Python try_poll_offense_events_with_retry Examples

Programming Language: Python

Namespace/Package Name: QRadar_v2

Method/Function: try_poll_offense_events_with_retry

Examples at hotexamples.com: 3

Python try_poll_offense_events_with_retry - 3 examples found. These are the top rated real world Python examples of QRadar_v2.try_poll_offense_events_with_retry extracted from open source projects. You can rate examples to help us improve the quality of examples.

Example #1

Show file

File: QRadar_v2_test.py Project: supserver/content

def test_try_poll_offense_events_with_retry__reset(mocker):
    """
    Poll event with when reset is set

    Given:
        - Event fetch is to be polled via the qradar client
    When:
        - Reset trigger is waiting
    Then:
        - Stop fetch and return empty list
    """
    client = QRadarClient("", {}, {"identifier": "*", "password": "******"})
    offense_id = 450
    query_status = "EXECUTE"
    search_id = "1"
    max_retries = 3

    mocker.patch.object(QRadar_v2, "is_reset_triggered", return_value=True)
    mocker.patch.object(
        client,
        "get_search",
        side_effect=[ConnectionError, RAW_RESPONSES["qradar-get-search"]])
    mocker.patch.object(
        client,
        "get_search_results",
        return_value=RAW_RESPONSES["qradar-get-search-results"])
    mocker.patch.object(demisto, "debug")

    actual = try_poll_offense_events_with_retry(client, offense_id,
                                                query_status, search_id,
                                                max_retries)
    assert actual == []

Example #2

Show file

File: QRadar_v2_test.py Project: supserver/content

def test_try_poll_offense_events_with_retry__sad(mocker):
    """
    Poll event with a failure

    Given:
        - Event fetch is to be polled via the qradar client
    When:
        - Search first returns ConnectionError
        - Recovery is set to 0
    Then:
        - Stop fetch and return empty list
    """
    client = QRadarClient("", {}, {"identifier": "*", "password": "******"})
    offense_id = 450
    query_status = "EXECUTE"
    search_id = "1"
    max_retries = 0

    mocker.patch.object(QRadar_v2, "is_reset_triggered", return_value=False)
    mocker.patch.object(
        client,
        "get_search",
        side_effect=[ConnectionError, RAW_RESPONSES["qradar-get-search"]])
    mocker.patch.object(demisto, "debug")

    actual = try_poll_offense_events_with_retry(client, offense_id,
                                                query_status, search_id,
                                                max_retries)
    assert actual == []

Example #3

Show file

File: QRadar_v2_test.py Project: supserver/content

def test_try_poll_offense_events_with_retry__semi_happy(mocker):
    """
    Poll event with a failure, recovery and success flow

    Given:
        - Event fetch is to be polled via the qradar client
    When:
        - Search first returns ConnectionError
        - Search then returns search is COMPLETED
    Then:
        - Assert events are fetched correctly
    """
    client = QRadarClient("", {}, {"identifier": "*", "password": "******"})
    offense_id = 450
    query_status = "EXECUTE"
    search_id = "1"
    max_retries = 3
    expected = [{'MY Source IPs': '8.8.8.8'}]

    mocker.patch.object(QRadar_v2, "is_reset_triggered", return_value=False)
    mocker.patch.object(
        client,
        "get_search",
        side_effect=[ConnectionError, RAW_RESPONSES["qradar-get-search"]])
    mocker.patch.object(
        client,
        "get_search_results",
        return_value=RAW_RESPONSES["qradar-get-search-results"])
    mocker.patch.object(demisto, "debug")

    actual = try_poll_offense_events_with_retry(client, offense_id,
                                                query_status, search_id,
                                                max_retries)
    assert actual == expected