tcell_agent 0.2.7 → 0.2.8

data/spec/lib/tcell_agent/policies/honeytokens_policy_spec.rb

@@ -1,22 +1,22 @@
 require 'spec_helper'
 
 module TCellAgent
-    module Policies
-        describe HoneytokensPolicy do
-            policy_json = {
-                "policy_id"=>"x1a1",
-                "token_salt"=>"saltsaltsalt",
-                "tokens"=>[
-                    {"type"=>"cred", "token"=>"TOKEN", "id"=>"ID001"}
-                ]
-            }
-            policy = HoneytokensPolicy.fromJson(policy_json)
-            context "initialized with 3 items" do
-              it "returns true" do
-                expect(policy.policy_id).to eq("x1a1")
-                expect(policy.cred_tokens["TOKEN"]).to eq("ID001")
-              end
-            end
+  module Policies
+    describe HoneytokensPolicy do
+      policy_json = {
+        "policy_id"=>"x1a1",
+        "token_salt"=>"saltsaltsalt",
+        "tokens"=>[
+          {"type"=>"cred", "token"=>"TOKEN", "id"=>"ID001"}
+        ]
+      }
+      policy = HoneytokensPolicy.fromJson(policy_json)
+      context "initialized with 3 items" do
+        it "returns true" do
+          expect(policy.policy_id).to eq("x1a1")
+          expect(policy.cred_tokens["TOKEN"]).to eq("ID001")
         end
+      end
     end
-end
+  end
+end

data/spec/lib/tcell_agent/policies/http_redirect_policy_spec.rb

@@ -1,62 +1,62 @@
 require 'spec_helper'
 
 module TCellAgent
-    module Policies
-        describe HttpRedirectPolicy do
-            http_redirect_plain = HttpRedirectPolicy.new
-            context "defaults" do
-              it "returns true" do
-                expect(http_redirect_plain.policy_id).to eq(nil)
-                expect(http_redirect_plain.enabled).to eq(false)
-              end
-            end
-            http_redirect_policy_json = {
-                "policy_id"=>"x1a1",
-                "data"=>{
-                    "enabled"=>true
-                }
-            }
-            http_redirect_from_json = HttpRedirectPolicy.fromJson(http_redirect_policy_json)
-            context "initialized with 3 items" do
-              it "returns true" do
-                expect(http_redirect_from_json.policy_id).to eq("x1a1")
-                expect(http_redirect_from_json.enabled).to eq(true)
-              end
-            end
-            context "check url" do
-                it "see's other domain" do
-                    result = http_redirect_from_json.check("test.google.com", "www.test.com")
-                    expect(result).to eq(true)
-                end
-            end
-            context "check url" do
-                it "wildcard domain false" do
-                    http_redirect_from_json.whitelist = ["*.google.com"]
-                    result = http_redirect_from_json.check("test.google.com", "www.test.com")
-                    expect(result).to eq(false)
-                end
-                it "wildcard domain true" do
-                    http_redirect_from_json.whitelist = ["*.google.com"]
-                    result = http_redirect_from_json.check("test.google.net", "www.test.com")
-                    expect(result).to eq(true)
-                end
-            end
-            context "enforce url" do
-                it "domain enforce enabled false, block true" do
-                    http_redirect_from_json.enabled = false
-                    http_redirect_from_json.block = true
-                    http_redirect_from_json.whitelist = ["*.google.com"]
-                    result = http_redirect_from_json.enforce("https://test.google.com", "www.test.com", "/path/a", "GET", "1.1.1.1", 400)
-                    expect(result).to eq(nil)
-                end
-                it "domain enforce enabled true, block true" do
-                    http_redirect_from_json.enabled = true
-                    http_redirect_from_json.block = true
-                    http_redirect_from_json.whitelist = ["good.com"]
-                    result = http_redirect_from_json.enforce("https://www.google.com/abc/def", "localhost", "/path/a", "GET", "1.1.1.1", 400)
-                    expect(result).to eq("/")
-                end
-            end
+  module Policies
+    describe HttpRedirectPolicy do
+      http_redirect_plain = HttpRedirectPolicy.new
+      context "defaults" do
+        it "returns true" do
+          expect(http_redirect_plain.policy_id).to eq(nil)
+          expect(http_redirect_plain.enabled).to eq(false)
         end
+      end
+      http_redirect_policy_json = {
+        "policy_id"=>"x1a1",
+        "data"=>{
+          "enabled"=>true
+        }
+      }
+      http_redirect_from_json = HttpRedirectPolicy.fromJson(http_redirect_policy_json)
+      context "initialized with 3 items" do
+        it "returns true" do
+          expect(http_redirect_from_json.policy_id).to eq("x1a1")
+          expect(http_redirect_from_json.enabled).to eq(true)
+        end
+      end
+      context "check url" do
+        it "see's other domain" do
+          result = http_redirect_from_json.check("test.google.com", "www.test.com")
+          expect(result).to eq(true)
+        end
+      end
+      context "check url" do
+        it "wildcard domain false" do
+          http_redirect_from_json.whitelist = ["*.google.com"]
+          result = http_redirect_from_json.check("test.google.com", "www.test.com")
+          expect(result).to eq(false)
+        end
+        it "wildcard domain true" do
+          http_redirect_from_json.whitelist = ["*.google.com"]
+          result = http_redirect_from_json.check("test.google.net", "www.test.com")
+          expect(result).to eq(true)
+        end
+      end
+      context "enforce url" do
+        it "domain enforce enabled false, block true" do
+          http_redirect_from_json.enabled = false
+          http_redirect_from_json.block = true
+          http_redirect_from_json.whitelist = ["*.google.com"]
+          result = http_redirect_from_json.enforce("https://test.google.com", "www.test.com", "/path/a", "GET", "1.1.1.1", 400)
+          expect(result).to eq(nil)
+        end
+        it "domain enforce enabled true, block true" do
+          http_redirect_from_json.enabled = true
+          http_redirect_from_json.block = true
+          http_redirect_from_json.whitelist = ["good.com"]
+          result = http_redirect_from_json.enforce("https://www.google.com/abc/def", "localhost", "/path/a", "GET", "1.1.1.1", 400)
+          expect(result).to eq("/")
+        end
+      end
     end
-end
+  end
+end

data/spec/lib/tcell_agent/policies/http_tx_policy_spec.rb

@@ -1,22 +1,22 @@
 require 'spec_helper'
 
 module TCellAgent
-    module Policies
-        describe HttpTxPolicy do
-            http_tx_policy_json = {
-                "policy_id"=>"01a1",
-                "types"=>{
-                    "firehose"=>{"enabled"=>true}
-                }
-            }
-            http_tx_from_json = HttpTxPolicy.fromJson(http_tx_policy_json)
-            context "initialized with 3 items" do
-              it "returns true" do
-                expect(http_tx_from_json.policy_id).to eq("01a1")
-                expect(http_tx_from_json.firehose["enabled"]).to eq(true)
-                expect(http_tx_from_json.firehose["lite"]).to eq(false)
-              end
-            end
+  module Policies
+    describe HttpTxPolicy do
+      http_tx_policy_json = {
+        "policy_id"=>"01a1",
+        "types"=>{
+          "firehose"=>{"enabled"=>true}
+        }
+      }
+      http_tx_from_json = HttpTxPolicy.fromJson(http_tx_policy_json)
+      context "initialized with 3 items" do
+        it "returns true" do
+          expect(http_tx_from_json.policy_id).to eq("01a1")
+          expect(http_tx_from_json.firehose["enabled"]).to eq(true)
+          expect(http_tx_from_json.firehose["lite"]).to eq(false)
         end
+      end
     end
-end
+  end
+end

data/spec/lib/tcell_agent/policies/login_policy_spec.rb

@@ -15,9 +15,9 @@ module TCellAgent
         "policy_id"=>"01a1",
         "data"=>{
           "options"=>{
-              "login_failed_enabled"=>true,
-              "login_success_enabled"=>true,
-              "session_hijacking_enabled"=>true
+            "login_failed_enabled"=>true,
+            "login_success_enabled"=>true,
+            "session_hijacking_enabled"=>true
           }
         }
       }

data/spec/lib/tcell_agent/policies/secure_headers_policy_spec.rb

@@ -1,67 +1,67 @@
 require 'spec_helper'
 
 module TCellAgent
-    module Policies
-        describe SecureHeadersPolicy do
-            secure_headers_policy_json = {
-                "policy_id"=>"01a1",
-                "headers"=>[
-                    {"name"=>"x-permitted-cross-domain-policies", "value"=>"value123"}
-                ]
-            }
-            secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
-            context "secure header example" do
-                it "returns true" do
-                    expect(secure_headers_policy.headers[0].name).to eq("x-permitted-cross-domain-policies")
-                    expect(secure_headers_policy.headers[0].value).to eq("value123")
-                end
-            end
+  module Policies
+    describe SecureHeadersPolicy do
+      secure_headers_policy_json = {
+        "policy_id"=>"01a1",
+        "headers"=>[
+          {"name"=>"x-permitted-cross-domain-policies", "value"=>"value123"}
+        ]
+      }
+      secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
+      context "secure header example" do
+        it "returns true" do
+          expect(secure_headers_policy.headers[0].name).to eq("x-permitted-cross-domain-policies")
+          expect(secure_headers_policy.headers[0].value).to eq("value123")
         end
-        describe SecureHeadersPolicy do
-            secure_headers_policy_json = {
-                "policy_id"=>"01a1",
-                "headers"=>[
-                    {"name"=>"x-frame-options", "value"=>"DENY"},
-                    {"name"=>"x-xss-protection", "value"=>"1; mode=block"}
-                ]
-            }
-            secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
-            context "secure headers (2) example" do
-                it "returns true" do
-                    expect(secure_headers_policy.headers[0].name).to eq("x-frame-options")
-                    expect(secure_headers_policy.headers[0].value).to eq("DENY")
-                    expect(secure_headers_policy.headers[1].name).to eq("x-xss-protection")
-                    expect(secure_headers_policy.headers[1].value).to eq("1; mode=block")
-                end
-            end
+      end
+    end
+    describe SecureHeadersPolicy do
+      secure_headers_policy_json = {
+        "policy_id"=>"01a1",
+        "headers"=>[
+          {"name"=>"x-frame-options", "value"=>"DENY"},
+          {"name"=>"x-xss-protection", "value"=>"1; mode=block"}
+        ]
+      }
+      secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
+      context "secure headers (2) example" do
+        it "returns true" do
+          expect(secure_headers_policy.headers[0].name).to eq("x-frame-options")
+          expect(secure_headers_policy.headers[0].value).to eq("DENY")
+          expect(secure_headers_policy.headers[1].name).to eq("x-xss-protection")
+          expect(secure_headers_policy.headers[1].value).to eq("1; mode=block")
         end
-        describe SecureHeadersPolicy do
-            secure_headers_policy_json = {
-                "policy_id"=>"01a1",
-                "headers"=>[
-                    {"name"=>"bad-header", "value"=>"value123"}
-                ]
-            }
-            secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
-            context "secure header example, invalid header" do
-                it "returns false" do
-                    expect(secure_headers_policy.headers.length).to eq(0)
-                end
-            end
+      end
+    end
+    describe SecureHeadersPolicy do
+      secure_headers_policy_json = {
+        "policy_id"=>"01a1",
+        "headers"=>[
+          {"name"=>"bad-header", "value"=>"value123"}
+        ]
+      }
+      secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
+      context "secure header example, invalid header" do
+        it "returns false" do
+          expect(secure_headers_policy.headers.length).to eq(0)
         end
-        describe SecureHeadersPolicy do
-            secure_headers_policy_json = {
-                "policy_id"=>"01a1",
-                "headers"=>[
-                    {"name"=>"x-permitted-cross-domain-policies", "value"=>"value123\\nabc"}
-                ]
-            }
-            secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
-            context "secure header, value is bad" do
-                it "returns false" do
-                    expect(secure_headers_policy.headers.length).to eq(0)
-                end
-            end
+      end
+    end
+    describe SecureHeadersPolicy do
+      secure_headers_policy_json = {
+        "policy_id"=>"01a1",
+        "headers"=>[
+          {"name"=>"x-permitted-cross-domain-policies", "value"=>"value123\\nabc"}
+        ]
+      }
+      secure_headers_policy = SecureHeadersPolicy.fromJson(secure_headers_policy_json)
+      context "secure header, value is bad" do
+        it "returns false" do
+          expect(secure_headers_policy.headers.length).to eq(0)
         end
+      end
     end
-end
+  end
+end

data/spec/lib/tcell_agent/rails/logger_spec.rb

@@ -0,0 +1,148 @@
+require 'spec_helper'
+
+describe Logger do
+
+  describe "#add" do
+    context "with a warn logger" do
+      context "writing a debug message" do
+        it "should skip the tcell logic" do
+          expect(TCellAgent::Instrumentation).to_not receive(:safe_block_no_log)
+
+          logger = Logger.new('/dev/null')
+
+          logger.level = Logger::WARN
+          logger.add(Logger::DEBUG, "This will not be logged")
+        end
+      end
+
+      context "writing a warn message" do
+        it "should run the tcell logic" do
+          expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with("Handling JSAgent add")
+
+          logger = Logger.new('/dev/null')
+
+          logger.level = Logger::WARN
+          logger.add(Logger::WARN, "This will be logged")
+        end
+      end
+
+      context "writing an error message" do
+        it "should run the tcell logic" do
+          expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with("Handling JSAgent add")
+
+          logger = Logger.new('/dev/null')
+
+          logger.level = Logger::WARN
+          logger.add(Logger::ERROR, "This will be logged")
+        end
+
+        context "with an empty message" do
+          it "should not run the context filter" do
+            expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with(
+              "Handling JSAgent add"
+            ).and_call_original
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::DataLoss).and_return(
+              double("dlp_policy")
+            )
+            expect(TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS).to receive(
+              :fetch
+            ).with(anything(), nil).and_return(double("request_env"))
+
+            logger = Logger.new('/dev/null')
+
+            logger.level = Logger::WARN
+            logger.add(Logger::ERROR, nil)
+          end
+        end
+
+        context "with no dlp policy" do
+          it "should not run the context filter" do
+            expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with(
+              "Handling JSAgent add"
+            ).and_call_original
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::DataLoss).and_return(
+              nil
+            )
+            expect(TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS).to receive(
+              :fetch
+            ).with(anything(), nil).and_return(double("request_env"))
+
+            logger = Logger.new('/dev/null')
+
+            logger.level = Logger::WARN
+            logger.add(Logger::ERROR, "My DLP Policy :(")
+          end
+        end
+
+        context "with no request env" do
+          it "should not run the context filter" do
+            expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with(
+              "Handling JSAgent add"
+            ).and_call_original
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::DataLoss).and_return(
+              double("dlp_policy")
+            )
+            expect(TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS).to receive(
+              :fetch
+            ).with(anything(), nil).and_return(nil)
+
+            logger = Logger.new('/dev/null')
+
+            logger.level = Logger::WARN
+            logger.add(Logger::ERROR, "My DLP Policy :(")
+          end
+        end
+
+        context "with a dlp policy, a message, and request env" do
+
+          context "with no tcell_context" do
+            it "should not run the context filter" do
+              request_env = double("request_env")
+
+              expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with(
+                "Handling JSAgent add"
+              ).and_call_original
+              expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::DataLoss).and_return(
+                double("dlp_policy")
+              )
+              expect(TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS).to receive(
+                :fetch
+              ).with(anything(), nil).and_return(request_env)
+              expect(request_env).to receive(:[]).and_return(nil)
+
+              logger = Logger.new('/dev/null')
+
+              logger.level = Logger::WARN
+              logger.add(Logger::ERROR, "My DLP Policy :(")
+            end
+          end
+
+          context "with tcell_context" do
+            it "should not run the context filter" do
+              request_env = double("request_env")
+              tcell_context = double("tcell_context")
+
+              expect(TCellAgent::Instrumentation).to receive(:safe_block_no_log).with(
+                "Handling JSAgent add"
+              ).and_call_original
+              expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::DataLoss).and_return(
+                double("dlp_policy")
+              )
+              expect(TCellAgent::Instrumentation::Rails::Middleware::ContextMiddleware::THREADS).to receive(
+                :fetch
+              ).with(anything(), nil).and_return(request_env)
+              expect(request_env).to receive(:[]).and_return(tcell_context)
+              expect(tcell_context).to receive(:filter_log).with("My DLP Policy :(")
+
+              logger = Logger.new('/dev/null')
+
+              logger.level = Logger::WARN
+              logger.add(Logger::ERROR, "My DLP Policy :(")
+            end
+          end
+        end
+      end
+    end
+  end
+
+end