MISP/tests/testlive_comprehensive_loca...

#!/usr/bin/env python3
import os
import unittest
import uuid
import urllib3  # type: ignore

import logging
logging.disable(logging.CRITICAL)
logger = logging.getLogger('pymisp')


from pymisp import PyMISP, MISPOrganisation, MISPUser, MISPRole, MISPSharingGroup, MISPEvent, MISPLog, MISPSighting, Distribution, ThreatLevel, Analysis

# Load access information for env variables
url = "http://" + os.environ["HOST"]
key = os.environ["AUTH"]

urllib3.disable_warnings()


def create_simple_event():
    mispevent = MISPEvent()
    mispevent.info = 'This is a super simple test'
    mispevent.distribution = Distribution.your_organisation_only
    mispevent.threat_level_id = ThreatLevel.low
    mispevent.analysis = Analysis.completed
    mispevent.add_attribute('text', str(uuid.uuid4()))
    return mispevent


def check_response(response):
    if isinstance(response, dict) and "errors" in response:
        raise Exception(response["errors"])


class TestComprehensive(unittest.TestCase):
    @classmethod
    def setUpClass(cls):
        cls.maxDiff = None
        # Connect as admin
        cls.admin_misp_connector = PyMISP(url, key, ssl=False, debug=False)
        cls.admin_misp_connector.set_server_setting('debug', 1, force=True)
        # Creates an org
        organisation = MISPOrganisation()
        organisation.name = 'Test Org'
        cls.test_org = cls.admin_misp_connector.add_organisation(organisation, pythonify=True)
        # Set the refault role (id 3 on the VM)
        cls.admin_misp_connector.set_default_role(3)
        # Creates a user
        user = MISPUser()
        user.email = 'testusr@user.local'
        user.org_id = cls.test_org.id
        cls.test_usr = cls.admin_misp_connector.add_user(user, pythonify=True)
        cls.user_misp_connector = PyMISP(url, cls.test_usr.authkey, ssl=False, debug=True)

    @classmethod
    def tearDownClass(cls):
        # Delete user
        cls.admin_misp_connector.delete_user(cls.test_usr)
        # Delete org
        cls.admin_misp_connector.delete_organisation(cls.test_org)

    def setUp(self):
        self.user_misp_connector.global_pythonify = True

    def test_search_index(self):
        # Search all events
        index = self.user_misp_connector.search_index()
        self.assertGreater(len(index), 0)

        # Search published
        index_published = self.user_misp_connector.search_index(published=True)
        self.assertEqual(len(index_published), 0, "No event should be published.")

        # Create test event
        event = create_simple_event()
        event = self.user_misp_connector.add_event(event, pythonify=True)
        check_response(event)

        # Search by org name
        index_org = self.user_misp_connector.search_index(org="Test Org")
        self.assertGreater(len(index_org), 0)

        # Search by org name with different case
        index_org_lower = self.user_misp_connector.search_index(org="test org")
        self.assertGreater(len(index_org_lower), 0)

        # Search by org uuid
        index_org_uuid = self.user_misp_connector.search_index(org=self.test_org.uuid)
        self.assertGreater(len(index_org_uuid), 0)

        # Search by org ID
        index_org_id = self.user_misp_connector.search_index(org=self.test_org.id)
        self.assertGreater(len(index_org_id), 0)

        self.assertEqual(len(index_org), len(index_org_lower))
        self.assertEqual(len(index_org), len(index_org_uuid))
        self.assertEqual(len(index_org), len(index_org_id))

        self.user_misp_connector.delete_event(event)

    def test_search_index_minimal(self):
        # pythonify is not supported for minimal results
        self.user_misp_connector.global_pythonify = False

        minimal = self.user_misp_connector.search_index(minimal=True)
        self.assertGreater(len(minimal), 0)
        minimal_event = minimal[0]
        self.assertIn("id", minimal_event)
        self.assertIn("timestamp", minimal_event)
        self.assertIn("sighting_timestamp", minimal_event)
        self.assertIn("published", minimal_event)
        self.assertIn("uuid", minimal_event)
        self.assertIn("orgc_uuid", minimal_event)
        for event in minimal:
            self.assertFalse(event["published"], "No event should be published.")

        minimal_published = self.user_misp_connector.search_index(minimal=True, published=True)
        self.assertEqual(len(minimal_published), 0, "No event should be published.")

        # Create test event
        event = create_simple_event()
        event = self.user_misp_connector.add_event(event, pythonify=True)
        check_response(event)

        # Search by org name
        minimal_org = self.user_misp_connector.search_index(minimal=True, org="Test Org")
        self.assertGreater(len(minimal_org), 0)
        for event in minimal_org:
            self.assertEqual(event["orgc_uuid"], self.test_org.uuid)

        # Search by org name with different case
        minimal_org_lower = self.user_misp_connector.search_index(minimal=True, org="test org")
        self.assertGreater(len(minimal_org), 0)
        for event in minimal_org:
            self.assertEqual(event["orgc_uuid"], self.test_org.uuid)

        # Search by non exists org name
        minimal_org_non_existing = self.user_misp_connector.search_index(minimal=True, org="Test Org that doesn't exists")
        self.assertEqual(len(minimal_org_non_existing), 0)

        # Search by org uuid
        minimal_org_uuid = self.user_misp_connector.search_index(minimal=True, org=self.test_org.uuid)
        self.assertGreater(len(minimal_org), 0)
        for event in minimal_org:
            self.assertEqual(event["orgc_uuid"], self.test_org.uuid)

        # Search by non existing uuid
        minimal_org_uuid_non_existing = self.user_misp_connector.search_index(minimal=True, org=uuid.uuid4())
        self.assertEqual(len(minimal_org_uuid_non_existing), 0)

        # Search by org ID
        minimal_org_id = self.user_misp_connector.search_index(minimal=True, org=self.test_org.id)
        self.assertGreater(len(minimal_org), 0)
        for event in minimal_org:
            self.assertEqual(event["orgc_uuid"], self.test_org.uuid)

        self.assertEqual(len(minimal_org), len(minimal_org_lower))
        self.assertEqual(len(minimal_org), len(minimal_org_uuid))
        self.assertEqual(len(minimal_org), len(minimal_org_id))

        # Search not by org
        minimal_org_not = self.user_misp_connector.search_index(minimal=True, org="!Test Org")
        for event in minimal_org_not:
            self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)
        minimal_org_lower_not = self.user_misp_connector.search_index(minimal=True, org="!test org")
        for event in minimal_org_lower_not:
            self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)
        minimal_org_uuid_not = self.user_misp_connector.search_index(minimal=True, org="!" + self.test_org.uuid)
        for event in minimal_org_uuid_not:
            self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)
        minimal_org_id_not = self.user_misp_connector.search_index(minimal=True, org="!" + self.test_org.id)
        for event in minimal_org_id_not:
            self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)

        self.assertEqual(len(minimal_org_not), len(minimal_org_lower_not))
        self.assertEqual(len(minimal_org_not), len(minimal_org_uuid_not))
        self.assertEqual(len(minimal_org_not), len(minimal_org_id_not))

        self.user_misp_connector.delete_event(event)


if __name__ == '__main__':
    unittest.main()
chg: [test] Tests for event index 2021-10-15 09:32:54 +02:00			`#!/usr/bin/env python3`
			`import os`
			`import unittest`
			`import uuid`
			`import urllib3 # type: ignore`

			`import logging`
			`logging.disable(logging.CRITICAL)`
			`logger = logging.getLogger('pymisp')`


			`from pymisp import PyMISP, MISPOrganisation, MISPUser, MISPRole, MISPSharingGroup, MISPEvent, MISPLog, MISPSighting, Distribution, ThreatLevel, Analysis`

			`# Load access information for env variables`
			`url = "http://" + os.environ["HOST"]`
			`key = os.environ["AUTH"]`

			`urllib3.disable_warnings()`


			`def create_simple_event():`
			`mispevent = MISPEvent()`
			`mispevent.info = 'This is a super simple test'`
			`mispevent.distribution = Distribution.your_organisation_only`
			`mispevent.threat_level_id = ThreatLevel.low`
			`mispevent.analysis = Analysis.completed`
			`mispevent.add_attribute('text', str(uuid.uuid4()))`
			`return mispevent`


			`def check_response(response):`
			`if isinstance(response, dict) and "errors" in response:`
			`raise Exception(response["errors"])`


			`class TestComprehensive(unittest.TestCase):`
			`@classmethod`
			`def setUpClass(cls):`
			`cls.maxDiff = None`
			`# Connect as admin`
			`cls.admin_misp_connector = PyMISP(url, key, ssl=False, debug=False)`
			`cls.admin_misp_connector.set_server_setting('debug', 1, force=True)`
			`# Creates an org`
			`organisation = MISPOrganisation()`
			`organisation.name = 'Test Org'`
			`cls.test_org = cls.admin_misp_connector.add_organisation(organisation, pythonify=True)`
			`# Set the refault role (id 3 on the VM)`
			`cls.admin_misp_connector.set_default_role(3)`
			`# Creates a user`
			`user = MISPUser()`
			`user.email = 'testusr@user.local'`
			`user.org_id = cls.test_org.id`
			`cls.test_usr = cls.admin_misp_connector.add_user(user, pythonify=True)`
			`cls.user_misp_connector = PyMISP(url, cls.test_usr.authkey, ssl=False, debug=True)`

			`@classmethod`
			`def tearDownClass(cls):`
			`# Delete user`
			`cls.admin_misp_connector.delete_user(cls.test_usr)`
			`# Delete org`
			`cls.admin_misp_connector.delete_organisation(cls.test_org)`

			`def setUp(self):`
			`self.user_misp_connector.global_pythonify = True`

			`def test_search_index(self):`
			`# Search all events`
			`index = self.user_misp_connector.search_index()`
			`self.assertGreater(len(index), 0)`

			`# Search published`
			`index_published = self.user_misp_connector.search_index(published=True)`
			`self.assertEqual(len(index_published), 0, "No event should be published.")`

			`# Create test event`
			`event = create_simple_event()`
			`event = self.user_misp_connector.add_event(event, pythonify=True)`
			`check_response(event)`

			`# Search by org name`
			`index_org = self.user_misp_connector.search_index(org="Test Org")`
			`self.assertGreater(len(index_org), 0)`

			`# Search by org name with different case`
			`index_org_lower = self.user_misp_connector.search_index(org="test org")`
			`self.assertGreater(len(index_org_lower), 0)`

			`# Search by org uuid`
			`index_org_uuid = self.user_misp_connector.search_index(org=self.test_org.uuid)`
			`self.assertGreater(len(index_org_uuid), 0)`

			`# Search by org ID`
			`index_org_id = self.user_misp_connector.search_index(org=self.test_org.id)`
			`self.assertGreater(len(index_org_id), 0)`

			`self.assertEqual(len(index_org), len(index_org_lower))`
			`self.assertEqual(len(index_org), len(index_org_uuid))`
			`self.assertEqual(len(index_org), len(index_org_id))`

			`self.user_misp_connector.delete_event(event)`

			`def test_search_index_minimal(self):`
			`# pythonify is not supported for minimal results`
			`self.user_misp_connector.global_pythonify = False`

			`minimal = self.user_misp_connector.search_index(minimal=True)`
			`self.assertGreater(len(minimal), 0)`
chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`minimal_event = minimal[0]`
			`self.assertIn("id", minimal_event)`
			`self.assertIn("timestamp", minimal_event)`
			`self.assertIn("sighting_timestamp", minimal_event)`
			`self.assertIn("published", minimal_event)`
			`self.assertIn("uuid", minimal_event)`
			`self.assertIn("orgc_uuid", minimal_event)`
			`for event in minimal:`
			`self.assertFalse(event["published"], "No event should be published.")`
chg: [test] Tests for event index 2021-10-15 09:32:54 +02:00
			`minimal_published = self.user_misp_connector.search_index(minimal=True, published=True)`
			`self.assertEqual(len(minimal_published), 0, "No event should be published.")`

			`# Create test event`
			`event = create_simple_event()`
			`event = self.user_misp_connector.add_event(event, pythonify=True)`
			`check_response(event)`

			`# Search by org name`
			`minimal_org = self.user_misp_connector.search_index(minimal=True, org="Test Org")`
			`self.assertGreater(len(minimal_org), 0)`
			`for event in minimal_org:`
			`self.assertEqual(event["orgc_uuid"], self.test_org.uuid)`

			`# Search by org name with different case`
			`minimal_org_lower = self.user_misp_connector.search_index(minimal=True, org="test org")`
			`self.assertGreater(len(minimal_org), 0)`
			`for event in minimal_org:`
			`self.assertEqual(event["orgc_uuid"], self.test_org.uuid)`

chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`# Search by non exists org name`
			`minimal_org_non_existing = self.user_misp_connector.search_index(minimal=True, org="Test Org that doesn't exists")`
			`self.assertEqual(len(minimal_org_non_existing), 0)`

chg: [test] Tests for event index 2021-10-15 09:32:54 +02:00			`# Search by org uuid`
			`minimal_org_uuid = self.user_misp_connector.search_index(minimal=True, org=self.test_org.uuid)`
			`self.assertGreater(len(minimal_org), 0)`
			`for event in minimal_org:`
			`self.assertEqual(event["orgc_uuid"], self.test_org.uuid)`

chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`# Search by non existing uuid`
			`minimal_org_uuid_non_existing = self.user_misp_connector.search_index(minimal=True, org=uuid.uuid4())`
			`self.assertEqual(len(minimal_org_uuid_non_existing), 0)`

chg: [test] Tests for event index 2021-10-15 09:32:54 +02:00			`# Search by org ID`
			`minimal_org_id = self.user_misp_connector.search_index(minimal=True, org=self.test_org.id)`
			`self.assertGreater(len(minimal_org), 0)`
			`for event in minimal_org:`
			`self.assertEqual(event["orgc_uuid"], self.test_org.uuid)`

			`self.assertEqual(len(minimal_org), len(minimal_org_lower))`
			`self.assertEqual(len(minimal_org), len(minimal_org_uuid))`
			`self.assertEqual(len(minimal_org), len(minimal_org_id))`

chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`# Search not by org`
			`minimal_org_not = self.user_misp_connector.search_index(minimal=True, org="!Test Org")`
chg: [test] Better tests for event index 2021-10-15 12:31:53 +02:00			`for event in minimal_org_not:`
			`self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)`
chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`minimal_org_lower_not = self.user_misp_connector.search_index(minimal=True, org="!test org")`
chg: [test] Better tests for event index 2021-10-15 12:31:53 +02:00			`for event in minimal_org_lower_not:`
			`self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)`
chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`minimal_org_uuid_not = self.user_misp_connector.search_index(minimal=True, org="!" + self.test_org.uuid)`
chg: [test] Better tests for event index 2021-10-15 12:31:53 +02:00			`for event in minimal_org_uuid_not:`
			`self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)`
chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00			`minimal_org_id_not = self.user_misp_connector.search_index(minimal=True, org="!" + self.test_org.id)`
chg: [test] Better tests for event index 2021-10-15 12:31:53 +02:00			`for event in minimal_org_id_not:`
			`self.assertNotEqual(event["orgc_uuid"], self.test_org.uuid)`
chg: [test] More tests for event index 2021-10-15 12:15:43 +02:00
			`self.assertEqual(len(minimal_org_not), len(minimal_org_lower_not))`
			`self.assertEqual(len(minimal_org_not), len(minimal_org_uuid_not))`
			`self.assertEqual(len(minimal_org_not), len(minimal_org_id_not))`

chg: [test] Tests for event index 2021-10-15 09:32:54 +02:00			`self.user_misp_connector.delete_event(event)`


			`if __name__ == '__main__':`
			`unittest.main()`