[DEPLOY] v0.5.6 - Credential authentication, JSONDecode error bug fix…

…es. FalconDebug. (#244) * Fixed JSONDecode error on no content. Closes #238. * Updated to expand code coverage for new code paths * Add debug.py to linting workflow * Refactor, new functionality and linting. * Startup utility for the interactive debugger * debug.py is now reviewed for linting issues. * Debugger is now available directly from the module * Fix for debugger imports when loaded in the module * Adjusted IDP unit test to decode responses * Data type fix * RTR session test is a bit flaky on multi-execution * Data type fix * Third times the charm * Skip Session connect when not a 3.9 runner * Added list_modules method * Comment cleanup * Added class types diagram * Update README.md * Update README.md * Fix typo * Update README.md * Update README.md * Bump version -> 0.5.6 * Unit test adjustment to resolve revocation failure * Fix typo * Fix typo * Service class custom attributes fix. Closes #242. * Unit test adjustment to combat flakiness. * Added project_urls to package metadata
CrowdStrike · Aug 6, 2021 · 30388bb · 30388bb
1 parent ec4d3a5
commit 30388bb
Show file tree

Hide file tree

Showing 18 changed files with 345 additions and 119 deletions.
diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml
@@ -30,7 +30,7 @@ jobs:
     - name: Lint package source with pylint
       run: |
         # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-        pylint src/falconpy --max-line-length=127 --disable=R0801 --ignore=debug.py
+        pylint src/falconpy --max-line-length=127 --disable=R0801
     - name: Lint samples with pylint
       run: |
         # NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE! NOTE!

diff --git a/README.md b/README.md
@@ -1,49 +1,34 @@
 ![CrowdStrike Falcon](https://raw.githubusercontent.com/CrowdStrike/falconpy/main/docs/asset/cs-logo.png) [![Twitter URL](https://img.shields.io/twitter/url?label=Follow%20%40CrowdStrike&style=social&url=https%3A%2F%2Ftwitter.com%2FCrowdStrike)](https://twitter.com/CrowdStrike)<br/>
 
-# FalconPy - The CrowdStrike Falcon SDK for Python 3
+# FalconPy<BR/>*The CrowdStrike Falcon SDK for Python 3*
 ![PyPI - Implementation](https://img.shields.io/pypi/implementation/crowdstrike-falconpy)
 ![PyPI - Python Version](https://img.shields.io/pypi/pyversions/crowdstrike-falconpy)
 [![CodeQL](https://github.com/CrowdStrike/falconpy/actions/workflows/codeql-analysis.yml/badge.svg)](https://github.com/CrowdStrike/falconpy/actions/workflows/codeql-analysis.yml)
 ![CI Test Coverage](https://raw.githubusercontent.com/CrowdStrike/falconpy/main/tests/coverage.svg)
 ![Maintained](https://img.shields.io/maintenance/yes/2021)<br/>
 The FalconPy SDK contains a collection of Python classes that abstract CrowdStrike Falcon OAuth2 API interaction, removing duplicative code and allowing developers to focus on just the logic of their solution requirements.
 
-This SDK provides two distinct methods for interacting with CrowdStrike's Falcon OAuth2 APIs:
-  * ***Service classes***, representing a single service collection, with methods defined for every available operation.
-  * ***The Uber class***, which provides a single harness for interacting with the entire API, covering every available operation within every service collection.
+## Table of Contents
++ [Overview](#overview)
+    - [Service classes](#service-classes)
+    - [The Uber class](#the-uber-class)
++ [Installation & Removal](#installation--removal)
++ [Support & Community Forums](#support--community-forums)
++ [Documentation & Collateral](#documentation--collateral)
 
-## Installation & Removal
-![PyPI - Status](https://img.shields.io/pypi/status/crowdstrike-falconpy)
-![PyPI](https://img.shields.io/pypi/v/crowdstrike-falconpy)
-![PyPI - Wheel](https://img.shields.io/pypi/wheel/crowdstrike-falconpy) 
-![PyPI - Downloads](https://img.shields.io/pypi/dm/crowdstrike-falconpy)
-![CI Tests](https://github.com/CrowdStrike/falconpy/workflows/Python%20package/badge.svg)
-[![Pylint](https://github.com/CrowdStrike/falconpy/actions/workflows/pylint.yml/badge.svg)](https://github.com/CrowdStrike/falconpy/actions/workflows/pylint.yml)<br/>
-Stable releases of FalconPy are available on the Python Package Index:
-```shell
-python3 -m pip install crowdstrike-falconpy
-```
+## Overview
+This SDK provides two distinct methods for interacting with CrowdStrike's Falcon OAuth2 APIs, Service classes and the Uber class.
+![Class Types](docs/asset/class_types.png)
 
-If you'd like to try the *absolute bleeding edge*, an automated GitHub action releases a test package with every merged pull request containing the string
-`[DEPLOY]` in the head of the commit. 
+### Service classes
+Representing a single API service collection, each service class has a method defined for every operation available in that service collection.
 
-To install this testing version of the package, use the command:
-```shell
-python3 -m pip install -i https://test.pypi.org/simple crowdstrike-falconpy
-```
-
-To uninstall and remove FalconPy:
-```shell
-python3 -m pip uninstall crowdstrike-falconpy
-```
-
-# Service classes
-| OAuth2-Based API<br>*(CrowdStrike documentation, requires CrowdStrike customer login)* | Code Location |
+| OAuth2-Based API<br>![#f03c15](https://via.placeholder.com/10/f03c15/000000?text=+)<small> *Documentation requires a CrowdStrike customer login*</small> | Code Location |
 |:-|:-|
 | CrowdStrike Device Control API | [device_control_policies.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/device_control_policies.py) |
 | CrowdStrike Sensor Policy Management API | [sensor_update_policy.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/sensor_update_policy.py) |
 | CrowdStrike Custom Indicators of Attack (IOAs) APIs | [custom_ioa.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/custom_ioa.py) <br/> [ioa_exclusions.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/ioa_exclusions.py)|
-| [CrowdStrike Custom Indicators of Compromise (IOCs) API](https://falcon.crowdstrike.com/support/documentation/88/custom-ioc-apis) | [ioc.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/ioc.py) <BR/> [iocs.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/iocs.py) [Deprecated] |
+| [CrowdStrike Custom Indicators of Compromise (IOCs) API](https://falcon.crowdstrike.com/support/documentation/88/custom-ioc-apis) | [ioc.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/ioc.py) <BR/> [iocs.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/iocs.py) ![#f03c15](https://via.placeholder.com/10/f03c15/000000?text=+) <small>*[Deprecated]*</small> |
 | [CrowdStrike Detections API](https://falcon.crowdstrike.com/support/documentation/85/detection-and-prevention-policies-apis) | [detects.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/detects.py) |
 | [CrowdStrike Event Streams API](https://falcon.crowdstrike.com/support/documentation/89/event-streams-apis)| [event_streams.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/event_streams.py) |
 | [CrowdStrike Falcon Horizon API](https://falcon.crowdstrike.com/support/documentation/137/falcon-horizon-apis) | [cspm_registration.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/cspm_registration.py) |
@@ -75,11 +60,38 @@ python3 -m pip uninstall crowdstrike-falconpy
 | [Falcon Discover for Cloud and Containers - GCP Projects API](https://falcon.crowdstrike.com/support/documentation/117/falcon-discover-for-cloud-and-containers-gcp-projects-apis) | [d4c_registration.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/d4c_registration.py) |
 | [CrowdStrike Falcon Zero Trust Assessment API](https://falcon.crowdstrike.com/support/documentation/156/zero-trust-assessment-apis) | [zero_trust_assessment.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/zero_trust_assessment.py) |
 
-# The Uber class
-+ [api_complete.py](./src/falconpy/api_complete.py) - The Uber class provides an interface to all CrowdStrike APIs with a single handler. 
+### The Uber class
+Provides a single harness for interacting with the entire API, covering every available operation within every API service collection.
+
+[api_complete.py](https://github.com/CrowdStrike/falconpy/blob/main/src/falconpy/api_complete.py) - The Uber class provides an interface to all CrowdStrike APIs with a single handler. 
 This solution supports communicating with API endpoints that do not have an available Service Class or are recently released.
 
-# Contributing
+## Installation & Removal
+![PyPI - Status](https://img.shields.io/pypi/status/crowdstrike-falconpy)
+![PyPI](https://img.shields.io/pypi/v/crowdstrike-falconpy)
+![PyPI - Wheel](https://img.shields.io/pypi/wheel/crowdstrike-falconpy) 
+![PyPI - Downloads](https://img.shields.io/pypi/dm/crowdstrike-falconpy)
+![CI Tests](https://github.com/CrowdStrike/falconpy/workflows/Python%20package/badge.svg)
+[![Pylint](https://github.com/CrowdStrike/falconpy/actions/workflows/pylint.yml/badge.svg)](https://github.com/CrowdStrike/falconpy/actions/workflows/pylint.yml)<br/>
+Stable releases of FalconPy are available on the Python Package Index:
+```shell
+python3 -m pip install crowdstrike-falconpy
+```
+
+If you'd like to try the *absolute bleeding edge*, an automated GitHub action releases a test package with every merged pull request containing the string
+`[DEPLOY]` in the head of the commit. 
+
+To install this testing version of the package, use the command:
+```shell
+python3 -m pip install -i https://test.pypi.org/simple crowdstrike-falconpy
+```
+
+To uninstall and remove FalconPy:
+```shell
+python3 -m pip uninstall crowdstrike-falconpy
+```
+
+## Contributing
 There are *many* ways you can contribute to the FalconPy project!
   * ***Providing feedback*** by opening a GitHub ticket. Even a fly-by "Hey, this worked!" is appreciated and helps validate approaches. Ideas on improving the project are most welcome.
   * ***Documenting, blogging, or creating videos***, of how you've used FalconPy! This type of content is *invaluable* and helps communities grow. Open a pull request for inclusion in the [Documentation and Collateral](https://github.com/CrowdStrike/falconpy#documentation-and-collateral) section.
@@ -90,7 +102,7 @@ There are *many* ways you can contribute to the FalconPy project!
 
 Open to do something else but not sure where to start? Try [opening an issue](https://github.com/CrowdStrike/falconpy/issues/new), or posting a topic in our [discussion board](https://github.com/CrowdStrike/falconpy/discussions), to introduce yourself and your interests. We look forward to chatting with you!
 
-# Support & Community Forums
+## Support & Community Forums
 FalconPy is an open source project, not a formal CrowdStrike product, to assist developers implement CrowdStrike's APIs within their applications. As such it carries no formal support, express or implied. 
 
 :fire: Is something going wrong? :fire:<br/>
@@ -104,16 +116,16 @@ GitHub Discussions provide the community with means to communicate. There are fo
   * :raised_hands: [**Show and Tell**](https://github.com/CrowdStrike/falconpy/discussions?discussions_q=category%3A%22Show+and+tell%22): Share with the community what you're up to! Perhaps this is letting everyone know about your upcoming conference talk, share a project that has embedded FalconPy, or your recent blog.
 
 
-# Documentation and Collateral
+## Documentation & Collateral
 
-## Official Project Documentation
+### Official Project Documentation
 See the wiki for extended documentation: [https://github.com/CrowdStrike/falconpy/wiki](https://github.com/CrowdStrike/falconpy/wiki).
 
-## Videos (Tutorials, Trainings, Overviews)
+### Videos (Tutorials, Trainings, Overviews)
 *Coming soon*.
 
-## Conference Presentations
+### Conference Presentations
 [![API Office Hour 03.23.21](https://raw.githubusercontent.com/CrowdStrike/falconpy/main/docs/asset/api_office_hour_preso_thumbnail.png)](https://raw.githubusercontent.com/CrowdStrike/falconpy/main/docs/asset/falconpy-api-office-hour_customer_presentation.pdf?raw=true)
 
-## Blogs/Articles/Prose
+### Blogs/Articles/Prose
 *Coming soon*.
diff --git a/docs/asset/class_types.png b/docs/asset/class_types.png
diff --git a/setup.py b/setup.py
@@ -69,6 +69,11 @@
     long_description=long_description,
     long_description_content_type="text/markdown",
     url=_PROJECT_URL,
+    project_urls = {
+        "Documentation": "https://www.falconpy.io",
+        "Source": "https://github.com/CrowdStrike/falconpy/tree/main/src/falconpy",
+        "Tracker": "https://github.com/CrowdStrike/falconpy/issues"
+    },
     packages=find_packages("src"),
     package_dir={"": "src"},
     py_modules=[splitext(basename(path))[0] for path in glob("src/*.py")],

diff --git a/src/falconpy/_service_class.py b/src/falconpy/_service_class.py
@@ -77,7 +77,12 @@ def __init__(self: object, auth_object: object = None,
             self.refreshable = True
         else:
             if creds:
-                auth_object = FalconAuth(creds=creds)
+                auth_object = FalconAuth(creds=creds,
+                                         base_url=base_url,
+                                         proxy=proxy,
+                                         ssl_verify=self.ssl_verify,
+                                         timeout=self.timeout
+                                         )
                 self.auth_object = auth_object
                 _ = self.auth_object.token()
                 if _["status_code"] == 201:

diff --git a/src/falconpy/_util.py b/src/falconpy/_util.py
@@ -38,6 +38,7 @@
 """
 import base64
 import functools
+from json.decoder import JSONDecodeError
 # pylint: disable=E0401  # Pylint might not have these in our path
 import requests
 import urllib3
@@ -241,6 +242,13 @@ def perform_request(endpoint: str = "", headers: dict = None, **kwargs) -> objec
                     returned = Result()(response.status_code, response.headers, response.json())
                 else:
                     returned = response.content
+            except JSONDecodeError:
+                # No response content, but a successful request was made
+                returned = generate_ok_result(
+                    message="No content returned",
+                    code=response.status_code,
+                    headers=response.headers
+                    )
             except Exception as err:  # pylint: disable=W0703  # General catch-all for anything coming out of requests
                 returned = generate_error_result(message=f"{str(err)}")
     else:
@@ -256,11 +264,12 @@ def generate_error_result(message: str = "An error has occurred. Check your payl
     return Result()(status_code=code, headers={}, body={"errors": [{"message": f"{message}"}], "resources": []})
 
 
-def generate_ok_result(message: str = "Request returned with success", code: int = 200) -> dict:
+def generate_ok_result(message: str = "Request returned with success", code: int = 200, **kwargs) -> dict:
     """
     Normalized OK messaging handler.
     """
-    return Result()(status_code=code, headers={}, body={"message": message, "resources": []})
+    return_headers = kwargs.get("headers", {})
+    return Result()(status_code=code, headers=return_headers, body={"message": message, "resources": []})
 
 
 def get_default(types: list, position: int):

diff --git a/src/falconpy/_version.py b/src/falconpy/_version.py
@@ -36,7 +36,7 @@
 
 For more information, please refer to <https://unlicense.org>
 """
-_VERSION = '0.5.5'
+_VERSION = '0.5.6'
 _MAINTAINER = 'Joshua Hiller'
 _AUTHOR = 'CrowdStrike'
 _AUTHOR_EMAIL = '[email protected]'

diff --git a/src/falconpy/api_complete.py b/src/falconpy/api_complete.py
@@ -9,7 +9,7 @@
 
 OAuth2 API - Customer SDK
 
-api_complete.py - All-in-one CrowdStrike Falcon OAuth2 API harness
+api_complete - All-in-one CrowdStrike Falcon OAuth2 API harness
 
 This is free and unencumbered software released into the public domain.