Source code for raider.flow

# Copyright (C) 2021 DigeeX
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# GNU General Public License for more details.
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <>.

"""Flow class holding the information exchanged between server and client.

import logging
from typing import List, Optional

import requests

from raider.config import Config
from raider.operations import Operation
from raider.plugins.common import Plugin
from raider.request import Request
from raider.user import User

[docs]class Flow: """Class dealing with the information exchange from HTTP communication. A Flow object in Raider defines all the information about one single HTTP information exchange. It has a ``name``, contains one ``request``, the ``response``, the ``outputs`` that needs to be extracted from the response, and a list of ``operations`` to be run when the exchange is over. Flow objects are used as states in the :class:`Authentication <raider.authentication.Authentication>` class to define the authentication process as a finite state machine. It's also used in the :class:`Functions <raider.functions.Functions>` class to run arbitrary actions when it doesn't affect the authentication state. Attributes: name: A string used as a unique identifier for the defined Flow. request: A :class:`Request <raider.request.Request>` object detailing the HTTP request with its elements. response: A :class:`requests.model.Response` object. It's empty until the request is sent. When the HTTP response arrives, it's stored here. outputs: A list of :class:`Plugin <raider.plugins.Plugin>` objects detailing the pieces of information to be extracted from the response. Those will be later available for other Flow objects. operations: A list of :class:`Operation <raider.operations.Operation>` objects to be executed after the response is received and outputs are extracted. Should contain a :class:`NextStage <raider.operations.NextStage>` operation if another Flow is expected. logger: A :class:`logging.RootLogger` object used for debugging. """ def __init__( self, name: str, request: Request, outputs: List[Plugin] = None, operations: List[Operation] = None, ) -> None: """Initializes the Flow object. Creates the Flow object with the associated Request, the outputs to be extracted, and the operations to be run upon completion. Args: name: A string with a unique identifier for this Flow. request: A Request object associated with this Flow. outputs: A list of Plugins to be used for extracting data from the response. operations: A list of Operations to be run after the response is received. """ = name self.outputs = outputs self.operations = operations self.request = request self.response: requests.models.Response = None self.logger = logging.getLogger(
[docs] def execute(self, user: User, config: Config) -> None: """Sends the request and extracts the outputs. Given the user in context and the global Raider configuration, sends the HTTP request and extracts the defined outputs. Iterates through the defined outputs in the Flow object, and extracts the data from the HTTP response, saving it in the respective :class:`Plugin <raider.plugins.Plugin>` object. Args: user: An object containing all the user specific data relevant for this action. config: The global Raider configuration. """ self.response = self.request.send(user, config) if self.outputs: for output in self.outputs: if output.needs_response: output.extract_value_from_response(self.response) if output.name_not_known_in_advance: output.extract_name_from_response(self.response) elif output.depends_on_other_plugins: for item in output.plugins: item.get_value(user.to_dict()) output.get_value(user.to_dict())
[docs] def get_plugin_values(self, user: User) -> None: """Given a user, get the plugins' values from it. Args: user: A :class:`User <raider.user.User>` object with the userdata. """ flow_inputs = self.request.list_inputs() if flow_inputs: for plugin in flow_inputs.values(): plugin.get_value(user.to_dict())
[docs] def run_operations(self) -> Optional[str]: """Runs the defined :class:`operations <raider.operations.Operation>`. Iterates through the defined ``operations`` and executes them one by one. Iteration stops when the first :class:`NextStage <raider.operations.NextStage>` operations is encountered. Returns: A string with the name of the next stage to run or None. """ next_stage = None if self.operations: for item in self.operations: next_stage = if next_stage: break return next_stage