inspec/lib/bundles/inspec-compliance/http.rb

# encoding: utf-8
# author: Christoph Hartmann
# author: Dominik Richter

require 'net/http'
require 'uri'

module Compliance
  # implements a simple http abstraction on top of Net::HTTP
  class HTTP
    # generic get requires
    def self.get(url, token, insecure, user, basic_auth = false, automate = nil, server_type) # rubocop:disable Metrics/ParameterLists
      uri = URI.parse(url)
      req = Net::HTTP::Get.new(uri.path)

      return send_request(uri, req, insecure) if token.nil?

      if server_type == 'automate'
        req.add_field('chef-delivery-enterprise', automate['ent'])
        if automate['token_type'] == 'dctoken'
          req.add_field('x-data-collector-token', token)
        else
          req.add_field('chef-delivery-user', user)
          req.add_field('chef-delivery-token', token)
        end
      elsif basic_auth
        req.basic_auth(token, '')
      else
        req['Authorization'] = "Bearer #{token}"
      end
      send_request(uri, req, insecure)
    end

    # generic post request
    def self.post(url, token, insecure, basic_auth = false)
      # form request
      uri = URI.parse(url)
      req = Net::HTTP::Post.new(uri.path)
      if basic_auth
        req.basic_auth token, ''
      else
        req['Authorization'] = "Bearer #{token}"
      end
      req.form_data={}

      send_request(uri, req, insecure)
    end

    # post a file
    def self.post_file(url, token, user, file_path, insecure, basic_auth = false, automate = nil, server_type) # rubocop:disable Metrics/ParameterLists
      uri = URI.parse(url)
      fail "Unable to parse URL: #{url}" if uri.nil? || uri.host.nil?
      http = Net::HTTP.new(uri.host, uri.port)

      # set connection flags
      http.use_ssl = (uri.scheme == 'https')
      http.verify_mode = OpenSSL::SSL::VERIFY_NONE if insecure

      req = Net::HTTP::Post.new(uri.path)
      if server_type == 'automate'
        req.add_field('chef-delivery-enterprise', automate['ent'])
        if automate['token_type'] == 'dctoken'
          req.add_field('x-data-collector-token', token)
        else
          req.add_field('chef-delivery-user', user)
          req.add_field('chef-delivery-token', token)
        end
      elsif basic_auth
        req.basic_auth token, ''
      else
        req['Authorization'] = "Bearer #{token}"
      end

      req.body_stream=File.open(file_path, 'rb')
      req.add_field('Content-Length', File.size(file_path))
      req.add_field('Content-Type', 'application/x-gtar')

      boundary = 'INSPEC-PROFILE-UPLOAD'
      req.add_field('session', boundary)
      res=http.request(req)
      res
    end

    # sends a http requests
    def self.send_request(uri, req, insecure)
      opts = {
        use_ssl: uri.scheme == 'https',
      }
      opts[:verify_mode] = OpenSSL::SSL::VERIFY_NONE if insecure

      fail "Unable to parse URI: #{uri}" if uri.nil? || uri.host.nil?
      res = Net::HTTP.start(uri.host, uri.port, opts) {|http|
        http.request(req)
      }
      res
    end
  end
end
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`# encoding: utf-8`
			`# author: Christoph Hartmann`
			`# author: Dominik Richter`

			`require 'net/http'`
			`require 'uri'`

			`module Compliance`
			`# implements a simple http abstraction on top of Net::HTTP`
			`class HTTP`
			`# generic get requires`
address comments Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-29 14:35:16 +00:00			`def self.get(url, token, insecure, user, basic_auth = false, automate = nil, server_type) # rubocop:disable Metrics/ParameterLists`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`uri = URI.parse(url)`
			`req = Net::HTTP::Get.new(uri.path)`

			`return send_request(uri, req, insecure) if token.nil?`

address comments Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-29 14:35:16 +00:00			`if server_type == 'automate'`
			`req.add_field('chef-delivery-enterprise', automate['ent'])`
			`if automate['token_type'] == 'dctoken'`
Extend inspec compliance cli to support automate backend Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-15 19:19:39 +00:00			`req.add_field('x-data-collector-token', token)`
			`else`
			`req.add_field('chef-delivery-user', user)`
			`req.add_field('chef-delivery-token', token)`
			`end`
			`elsif basic_auth`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`req.basic_auth(token, '')`
			`else`
			`req['Authorization'] = "Bearer #{token}"`
			`end`
			`send_request(uri, req, insecure)`
			`end`

			`# generic post request`
			`def self.post(url, token, insecure, basic_auth = false)`
			`# form request`
			`uri = URI.parse(url)`
			`req = Net::HTTP::Post.new(uri.path)`
			`if basic_auth`
			`req.basic_auth token, ''`
			`else`
			`req['Authorization'] = "Bearer #{token}"`
			`end`
			`req.form_data={}`

			`send_request(uri, req, insecure)`
			`end`

			`# post a file`
address comments Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-29 14:35:16 +00:00			`def self.post_file(url, token, user, file_path, insecure, basic_auth = false, automate = nil, server_type) # rubocop:disable Metrics/ParameterLists`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`uri = URI.parse(url)`
Raise error when an invalid URI is received 2016-09-05 12:30:33 +00:00			`fail "Unable to parse URL: #{url}" if uri.nil? \|\| uri.host.nil?`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`http = Net::HTTP.new(uri.host, uri.port)`

			`# set connection flags`
			`http.use_ssl = (uri.scheme == 'https')`
			`http.verify_mode = OpenSSL::SSL::VERIFY_NONE if insecure`

			`req = Net::HTTP::Post.new(uri.path)`
address comments Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-29 14:35:16 +00:00			`if server_type == 'automate'`
			`req.add_field('chef-delivery-enterprise', automate['ent'])`
			`if automate['token_type'] == 'dctoken'`
Extend inspec compliance cli to support automate backend Signed-off-by: Victoria Jeffrey <vjeffrey@chef.io> 2016-11-15 19:19:39 +00:00			`req.add_field('x-data-collector-token', token)`
			`else`
			`req.add_field('chef-delivery-user', user)`
			`req.add_field('chef-delivery-token', token)`
			`end`
			`elsif basic_auth`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`req.basic_auth token, ''`
			`else`
			`req['Authorization'] = "Bearer #{token}"`
			`end`

			`req.body_stream=File.open(file_path, 'rb')`
			`req.add_field('Content-Length', File.size(file_path))`
			`req.add_field('Content-Type', 'application/x-gtar')`

			`boundary = 'INSPEC-PROFILE-UPLOAD'`
			`req.add_field('session', boundary)`
			`res=http.request(req)`
			`res`
			`end`

			`# sends a http requests`
			`def self.send_request(uri, req, insecure)`
			`opts = {`
			`use_ssl: uri.scheme == 'https',`
			`}`
			`opts[:verify_mode] = OpenSSL::SSL::VERIFY_NONE if insecure`

Raise error when an invalid URI is received 2016-09-05 12:30:33 +00:00			`fail "Unable to parse URI: #{uri}" if uri.nil? \|\| uri.host.nil?`
fix: make the plugin compatible with all versions of chef compliance 2016-04-13 11:47:33 +00:00			`res = Net::HTTP.start(uri.host, uri.port, opts) {\|http\|`
			`http.request(req)`
			`}`
			`res`
			`end`
			`end`
			`end`