soar_audit_test_service 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: da778b4360056dcb61c889b09d230cea4158dfdd
+  data.tar.gz: 43b31216d1ff43c54a432ded334cb8435389a9ab
+SHA512:
+  metadata.gz: 7d329c845c8c63e73e6b4767ee2a4fdeeb8cebb6c3ba986b7cc3bb1522ea972086568c20d2a6a8101ff82d287cb97e855dc80848289f9c63d97206c8375fd976
+  data.tar.gz: 05c99aedcc657eff6497fcd4a1b4b4cdc165ab150484bf6cdde8730042872478aa2977a778afd91540f9446e3ab86011ba7e27e2e944f602d78df0080f4b858b

data/.gitignore

@@ -0,0 +1,36 @@
+.byebug_history
+*tgz
+*.swo
+*.zip
+*.tar.gz
+*.swp
+*.gem
+*.rbc
+Gemfile.lock
+coverage
+.DS_Store
+
+## Specific to RubyMotion:
+.dat*
+.repl_history
+build/
+
+## Documentation cache and generated files:
+/.yardoc/
+/_yardoc/
+/doc/
+/rdoc/
+
+## Environment normalisation:
+/.bundle/
+/vendor/bundle
+/lib/bundler/man/
+
+# for a library or gem, you might want to ignore these files since the code is
+# intended to run in multiple environments; otherwise, check them in:
+# Gemfile.lock
+# .ruby-version
+# .ruby-gemset
+
+# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:
+.rvmrc

data/.ruby-gemset

@@ -0,0 +1 @@
+soar_audit_test_service

data/.ruby-version

@@ -0,0 +1 @@
+jruby-9.0.4.0

data/.yardopts

@@ -0,0 +1,5 @@
+--no-private
+--exclude README.md
+--readme README.rdoc
+-
+features/*.feature

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in multicuke-blue.gemspec
+gemspec

data/Gemfile.lock

@@ -0,0 +1,56 @@
+PATH
+  remote: .
+  specs:
+    golden_standard (0.0.1)
+      jsender (~> 0.1.5)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    builder (3.2.2)
+    byebug (8.2.1)
+    cucumber (2.1.0)
+      builder (>= 2.1.2)
+      cucumber-core (~> 1.3.0)
+      diff-lcs (>= 1.1.3)
+      gherkin3 (~> 3.1.0)
+      multi_json (>= 1.7.5, < 2.0)
+      multi_test (>= 0.1.2)
+    cucumber-core (1.3.1)
+      gherkin3 (~> 3.1.0)
+    diff-lcs (1.2.5)
+    gherkin3 (3.1.2)
+    jsender (0.1.5)
+    multi_json (1.11.2)
+    multi_test (0.1.2)
+    rake (10.4.2)
+    rspec (3.4.0)
+      rspec-core (~> 3.4.0)
+      rspec-expectations (~> 3.4.0)
+      rspec-mocks (~> 3.4.0)
+    rspec-core (3.4.1)
+      rspec-support (~> 3.4.0)
+    rspec-expectations (3.4.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.4.0)
+    rspec-mocks (3.4.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.4.0)
+    rspec-support (3.4.1)
+    yard (0.8.7.6)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  bundler (~> 1.7)
+  byebug
+  cucumber (~> 2.0)
+  golden_standard!
+  rake (~> 10.0)
+  rspec (~> 3.3)
+  rspec-expectations (~> 3.3)
+  yard
+
+BUNDLED WITH
+   1.11.2

data/README.md

@@ -0,0 +1,21 @@
+# soar_audit_test_service 
+The foundation for development
+
+
+## Documentation
+
+```
+yard server --reload
+# browse to http://localhost:8808
+```
+
+## Testing
+
+Test as follows:
+
+```shell
+git clone git@github.com:hetznerZA/soar_audit_test_service.git
+cd soar_audit_test_service
+bundle install
+./test.sh
+```

data/README.rdoc

@@ -0,0 +1,48 @@
+= Product billing options service
+
+== Features
+
+The service allows Hetzner TFA test the auditing functionality but providing end points that creates audit events.
+
+== Non-functional requirements
+
+== Dependencies
+
+== Ubiquitous language
+
+== Usage
+
+=== Documentation
+
+    yard server --reload
+
+Browse to http://localhost:8808
+
+=== Testing
+
+Make sure that an instance of SOAR_SC is running with your code injected as _jewels_. See the Install section.
+
+The testing suite uses three environment variables.
+* SOAR_SC_URL: is the URL to the running instance of SOAR_SC.
+* APP_NAME: is the application name on the server the services are running. You will use these when you are running WAR files on a Tomcat server. For example: _http://incubator.dev.auto-h.net:8080/product_billing_info_production_soar_sc/_, where _product_billing_info_production_soar_sc_ is the APP_NAME.
+* TEST_ORCHESTRATION_PROVIDER: the version of the tests you are running. Current options are: stub, tfa, and production.
+
+Examples of running the test suite:
+
+*Stub*
+
+    TEST_ORCHESTRATION_PROVIDER=stub bundle exec cucumber features
+
+*TFA*
+
+    SOAR_SC_URL=http://localhost:9393/ SOAR_SC=/Users/youruser/soar_sc TEST_ORCHESTRATION_PROVIDER=tfa bundle exec cucumber features
+
+*Production*
+
+*DO* *NOT* *USE* *IN* *PRODUCTION*
+
+=== Install
+
+=== Deploy
+
+=== CI

data/Rakefile

@@ -0,0 +1,12 @@
+require "bundler/gem_tasks"
+require 'rspec/core/rake_task'
+
+task :default => :test
+
+RSpec::Core::RakeTask.new(:spec)
+
+desc "Test the stub test orchestrator"
+task :test => :spec do
+  ENV["TEST_ORCHESTRATION_PROVIDER"] ||= "stub"
+  sh %{bundle exec cucumber}
+end

data/import.sh

@@ -0,0 +1,11 @@
+export SERVICE_COMPONENT=soar_audit_test_service
+export SOAR_DIR=../soar_sc
+export SERVICE_COMPONENT_DIR=$(pwd)
+cd $SERVICE_COMPONENT_DIR/tfa/jewels/$SERVICE_COMPONENT
+zip -rq ../$SERVICE_COMPONENT.zip *
+cd $SERVICE_COMPONENT_DIR
+cp tfa/jewels/*.zip $SOAR_DIR/jewels
+cd $SOAR_DIR
+jewels/inject_jewel.sh $SERVICE_COMPONENT
+cd $SERVICE_COMPONENT_DIR
+

data/lib/soar_audit_test_service/rejecting_test_auditor.rb

@@ -0,0 +1,15 @@
+require "soar_auditor_api"
+
+module SoarAuditTestService
+  class RejectingTestAuditor < SoarAuditorApi::AuditorAPI
+    #inversion of control method required by the AuditorAPI
+    def configuration_is_valid?(configuration)
+      true
+    end
+
+    #inversion of control method required by the AuditorAPI
+    def audit(audit_data)
+      raise "Rejecting all audit events for test purposes"
+    end
+  end
+end

data/lib/soar_audit_test_service/version.rb

@@ -0,0 +1,3 @@
+module SoarAuditTestService
+  VERSION = "0.0.1"
+end

data/lib/soar_audit_test_service.rb

@@ -0,0 +1,5 @@
+require 'soar_audit_test_service/version'
+require 'soar_audit_test_service/rejecting_test_auditor'
+
+module SoarAuditTestService
+end

data/soar_audit_test_service.gemspec

@@ -0,0 +1,29 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require "soar_audit_test_service/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "soar_audit_test_service"
+  spec.version       = SoarAuditTestService::VERSION
+  spec.authors       = ["Barney de Villiers"]
+  spec.email         = ["barney.de.villiers@hetzner.co.za"]
+
+  spec.summary       = %q{Audit test service}
+  spec.description   = %q{Audit test service provides end points that allows the testing of audit features.  Not to be used in production. }
+  spec.homepage      = 'https://gitlab.host-h.net/hetznerZA/soar_audit_test_service'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.7"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "cucumber", "~> 2.0"
+  spec.add_development_dependency "rspec", "~> 3.3"
+  spec.add_development_dependency "rspec-expectations", "~> 3.3"
+  spec.add_development_dependency 'yard'
+
+  spec.add_dependency "soar_auditor_api", "~> 0.0.11"
+end

data/test.sh

@@ -0,0 +1,2 @@
+#!/bin/bash
+TEST_ORCHESTRATION_PROVIDER=stub bundle exec cucumber features&&TEST_ORCHESTRATION_PROVIDER=tfa bundle exec cucumber features&&bundle exec rspec -cfd spec&&TEST_ORCHESTRATION_PROVIDER=production bundle exec cucumber features

data/tfa/README

@@ -0,0 +1,18 @@
+To run the test suite against the Test Frame Architecture prototype (this directory):
+
+Prepare the environment:
+
+o check out a local copy of the SOAR architecture
+o set the SOAR_DIR environment variable to point to your local copy:
+o Modify the SOAR run.sh and comment out the CFGSRV_IDENTIFIER entry. Now SOAR will use config/config.yml
+
+Inject the TFA into SOAR:
+o cd tfa/jewels/
+o zip soar_audit_test_service/* soar_audit_test_service.zip
+o cp tfa/jewels/*.zip $SOAR_DIR/jewels
+o cd $SOAR_DIR
+o jewels/extract_jewel.sh status
+./run.sh
+
+Run the tests:
+SOAR_DIR=/Users/ernstv/Documents/hetzner/recipe_rack_web_service TEST_ORCHESTRATION_PROVIDER=tfa rake test

data/tfa/jewels/soar_audit_test_service/gems

@@ -0,0 +1 @@
+spec.add_dependency 'soar_audit_test_service', "~> 0.0.1"

data/tfa/jewels/soar_audit_test_service/lib/web/controllers/audit_test.rb

@@ -0,0 +1,51 @@
+require 'web/controllers/configured_controller'
+
+module SoarSc
+  module Web
+    module Controllers
+      class AuditNotifyTest < ConfiguredController
+        def serve(request)
+          if request['operation'] == 'notify' then
+            SoarSc::auditing.send(request['level'].to_s,request['data'].to_s,request.params['flow_identifier'].to_s)
+          end
+          [200, ""]
+        end
+      end
+
+      class AuditBufferTest < ConfiguredController
+        def serve(request)
+          if request['operation'] == 'select_default_auditor' then
+            SoarSc::auditing.select_auditor(configuration['auditing']['default_nfrs'])
+            puts "--------------- SELECTING DEFAULT AUDITOR ---------------"
+            return [200, ""]
+          end
+          if request['operation'] == 'select_rejecting_auditor' then
+            SoarSc::auditing.select_auditor(configuration['auditing']['default_nfrs'].dup.merge('accessibility' => 'rejecting'))
+            puts "--------------- SELECTING REJECTING AUDITOR ---------------"
+            return [200, ""]
+          end
+          [400, ""]
+        end
+      end
+
+      class AuditFlowTest < ConfiguredController
+        def serve(request)
+          SoarSc::auditing.debug("#{request['operation'].to_s}-#{request['correlation_identifier'].to_s}",request.params['flow_identifier'].to_s)
+          if request['operation'] == 'flow-test-action-1' then
+            request['operation'] = 'flow-test-action-2'
+            query_endpoint(request.params)
+          end
+          [200, ""]
+        end
+
+        def query_endpoint(request)
+          require 'uri'
+          uri = URI.parse("http://localhost:9393/audit-test/flow")
+          uri.query = URI.encode_www_form( request )
+          require 'net/http'
+          Net::HTTP.get(uri)
+        end
+      end
+    end
+  end
+end

data/tfa/jewels/soar_audit_test_service/lib/web/models/audit_test.rb

@@ -0,0 +1,7 @@
+
+module SoarSc
+  module Web
+    module Models
+    end
+  end
+end

data/tfa/jewels/soar_audit_test_service/lib/web/router.rb

@@ -0,0 +1,17 @@
+        add_unsigned_unauthorized_route('/soar_audit_test_service/notify',
+          "Allow the test suite to notify arbitrary audit events in order to exercise the auditing on soar_sc") do |request|
+          http_code, body = SoarSc::Web::Controllers::AuditNotifyTest.new(@configuration).serve(request)
+          SoarSc::Web::Views::XML.render(http_code, body)
+        end
+
+        add_unsigned_unauthorized_route('/soar_audit_test_service/auditor',
+          "Allow the test suite to pause, halt and view the reporting of audit events in the auditing buffer") do |request|
+          http_code, body = SoarSc::Web::Controllers::AuditBufferTest.new(@configuration).serve(request)
+          SoarSc::Web::Views::XML.render(http_code, body)
+        end
+
+        add_unsigned_unauthorized_route('/soar_audit_test_service/flow',
+          "Allow the test suite to exercise the automatic generation and passing of flow identifiers") do |request|
+          http_code, body = SoarSc::Web::Controllers::AuditFlowTest.new(@configuration).serve(request)
+          SoarSc::Web::Views::XML.render(http_code, body)
+        end

data/tfa/jewels/soar_audit_test_service/meta

@@ -0,0 +1,5 @@
+architecture: 1.1.12
+path: /soar_audit_test_service
+view: soar_sc
+controller: lib/web/controllers/audit_test.rb
+model: lib/web/models/audit_test.rb

metadata

@@ -0,0 +1,163 @@
+--- !ruby/object:Gem::Specification
+name: soar_audit_test_service
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Barney de Villiers
+autorequire:
+bindir: exe
+cert_chain: []
+date: 2016-06-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  name: bundler
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  name: rake
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  name: cucumber
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  name: rspec
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  name: rspec-expectations
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: yard
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.11
+  name: soar_auditor_api
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.11
+description: 'Audit test service provides end points that allows the testing of audit
+  features.  Not to be used in production. '
+email:
+- barney.de.villiers@hetzner.co.za
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".ruby-gemset"
+- ".ruby-version"
+- ".yardopts"
+- Gemfile
+- Gemfile.lock
+- README.md
+- README.rdoc
+- Rakefile
+- import.sh
+- lib/soar_audit_test_service.rb
+- lib/soar_audit_test_service/rejecting_test_auditor.rb
+- lib/soar_audit_test_service/version.rb
+- soar_audit_test_service.gemspec
+- test.sh
+- tfa/README
+- tfa/jewels/soar_audit_test_service/gems
+- tfa/jewels/soar_audit_test_service/lib/web/controllers/audit_test.rb
+- tfa/jewels/soar_audit_test_service/lib/web/models/audit_test.rb
+- tfa/jewels/soar_audit_test_service/lib/web/router.rb
+- tfa/jewels/soar_audit_test_service/meta
+homepage: https://gitlab.host-h.net/hetznerZA/soar_audit_test_service
+licenses: []
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project:
+rubygems_version: 2.4.8
+signing_key:
+specification_version: 4
+summary: Audit test service
+test_files: []