From dd2646a0f4399a14384552287530a6484b209900 Mon Sep 17 00:00:00 2001
From: Tristan METAYER <tristan.metayer@ssi.gouv.fr>
Date: Tue, 21 Feb 2017 16:48:09 +0100
Subject: [PATCH 1/2] Add lite Export module

---
 misp_modules/modules/export_mod/__init__.py   |  2 +-
 misp_modules/modules/export_mod/liteexport.py | 81 +++++++++++++++++++
 2 files changed, 82 insertions(+), 1 deletion(-)
 create mode 100755 misp_modules/modules/export_mod/liteexport.py

diff --git a/misp_modules/modules/export_mod/__init__.py b/misp_modules/modules/export_mod/__init__.py
index 69f1c001..ee457cff 100644
--- a/misp_modules/modules/export_mod/__init__.py
+++ b/misp_modules/modules/export_mod/__init__.py
@@ -1 +1 @@
-__all__ = ['testexport','cef_export']
+__all__ = ['testexport','cef_export','liteexport']
diff --git a/misp_modules/modules/export_mod/liteexport.py b/misp_modules/modules/export_mod/liteexport.py
new file mode 100755
index 00000000..c8e22512
--- /dev/null
+++ b/misp_modules/modules/export_mod/liteexport.py
@@ -0,0 +1,81 @@
+import json
+import base64
+
+misperrors = {'error': 'Error'}
+
+# possible module-types: 'expansion', 'hover' or both
+moduleinfo = {'version': '1', 
+			'author': 'TM',
+			'description': 'export lite',
+			'module-type': ['export']}
+
+# config fields that your code expects from the site admin
+moduleconfig = ["indent_json_export"]
+
+#~ mispattributes = {'input':'all'} ?
+mispattributes = {}
+outputFileExtension = "json"
+responseType = "application/json"
+
+def handler(q=False):
+	if q is False:
+		return False
+	request = json.loads(q)
+	if "config" in request:
+		config  = request["config"]
+	else:
+		config  = {"indent_json_export":None}
+
+	if 'data' not in request:
+		return False
+
+	liteEvent = {'Event':{}}
+
+	for evt in request['data']:
+		rawEvent = evt['Event']
+		liteEvent['Event']['info'] = rawEvent['info']
+		liteEvent['Event']['Attribute'] = []
+		
+		attrs = evt['Attribute']
+		for attr in attrs:
+			liteAttr = {}
+			liteAttr['category'] = attr['category']
+			liteAttr['type'] = attr['type']
+			liteAttr['value'] = attr['value']
+			liteEvent['Event']['Attribute'].append(liteAttr)
+
+	return {"response":[],
+			'data': str(base64.b64encode(
+				bytes(
+					json.dumps(liteEvent, indent=config['indent_json_export']),
+					'utf-8')),
+				'utf-8')
+			}
+
+def introspection():
+	modulesetup = {}
+	try:
+		responseType
+		modulesetup['responseType'] = responseType
+	except NameError:
+	  pass
+	try:
+		userConfig
+		modulesetup['userConfig'] = userConfig
+	except NameError:
+		pass
+	try:
+		outputFileExtension
+		modulesetup['outputFileExtension'] = outputFileExtension
+	except NameError:
+		pass
+	try:
+		inputSource
+		modulesetup['inputSource'] = inputSource
+	except NameError:
+		pass
+	return modulesetup
+
+def version():
+	moduleinfo['config'] = moduleconfig
+	return moduleinfo

From 20cb534203c2c02556bd349697433d0b56137267 Mon Sep 17 00:00:00 2001
From: Tristan METAYER <tristan.metayer@ssi.gouv.fr>
Date: Tue, 21 Feb 2017 17:12:17 +0100
Subject: [PATCH 2/2] Exclude internal reference

---
 misp_modules/modules/export_mod/liteexport.py | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/misp_modules/modules/export_mod/liteexport.py b/misp_modules/modules/export_mod/liteexport.py
index c8e22512..b22c3505 100755
--- a/misp_modules/modules/export_mod/liteexport.py
+++ b/misp_modules/modules/export_mod/liteexport.py
@@ -3,14 +3,14 @@ import base64
 
 misperrors = {'error': 'Error'}
 
-# possible module-types: 'expansion', 'hover' or both
 moduleinfo = {'version': '1', 
 			'author': 'TM',
 			'description': 'export lite',
 			'module-type': ['export']}
 
-# config fields that your code expects from the site admin
-moduleconfig = ["indent_json_export"]
+#~ config form admin site but do not work
+#~ moduleconfig = ["indent_json_export"]
+moduleconfig = []
 
 #~ mispattributes = {'input':'all'} ?
 mispattributes = {}
@@ -29,6 +29,7 @@ def handler(q=False):
 	if 'data' not in request:
 		return False
 
+	#~ Misp json structur
 	liteEvent = {'Event':{}}
 
 	for evt in request['data']:
@@ -38,11 +39,12 @@ def handler(q=False):
 		
 		attrs = evt['Attribute']
 		for attr in attrs:
-			liteAttr = {}
-			liteAttr['category'] = attr['category']
-			liteAttr['type'] = attr['type']
-			liteAttr['value'] = attr['value']
-			liteEvent['Event']['Attribute'].append(liteAttr)
+			if 'Internal reference' not in attr['category']:
+				liteAttr = {}
+				liteAttr['category'] = attr['category']
+				liteAttr['type'] = attr['type']
+				liteAttr['value'] = attr['value']
+				liteEvent['Event']['Attribute'].append(liteAttr)
 
 	return {"response":[],
 			'data': str(base64.b64encode(