# Copyright (C) 2020-2022 DigeeX
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
"""Flow class holding the information exchanged between server and client.
"""
from typing import List, Optional
import requests
from raider.config import Config
from raider.operations import Operation
from raider.plugins.common import Plugin
from raider.request import Request
from raider.user import User
[docs]class Flow:
"""Class dealing with the information exchange from HTTP communication.
A Flow object in Raider defines all the information about one
single HTTP information exchange. It contains one ``request``, the
``response``, the ``outputs`` that needs to be extracted from the
response, and a list of ``operations`` to be run when the exchange
is over.
Use this only when working with requests that *DON't* change the
authentication state. It's used in the :class:`Functions
<raider.functions.Functions>` class to run arbitrary actions when
it doesn't affect the authentication state.
Attributes:
request:
A :class:`Request <raider.request.Request>` object detailing the
HTTP request with its elements.
response:
A :class:`requests.model.Response` object. It's empty until the
request is sent. When the HTTP response arrives, it's stored
here.
outputs:
A list of :class:`Plugin <raider.plugins.Plugin>` objects
detailing the pieces of information to be extracted from the
response. Those will be later available for other Flow objects.
operations:
A list of :class:`Operation <raider.operations.Operation>`
objects to be executed after the response is received and
outputs are extracted. Should contain a :class:`Next
<raider.operations.Next>` operation if another Flow is
expected.
"""
[docs] def __init__(
self,
request: Request,
outputs: Optional[List[Plugin]] = None,
operations: Optional[List[Operation]] = None,
) -> None:
"""Initializes the Flow object.
Creates the Flow object with the associated Request, the outputs
to be extracted, and the operations to be run upon completion.
Args:
request:
A Request object associated with this Flow.
outputs:
A list of Plugins to be used for extracting data from the
response.
operations:
A list of Operations to be run after the response is
received.
"""
self.outputs = outputs
self.operations = operations
self.request = request
self.response: Optional[requests.models.Response] = None
self.pconfig = None
[docs] def print(self, spacing: int = 0) -> None:
print(" " * spacing + "\x1b[1;30;44m" + self.request + "\x1b[0m")
[docs] def execute(self, pconfig: Config) -> None:
"""Sends the request and extracts the outputs.
Given the user in context and the global Raider configuration,
sends the HTTP request and extracts the defined outputs.
Iterates through the defined outputs in the Flow object, and
extracts the data from the HTTP response, saving it in the
respective :class:`Plugin <raider.plugins.Plugin>` object.
Args:
user:
An object containing all the user specific data relevant for
this action.
config:
The global Raider configuration.
"""
self.pconfig = pconfig
self.response = self.request.send(pconfig)
if self.outputs:
for output in self.outputs:
if output.needs_response:
output.extract_value_from_response(self.response)
if output.name_not_known_in_advance:
output.extract_name_from_response(self.response)
elif output.depends_on_other_plugins:
for item in output.plugins:
item.get_value(pconfig)
output.get_value(pconfig)
[docs] def run_operations(self) -> Optional[str]:
"""Runs the defined :class:`operations <raider.operations.Operation>`.
Iterates through the defined ``operations`` and executes them
one by one. Iteration stops when the first :class:`Next
<raider.operations.Next>` operations is encountered.
Returns:
A string with the name of the next flow to run or None.
"""
next_flow = None
if self.operations:
for item in self.operations:
next_flow = item.run(self.pconfig, self.response)
if next_flow or isinstance(next_flow, bool):
break
return next_flow
@property
def logger(self):
return self.pconfig.logger