RubyGems - tcell_agent - Versions diffs - 0.2.29 → 0.4.0 - Mend

tcell_agent 0.2.29 → 0.4.0

Files changed (100) hide show

checksums.yaml +4 -4
data/Readme.txt +7 -0
data/bin/tcell_agent +9 -0
data/lib/tcell_agent/agent/policy_manager.rb +3 -0
data/lib/tcell_agent/agent/policy_types.rb +4 -1
data/lib/tcell_agent/appsensor/injections_matcher.rb +20 -0
data/lib/tcell_agent/appsensor/injections_reporter.rb +15 -56
data/lib/tcell_agent/appsensor/meta_data.rb +56 -2
data/lib/tcell_agent/appsensor/rules/baserules.json +371 -138
data/lib/tcell_agent/cmdi.rb +113 -0
data/lib/tcell_agent/config/unknown_options.rb +2 -0
data/lib/tcell_agent/configuration.rb +30 -16
data/lib/tcell_agent/hooks/login_fraud.rb +79 -0
data/lib/tcell_agent/instrumentation.rb +6 -11
data/lib/tcell_agent/patches/meta_data.rb +14 -11
data/lib/tcell_agent/policies/appsensor/injection_sensor.rb +5 -9
data/lib/tcell_agent/policies/appsensor_policy.rb +22 -206
data/lib/tcell_agent/policies/clickjacking_policy.rb +4 -2
data/lib/tcell_agent/policies/command_injection_policy.rb +196 -0
data/lib/tcell_agent/policies/content_security_policy.rb +3 -2
data/lib/tcell_agent/policies/dataloss_policy.rb +3 -1
data/lib/tcell_agent/policies/honeytokens_policy.rb +3 -1
data/lib/tcell_agent/policies/http_redirect_policy.rb +51 -37
data/lib/tcell_agent/policies/http_tx_policy.rb +5 -1
data/lib/tcell_agent/policies/login_fraud_policy.rb +6 -1
data/lib/tcell_agent/policies/patches_policy.rb +3 -1
data/lib/tcell_agent/policies/policy.rb +10 -0
data/lib/tcell_agent/policies/secure_headers_policy.rb +5 -2
data/lib/tcell_agent/rails/auth/devise.rb +12 -23
data/lib/tcell_agent/rails/csrf_exception.rb +1 -1
data/lib/tcell_agent/rails/dlp.rb +50 -54
data/lib/tcell_agent/rails/middleware/body_filter_middleware.rb +0 -1
data/lib/tcell_agent/rails/middleware/context_middleware.rb +0 -1
data/lib/tcell_agent/rails/middleware/global_middleware.rb +0 -1
data/lib/tcell_agent/rails/middleware/headers_middleware.rb +7 -10
data/lib/tcell_agent/rails/on_start.rb +0 -1
data/lib/tcell_agent/rails/tcell_body_proxy.rb +4 -4
data/lib/tcell_agent/rails.rb +0 -2
data/lib/tcell_agent/rust/libtcellagent-0.6.1.dylib +0 -0
data/lib/tcell_agent/rust/libtcellagent-0.6.1.so +0 -0
data/lib/tcell_agent/rust/models.rb +61 -0
data/lib/tcell_agent/rust/tcellagent-0.6.1.dll +0 -0
data/lib/tcell_agent/rust/whisperer.rb +112 -0
data/lib/tcell_agent/sensor_events/appsensor_event.rb +25 -21
data/lib/tcell_agent/sensor_events/appsensor_meta_event.rb +31 -24
data/lib/tcell_agent/sensor_events/command_injection.rb +58 -0
data/lib/tcell_agent/sensor_events/discovery.rb +1 -1
data/lib/tcell_agent/sensor_events/login_fraud.rb +3 -13
data/lib/tcell_agent/sensor_events/sensor.rb +81 -77
data/lib/tcell_agent/sensor_events/util/sanitizer_utilities.rb +8 -0
data/lib/tcell_agent/start_background_thread.rb +12 -3
data/lib/tcell_agent/utils/io.rb +4 -1
data/lib/tcell_agent/utils/params.rb +1 -0
data/lib/tcell_agent/version.rb +1 -1
data/lib/tcell_agent.rb +0 -1
data/spec/lib/tcell_agent/appsensor/injections_matcher_spec.rb +27 -9
data/spec/lib/tcell_agent/appsensor/injections_reporter_spec.rb +143 -193
data/spec/lib/tcell_agent/appsensor/meta_data_spec.rb +67 -0
data/spec/lib/tcell_agent/appsensor/rules/appsensor_rule_manager_spec.rb +0 -10
data/spec/lib/tcell_agent/cmdi_spec.rb +748 -0
data/spec/lib/tcell_agent/config/unknown_options_spec.rb +8 -0
data/spec/lib/tcell_agent/configuration_spec.rb +138 -6
data/spec/lib/tcell_agent/hooks/login_fraud_spec.rb +357 -0
data/spec/lib/tcell_agent/patches/block_rule_spec.rb +70 -87
data/spec/lib/tcell_agent/patches_spec.rb +9 -4
data/spec/lib/tcell_agent/policies/appsensor/xss_sensor_spec.rb +186 -9
data/spec/lib/tcell_agent/policies/appsensor_policy_spec.rb +309 -484
data/spec/lib/tcell_agent/policies/command_injection_policy_spec.rb +736 -0
data/spec/lib/tcell_agent/policies/http_redirect_policy_spec.rb +222 -41
data/spec/lib/tcell_agent/policies/patches_policy_spec.rb +56 -32
data/spec/lib/tcell_agent/rails/middleware/appsensor_middleware_spec.rb +161 -85
data/spec/lib/tcell_agent/rails/middleware/tcell_body_proxy_spec.rb +40 -72
data/spec/lib/tcell_agent/rust/whisperer_spec.rb +267 -0
data/spec/lib/tcell_agent/sensor_events/appsensor_meta_event_spec.rb +20 -15
data/spec/spec_helper.rb +0 -9
data/tcell_agent.gemspec +8 -3
metadata +40 -39
data/lib/tcell_agent/appsensor/sensor.rb +0 -52
data/lib/tcell_agent/policies/appsensor/database_sensor.rb +0 -56
data/lib/tcell_agent/policies/appsensor/misc_sensor.rb +0 -59
data/lib/tcell_agent/policies/appsensor/payloads_policy.rb +0 -150
data/lib/tcell_agent/policies/appsensor/request_size_sensor.rb +0 -25
data/lib/tcell_agent/policies/appsensor/response_codes_sensor.rb +0 -73
data/lib/tcell_agent/policies/appsensor/response_size_sensor.rb +0 -25
data/lib/tcell_agent/policies/appsensor/size_sensor.rb +0 -71
data/lib/tcell_agent/policies/appsensor/user_agent_sensor.rb +0 -47
data/lib/tcell_agent/rails/auth/hooks.rb +0 -79
data/lib/tcell_agent/sensor_events/util/redirect_utils.rb +0 -22
data/spec/lib/tcell_agent/policies/appsensor/database_sensor_spec.rb +0 -165
data/spec/lib/tcell_agent/policies/appsensor/misc_sensor_spec.rb +0 -429
data/spec/lib/tcell_agent/policies/appsensor/payloads_policy_apply_spec.rb +0 -466
data/spec/lib/tcell_agent/policies/appsensor/payloads_policy_from_json_spec.rb +0 -890
data/spec/lib/tcell_agent/policies/appsensor/payloads_policy_log_spec.rb +0 -417
data/spec/lib/tcell_agent/policies/appsensor/request_size_sensor_spec.rb +0 -236
data/spec/lib/tcell_agent/policies/appsensor/response_codes_sensor_spec.rb +0 -297
data/spec/lib/tcell_agent/policies/appsensor/response_size_sensor_spec.rb +0 -241
data/spec/lib/tcell_agent/policies/appsensor/user_agent_sensor_spec.rb +0 -172
data/spec/lib/tcell_agent/rails/auth/hooks_spec.rb +0 -246
data/spec/lib/tcell_agent/sensor_events/util/redirect_utils_spec.rb +0 -25
data/spec/support/resources/baserules.json +0 -155

data/spec/lib/tcell_agent/policies/appsensor/payloads_policy_from_json_spec.rb DELETED Viewed

@@ -1,890 +0,0 @@
-require 'spec_helper'
-module TCellAgent
-  module Policies
-    describe AppSensorPolicy do
-      describe ".from_json" do
-        context "with options" do
-          context "that are missing" do
-            it "should have defaults set" do
-              policy_json = nil
-              policy = PayloadsPolicy.from_json(policy_json)
-              expect(policy.send_payloads).to eq(false)
-              expect(policy.log_payloads).to eq(false)
-              expect(policy.send_blacklist).to eq({})
-              expect(policy.send_whitelist).to eq({})
-              expect(policy.use_send_whitelist).to eq(false)
-              expect(policy.log_blacklist).to eq({})
-              expect(policy.log_whitelist).to eq({})
-              expect(policy.use_log_whitelist).to eq(false)
-            end
-          end
-          context "that are present" do
-            context "with payloads" do
-              context "that are missing" do
-                it "should have defaults set" do
-                  policy_json = { }
-                  policy = PayloadsPolicy.from_json(policy_json)
-                  expect(policy.send_payloads).to eq(false)
-                  expect(policy.log_payloads).to eq(false)
-                  expect(policy.send_blacklist).to eq({})
-                  expect(policy.send_whitelist).to eq({})
-                  expect(policy.use_send_whitelist).to eq(false)
-                  expect(policy.log_blacklist).to eq({})
-                  expect(policy.log_whitelist).to eq({})
-                  expect(policy.use_log_whitelist).to eq(false)
-                end
-              end
-              context "that are present" do
-                context "but empty" do
-                  it "should have defaults set" do
-                    policy_json = {
-                      "payloads" => {}
-                    }
-                    policy = PayloadsPolicy.from_json(policy_json)
-                    expect(policy.send_payloads).to eq(false)
-                    expect(policy.log_payloads).to eq(false)
-                    expect(policy.send_blacklist).to eq({})
-                    expect(policy.send_whitelist).to eq({})
-                    expect(policy.use_send_whitelist).to eq(false)
-                    expect(policy.log_blacklist).to eq({})
-                    expect(policy.log_whitelist).to eq({})
-                    expect(policy.use_log_whitelist).to eq(false)
-                  end
-                end
-                context "with send_payloads == false" do
-                  it "should have send_payloads disabled" do
-                    policy_json = {
-                      "payloads" => {
-                        "send_payloads" => false
-                      }
-                    }
-                    policy = PayloadsPolicy.from_json(policy_json)
-                    expect(policy.send_payloads).to eq(false)
-                    expect(policy.log_payloads).to eq(false)
-                    expect(policy.send_blacklist).to eq({})
-                    expect(policy.send_whitelist).to eq({})
-                    expect(policy.use_send_whitelist).to eq(false)
-                    expect(policy.log_blacklist).to eq({})
-                    expect(policy.log_whitelist).to eq({})
-                    expect(policy.use_log_whitelist).to eq(false)
-                  end
-                  context "with send_blacklist missing" do
-                    it "should have an empty send_blacklist" do
-                      policy_json = {
-                        "payloads" => {
-                          "send_payloads" => false
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with send_blacklist present" do
-                    context "but empty" do
-                      it "should have an empty send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_blacklist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have an empty send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_blacklist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have an empty send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_blacklist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                  context "with send_whitelist missing" do
-                    it "should have an empty send_whitelist" do
-                      policy_json = {
-                        "payloads" => {
-                          "send_payloads" => false
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with send_whitelist present" do
-                    context "but empty" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_whitelist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_whitelist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => false,
-                            "send_whitelist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                end
-                context "with send_payloads == true" do
-                  it "should have send_payloads enabled" do
-                    policy_json = {
-                      "payloads" => {
-                        "send_payloads" => true
-                      }
-                    }
-                    policy = PayloadsPolicy.from_json(policy_json)
-                    expect(policy.send_payloads).to eq(true)
-                    expect(policy.log_payloads).to eq(false)
-                    expect(policy.send_blacklist).to eq({})
-                    expect(policy.send_whitelist).to eq({})
-                    expect(policy.log_blacklist).to eq({})
-                    expect(policy.log_whitelist).to eq({})
-                  end
-                  context "with send_blacklist missing" do
-                    it "should have an empty send_blacklist" do
-                      policy_json = {
-                        "payloads" => {
-                          "send_payloads" => true
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(true)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with send_blacklist present" do
-                    context "but empty" do
-                      it "should have an empty send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_blacklist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have it set in send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_blacklist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have them set in send_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_blacklist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({
-                          "username" => Set.new(["*"]),
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                  context "with send_whitelist missing" do
-                    it "should have an empty send_whitelist" do
-                      policy_json = {
-                        "payloads" => {
-                          "send_payloads" => true
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(true)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with send_whitelist present" do
-                    context "but empty" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_whitelist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(true)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_whitelist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.use_send_whitelist).to eq(true)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have an empty send_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "send_payloads" => true,
-                            "send_whitelist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(true)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({
-                          "username" => Set.new(["*"]),
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.use_send_whitelist).to eq(true)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                end
-                context "with log_payloads == false" do
-                  it "should have log_payloads disabled" do
-                    policy_json = {
-                      "payloads" => {
-                        "log_payloads" => false
-                      }
-                    }
-                    policy = PayloadsPolicy.from_json(policy_json)
-                    expect(policy.send_payloads).to eq(false)
-                    expect(policy.log_payloads).to eq(false)
-                    expect(policy.send_blacklist).to eq({})
-                    expect(policy.send_whitelist).to eq({})
-                    expect(policy.log_blacklist).to eq({})
-                    expect(policy.log_whitelist).to eq({})
-                  end
-                  context "with log_blacklist missing" do
-                    it "should have an empty log_blacklist" do
-                      policy_json = {
-                        "payloads" => {
-                          "log_payloads" => false
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with log_blacklist present" do
-                    context "but empty" do
-                      it "should have an empty log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_blacklist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have an empty log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_blacklist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have an empty log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_blacklist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                  context "with log_whitelist missing" do
-                    it "should have an empty log_whitelist" do
-                      policy_json = {
-                        "payloads" => {
-                          "log_payloads" => false
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(false)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with log_whitelist present" do
-                    context "but empty" do
-                      it "should have an empty log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_whitelist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have an empty log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_whitelist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have an empty log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => false,
-                            "log_whitelist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(false)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                end
-                context "with log_payloads == true" do
-                  it "should have log_payloads enabled" do
-                    policy_json = {
-                      "payloads" => {
-                        "log_payloads" => true
-                      }
-                    }
-                    policy = PayloadsPolicy.from_json(policy_json)
-                    expect(policy.send_payloads).to eq(false)
-                    expect(policy.log_payloads).to eq(true)
-                    expect(policy.send_blacklist).to eq({})
-                    expect(policy.send_whitelist).to eq({})
-                    expect(policy.log_blacklist).to eq({})
-                    expect(policy.log_whitelist).to eq({})
-                  end
-                  context "with log_blacklist missing" do
-                    it "should have an empty log_blacklist" do
-                      policy_json = {
-                        "payloads" => {
-                          "log_payloads" => true
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(true)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with log_blacklist present" do
-                    context "but empty" do
-                      it "should have an empty log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_blacklist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have it set in log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_blacklist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have them set in log_blacklist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_blacklist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({
-                          "username" => Set.new(["*"]),
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(false)
-                      end
-                    end
-                  end
-                  context "with log_whitelist missing" do
-                    it "should have an empty log_whitelist" do
-                      policy_json = {
-                        "payloads" => {
-                          "log_payloads" => true
-                        }
-                      }
-                      policy = PayloadsPolicy.from_json(policy_json)
-                      expect(policy.send_payloads).to eq(false)
-                      expect(policy.log_payloads).to eq(true)
-                      expect(policy.send_blacklist).to eq({})
-                      expect(policy.send_whitelist).to eq({})
-                      expect(policy.use_send_whitelist).to eq(false)
-                      expect(policy.log_blacklist).to eq({})
-                      expect(policy.log_whitelist).to eq({})
-                      expect(policy.use_log_whitelist).to eq(false)
-                    end
-                  end
-                  context "with log_whitelist present" do
-                    context "but empty" do
-                      it "should have an empty log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_whitelist" => {}
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({})
-                        expect(policy.use_log_whitelist).to eq(true)
-                      end
-                    end
-                    context "with one item present" do
-                      it "should have it set in log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_whitelist" => {
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.use_log_whitelist).to eq(true)
-                      end
-                    end
-                    context "with two items present" do
-                      it "should have them set in log_whitelist" do
-                        policy_json = {
-                          "payloads" => {
-                            "log_payloads" => true,
-                            "log_whitelist" => {
-                              "username" => ["*"],
-                              "password" => ["*"]
-                            }
-                          }
-                        }
-                        policy = PayloadsPolicy.from_json(policy_json)
-                        expect(policy.send_payloads).to eq(false)
-                        expect(policy.log_payloads).to eq(true)
-                        expect(policy.send_blacklist).to eq({})
-                        expect(policy.send_whitelist).to eq({})
-                        expect(policy.use_send_whitelist).to eq(false)
-                        expect(policy.log_blacklist).to eq({})
-                        expect(policy.log_whitelist).to eq({
-                          "username" => Set.new(["*"]),
-                          "password" => Set.new(["*"])
-                        })
-                        expect(policy.use_log_whitelist).to eq(true)
-                      end
-                    end
-                  end
-                end
-              end
-            end
-          end
-        end
-      end
-    end
-  end
-end