@alertlogic/al-collector-js 3.0.17 → 3.0.18

package/azcollectc.js

@@ -156,6 +156,45 @@ class AzcollectC extends AlServiceC {
                 break;
         }
     }
+
+    /**
+     * Returns the collector configuration containing {pawsCreds, pawsAimsCreds, pawsConfig}.
+     * @param {object} getConfigInput - Required input object; `collectorId` is mandatory.
+     * @returns {object} Collector configuration object.
+     */
+    getCollectorConfig(getConfigInput) {
+        return this.get(`/paws/config/` +
+            `${getConfigInput.collectorId}`, {});
+    }
+    /**
+     * Send the data to azcollect to update the collector configuration.
+     * @param {*} putConfigInput - Required input object; `collectorId` is mandatory and `compressed` is optional.
+     * @param {*} updatedStateBody - Json object to be send to azcollect
+     * @returns {*} Response from Azcollect after updating the configuration
+     */
+    updateCollectorStateConfig(putConfigInput, updatedStateBody) {
+        const postConfigUrl = `/paws/config/` +
+            `${putConfigInput.collectorId}`;
+        const compressed = putConfigInput.compressed ? putConfigInput.compressed : false;
+
+        if (compressed) {
+            var data = zlib.deflateSync(JSON.stringify(updatedStateBody));
+            let payload = {
+                json: false,
+                headers: {
+                    'Content-Encoding': 'deflate',
+                    'Content-Length': Buffer.byteLength(data)
+                },
+                body: data
+            };
+            return this.put(postConfigUrl, payload);
+        } else {
+            let payload = {
+                body: updatedStateBody
+            };
+            return this.put(postConfigUrl, payload);
+        }
+    }
 }
 
 module.exports = {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@alertlogic/al-collector-js",
-  "version": "3.0.17",
+  "version": "3.0.18",
   "license": "MIT",
   "description": "Alert Logic Collector Common Library",
   "repository": {

package/test/al_mock.js

@@ -163,6 +163,29 @@ const SERVER_ERROR_500 = {
     statusCode: 500,
     message: "Internal Server Error"
 };
+
+const COLLECT_CONFIG = {
+  "pawsCreds": {
+    "clientId": "b322e5cc-fdfdfdfd-97445373db77",
+    "clientSecret": "Cv=wJJaeNm_TVVsbndbsd_[100",
+    "applicationId": "cdfc67dd-1c13-4487-af02-80dba2236485"
+  },
+  "pawsAimsCreds": {
+    "aimsAccessKey": "fsdfgfdgfg",
+    "aimsSecretKey": "461a11182gfgfgfgfdgfgee0bdf0a9c8b58bf492014e77f39",
+    "customerId": 2,
+    "alertLogicApplicationId": "o365",
+    "collectorId": "C3646C47-GDFGGF-45AA-B61D-6967E245F16G"
+  },
+  "pawsConfig": {
+    "stream": "Audit.AzureActiveDirectory",
+    "since": "2025-06-09T10:20:09.097Z",
+    "until": "2025-06-09T11:20:09.097Z",
+    "pollIntervalSec": 1,
+    "collectorType": "o365"
+  }
+};
+
 function gen_auth_response() {
     return {
         authentication : {
@@ -193,6 +216,7 @@ module.exports = {
     SEND_COLLECTOR_STATUS_BODY_DATA: SEND_COLLECTOR_STATUS_BODY_DATA,
     COLLECTOR_STATUS_API: COLLECTOR_STATUS_API,
     SERVER_ERROR_500: SERVER_ERROR_500,
+    COLLECT_CONFIG: COLLECT_CONFIG,
 
     gen_auth_response : gen_auth_response
 };

package/test/azcollectc_test.js

@@ -19,8 +19,10 @@ describe('Unit Tests', function() {
 
     describe('AzcollectC AWS functions', function() {
         var fakePost;
+        var fakePut;
         var fakeDel;
         var fakeAuth;
+        var fakeGet;
         
         beforeEach(function() {
             fakeAuth = sinon.stub(AimsC.prototype, 'authenticate').callsFake(
@@ -37,6 +39,20 @@ describe('Unit Tests', function() {
                     });
             });
 
+            fakePut = sinon.stub(AzcollectC.prototype, 'put').callsFake(
+                function fakeFn(path, options) {
+                    return new Promise(function(resolve, reject) {
+                        resolve('ok');
+                    });
+            });
+
+            fakeGet = sinon.stub(AzcollectC.prototype, 'get').callsFake(
+                function fakeFn(path, options) {
+                    return new Promise(function (resolve, reject) {
+                        resolve('ok');
+                    });
+                });
+
             fakeDel = sinon.stub(AzcollectC.prototype, 'deleteRequest').callsFake(
                     function fakeFn(path, options) {
                         return new Promise(function(resolve, reject) {
@@ -49,6 +65,8 @@ describe('Unit Tests', function() {
             fakePost.restore();
             fakeDel.restore();
             fakeAuth.restore();
+            fakeGet.restore();
+            fakePut.restore();
             fs.unlink(m_alMock.CACHE_FILENAME, function(err){
                 done();
             });
@@ -190,6 +208,29 @@ describe('Unit Tests', function() {
             });
         });
 
+        it('AWS get collector config', function (done) {
+            var aimsc = new AimsC(m_alMock.AL_API, m_alMock.AIMS_CREDS);
+            var azc = new AzcollectC(m_alMock.INGEST_ENDPOINT, aimsc, 'aws', 'o365');
+            azc.getCollectorConfig({ collectorId: 'C3646C47-GDFGGF-45AA-B61D-6967E245F16G' }).then(resp => {
+                sinon.assert.calledWith(fakeGet,
+                    '/paws/config/C3646C47-GDFGGF-45AA-B61D-6967E245F16G', {}
+                );
+                done();
+            });
+        });
+
+        it('AWS update collector config', function (done) {
+            var aimsc = new AimsC(m_alMock.AL_API, m_alMock.AIMS_CREDS);
+            var azc = new AzcollectC(m_alMock.INGEST_ENDPOINT, aimsc, 'aws', 'o365');
+            azc.updateCollectorStateConfig({ collectorId: 'C3646C47-GDFGGF-45AA-B61D-6967E245F16G' }, m_alMock.COLLECT_CONFIG).then(resp => {
+                sinon.assert.calledWith(fakePut,
+                    '/paws/config/C3646C47-GDFGGF-45AA-B61D-6967E245F16G',
+                    { body: m_alMock.COLLECT_CONFIG }
+                );
+                done();
+            });
+        });
+
     });
     
     describe('AzcollectC Azure functions', function() {