RubyGems - tcell_agent - Versions diffs - 1.1.3 → 1.1.4 - Mend

tcell_agent 1.1.3 → 1.1.4

Files changed (118) hide show

checksums.yaml +4 -4
data/bin/tcell_agent +10 -2
data/lib/tcell_agent.rb +3 -3
data/lib/tcell_agent/agent.rb +42 -52
data/lib/tcell_agent/agent/event_processor.rb +129 -162
data/lib/tcell_agent/agent/fork_pipe_manager.rb +57 -62
data/lib/tcell_agent/agent/policy_manager.rb +83 -104
data/lib/tcell_agent/agent/policy_types.rb +24 -29
data/lib/tcell_agent/agent/route_manager.rb +36 -46
data/lib/tcell_agent/agent/static_agent.rb +19 -21
data/lib/tcell_agent/api.rb +23 -28
data/lib/tcell_agent/appsensor/injections_reporter.rb +7 -11
data/lib/tcell_agent/authlogic.rb +7 -7
data/lib/tcell_agent/cmdi.rb +22 -23
data/lib/tcell_agent/config/unknown_options.rb +71 -69
data/lib/tcell_agent/configuration.rb +187 -191
data/lib/tcell_agent/devise.rb +13 -15
data/lib/tcell_agent/hooks/login_fraud.rb +1 -1
data/lib/tcell_agent/instrumentation.rb +120 -124
data/lib/tcell_agent/logger.rb +29 -45
data/lib/tcell_agent/patches.rb +5 -5
data/lib/tcell_agent/policies/dataloss_policy.rb +263 -288
data/lib/tcell_agent/policies/http_redirect_policy.rb +25 -37
data/lib/tcell_agent/policies/http_tx_policy.rb +48 -52
data/lib/tcell_agent/policies/login_fraud_policy.rb +15 -20
data/lib/tcell_agent/policies/policy.rb +0 -2
data/lib/tcell_agent/policies/rust_policies.rb +24 -29
data/lib/tcell_agent/rails.rb +2 -3
data/lib/tcell_agent/rails/auth/authlogic.rb +2 -2
data/lib/tcell_agent/rails/auth/devise.rb +2 -2
data/lib/tcell_agent/rails/auth/doorkeeper.rb +2 -2
data/lib/tcell_agent/rails/better_ip.rb +12 -16
data/lib/tcell_agent/rails/csrf_exception.rb +4 -7
data/lib/tcell_agent/rails/dlp.rb +208 -107
data/lib/tcell_agent/rails/dlp/process_request.rb +37 -47
data/lib/tcell_agent/rails/dlp_handler.rb +9 -11
data/lib/tcell_agent/rails/js_agent_insert.rb +11 -14
data/lib/tcell_agent/rails/middleware/body_filter_middleware.rb +8 -7
data/lib/tcell_agent/rails/middleware/context_middleware.rb +4 -5
data/lib/tcell_agent/rails/middleware/global_middleware.rb +5 -8
data/lib/tcell_agent/rails/middleware/headers_middleware.rb +24 -27
data/lib/tcell_agent/rails/on_start.rb +5 -5
data/lib/tcell_agent/rails/responses.rb +7 -9
data/lib/tcell_agent/rails/routes.rb +62 -81
data/lib/tcell_agent/rails/routes/grape.rb +25 -30
data/lib/tcell_agent/rails/routes/route_id.rb +9 -14
data/lib/tcell_agent/rails/settings_reporter.rb +44 -33
data/lib/tcell_agent/rails/tcell_body_proxy.rb +15 -18
data/lib/tcell_agent/routes/table.rb +31 -33
data/lib/tcell_agent/rust/{libtcellagent-1.3.0.dylib → libtcellagent-1.3.1.dylib} +0 -0
data/lib/tcell_agent/rust/{libtcellagent-1.3.0.so → libtcellagent-1.3.1.so} +0 -0
data/lib/tcell_agent/rust/{libtcellagent-alpine-1.3.0.so → libtcellagent-alpine-1.3.1.so} +0 -0
data/lib/tcell_agent/rust/models.rb +32 -37
data/lib/tcell_agent/rust/tcellagent-1.3.1.dll +0 -0
data/lib/tcell_agent/rust/whisperer.rb +101 -104
data/lib/tcell_agent/sensor_events/app_config.rb +7 -7
data/lib/tcell_agent/sensor_events/appsensor_event.rb +26 -27
data/lib/tcell_agent/sensor_events/appsensor_meta_event.rb +20 -88
data/lib/tcell_agent/sensor_events/command_injection.rb +52 -80
data/lib/tcell_agent/sensor_events/discovery.rb +27 -27
data/lib/tcell_agent/sensor_events/dlp.rb +50 -56
data/lib/tcell_agent/sensor_events/honeytokens.rb +9 -9
data/lib/tcell_agent/sensor_events/metrics.rb +20 -21
data/lib/tcell_agent/sensor_events/patches.rb +10 -12
data/lib/tcell_agent/sensor_events/sensor.rb +32 -36
data/lib/tcell_agent/sensor_events/server_agent.rb +130 -127
data/lib/tcell_agent/sensor_events/util/sanitizer_utilities.rb +60 -80
data/lib/tcell_agent/sensor_events/util/utils.rb +3 -5
data/lib/tcell_agent/servers/passenger.rb +5 -9
data/lib/tcell_agent/servers/puma.rb +18 -27
data/lib/tcell_agent/servers/rails_server.rb +5 -9
data/lib/tcell_agent/servers/thin.rb +2 -4
data/lib/tcell_agent/servers/unicorn.rb +18 -27
data/lib/tcell_agent/servers/webrick.rb +2 -4
data/lib/tcell_agent/settings_reporter.rb +126 -0
data/lib/tcell_agent/sinatra.rb +24 -26
data/lib/tcell_agent/start_background_thread.rb +21 -142
data/lib/tcell_agent/system_info.rb +4 -3
data/lib/tcell_agent/tcell_context.rb +150 -0
data/lib/tcell_agent/userinfo.rb +3 -3
data/lib/tcell_agent/utils/io.rb +19 -24
data/lib/tcell_agent/utils/params.rb +9 -15
data/lib/tcell_agent/utils/queue_with_timeout.rb +26 -32
data/lib/tcell_agent/utils/strings.rb +4 -6
data/lib/tcell_agent/version.rb +1 -1
data/spec/lib/tcell_agent/agent/policy_manager_spec.rb +5 -5
data/spec/lib/tcell_agent/agent/static_agent_spec.rb +7 -7
data/spec/lib/tcell_agent/cmdi_spec.rb +21 -21
data/spec/lib/tcell_agent/hooks/login_fraud_spec.rb +29 -24
data/spec/lib/tcell_agent/instrumentation_spec.rb +4 -4
data/spec/lib/tcell_agent/patches_spec.rb +8 -8
data/spec/lib/tcell_agent/policies/appsensor_policy_spec.rb +23 -23
data/spec/lib/tcell_agent/policies/patches_policy_spec.rb +2 -2
data/spec/lib/tcell_agent/rails/csrf_exception_spec.rb +69 -0
data/spec/lib/tcell_agent/rails/dlp_spec.rb +1039 -0
data/spec/lib/tcell_agent/rails/js_agent_insert_spec.rb +271 -0
data/spec/lib/tcell_agent/rails/logger_spec.rb +5 -5
data/spec/lib/tcell_agent/rails/middleware/appsensor_middleware_spec.rb +3 -3
data/spec/lib/tcell_agent/rails/middleware/dlp_middleware_spec.rb +4 -4
data/spec/lib/tcell_agent/rails/middleware/global_middleware_spec.rb +5 -5
data/spec/lib/tcell_agent/rails/middleware/redirect_middleware_spec.rb +1 -1
data/spec/lib/tcell_agent/rails/middleware/tcell_body_proxy_spec.rb +11 -8
data/spec/lib/tcell_agent/rails/responses_spec.rb +2 -2
data/spec/lib/tcell_agent/rails/routes/grape_spec.rb +2 -2
data/spec/lib/tcell_agent/rails/routes/route_id_spec.rb +1 -1
data/spec/lib/tcell_agent/rails/routes/routes_spec.rb +4 -4
data/spec/lib/tcell_agent/rust/models_spec.rb +83 -75
data/spec/lib/tcell_agent/rust/whisperer_spec.rb +14 -14
data/spec/lib/tcell_agent/sensor_events/appsensor_meta_event_spec.rb +19 -70
data/spec/lib/tcell_agent/sensor_events/sessions_metric_spec.rb +1 -1
data/spec/lib/tcell_agent/settings_reporter_spec.rb +162 -0
data/spec/lib/tcell_agent/tcell_context_spec.rb +154 -0
data/spec/spec_helper.rb +5 -0
metadata +18 -10
data/lib/tcell_agent/appsensor/meta_data.rb +0 -132
data/lib/tcell_agent/patches/meta_data.rb +0 -59
data/lib/tcell_agent/rust/tcellagent-1.3.0.dll +0 -0
data/spec/lib/tcell_agent/appsensor/meta_data_spec.rb +0 -71

data/spec/lib/tcell_agent/hooks/login_fraud_spec.rb CHANGED

@@ -35,7 +35,7 @@ module TCellAgent
           it 'should report the login failure' do
             login_fraud = double('login_fraud', :enabled => true, :login_failed_enabled => true)
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(TCellAgent).to receive(:send_event).with(
@@ -43,7 +43,7 @@ module TCellAgent
                 'event_type' => 'login',
                 'header_keys' => %w[USER_AGENT X_FORWARDED_FOR],
                 'user_agent' => 'user_agent',
-                'referrer' => 'referrer',
+                'referrer' => 'http://tcell.tcell.io/?utm_campaign=',
                 'remote_addr' => '1.1.1.1',
                 'user_id' => 'user_id',
                 'document_uri' => 'http://tcell.tcell.io/login?param_name=',
@@ -55,9 +55,10 @@ module TCellAgent
             status = Hooks::V1::Login::LOGIN_FAILURE
             header_keys = %w[HTTP_USER_AGENT HTTP_X_FORWARDED_FOR]
             document_uri = 'http://tcell.tcell.io/login?param_name=param_value'
+            referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             Hooks::V1::Login.register_login_event(
-              status, 'session_id', 'user_agent', 'referrer', '1.1.1.1', header_keys, 'user_id', document_uri
+              status, 'session_id', 'user_agent', referrer, '1.1.1.1', header_keys, 'user_id', document_uri
             )
           end
         end
@@ -66,7 +67,7 @@ module TCellAgent
           it 'should NOT report the login failure' do
             login_fraud = double('login_fraud', :enabled => true, :login_failed_enabled => false)
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(TCellAgent).to_not receive(:send_event)
@@ -74,9 +75,10 @@ module TCellAgent
             status = Hooks::V1::Login::LOGIN_FAILURE
             header_keys = %w[HTTP_USER_AGENT HTTP_X_FORWARDED_FOR]
             document_uri = 'http://tcell.tcell.io/login?param_name=param_value'
+            referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             Hooks::V1::Login.register_login_event(
-              status, 'session_id', 'user_agent', 'referrer', '1.1.1.1', header_keys, 'user_id', document_uri
+              status, 'session_id', 'user_agent', referrer, '1.1.1.1', header_keys, 'user_id', document_uri
             )
           end
         end
@@ -87,7 +89,7 @@ module TCellAgent
           it 'should report the login success' do
             login_fraud = double('login_fraud', :enabled => true, :login_success_enabled => true)
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(TCellAgent).to receive(:send_event).with(
@@ -95,7 +97,7 @@ module TCellAgent
                 'event_type' => 'login',
                 'header_keys' => %w[USER_AGENT X_FORWARDED_FOR],
                 'user_agent' => 'user_agent',
-                'referrer' => 'referrer',
+                'referrer' => 'http://tcell.tcell.io/?utm_campaign=',
                 'remote_addr' => '1.1.1.1',
                 'user_id' => 'user_id',
                 'document_uri' => 'http://tcell.tcell.io/login?param_name=',
@@ -107,9 +109,10 @@ module TCellAgent
             status = Hooks::V1::Login::LOGIN_SUCCESS
             header_keys = %w[HTTP_USER_AGENT HTTP_X_FORWARDED_FOR]
             document_uri = 'http://tcell.tcell.io/login?param_name=param_value'
+            referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             Hooks::V1::Login.register_login_event(
-              status, 'session_id', 'user_agent', 'referrer', '1.1.1.1', header_keys, 'user_id', document_uri
+              status, 'session_id', 'user_agent', referrer, '1.1.1.1', header_keys, 'user_id', document_uri
             )
           end
         end
@@ -118,7 +121,7 @@ module TCellAgent
           it 'should NOT report the login success' do
             login_fraud = double('login_fraud', :enabled => true, :login_success_enabled => false)
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(TCellAgent).to_not receive(:send_event)
@@ -126,9 +129,10 @@ module TCellAgent
             status = Hooks::V1::Login::LOGIN_SUCCESS
             header_keys = %w[HTTP_USER_AGENT HTTP_X_FORWARDED_FOR]
             document_uri = 'http://tcell.tcell.io/login?param_name=param_value'
+            referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             Hooks::V1::Login.register_login_event(
-              status, 'session_id', 'user_agent', 'referrer', '1.1.1.1', header_keys, 'user_id', document_uri
+              status, 'session_id', 'user_agent', referrer, '1.1.1.1', header_keys, 'user_id', document_uri
             )
           end
         end
@@ -139,7 +143,7 @@ module TCellAgent
           login_fraud = double('login_fraud', :enabled => true)
           logger = double('logger')
-          expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+          expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
             login_fraud
           )
           expect(TCellAgent).to_not receive(:send_event)
@@ -149,9 +153,10 @@ module TCellAgent
           status = 'mumbo-jumbo'
           header_keys = %w[HTTP_USER_AGENT HTTP_X_FORWARDED_FOR]
           document_uri = 'http://tcell.tcell.io/login?param_name=param_value'
+          referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
           Hooks::V1::Login.register_login_event(
-            status, 'session_id', 'user_agent', 'referrer', '1.1.1.1', header_keys, 'user_id', document_uri
+            status, 'session_id', 'user_agent', referrer, '1.1.1.1', header_keys, 'user_id', document_uri
           )
         end
       end
@@ -165,7 +170,7 @@ module TCellAgent
             rails_request = double('rails_request')
             tcell_data = TCellAgent::Instrumentation::TCellData.new
             tcell_data.user_agent = 'user_agent'
-            tcell_data.referrer = 'referrer'
+            tcell_data.referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             tcell_data.ip_address = '1.1.1.1'
             tcell_data.path = 'http://tcell.tcell.io/login?param_name=param_value'
             tcell_data.hmac_session_id = TCellAgent::SensorEvents::Util.hmac('session_id')
@@ -175,7 +180,7 @@ module TCellAgent
               'HTTP_X_FORWARDED_FOR' => true
             }
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(rails_request).to receive(:env).and_return(request_env)
@@ -185,7 +190,7 @@ module TCellAgent
                 'event_type' => 'login',
                 'header_keys' => %w[USER_AGENT X_FORWARDED_FOR],
                 'user_agent' => 'user_agent',
-                'referrer' => 'referrer',
+                'referrer' => 'http://tcell.tcell.io/?utm_campaign=',
                 'remote_addr' => '1.1.1.1',
                 'user_id' => 'user_id',
                 'document_uri' => 'http://tcell.tcell.io/login?param_name=',
@@ -208,7 +213,7 @@ module TCellAgent
             rails_request = double('rails_request')
             tcell_data = TCellAgent::Instrumentation::TCellData.new
             tcell_data.user_agent = 'user_agent'
-            tcell_data.referrer = 'referrer'
+            tcell_data.referrer = 'http://tcell.tcell.io/?utm_campaign='
             tcell_data.ip_address = '1.1.1.1'
             tcell_data.path = 'http://tcell.tcell.io/login?param_name=param_value'
             tcell_data.hmac_session_id = TCellAgent::SensorEvents::Util.hmac('session_id')
@@ -218,7 +223,7 @@ module TCellAgent
               'HTTP_X_FORWARDED_FOR' => true
             }
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(rails_request).to receive(:env).and_return(request_env)
@@ -241,7 +246,7 @@ module TCellAgent
             rails_request = double('rails_request')
             tcell_data = TCellAgent::Instrumentation::TCellData.new
             tcell_data.user_agent = 'user_agent'
-            tcell_data.referrer = 'referrer'
+            tcell_data.referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             tcell_data.ip_address = '1.1.1.1'
             tcell_data.path = 'http://tcell.tcell.io/login?param_name=param_value'
             tcell_data.hmac_session_id = TCellAgent::SensorEvents::Util.hmac('session_id')
@@ -251,7 +256,7 @@ module TCellAgent
               'HTTP_X_FORWARDED_FOR' => true
             }
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(rails_request).to receive(:env).and_return(request_env)
@@ -261,7 +266,7 @@ module TCellAgent
                 'event_type' => 'login',
                 'header_keys' => %w[USER_AGENT X_FORWARDED_FOR],
                 'user_agent' => 'user_agent',
-                'referrer' => 'referrer',
+                'referrer' => 'http://tcell.tcell.io/?utm_campaign=',
                 'remote_addr' => '1.1.1.1',
                 'user_id' => 'user_id',
                 'document_uri' => 'http://tcell.tcell.io/login?param_name=',
@@ -284,7 +289,7 @@ module TCellAgent
             rails_request = double('rails_request')
             tcell_data = TCellAgent::Instrumentation::TCellData.new
             tcell_data.user_agent = 'user_agent'
-            tcell_data.referrer = 'referrer'
+            tcell_data.referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
             tcell_data.ip_address = '1.1.1.1'
             tcell_data.path = 'http://tcell.tcell.io/login?param_name=param_value'
             tcell_data.hmac_session_id = TCellAgent::SensorEvents::Util.hmac('session_id')
@@ -294,7 +299,7 @@ module TCellAgent
               'HTTP_X_FORWARDED_FOR' => true
             }
-            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+            expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
               login_fraud
             )
             expect(rails_request).to receive(:env).and_return(request_env)
@@ -317,7 +322,7 @@ module TCellAgent
           rails_request = double('rails_request')
           tcell_data = TCellAgent::Instrumentation::TCellData.new
           tcell_data.user_agent = 'user_agent'
-          tcell_data.referrer = 'referrer'
+          tcell_data.referrer = 'http://tcell.tcell.io/?utm_campaign=some-source'
           tcell_data.ip_address = '1.1.1.1'
           tcell_data.path = 'http://tcell.tcell.io/login?param_name=param_value'
           tcell_data.hmac_session_id = TCellAgent::SensorEvents::Util.hmac('session_id')
@@ -327,7 +332,7 @@ module TCellAgent
             'HTTP_X_FORWARDED_FOR' => true
           }
-          expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LoginFraud).and_return(
+          expect(TCellAgent).to receive(:policy).with(TCellAgent::PolicyTypes::LOGINFRAUD).and_return(
             login_fraud
           )
           expect(rails_request).to receive(:env).and_return(request_env)

data/spec/lib/tcell_agent/instrumentation_spec.rb CHANGED

@@ -41,7 +41,7 @@ module TCellAgent
           }
           session_id_policy = TCellAgent::Policies::DataLossPolicy.from_json(policy_json_two)
           mock_agent = MockAgent.new(-1)
-          mock_agent.policies[TCellAgent::PolicyTypes::DataLoss] = session_id_policy
+          mock_agent.policies[TCellAgent::PolicyTypes::DATALOSS] = session_id_policy
           TCellAgent.set_thread_agent(mock_agent)
           context = TCellData.new
@@ -66,7 +66,7 @@ module TCellAgent
           }
           session_id_policy = TCellAgent::Policies::DataLossPolicy.from_json(policy_json_two)
           mock_agent = MockAgent.new(-1)
-          mock_agent.policies[TCellAgent::PolicyTypes::DataLoss] = session_id_policy
+          mock_agent.policies[TCellAgent::PolicyTypes::DATALOSS] = session_id_policy
           TCellAgent.set_thread_agent(mock_agent)
           context = TCellData.new
@@ -93,7 +93,7 @@ module TCellAgent
           }
           session_id_policy = TCellAgent::Policies::DataLossPolicy.from_json(policy_json_two)
           mock_agent = MockAgent.new(-1)
-          mock_agent.policies[TCellAgent::PolicyTypes::DataLoss] = session_id_policy
+          mock_agent.policies[TCellAgent::PolicyTypes::DATALOSS] = session_id_policy
           TCellAgent.set_thread_agent(mock_agent)
           context = TCellData.new
@@ -118,7 +118,7 @@ module TCellAgent
           }
           session_id_policy = TCellAgent::Policies::DataLossPolicy.from_json(policy_json_two)
           mock_agent = MockAgent.new(-1)
-          mock_agent.policies[TCellAgent::PolicyTypes::DataLoss] = session_id_policy
+          mock_agent.policies[TCellAgent::PolicyTypes::DATALOSS] = session_id_policy
           TCellAgent.set_thread_agent(mock_agent)
           context = TCellData.new

data/spec/lib/tcell_agent/patches_spec.rb CHANGED

@@ -24,9 +24,9 @@ module TCellAgent
           logger = double('logger')
           request = double('request')
           expect(TCellAgent).to receive(:policy).with(
-            TCellAgent::PolicyTypes::Rust
+            TCellAgent::PolicyTypes::RUST
           ).and_raise(StandardError.new('UNEXPECTED'))
-          expect(TCellAgent::Patches::MetaData).to_not receive(:build)
+          expect(TCellAgent::MetaData).to_not receive(:from_request)
           expect(TCellAgent).to receive(:logger).and_return(logger).twice
           expect(logger).to receive(:debug).with(
             'Exception in safe_block Checking patches blocking: StandardError happened, message is UNEXPECTED'
@@ -41,7 +41,7 @@ module TCellAgent
         it 'should return false' do
           request = double('request')
           expect(TCellAgent).to receive(:policy).and_return(nil)
-          expect(TCellAgent::Patches::MetaData).to_not receive(:build)
+          expect(TCellAgent::MetaData).to_not receive(:from_request)
           expect(Patches.block?(request)).to eq(false)
         end
@@ -53,7 +53,7 @@ module TCellAgent
           expect(@rust_policies.patches_enabled).to eq(false)
           expect(TCellAgent).to receive(:policy).and_return(@rust_policies)
-          expect(TCellAgent::Patches::MetaData).to_not receive(:build)
+          expect(TCellAgent::MetaData).to_not receive(:from_request)
           expect(Patches.block?(request)).to eq(false)
         end
@@ -73,7 +73,7 @@ module TCellAgent
               TCellAgent::Instrumentation::TCELL_ID => tcell_context
             }
           )
-          expect(TCellAgent::Patches::MetaData).to receive(:build).and_return(
+          expect(TCellAgent::MetaData).to receive(:from_request).and_return(
             meta_data
           )
@@ -92,7 +92,7 @@ module TCellAgent
           expect(TCellAgent).to receive(:policy).and_return(@rust_policies)
           expect(@rust_policies).to receive(:patches_enabled).and_return(true)
           expect(@rust_policies).to receive(:block_request?).and_return(true)
-          expect(TCellAgent::Patches::MetaData).to receive(:build).and_return(
+          expect(TCellAgent::MetaData).to receive(:from_request).and_return(
             meta_data
           )
           expect(request).to receive(:env).and_return({ TCellAgent::Instrumentation::TCELL_ID => tcell_context })
@@ -105,7 +105,7 @@ module TCellAgent
         context "and that's complex" do
           it 'should return a response' do
             request = double('request')
-            meta_data = TCellAgent::Patches::MetaData.new(
+            meta_data = TCellAgent::MetaData.new(
               'get',
               '2.3.4.5',
               'route_id',
@@ -122,7 +122,7 @@ module TCellAgent
             expect(TCellAgent).to receive(:policy).and_return(@rust_policies)
             expect(@rust_policies).to receive(:patches_enabled).and_return(true)
             expect(@rust_policies).to receive(:block_request?).and_return(true)
-            expect(TCellAgent::Patches::MetaData).to receive(:build).and_return(
+            expect(TCellAgent::MetaData).to receive(:from_request).and_return(
               meta_data
             )
             expect(request).to receive(:env).and_return({ TCellAgent::Instrumentation::TCELL_ID => tcell_context })

data/spec/lib/tcell_agent/policies/appsensor_policy_spec.rb CHANGED

@@ -266,7 +266,7 @@ module TCellAgent
             expect(TCellAgent).to receive(:configuration).and_return(configuration).at_least(:once)
             @rust_policies = RustPolicies.new
             @rust_policies.update_policies(everything_enabled_policy_json)
-            @appsensor_meta = TCellAgent::SensorEvents::AppSensorMetaEvent.new(
+            @meta_data = TCellAgent::MetaData.new(
               'GET',
               '192.168.1.1',
               '12345',
@@ -275,8 +275,8 @@ module TCellAgent
               'transaction_id',
               'http://test.com/?some_param=present'
             )
-            @appsensor_meta.user_agent = 'Mozilla'
-            @appsensor_meta.response_code = 200
+            @meta_data.user_agent = 'Mozilla'
+            @meta_data.response_code = 200
           end
           context 'csrf exception' do
@@ -284,9 +284,9 @@ module TCellAgent
               it 'should not send an event' do
                 expect(TCellAgent).to_not receive(:send_event)
-                @appsensor_meta.csrf_exception_name = nil
+                @meta_data.csrf_exception_name = nil
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -295,9 +295,9 @@ module TCellAgent
               it 'should not send an event' do
                 expect(TCellAgent).to_not receive(:send_event)
-                @appsensor_meta.csrf_exception_name = ''
+                @meta_data.csrf_exception_name = ''
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -319,9 +319,9 @@ module TCellAgent
                   }
                 )
-                @appsensor_meta.csrf_exception_name = 'ActionController::InvalidAuthenticityToken'
+                @meta_data.csrf_exception_name = 'ActionController::InvalidAuthenticityToken'
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -332,9 +332,9 @@ module TCellAgent
               it 'should not send an event' do
                 expect(TCellAgent).to_not receive(:send_event)
-                @appsensor_meta.sql_exceptions = []
+                @meta_data.sql_exceptions = []
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -361,12 +361,12 @@ module TCellAgent
                   }
                 )
-                @appsensor_meta.sql_exceptions = [{
+                @meta_data.sql_exceptions = [{
                   'exception_name' => 'ActiveRecord::StatementInvalid',
                   'exception_payload' => 'exception message goes here'
                 }]
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -408,7 +408,7 @@ module TCellAgent
                   }
                 )
-                @appsensor_meta.sql_exceptions = [
+                @meta_data.sql_exceptions = [
                   {
                     'exception_name' => 'ActiveRecord::StatementInvalid',
                     'exception_payload' => 'exception message goes here'
@@ -419,7 +419,7 @@ module TCellAgent
                   }
                 ]
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -430,9 +430,9 @@ module TCellAgent
               it 'should not send an event' do
                 expect(TCellAgent).to_not receive(:send_event)
-                @appsensor_meta.database_result_sizes = nil
+                @meta_data.database_result_sizes = nil
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -441,9 +441,9 @@ module TCellAgent
               it 'should not send an event' do
                 expect(TCellAgent).to_not receive(:send_event)
-                @appsensor_meta.database_result_sizes = []
+                @meta_data.database_result_sizes = []
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -465,9 +465,9 @@ module TCellAgent
                   }
                 )
-                @appsensor_meta.database_result_sizes = [1001]
+                @meta_data.database_result_sizes = [1001]
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end
@@ -503,9 +503,9 @@ module TCellAgent
                   }
                 )
-                @appsensor_meta.database_result_sizes = [1001, 1002]
+                @meta_data.database_result_sizes = [1001, 1002]
                 @rust_policies.check_appfirewall_injections(
-                  @appsensor_meta
+                  @meta_data
                 )
               end
             end