of(limit)
       params = { 'sort' => 'endTime', 'dir' => 'DESC', 'startIndex' => 0 }
       AJAX.preserving_preference(self, 'global-completed-scans') do
         data = DataTable._get_json_table(self, uri, params, rows, limit)
@@ -386,15 +386,15 @@ module Nexpose
     #
     def paused_scans(site_id = nil, limit = nil)
       if site_id
-        uri = "/data/scan/site/#{site_id}?status=active"
-        rows = AJAX.row_pref_of(limit)
+        uri    = "/data/scan/site/#{site_id}?status=active"
+        rows   = AJAX.row_pref_of(limit)
         params = { 'sort' => 'endTime', 'dir' => 'DESC', 'startIndex' => 0 }
         AJAX.preserving_preference(self, 'site-active-scans') do
           data = DataTable._get_json_table(self, uri, params, rows, limit).select { |scan| scan['paused'] }
           data.map(&ActiveScan.method(:parse_json))
         end
       else
-        uri = '/data/site/scans/dyntable.xml?printDocType=0&tableID=siteScansTable&activeOnly=true'
+        uri  = '/data/site/scans/dyntable.xml?printDocType=0&tableID=siteScansTable&activeOnly=true'
         data = DataTable._get_dyn_table(self, uri).select { |scan| (scan['Status'].include? 'Paused') }
         data.map(&ActiveScan.method(:parse_dyntable))
       end
@@ -409,10 +409,9 @@ module Nexpose
     #   zip_file, if provided. Otherwise, returns raw ZIP binary data.
     #
     def export_scan(scan_id, zip_file = nil)
-      http = AJAX.https(self)
-      headers = { 'Cookie' => "nexposeCCSessionID=#{@session_id}",
-                  'Accept-Encoding' => 'identity' }
-      resp = http.get("/data/scan/#{scan_id}/export", headers)
+      http              = AJAX.https(self)
+      headers           = { 'Cookie' => "nexposeCCSessionID=#{@session_id}", 'Accept-Encoding' => 'identity' }
+      resp              = http.get("/data/scan/#{scan_id}/export", headers)
 
       case resp
       when Net::HTTPSuccess
@@ -502,7 +501,12 @@ module Nexpose
 
     # Constructor
     def initialize(scan_id, site_id, engine_id, status, start_time, end_time)
-      @scan_id, @site_id, @engine_id, @status, @start_time, @end_time = scan_id, site_id, engine_id, status, start_time, end_time
+      @scan_id    = scan_id
+      @site_id    = site_id
+      @engine_id  = engine_id
+      @status     = status
+      @start_time = start_time
+      @end_time   = end_time
     end
 
     def self.parse(xml)
@@ -546,8 +550,16 @@ module Nexpose
 
     # Constructor
     def initialize(scan_id, site_id, engine_id, status, start_time, end_time, message, tasks, nodes, vulnerabilities)
-      @scan_id, @site_id, @engine_id, @status, @start_time, @end_time = scan_id, site_id, engine_id, status, start_time, end_time
-      @message, @tasks, @nodes, @vulnerabilities = message, tasks, nodes, vulnerabilities
+      @scan_id         = scan_id
+      @site_id         = site_id
+      @engine_id       = engine_id
+      @status          = status
+      @start_time      = start_time
+      @end_time        = end_time
+      @message         = message
+      @tasks           = tasks
+      @nodes           = nodes
+      @vulnerabilities = vulnerabilities
     end
 
     # Parse a response from a Nexpose console into a valid ScanSummary object.
@@ -594,7 +606,9 @@ module Nexpose
       attr_reader :pending, :active, :completed
 
       def initialize(pending, active, completed)
-        @pending, @active, @completed = pending, active, completed
+        @pending   = pending
+        @active    = active
+        @completed = completed
       end
 
       # Parse REXML to Tasks object.
@@ -616,7 +630,11 @@ module Nexpose
       attr_reader :live, :dead, :filtered, :unresolved, :other
 
       def initialize(live, dead, filtered, unresolved, other)
-        @live, @dead, @filtered, @unresolved, @other = live, dead, filtered, unresolved, other
+        @live       = live
+        @dead       = dead
+        @filtered   = filtered
+        @unresolved = unresolved
+        @other      = other
       end
 
       # Parse REXML to Nodes object.
@@ -637,19 +655,17 @@ module Nexpose
     # Value class for tracking vulnerability counts.
     #
     class Vulnerabilities
-      attr_reader :vuln_exploit, :vuln_version, :vuln_potential,
-                  :not_vuln_exploit, :not_vuln_version,
-                  :error, :disabled, :other
-
-      def initialize(vuln_exploit, vuln_version, vuln_potential,
-                     not_vuln_exploit, not_vuln_version,
-                     error, disabled, other)
-        @vuln_exploit, @vuln_version, @vuln_potential,
-            @not_vuln_exploit, @not_vuln_version,
-            @error, @disabled, @other =
-            vuln_exploit, vuln_version, vuln_potential,
-            not_vuln_exploit, not_vuln_version,
-            error, disabled, other
+      attr_reader :vuln_exploit, :vuln_version, :vuln_potential, :not_vuln_exploit, :not_vuln_version, :error, :disabled, :other
+
+      def initialize(vuln_exploit, vuln_version, vuln_potential, not_vuln_exploit, not_vuln_version, error, disabled, other)
+        @vuln_exploit     = vuln_exploit
+        @vuln_version     = vuln_version
+        @vuln_potential   = vuln_potential
+        @not_vuln_exploit = not_vuln_exploit
+        @not_vuln_version = not_vuln_version
+        @error            = error
+        @disabled         = disabled
+        @other            = other
       end
 
       # Parse REXML to Vulnerabilities object.
@@ -691,11 +707,11 @@ module Nexpose
         def initialize(severity = nil, count = 0)
           if severity
             @severities = {}
-            @count = 0
+            @count      = 0
             add_severity(severity.to_i, count)
           else
             @severities = nil
-            @count = count
+            @count      = count
           end
         end
 
@@ -718,7 +734,8 @@ module Nexpose
     attr_reader :engine
 
     def initialize(scan_id, engine_id)
-      @id, @engine = scan_id, engine_id
+      @id     = scan_id
+      @engine = engine_id
     end
 
     def self.parse(xml)
@@ -781,18 +798,18 @@ module Nexpose
     # object.
     def self.parse_json(json)
       new do
-        @id = json['scanID']
-        @site_id = json['siteID']
-        @status = CompletedScan._parse_status(json['status'])
-        @start_time = Time.at(json['startTime'] / 1000)
-        @end_time = Time.at(json['endTime'] / 1000)
-        @duration = json['duration']
-        @vulns = json['vulnerabilityCount']
-        @assets = json['liveHosts']
-        @risk_score = json['riskScore']
-        @type = json['startedByCD'] == 'S' ? :scheduled : :manual
+        @id          = json['scanID']
+        @site_id     = json['siteID']
+        @status      = CompletedScan._parse_status(json['status'])
+        @start_time  = Time.at(json['startTime'] / 1000)
+        @end_time    = Time.at(json['endTime'] / 1000)
+        @duration    = json['duration']
+        @vulns       = json['vulnerabilityCount']
+        @assets      = json['liveHosts']
+        @risk_score  = json['riskScore']
+        @type        = json['startedByCD'] == 'S' ? :scheduled : :manual
         @engine_name = json['scanEngineName']
-        @scan_name = json['scanName']
+        @scan_name   = json['scanName']
       end
     end
 
@@ -814,18 +831,18 @@ module Nexpose
   class ActiveScan < CompletedScan
     def self.parse_dyntable(json)
       new do
-        @id = json['Scan ID']
-        @site_id = json['Site ID']
-        @status = CompletedScan._parse_status(json['Status Code'])
-        @start_time = Time.at(json['Started'].to_i / 1000)
-        @end_time = Time.at(json['Progress'].to_i / 1000)
-        @duration = json['Elapsed'].to_i
-        @vulns = json['Vulnerabilities Discovered'].to_i
-        @assets = json['Devices Discovered'].to_i
-        @risk_score = json['riskScore']
-        @type = json['Scan Type'] == 'Manual' ? :manual : :scheduled
+        @id          = json['Scan ID']
+        @site_id     = json['Site ID']
+        @status      = CompletedScan._parse_status(json['Status Code'])
+        @start_time  = Time.at(json['Started'].to_i / 1000)
+        @end_time    = Time.at(json['Progress'].to_i / 1000)
+        @duration    = json['Elapsed'].to_i
+        @vulns       = json['Vulnerabilities Discovered'].to_i
+        @assets      = json['Devices Discovered'].to_i
+        @risk_score  = json['riskScore']
+        @type        = json['Scan Type'] == 'Manual' ? :manual : :scheduled
         @engine_name = json['Scan Engine']
-        @scan_name = json['Scan Name']
+        @scan_name   = json['Scan Name']
       end
     end
 

data/lib/nexpose/scan_template.rb

@@ -11,7 +11,7 @@ module Nexpose
       templates['resources'].map { |t| ScanTemplateSummary.new(t) }
     end
 
-    alias_method :scan_templates, :list_scan_templates
+    alias scan_templates list_scan_templates
 
     # Delete a scan template from the console.
     # Cannot be used to delete a built-in template.
@@ -31,7 +31,7 @@ module Nexpose
 
     def initialize(json)
       @name = json['name']
-      @id = json['id']
+      @id   = json['id']
     end
   end
 
@@ -110,7 +110,7 @@ module Nexpose
     # @return [Boolean] Whether control scanning in enabled.
     def control_scanning?
       global_controls_scan = REXML::XPath.first(@xml, 'ScanTemplate/ControlsScan/globalControlsScanEnabled')
-      local_controls_scan = REXML::XPath.first(@xml, 'ScanTemplate/ControlsScan/localControlsScanEnabled')
+      local_controls_scan  = REXML::XPath.first(@xml, 'ScanTemplate/ControlsScan/localControlsScanEnabled')
 
       global_controls_scan.attributes['enabled'] == '1' || local_controls_scan.attributes['enabled'] == '1'
     end
@@ -237,31 +237,31 @@ module Nexpose
     # @param [Array] ports Ports to scan for TCP service discovery
     def tcp_service_discovery_ports=(ports)
       service_ports = REXML::XPath.first(@xml, 'ScanTemplate/ServiceDiscovery/TCPPortScan')
-      service_ports.attributes['mode'] = "custom"
-      service_ports.attributes['method'] = "syn"
-      REXML::XPath.first(service_ports, './portList').text = ports.join(",")
+      service_ports.attributes['mode'] = 'custom'
+      service_ports.attributes['method'] = 'syn'
+      REXML::XPath.first(service_ports, './portList').text = ports.join(',')
     end
 
     # Exclude TCP ports during TCP service discovery
     # @param [Array] ports TCP ports to exclude from TCP service discovery
     def exclude_tcp_service_discovery_ports=(ports)
       service_ports = REXML::XPath.first(@xml, 'ScanTemplate/ServiceDiscovery/ExcludedTCPPortScan')
-      REXML::XPath.first(service_ports, './portList').text = ports.join(",")
+      REXML::XPath.first(service_ports, './portList').text = ports.join(',')
     end
 
     # Set custom UDP ports to scan for UDP service discovery
     # @param [Array] ports Ports to scan during UDP service discovery
     def udp_service_discovery_ports=(ports)
       service_ports = REXML::XPath.first(@xml, 'ScanTemplate/ServiceDiscovery/UDPPortScan')
-      service_ports.attributes['mode'] = "custom"
-      REXML::XPath.first(service_ports, './portList').text = ports.join(",")
+      service_ports.attributes['mode'] = 'custom'
+      REXML::XPath.first(service_ports, './portList').text = ports.join(',')
     end
 
     # Exclude UDP ports when performing UDP service discovery
     # @param [Array] ports UDP ports to exclude from UDP service discovery
     def exclude_udp_service_discovery_ports=(ports)
       service_ports = REXML::XPath.first(@xml, 'ScanTemplate/ServiceDiscovery/ExcludedUDPPortScan')
-      REXML::XPath.first(service_ports, './portList').text = ports.join(",")
+      REXML::XPath.first(service_ports, './portList').text = ports.join(',')
     end
 
     # Enable or disable UDP service discovery
@@ -509,7 +509,7 @@ module Nexpose
     #
     def self.copy(nsc, id)
       dupe = load(nsc, id)
-      dupe.id = '#NewScanTemplate#'
+      dupe.id   = '#NewScanTemplate#'
       dupe.name = "#{dupe.name} Copy"
       dupe
     end
@@ -532,14 +532,14 @@ module Nexpose
       return if level.nil?
       return unless ['full', 'default', 'none'].include? level.downcase
       logging = REXML::XPath.first(@xml, 'ScanTemplate/Logging')
-      if (logging.nil?)
+      if logging.nil?
         logging = REXML::Element.new('Logging')
         @xml.add_element(logging)
       end
       aces = REXML::XPath.first(logging, 'aces')
-      if (aces.nil?)
-         aces = REXML::Element.new('aces')
-         logging.add_element(aces)
+      if aces.nil?
+        aces = REXML::Element.new('aces')
+        logging.add_element(aces)
       end
       aces.attributes['level'] = level
     end
@@ -551,13 +551,13 @@ module Nexpose
       return 'default' if logging.nil?
       aces = REXML::XPath.first(logging, 'aces')
       return 'default' if aces.nil?
-      return aces.attributes['level']
+      aces.attributes['level']
     end
 
     # @return [Boolean] whether asset configuration scanning is enabled for
     #   this template.
     def aces_enabled?
-      return 'full' == aces_level
+      aces_level == 'full'
     end
 
     # Enable or disable the debug logging.

data/lib/nexpose/scheduled_backup.rb

@@ -22,14 +22,14 @@ module Nexpose
     attr_accessor :cancellation_window
 
     def initialize(start:, enabled: true, type:, interval:, platform_independent: true, description: nil, pause_local_scans: true, cancellation_window: 0)
-      @schedule_start = start
-      @enabled = enabled
-      @schedule_type = type
-      @schedule_interval = interval.to_i
+      @schedule_start       = start
+      @enabled              = enabled
+      @schedule_type        = type
+      @schedule_interval    = interval.to_i
       @platform_independent = platform_independent
-      @description = description
-      @pause_local_scans = pause_local_scans
-      @cancellation_window = cancellation_window.to_i
+      @description          = description
+      @pause_local_scans    = pause_local_scans
+      @cancellation_window  = cancellation_window.to_i
     end
 
     def to_json
@@ -72,7 +72,7 @@ module Nexpose
     end
 
     def self.load(nsc)
-      uri = '/api/2.1/schedule_backup/'
+      uri  = '/api/2.1/schedule_backup/'
       resp = AJAX.get(nsc, uri, AJAX::CONTENT_TYPE::JSON)
       hash = JSON.parse(resp, symbolize_names: true).first
       Nexpose::ScheduledBackup.from_hash(hash || [])

data/lib/nexpose/scheduled_maintenance.rb

@@ -24,14 +24,14 @@ module Nexpose
     attr_accessor :cancellation_window
 
     def initialize(start:, enabled: true, type:, interval:, reindex: false, compress: true, cleanup: true, pause_local_scans: true, cancellation_window: 0)
-      @schedule_start = start
-      @enabled = enabled
-      @schedule_type = type
-      @schedule_interval = interval.to_i
-      @reindex = reindex
-      @compress = compress
-      @cleanup = cleanup
-      @pause_local_scans = pause_local_scans
+      @schedule_start      = start
+      @enabled             = enabled
+      @schedule_type       = type
+      @schedule_interval   = interval.to_i
+      @reindex             = reindex
+      @compress            = compress
+      @cleanup             = cleanup
+      @pause_local_scans   = pause_local_scans
       @cancellation_window = cancellation_window.to_i
     end
 
@@ -77,7 +77,7 @@ module Nexpose
     end
 
     def self.load(nsc)
-      uri = '/api/2.1/schedule_maintenance/'
+      uri  = '/api/2.1/schedule_maintenance/'
       resp = AJAX.get(nsc, uri, AJAX::CONTENT_TYPE::JSON)
       hash = JSON.parse(resp, symbolize_names: true).first
       Nexpose::ScheduledMaintenance.from_hash(hash || [])

data/lib/nexpose/shared_credential.rb

@@ -4,21 +4,21 @@ module Nexpose
 
     def list_shared_credentials
       creds = DataTable._get_json_table(self,
-                                   '/data/credential/shared/listing',
-                                   { 'sort' => -1,
-                                     'table-id' => 'credential-listing' })
+                                        '/data/credential/shared/listing',
+                                        { 'sort' => -1,
+                                          'table-id' => 'credential-listing' })
       creds.map { |c| SharedCredentialSummary.from_json(c) }
     end
 
-    alias_method :list_shared_creds, :list_shared_credentials
-    alias_method :shared_credentials, :list_shared_credentials
-    alias_method :shared_creds, :list_shared_credentials
+    alias list_shared_creds list_shared_credentials
+    alias shared_credentials list_shared_credentials
+    alias shared_creds list_shared_credentials
 
     def delete_shared_credential(id)
       AJAX.post(self, "/data/credential/shared/delete?credid=#{id}")
     end
 
-    alias_method :delete_shared_cred, :delete_shared_credential
+    alias delete_shared_cred delete_shared_credential
   end
 
   class SharedCredentialSummary < Credential
@@ -29,18 +29,18 @@ module Nexpose
     attr_accessor :name
     # The credential service/type. See Nexpose::Credential::Service.
     attr_accessor :service
-    alias :type :service
-    alias :type= :service=
+    alias type service
+    alias type= service=
     # Domain or realm.
     attr_accessor :domain
     # User name.
     attr_accessor :username
-    alias :user_name :username
-    alias :user_name= :username=
+    alias user_name username
+    alias user_name= username=
     # User name to use when elevating permissions (e.g., sudo).
     attr_accessor :privilege_username
-    alias :permission_elevation_user :privilege_username
-    alias :permission_elevation_user= :privilege_username=
+    alias permission_elevation_user privilege_username
+    alias permission_elevation_user= privilege_username=
     # Boolean to indicate whether this credential applies to all sites.
     attr_accessor :all_sites
     # When this credential was last modified.
@@ -48,14 +48,14 @@ module Nexpose
 
     def self.from_json(json)
       cred = new
-      cred.id = json['credentialID']['ID']
-      cred.name = json['name']
-      cred.type = json['service']
-      cred.domain = json['domain']
-      cred.username = json['username']
+      cred.id                 = json['credentialID']['ID']
+      cred.name               = json['name']
+      cred.type               = json['service']
+      cred.domain             = json['domain']
+      cred.username           = json['username']
       cred.privilege_username = json['privilegeElevationUsername']
-      cred.all_sites = json['scope'] == 'ALL_SITES_ENABLED_DEFAULT'
-      cred.last_modified = Time.at(json['lastModified']['time'] / 1000)
+      cred.all_sites          = json['scope'] == 'ALL_SITES_ENABLED_DEFAULT'
+      cred.last_modified      = Time.at(json['lastModified']['time'] / 1000)
       cred
     end
 
@@ -83,12 +83,12 @@ module Nexpose
     attr_accessor :pem_key
     # Password to use when elevating permissions (e.g., sudo).
     attr_accessor :privilege_password
-    alias :permission_elevation_password :privilege_password
-    alias :permission_elevation_password= :privilege_password=
+    alias permission_elevation_password privilege_password
+    alias permission_elevation_password= privilege_password=
     # Permission elevation type. See Nexpose::Credential::ElevationType.
     attr_accessor :privilege_type
-    alias :permission_elevation_type :privilege_type
-    alias :permission_elevation_type= :privilege_type=
+    alias permission_elevation_type privilege_type
+    alias permission_elevation_type= privilege_type=
     # Privacty password of SNMP v3 credential
     attr_accessor :privacy_password
     # Authentication type of SNMP v3 credential
@@ -130,17 +130,14 @@ module Nexpose
     def as_xml
       xml = REXML::Element.new('Credential')
       xml.add_attribute('id', @id)
-
-      name = xml.add_element('Name').add_text(@name)
-
-      desc = xml.add_element('Description').add_text(@description)
+      xml.add_element('Name').add_text(@name)
+      xml.add_element('Description').add_text(@description)
 
       services = xml.add_element('Services')
-      service = services.add_element('Service').add_attribute('type', @service)
+      services.add_element('Service').add_attribute('type', @service)
 
       (account = xml.add_element('Account')).add_attribute('type', 'nexpose')
       account.add_element('Field', { 'name' => 'database' }).add_text(@database)
-
       account.add_element('Field', { 'name' => 'domain' }).add_text(@domain)
       account.add_element('Field', { 'name' => 'username' }).add_text(@username)
       account.add_element('Field', { 'name' => 'ntlmhash' }).add_text(@ntlm_hash) if @ntlm_hash
@@ -188,10 +185,10 @@ module Nexpose
       unless engine_id
         engine_id = nsc.engines.detect { |e| e.name == 'Local scan engine' }.id
       end
-      @port = Credential::DEFAULT_PORTS[@service] if @port.nil?
+      @port      = Credential::DEFAULT_PORTS[@service] if @port.nil?
       parameters = _to_param(target, engine_id, @port, siteid)
-      xml = AJAX.form_post(nsc, '/data/credential/shared/test', parameters)
-      result = REXML::XPath.first(REXML::Document.new(xml), 'TestAdminCredentialsResult')
+      xml        = AJAX.form_post(nsc, '/data/credential/shared/test', parameters)
+      result     = REXML::XPath.first(REXML::Document.new(xml), 'TestAdminCredentialsResult')
       result.attributes['success'].to_i == 1
     end