Python VaultRequestAuditLogRecord Exemples

Exemple #1

Fichier : test_vault_handler.py Projet : mnimmny/vgs-satellite

def test_request_redact(monkeypatch):
    route = RouteFactory()
    rule_entry = RuleEntryFactory()

    monkeypatch.setattr(
        'satellite.vault.vault_handler.ctx.get_proxy_context',
        Mock(return_value=ProxyContext(
            mode=ProxyMode.FORWARD,
            port=9099,
        )),
    )
    monkeypatch.setattr(
        'satellite.vault.vault_handler.match_route',
        Mock(return_value=(route, [rule_entry])),
    )
    monkeypatch.setattr(
        'satellite.vault.vault_handler.transform',
        mock_transform,
    )
    emit_audit_log_record = Mock()
    monkeypatch.setattr(
        'satellite.vault.vault_handler.audit_logs.emit',
        emit_audit_log_record,
    )

    flow = load_flow('http_raw')
    assert not hasattr(flow, 'request_raw')

    VaultFlows().request(flow)

    emit_audit_log_record.assert_called_once_with(
        records.VaultRequestAuditLogRecord(
            flow_id=flow.id,
            proxy_mode=ProxyMode.FORWARD,
            method=flow.request.method,
            uri=flow.request.url,
        ), )
    assert hasattr(flow, 'request_raw')
    assert flow.transformed
    assert flow.request.match_details == {
        'route_id': route.id,
        'filters': [{
            'id': rule_entry.id,
            'operation_applied': True
        }]
    }

Exemple #2

Fichier : test_audit_logs_handlers.py Projet : vvfesik/vgs-satellite

 def test_ok(self):
     self.proxy_manager.get_audit_logs = Mock(return_value=[
         records.VaultRequestAuditLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             proxy_mode=ProxyMode.REVERSE,
             method='POST',
             uri='http://httpbin.org/post',
         ),
         records.UpstreamResponseLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             proxy_mode=ProxyMode.REVERSE,
             status_code=200,
             upstream='httpbin.org',
         ),
         records.VaultRecordUsageLogRecord(
             action_type=records.ActionType.CREATED,
             alias_generator=AliasGeneratorType.UUID,
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             phase=Phase.REQUEST,
             proxy_mode=ProxyMode.REVERSE,
             record_id='75dc92d5-e9ec-45b9-a63a-5bdeb5a2fc91',
             record_type=AliasStoreType.PERSISTENT,
             route_id='01058009-1693-4177-bcf6-fc87c57a4bfd',
         ),
         records.RouteEvaluationLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             matched=True,
             phase=Phase.REQUEST,
             proxy_mode=ProxyMode.REVERSE,
             route_id='01058009-1693-4177-bcf6-fc87c57a4bfd',
         ),
         records.FilterEvaluationLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             matched=True,
             phase=Phase.REQUEST,
             proxy_mode=ProxyMode.REVERSE,
             route_id='01058009-1693-4177-bcf6-fc87c57a4bfd',
             filter_id='d5e8d035-f70f-416b-8021-812d55d0c360',
         ),
         records.VaultTrafficLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             proxy_mode=ProxyMode.REVERSE,
             bytes=123,
             label=records.TrafficLabel.FROM_SERVER,
         ),
         records.OperationLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             proxy_mode=ProxyMode.REVERSE,
             route_id='01058009-1693-4177-bcf6-fc87c57a4bfd',
             filter_id='d93d3034-6f78-4f00-842b-c4f9d351b4ef',
             phase=Phase.REQUEST,
             operation_name='github.com/verygoodsecurity/common/script',
             execution_time_ms=1,
             execution_time_ns=1000000,
             status=records.OperationStatus.OK,
             error_message=None,
         ),
         records.OperationPipelineEvaluationLogRecord(
             flow_id='c8973f85-bb66-450b-9dd1-5f6e2c57b8bd',
             proxy_mode=ProxyMode.REVERSE,
             route_id='01058009-1693-4177-bcf6-fc87c57a4bfd',
             filter_id='d93d3034-6f78-4f00-842b-c4f9d351b4ef',
             phase=Phase.REQUEST,
             execution_time_ms=1,
             execution_time_ns=1000000,
             operations=['github.com/verygoodsecurity/common/script'],
         ),
     ])
     response = self.fetch(
         self.get_url('/logs/f15ccebf-6b79-4386-a4ec-0e7e3b119c03'))
     self.assertEqual(response.code, 200)
     self.assertMatchSnapshot(json.loads(response.body))