mirror of https://github.com/MISP/PyMISP
new: Better handling of delete(d) attributes
* Hard delete on attribute * Get the deleted attributes within an eventpull/464/head
Raphaël Vinot
parent
266b7abfcd
commit
7324ae72e6
|
|
@ -446,7 +446,7 @@ class PyMISP(object): # pragma: no cover
|
||||||
url = urljoin(self.root_url, 'attributes/delete/{}/1'.format(attribute_id))
|
url = urljoin(self.root_url, 'attributes/delete/{}/1'.format(attribute_id))
|
||||||
else:
|
else:
|
||||||
url = urljoin(self.root_url, 'attributes/delete/{}'.format(attribute_id))
|
url = urljoin(self.root_url, 'attributes/delete/{}'.format(attribute_id))
|
||||||
response = self._prepare_request('GET', url)
|
response = self._prepare_request('POST', url)
|
||||||
return self._check_response(response)
|
return self._check_response(response)
|
||||||
|
|
||||||
@deprecated(reason="Use ExpandedPyMISP.push_event_to_ZMQ", action='default')
|
@deprecated(reason="Use ExpandedPyMISP.push_event_to_ZMQ", action='default')
|
||||||
|
|
|
||||||
|
|
@ -154,7 +154,9 @@ class ExpandedPyMISP(PyMISP):
|
||||||
|
|
||||||
def update_misp(self):
|
def update_misp(self):
|
||||||
response = self._prepare_request('POST', '/servers/update')
|
response = self._prepare_request('POST', '/servers/update')
|
||||||
|
if self._old_misp((2, 4, 116), '2020-01-01', sys._getframe().f_code.co_name):
|
||||||
return self._check_response(response, lenient_response_type=True)
|
return self._check_response(response, lenient_response_type=True)
|
||||||
|
return self._check_response(response, expect_json=True)
|
||||||
|
|
||||||
def set_server_setting(self, setting: str, value: Union[str, int, bool], force: bool=False):
|
def set_server_setting(self, setting: str, value: Union[str, int, bool], force: bool=False):
|
||||||
data = {'value': value, 'force': force}
|
data = {'value': value, 'force': force}
|
||||||
|
|
@ -190,10 +192,14 @@ class ExpandedPyMISP(PyMISP):
|
||||||
to_return.append(e)
|
to_return.append(e)
|
||||||
return to_return
|
return to_return
|
||||||
|
|
||||||
def get_event(self, event: Union[MISPEvent, int, str, UUID], pythonify: bool=False):
|
def get_event(self, event: Union[MISPEvent, int, str, UUID], deleted: [bool, int, list]=False, pythonify: bool=False):
|
||||||
'''Get an event from a MISP instance'''
|
'''Get an event from a MISP instance'''
|
||||||
event_id = self.__get_uuid_or_id_from_abstract_misp(event)
|
event_id = self.__get_uuid_or_id_from_abstract_misp(event)
|
||||||
event = self._prepare_request('GET', f'events/{event_id}')
|
if deleted:
|
||||||
|
data = {'deleted': deleted}
|
||||||
|
event = self._prepare_request('POST', f'events/view/{event_id}', data=data)
|
||||||
|
else:
|
||||||
|
event = self._prepare_request('GET', f'events/view/{event_id}')
|
||||||
event = self._check_response(event, expect_json=True)
|
event = self._check_response(event, expect_json=True)
|
||||||
if not (self.global_pythonify or pythonify) or 'errors' in event:
|
if not (self.global_pythonify or pythonify) or 'errors' in event:
|
||||||
return event
|
return event
|
||||||
|
|
@ -423,10 +429,13 @@ class ExpandedPyMISP(PyMISP):
|
||||||
a.from_dict(**updated_attribute)
|
a.from_dict(**updated_attribute)
|
||||||
return a
|
return a
|
||||||
|
|
||||||
def delete_attribute(self, attribute: Union[MISPAttribute, int, str, UUID]):
|
def delete_attribute(self, attribute: Union[MISPAttribute, int, str, UUID], hard: bool=False):
|
||||||
'''Delete an attribute from a MISP instance'''
|
'''Delete an attribute from a MISP instance'''
|
||||||
attribute_id = self.__get_uuid_or_id_from_abstract_misp(attribute)
|
attribute_id = self.__get_uuid_or_id_from_abstract_misp(attribute)
|
||||||
response = self._prepare_request('POST', f'attributes/delete/{attribute_id}')
|
data = {}
|
||||||
|
if hard:
|
||||||
|
data['hard'] = 1
|
||||||
|
response = self._prepare_request('POST', f'attributes/delete/{attribute_id}', data=data)
|
||||||
response = self._check_response(response, expect_json=True)
|
response = self._check_response(response, expect_json=True)
|
||||||
if ('errors' in response and response['errors'][0] == 403
|
if ('errors' in response and response['errors'][0] == 403
|
||||||
and response['errors'][1]['message'] == 'You do not have permission to do that.'):
|
and response['errors'][1]['message'] == 'You do not have permission to do that.'):
|
||||||
|
|
|
||||||
|
|
@ -1503,16 +1503,23 @@ class TestComprehensive(unittest.TestCase):
|
||||||
attribute = self.user_misp_connector.update_attribute({'comment': 'blah'}, second.attributes[0].id)
|
attribute = self.user_misp_connector.update_attribute({'comment': 'blah'}, second.attributes[0].id)
|
||||||
self.assertTrue(isinstance(attribute, MISPShadowAttribute), attribute)
|
self.assertTrue(isinstance(attribute, MISPShadowAttribute), attribute)
|
||||||
self.assertEqual(attribute.value, second.attributes[0].value)
|
self.assertEqual(attribute.value, second.attributes[0].value)
|
||||||
|
second = self.admin_misp_connector.get_event(second, pythonify=True)
|
||||||
|
self.assertEqual(len(second.attributes), 3)
|
||||||
# Delete attribute owned by someone else
|
# Delete attribute owned by someone else
|
||||||
response = self.user_misp_connector.delete_attribute(second.attributes[1])
|
response = self.user_misp_connector.delete_attribute(second.attributes[1])
|
||||||
self.assertTrue(response['success'])
|
self.assertTrue(response['success'])
|
||||||
# Delete attribute owned by user
|
# Delete attribute owned by user
|
||||||
response = self.admin_misp_connector.delete_attribute(second.attributes[1])
|
response = self.admin_misp_connector.delete_attribute(second.attributes[1])
|
||||||
self.assertEqual(response['message'], 'Attribute deleted.')
|
self.assertEqual(response['message'], 'Attribute deleted.')
|
||||||
|
# Hard delete
|
||||||
|
response = self.admin_misp_connector.delete_attribute(second.attributes[0], hard=True)
|
||||||
|
self.assertEqual(response['message'], 'Attribute deleted.')
|
||||||
|
new_second = self.admin_misp_connector.get_event(second, deleted=[0, 1], pythonify=True)
|
||||||
|
self.assertEqual(len(new_second.attributes), 2)
|
||||||
|
|
||||||
# Test attribute*S*
|
# Test attribute*S*
|
||||||
attributes = self.admin_misp_connector.attributes()
|
attributes = self.admin_misp_connector.attributes()
|
||||||
self.assertEqual(len(attributes), 7)
|
self.assertEqual(len(attributes), 6)
|
||||||
# attributes = self.user_misp_connector.attributes()
|
# attributes = self.user_misp_connector.attributes()
|
||||||
# self.assertEqual(len(attributes), 5)
|
# self.assertEqual(len(attributes), 5)
|
||||||
# Test event*S*
|
# Test event*S*
|
||||||
|
|
@ -1555,7 +1562,7 @@ class TestComprehensive(unittest.TestCase):
|
||||||
r = self.admin_misp_connector.update_user({'email': 'testusr@user.local'}, self.test_usr)
|
r = self.admin_misp_connector.update_user({'email': 'testusr@user.local'}, self.test_usr)
|
||||||
|
|
||||||
def test_live_acl(self):
|
def test_live_acl(self):
|
||||||
missing_acls = self.admin_misp_connector.remote_acl
|
missing_acls = self.admin_misp_connector.remote_acl()
|
||||||
self.assertEqual(missing_acls, [], msg=missing_acls)
|
self.assertEqual(missing_acls, [], msg=missing_acls)
|
||||||
|
|
||||||
def test_roles(self):
|
def test_roles(self):
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue