tcell_agent 0.2.21 → 0.2.22

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: tcell_agent
 version: !ruby/object:Gem::Version
-  version: 0.2.21
+  version: 0.2.22
 platform: ruby
 authors:
 - Garrett
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2016-10-03 00:00:00.000000000 Z
+date: 2016-10-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -142,19 +142,26 @@ files:
 - lib/tcell_agent/agent/static_agent.rb
 - lib/tcell_agent/agent.rb
 - lib/tcell_agent/api.rb
+- lib/tcell_agent/appsensor/injections_matcher.rb
+- lib/tcell_agent/appsensor/injections_reporter.rb
+- lib/tcell_agent/appsensor/meta_data.rb
 - lib/tcell_agent/appsensor/rules/appsensor_rule_manager.rb
 - lib/tcell_agent/appsensor/rules/appsensor_rule_set.rb
 - lib/tcell_agent/appsensor/rules/baserules.json
+- lib/tcell_agent/appsensor/sensor.rb
 - lib/tcell_agent/authlogic.rb
 - lib/tcell_agent/configuration.rb
 - lib/tcell_agent/devise.rb
 - lib/tcell_agent/instrumentation.rb
 - lib/tcell_agent/logger.rb
+- lib/tcell_agent/patches/block_rule.rb
+- lib/tcell_agent/patches/meta_data.rb
+- lib/tcell_agent/patches/sensors_matcher.rb
+- lib/tcell_agent/patches.rb
 - lib/tcell_agent/policies/appsensor/cmdi_sensor.rb
 - lib/tcell_agent/policies/appsensor/database_sensor.rb
 - lib/tcell_agent/policies/appsensor/fpt_sensor.rb
 - lib/tcell_agent/policies/appsensor/injection_sensor.rb
-- lib/tcell_agent/policies/appsensor/login_sensor.rb
 - lib/tcell_agent/policies/appsensor/misc_sensor.rb
 - lib/tcell_agent/policies/appsensor/nullbyte_sensor.rb
 - lib/tcell_agent/policies/appsensor/payloads_policy.rb
@@ -162,7 +169,6 @@ files:
 - lib/tcell_agent/policies/appsensor/response_codes_sensor.rb
 - lib/tcell_agent/policies/appsensor/response_size_sensor.rb
 - lib/tcell_agent/policies/appsensor/retr_sensor.rb
-- lib/tcell_agent/policies/appsensor/sensor.rb
 - lib/tcell_agent/policies/appsensor/size_sensor.rb
 - lib/tcell_agent/policies/appsensor/sqli_sensor.rb
 - lib/tcell_agent/policies/appsensor/user_agent_sensor.rb
@@ -181,13 +187,15 @@ files:
 - lib/tcell_agent/rails/auth/devise.rb
 - lib/tcell_agent/rails/better_ip.rb
 - lib/tcell_agent/rails/csrf_exception.rb
+- lib/tcell_agent/rails/dlp/process_request.rb
 - lib/tcell_agent/rails/dlp.rb
 - lib/tcell_agent/rails/middleware/body_filter_middleware.rb
 - lib/tcell_agent/rails/middleware/context_middleware.rb
 - lib/tcell_agent/rails/middleware/global_middleware.rb
 - lib/tcell_agent/rails/middleware/headers_middleware.rb
 - lib/tcell_agent/rails/on_start.rb
-- lib/tcell_agent/rails/path_parameters_setter.rb
+- lib/tcell_agent/rails/routes/grape.rb
+- lib/tcell_agent/rails/routes/route_id.rb
 - lib/tcell_agent/rails/routes.rb
 - lib/tcell_agent/rails/settings_reporter.rb
 - lib/tcell_agent/rails.rb
@@ -205,6 +213,7 @@ files:
 - lib/tcell_agent/sensor_events/util/redirect_utils.rb
 - lib/tcell_agent/sensor_events/util/sanitizer_utilities.rb
 - lib/tcell_agent/sensor_events/util/utils.rb
+- lib/tcell_agent/servers/passenger.rb
 - lib/tcell_agent/servers/puma.rb
 - lib/tcell_agent/servers/rails_server.rb
 - lib/tcell_agent/servers/thin.rb
@@ -268,14 +277,18 @@ files:
 - spec/lib/tcell_agent/agent/policy_manager_spec.rb
 - spec/lib/tcell_agent/agent/static_agent_spec.rb
 - spec/lib/tcell_agent/api/api_spec.rb
+- spec/lib/tcell_agent/appsensor/injections_matcher_spec.rb
+- spec/lib/tcell_agent/appsensor/injections_reporter_spec.rb
 - spec/lib/tcell_agent/appsensor/rules/appsensor_rule_manager_spec.rb
 - spec/lib/tcell_agent/appsensor/rules/appsensor_rule_set_spec.rb
 - spec/lib/tcell_agent/configuration_spec.rb
 - spec/lib/tcell_agent/instrumentation_spec.rb
+- spec/lib/tcell_agent/patches/block_rule_spec.rb
+- spec/lib/tcell_agent/patches/sensors_matcher_spec.rb
+- spec/lib/tcell_agent/patches_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/cmdi_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/database_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/fpt_sensor_spec.rb
-- spec/lib/tcell_agent/policies/appsensor/login_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/misc_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/nullbyte_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/payloads_policy_apply_spec.rb
@@ -304,6 +317,9 @@ files:
 - spec/lib/tcell_agent/rails/middleware/dlp_middleware_spec.rb
 - spec/lib/tcell_agent/rails/middleware/global_middleware_spec.rb
 - spec/lib/tcell_agent/rails/middleware/redirect_middleware_spec.rb
+- spec/lib/tcell_agent/rails/routes/grape_spec.rb
+- spec/lib/tcell_agent/rails/routes/route_id_spec.rb
+- spec/lib/tcell_agent/rails/routes/routes_spec.rb
 - spec/lib/tcell_agent/rails_spec.rb
 - spec/lib/tcell_agent/sensor_events/appsensor_meta_event_spec.rb
 - spec/lib/tcell_agent/sensor_events/dlp_spec.rb
@@ -410,14 +426,18 @@ test_files:
 - spec/lib/tcell_agent/agent/policy_manager_spec.rb
 - spec/lib/tcell_agent/agent/static_agent_spec.rb
 - spec/lib/tcell_agent/api/api_spec.rb
+- spec/lib/tcell_agent/appsensor/injections_matcher_spec.rb
+- spec/lib/tcell_agent/appsensor/injections_reporter_spec.rb
 - spec/lib/tcell_agent/appsensor/rules/appsensor_rule_manager_spec.rb
 - spec/lib/tcell_agent/appsensor/rules/appsensor_rule_set_spec.rb
 - spec/lib/tcell_agent/configuration_spec.rb
 - spec/lib/tcell_agent/instrumentation_spec.rb
+- spec/lib/tcell_agent/patches/block_rule_spec.rb
+- spec/lib/tcell_agent/patches/sensors_matcher_spec.rb
+- spec/lib/tcell_agent/patches_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/cmdi_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/database_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/fpt_sensor_spec.rb
-- spec/lib/tcell_agent/policies/appsensor/login_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/misc_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/nullbyte_sensor_spec.rb
 - spec/lib/tcell_agent/policies/appsensor/payloads_policy_apply_spec.rb
@@ -446,6 +466,9 @@ test_files:
 - spec/lib/tcell_agent/rails/middleware/dlp_middleware_spec.rb
 - spec/lib/tcell_agent/rails/middleware/global_middleware_spec.rb
 - spec/lib/tcell_agent/rails/middleware/redirect_middleware_spec.rb
+- spec/lib/tcell_agent/rails/routes/grape_spec.rb
+- spec/lib/tcell_agent/rails/routes/route_id_spec.rb
+- spec/lib/tcell_agent/rails/routes/routes_spec.rb
 - spec/lib/tcell_agent/rails_spec.rb
 - spec/lib/tcell_agent/sensor_events/appsensor_meta_event_spec.rb
 - spec/lib/tcell_agent/sensor_events/dlp_spec.rb

data/lib/tcell_agent/policies/appsensor/login_sensor.rb

@@ -1,39 +0,0 @@
-require 'tcell_agent/policies/appsensor/size_sensor'
-require 'tcell_agent/sensor_events/util/utils'
-
-
-module TCellAgent
-  module Policies
-
-    class LoginSensor < Sensor
-      LOGIN_FAILURE_DP = "lgnFlr"
-
-      attr_accessor :enabled
-
-      def initialize(policy_json=nil)
-        @enabled = false
-
-        if policy_json
-          @enabled = policy_json.fetch("enabled", false)
-        end
-      end
-
-
-      def check(appsensor_meta, username)
-        return unless self.enabled
-
-        if username
-          username = TCellAgent::SensorEvents::Util.hmac(username)
-        end
-
-        send_event(appsensor_meta, LOGIN_FAILURE_DP, username, nil)
-      end
-
-      def to_s
-        "<#{self.class.name} enabled: #{@enabled}>"
-      end
-
-    end
-
-  end
-end

data/lib/tcell_agent/policies/appsensor/sensor.rb

@@ -1,46 +0,0 @@
-require 'tcell_agent/sensor_events/appsensor_event'
-
-module TCellAgent
-  module Policies
-
-    class Sensor
-      def send_event(appsensor_meta, detection_point, parameter, meta, payload, pattern)
-        event = TCellAgent::SensorEvents::TCellAppSensorEvent.new(
-          appsensor_meta.location,
-          detection_point,
-          appsensor_meta.method,
-          appsensor_meta.remote_address,
-          parameter,
-          appsensor_meta.route_id,
-          meta,
-          appsensor_meta.session_id,
-          appsensor_meta.user_id,
-          payload,
-          pattern
-        )
-
-        TCellAgent.send_event(event)
-      end
-
-      def send_event_from_tcell_data(tcell_data, detection_point, parameter, meta)
-        payload = pattern = nil
-        event = TCellAgent::SensorEvents::TCellAppSensorEvent.new(
-          tcell_data.uri,
-          detection_point,
-          tcell_data.request_method,
-          tcell_data.ip_address,
-          parameter,
-          tcell_data.route_id,
-          meta,
-          tcell_data.hmac_session_id,
-          tcell_data.user_id,
-          payload,
-          pattern
-        )
-
-        TCellAgent.send_event(event)
-      end
-    end
-
-  end
-end

data/lib/tcell_agent/rails/path_parameters_setter.rb

@@ -1,43 +0,0 @@
-module TCellAgent
-
-  ActionDispatch::Routing::RouteSet::Dispatcher.class_eval do
-    if (::Rails::VERSION::MAJOR == 3)
-      alias_method :tcell_dispatch, :dispatch
-      def dispatch(controller, action, env)
-        result = tcell_dispatch(controller, action, env)
-
-        TCellAgent::Instrumentation.safe_block("Set path_parameters in TCellData") do
-          if TCellAgent.configuration.should_intercept_requests?
-            request_env = TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS.fetch(Thread.current.object_id, {})
-            tcell_data = request_env[TCellAgent::Instrumentation::TCELL_ID]
-            if tcell_data
-              tcell_data.path_parameters = env[ActionDispatch::Routing::RouteSet::PARAMETERS_KEY]
-            end
-          end
-        end
-
-        result
-      end
-    end
-
-    if (::Rails::VERSION::MAJOR == 4)
-      alias_method :tcell_serve, :serve
-      def serve(req)
-        result = tcell_serve(req)
-
-        TCellAgent::Instrumentation.safe_block("Set path_parameters in TCellData") do
-          if TCellAgent.configuration.should_intercept_requests?
-            request_env = TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS.fetch(Thread.current.object_id, {})
-            tcell_data = request_env[TCellAgent::Instrumentation::TCELL_ID]
-            if tcell_data
-              tcell_data.path_parameters = req.path_parameters
-            end
-          end
-        end
-
-        result
-      end
-    end
-  end
-
-end

data/spec/lib/tcell_agent/policies/appsensor/login_sensor_spec.rb

@@ -1,104 +0,0 @@
-require 'spec_helper'
-
-module TCellAgent
-  module Policies
-
-    describe LoginSensor do
-      describe "#initialize" do
-        context "default sensor" do
-          it "should have properties set to defaults" do
-            sensor = LoginSensor.new
-            expect(sensor.enabled).to eq(false)
-          end
-        end
-
-        context "setting enabled on sensor" do
-          it "should have properties set to defaults" do
-            sensor = LoginSensor.new({"enabled" => true})
-            expect(sensor.enabled).to eq(true)
-          end
-        end
-
-      end
-
-      describe "#check" do
-        context "with disabled sensor" do
-          context "with empty username" do
-            it "should not send an event" do
-              sensor = LoginSensor.new({"enabled" => false})
-              meta = TCellAgent::SensorEvents::AppSensorMetaEvent.new
-              meta.remote_address = "remote_address"
-              meta.method = "get"
-              meta.location = "location"
-              meta.route_id = "route_id"
-              meta.session_id = "session_id"
-              meta.user_id = "user_id"
-              meta.transaction_id = "transaction_id"
-
-              expect(sensor).to_not receive(:send_event)
-              sensor.check(meta, nil)
-            end
-          end
-
-          context "with username present" do
-            it "should not send an event" do
-              sensor = LoginSensor.new({"enabled" => false})
-              meta = TCellAgent::SensorEvents::AppSensorMetaEvent.new
-              meta.remote_address = "remote_address"
-              meta.method = "get"
-              meta.location = "location"
-              meta.route_id = "route_id"
-              meta.session_id = "session_id"
-              meta.user_id = "user_id"
-              meta.transaction_id = "transaction_id"
-
-              expect(sensor).to_not receive(:send_event)
-              sensor.check(meta, "username")
-            end
-          end
-        end
-
-        context "with enabled sensor" do
-          context "with empty username" do
-            it "should send an event" do
-              sensor = LoginSensor.new({"enabled" => true})
-              meta = TCellAgent::SensorEvents::AppSensorMetaEvent.new
-              meta.remote_address = "remote_address"
-              meta.method = "get"
-              meta.location = "location"
-              meta.route_id = "route_id"
-              meta.session_id = "session_id"
-              meta.user_id = "user_id"
-              meta.transaction_id = "transaction_id"
-
-              expect(sensor).to receive(:send_event).with(
-                meta, LoginSensor::LOGIN_FAILURE_DP, nil, nil
-              )
-              sensor.check(meta, nil)
-            end
-          end
-
-          context "with username present" do
-            it "should send an event" do
-              sensor = LoginSensor.new({"enabled" => true})
-              meta = TCellAgent::SensorEvents::AppSensorMetaEvent.new
-              meta.remote_address = "remote_address"
-              meta.method = "get"
-              meta.location = "location"
-              meta.route_id = "route_id"
-              meta.session_id = "session_id"
-              meta.user_id = "user_id"
-              meta.transaction_id = "transaction_id"
-
-              expect(sensor).to receive(:send_event).with(
-                meta, LoginSensor::LOGIN_FAILURE_DP, anything(), nil
-              )
-              sensor.check(meta, "username")
-            end
-          end
-        end
-      end
-    end
-
-  end
-end