def test_ping(self, mock_generate_token, mock_api_client): mocked_return_value = SumoLogicMockResponse(200, True) mock_generate_token.return_value = mocked_return_value mock_api_client.return_value = None entry_point = EntryPoint(self.connection(), self.configuration()) ping_result = entry_point.ping_connection() assert ping_result["success"] is True
def test_query_flow(self, mock_results_response, mock_status_response, mock_query_response, mock_api_client): mock_api_client.return_value = None query_mock = "27F369FB69B2458D" mock_query_response.return_value = SumoLogicMockResponse( 200, query_mock) dir_path = os.path.dirname(os.path.realpath(__file__)) file_path = os.path.join(dir_path, 'api_response', 'result_by_sid.json') results_mock = open(file_path, 'r').read() mock_results_response.return_value = SumoLogicMockResponse( 200, results_mock) status_mock = "DONE GATHERING RESULTS" mock_status_response.return_value = SumoLogicMockResponse( 200, status_mock) query = "{\"query\": \"(_sourcehost = \\\"sumologic.domain_name.com\\\")\"," \ "\n\"fromTime\": \"20211007T111938\",\n\"toTime\": \"20211007T113438\"}" entry_point = EntryPoint(self.connection(), self.configuration()) query_response = entry_point.create_query_connection(query) assert query_response is not None assert query_response['success'] is True assert 'search_id' in query_response assert query_response['search_id'] == "27F369FB69B2458D" search_id = "27F369FB69B2458D" status_response = entry_point.create_status_connection(search_id) assert status_response is not None assert 'status' in status_response assert status_response['status'] == 'COMPLETED' assert 'progress' in status_response assert status_response['progress'] == 100 assert 'success' in status_response assert status_response['success'] is True search_id = "27F369FB69B2458D" offset = 0 length = 1 results_response = entry_point.create_results_connection( search_id, offset, length) assert 'success' in results_response assert results_response['success'] is True assert 'data' in results_response assert len(results_response['data']) > 0
def test_ping_endpoint_exception(self, mock_generate_token, mock_api_client): mock_api_client.return_value = None mocked_return_value = SumoLogicMockResponse(401, 'Authentication Failure') mock_generate_token.return_value = mocked_return_value entry_point = EntryPoint(self.connection(), self.configuration()) ping_response = entry_point.ping_connection() assert ping_response['success'] is False assert ping_response['connector'] == 'sumologic' assert ping_response[ 'error'] == "sumologic connector error => Authentication Failure" assert ping_response[ 'code'] == ErrorCode.TRANSMISSION_AUTH_CREDENTIALS.value
def test_status_response(self, mock_status_response, mock_api_client): mock_api_client.return_value = None mocked_return_value = "DONE GATHERING RESULTS" mock_status_response.return_value = SumoLogicMockResponse( 200, mocked_return_value) search_id = "27F369FB69B2458D" entry_point = EntryPoint(self.connection(), self.configuration()) status_response = entry_point.create_status_connection(search_id) assert status_response is not None assert 'status' in status_response assert status_response['status'] == 'COMPLETED' assert 'progress' in status_response assert status_response['progress'] == 100 assert 'success' in status_response assert status_response['success'] is True
def test_results_response_empty_list(self, mock_results_response, mock_api_client): mock_api_client.return_value = None mocked_return_value = list() mock_results_response.return_value = SumoLogicMockResponse( 200, mocked_return_value) search_id = "27F369FB69B2458D" offset = 0 length = 1 entry_point = EntryPoint(self.connection(), self.configuration()) results_response = entry_point.create_results_connection( search_id, offset, length) assert 'success' in results_response assert results_response['success'] is True assert 'data' in results_response assert len(results_response['data']) == 0
def test_status_response_running_cancelled(self, mock_status_response, mock_api_client): mock_api_client.return_value = None mocked_return_value = "CANCELLED" mock_status_response.return_value = SumoLogicMockResponse( 200, mocked_return_value) search_id = "27F369FB69B2458D" entry_point = EntryPoint(self.connection(), self.configuration()) status_response = entry_point.create_status_connection(search_id) assert status_response is not None assert 'status' in status_response assert status_response['status'] == 'CANCELED' assert 'progress' in status_response assert status_response['progress'] == 100 assert 'success' in status_response assert status_response['success'] is True
import json import unittest from stix_shifter_utils.stix_translation.src.json_to_stix import json_to_stix_translator from stix_shifter_modules.sumologic.entry_point import EntryPoint from stix_shifter_utils.stix_translation.src.utils.transformer_utils import get_module_transformers MODULE = "sumologic" entry_point = EntryPoint() map_data = entry_point.get_results_translator().map_data data_source = { "type": "identity", "id": "identity--3532c56d-ea72-48be-a2ad-1a53f4c9c6d3", "name": "sumologic", "identity_class": "events" } options = {} class TestSumoLogicResultsToStix(unittest.TestCase): """ class to perform unit test case for sumologic translate results """ @staticmethod def get_first(itr, constraint): """ return the obj in the itr if constraint is true """ return next((obj for obj in itr if constraint(obj)), None) @staticmethod def get_first_of_type(itr, typ):
def test_is_async(self, mock_api_client): mock_api_client.return_value = None entry_point = EntryPoint(self.connection(), self.configuration()) check_async = entry_point.is_async() assert check_async is True