trufflehog/pkg/detectors/onedesk/onedesk.go

package onedesk

import (
	"context"
	"fmt"
	"io"
	"net/http"
	"strings"

	regexp "github.com/wasilibs/go-re2"

	"github.com/trufflesecurity/trufflehog/v3/pkg/common"
	"github.com/trufflesecurity/trufflehog/v3/pkg/detectors"
	"github.com/trufflesecurity/trufflehog/v3/pkg/pb/detectorspb"
)

type Scanner struct {
	detectors.DefaultMultiPartCredentialProvider
}

// Ensure the Scanner satisfies the interface at compile time.
var _ detectors.Detector = (*Scanner)(nil)

var (
	client = common.SaneHttpClient()

	// Make sure that your group is surrounded in boundary characters such as below to reduce false positives.
	emailPat = regexp.MustCompile(`\b([a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.[a-z]+)\b`)
	pwordPat = regexp.MustCompile(detectors.PrefixRegex([]string{"onedesk"}) + `\b([a-zA-Z0-9!=@#$%^]{8,64})`)
)

// Keywords are used for efficiently pre-filtering chunks.
// Use identifiers in the secret preferably, or the provider name.
func (s Scanner) Keywords() []string {
	return []string{"onedesk"}
}

// FromData will find and optionally verify Onedesk secrets in a given set of bytes.
func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (results []detectors.Result, err error) {
	dataStr := string(data)

	matches := emailPat.FindAllStringSubmatch(dataStr, -1)
	pwordMatches := pwordPat.FindAllStringSubmatch(dataStr, -1)

	for _, match := range matches {
		if len(match) != 2 {
			continue
		}
		resMatch := strings.TrimSpace(match[1])
		for _, pwordMatch := range pwordMatches {
			if len(pwordMatch) != 2 {
				continue
			}
			resPword := strings.TrimSpace(pwordMatch[1])

			s1 := detectors.Result{
				DetectorType: detectorspb.DetectorType_Onedesk,
				Raw:          []byte(resMatch),
			}

			if verify {
				payload := strings.NewReader(fmt.Sprintf(`{"email": "%s", "password": "%s"}`, resMatch, resPword))
				req, err := http.NewRequestWithContext(ctx, "POST", "https://app.onedesk.com/rest/2.0/login/loginUser", payload)
				if err != nil {
					continue
				}
				req.Header.Add("Content-Type", "application/json")
				res, err := client.Do(req)
				if err == nil {
					defer res.Body.Close()
					bodyBytes, err := io.ReadAll(res.Body)
					if err != nil {
						continue
					}
					body := string(bodyBytes)
					if res.StatusCode >= 200 && res.StatusCode < 300 && strings.Contains(body, `"code":"SUCCESS"`) {
						s1.Verified = true
					}
				}
			}

			results = append(results, s1)
		}
	}
	return results, nil
}

func (s Scanner) Type() detectorspb.DetectorType {
	return detectorspb.DetectorType_Onedesk
}
added onedesk detector 2022-01-19 06:19:10 +00:00			`package onedesk`

			`import (`
			`"context"`
			`"fmt"`
[chore] - ioutil.ReadFile is deprecated (#753) * Use os.ReadFile. * Update imports. * remove unused import. 2022-08-30 16:41:12 +00:00			`"io"`
added onedesk detector 2022-03-10 06:22:27 +00:00			`"net/http"`
added onedesk detector 2022-01-19 06:19:10 +00:00			`"strings"`

[feat] - Optimize detector performance by reducing data passed to regex (#2812) * optimize maching detetors * update method name * updates * update naming * updates * update comment * updates * remove testcase * update default match len to 512 * update * update test * add support for multpart cred provider * add ability to scan entire chunk * encapsulate matches logic within FindDetectorMatches * use []byte directly * nil chunk data * use []byte * set hidden flag to true * remove * [refactor] - multi part detectors (#2906) * Detectors beginning w/ a * Detectors beginning w/ b * Detectors beginning w/ c * Detectors beginning w/ d * Detectors beginning w/ e * Detectors beginning w/ f * Detectors beginning w/ f&g * fix * Detectors beginning w/ i-l * Detectors beginning w/ m-p * Detectors beginning w/ r-s * Detectors beginning w/ t * Detectors beginning w/ u-z * revert alconst * remaining fixes * lint * [feat] - Add Support for `compareDetectionStrategies` Mode (#2918) * Detector comparison mode * remove else * return error if results dont match * update default hidden flag to not scan entire chunks * fix tests * enhance encapsulation by including methods on DetectorMatch to handle merging and extracting * remove space * fix * update detector * updates * remove else * run comparison concurrently 2024-06-05 20:28:19 +00:00			`regexp "github.com/wasilibs/go-re2"`

module v3 2022-02-10 18:54:33 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/common"`
			`"github.com/trufflesecurity/trufflehog/v3/pkg/detectors"`
			`"github.com/trufflesecurity/trufflehog/v3/pkg/pb/detectorspb"`
added onedesk detector 2022-01-19 06:19:10 +00:00			`)`

[feat] - Optimize detector performance by reducing data passed to regex (#2812) * optimize maching detetors * update method name * updates * update naming * updates * update comment * updates * remove testcase * update default match len to 512 * update * update test * add support for multpart cred provider * add ability to scan entire chunk * encapsulate matches logic within FindDetectorMatches * use []byte directly * nil chunk data * use []byte * set hidden flag to true * remove * [refactor] - multi part detectors (#2906) * Detectors beginning w/ a * Detectors beginning w/ b * Detectors beginning w/ c * Detectors beginning w/ d * Detectors beginning w/ e * Detectors beginning w/ f * Detectors beginning w/ f&g * fix * Detectors beginning w/ i-l * Detectors beginning w/ m-p * Detectors beginning w/ r-s * Detectors beginning w/ t * Detectors beginning w/ u-z * revert alconst * remaining fixes * lint * [feat] - Add Support for `compareDetectionStrategies` Mode (#2918) * Detector comparison mode * remove else * return error if results dont match * update default hidden flag to not scan entire chunks * fix tests * enhance encapsulation by including methods on DetectorMatch to handle merging and extracting * remove space * fix * update detector * updates * remove else * run comparison concurrently 2024-06-05 20:28:19 +00:00			`type Scanner struct {`
			`detectors.DefaultMultiPartCredentialProvider`
			`}`
added onedesk detector 2022-01-19 06:19:10 +00:00
Clean up comments. (#562) 2022-05-16 16:03:10 +00:00			`// Ensure the Scanner satisfies the interface at compile time.`
added onedesk detector 2022-01-19 06:19:10 +00:00			`var _ detectors.Detector = (*Scanner)(nil)`

			`var (`
			`client = common.SaneHttpClient()`

Clean up comments. (#562) 2022-05-16 16:03:10 +00:00			`// Make sure that your group is surrounded in boundary characters such as below to reduce false positives.`
added onedesk detector 2022-01-19 06:19:10 +00:00			emailPat = regexp.MustCompile(`\b([a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.[a-z]+)\b`)
			pwordPat = regexp.MustCompile(detectors.PrefixRegex([]string{"onedesk"}) + `\b([a-zA-Z0-9!=@#$%^]{8,64})`)
			`)`

			`// Keywords are used for efficiently pre-filtering chunks.`
			`// Use identifiers in the secret preferably, or the provider name.`
			`func (s Scanner) Keywords() []string {`
			`return []string{"onedesk"}`
			`}`

			`// FromData will find and optionally verify Onedesk secrets in a given set of bytes.`
			`func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (results []detectors.Result, err error) {`
			`dataStr := string(data)`

			`matches := emailPat.FindAllStringSubmatch(dataStr, -1)`
			`pwordMatches := pwordPat.FindAllStringSubmatch(dataStr, -1)`

			`for _, match := range matches {`
			`if len(match) != 2 {`
			`continue`
			`}`
			`resMatch := strings.TrimSpace(match[1])`
			`for _, pwordMatch := range pwordMatches {`
			`if len(pwordMatch) != 2 {`
			`continue`
			`}`
			`resPword := strings.TrimSpace(pwordMatch[1])`

			`s1 := detectors.Result{`
			`DetectorType: detectorspb.DetectorType_Onedesk,`
			`Raw: []byte(resMatch),`
			`}`

			`if verify {`
			payload := strings.NewReader(fmt.Sprintf(`{"email": "%s", "password": "%s"}`, resMatch, resPword))
check request errors 2022-03-23 23:42:34 +00:00			`req, err := http.NewRequestWithContext(ctx, "POST", "https://app.onedesk.com/rest/2.0/login/loginUser", payload)`
			`if err != nil {`
			`continue`
			`}`
added onedesk detector 2022-01-19 06:19:10 +00:00			`req.Header.Add("Content-Type", "application/json")`
			`res, err := client.Do(req)`
			`if err == nil {`
			`defer res.Body.Close()`
[chore] - ioutil.ReadFile is deprecated (#753) * Use os.ReadFile. * Update imports. * remove unused import. 2022-08-30 16:41:12 +00:00			`bodyBytes, err := io.ReadAll(res.Body)`
Detector improvements (#125) * New tokens and endpoints (#115) Co-authored-by: dmarquero <danee.arquero@gmail.com> 2022-04-03 18:20:09 +00:00			`if err != nil {`
			`continue`
			`}`
added onedesk detector 2022-01-19 06:19:10 +00:00			`body := string(bodyBytes)`
detector improvements 2022-03-22 16:12:31 +00:00			if res.StatusCode >= 200 && res.StatusCode < 300 && strings.Contains(body, `"code":"SUCCESS"`) {
added onedesk detector 2022-01-19 06:19:10 +00:00			`s1.Verified = true`
			`}`
			`}`
			`}`

			`results = append(results, s1)`
			`}`
			`}`
[THOG-793] - Return all unverified results (#856) * Remove the check to filter and return only a single unverified result. * Revert "Remove the check to filter and return only a single unverified result." This reverts commit 494e432803e6389804d6f55b9444dcba62b81ffc. * Add new CLI flag to filter unverified results. 2022-10-31 16:36:10 +00:00			`return results, nil`
added onedesk detector 2022-01-19 06:19:10 +00:00			`}`
Add Type() to detector interface (#1088) * Add Type() to detector interface The goal here is to allow the detector type information to be used without the need for reflection. This could possibly allow us to more easily inject information into detectors or filter them out if necessary. Co-authored-by: ahmed <ahmed.zahran@trufflesec.com> * remove test detector --------- Co-authored-by: ahmed <ahmed.zahran@trufflesec.com> 2023-02-09 22:46:03 +00:00
			`func (s Scanner) Type() detectorspb.DetectorType {`
			`return detectorspb.DetectorType_Onedesk`
			`}`