Skip to content

Commit

Permalink
migrate api alert to v7 version
Browse files Browse the repository at this point in the history
  • Loading branch information
Rakhi Mundhada authored and Rakhi Mundhada committed Mar 18, 2024
1 parent 8e5669c commit d298d75
Show file tree
Hide file tree
Showing 5 changed files with 48 additions and 38 deletions.
4 changes: 3 additions & 1 deletion collectors/carbonblack/collector.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -119,7 +119,9 @@ class CarbonblackCollector extends PawsCollector {
return callback(error.response.data);
}
else {
error.errorCode = error.response.status;
if (error.response) {
error.errorCode = error.response.status
}
return callback(error);
}
});
Expand Down
2 changes: 1 addition & 1 deletion collectors/carbonblack/package.json
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "carbonblack-collector",
"version": "1.0.52",
"version": "1.0.53",
"description": "Alert Logic AWS based Carbonblack Log Collector",
"repository": {},
"private": true,
Expand Down
21 changes: 12 additions & 9 deletions collectors/carbonblack/test/utils_test.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ describe('Unit Tests', function () {
alserviceStub.post = sinon.stub(RestServiceClient.prototype, 'post').callsFake(
function fakeFn(path, extraOptions) {
return new Promise(function (resolve, reject) {
return resolve({ results: [carbonblackMock.LOG_EVENT] });
return resolve({ results: [carbonblackMock.LOG_EVENT],num_found : 2500 });
});
});
alserviceStub.get = sinon.stub(RestServiceClient.prototype, 'get').callsFake(
Expand Down Expand Up @@ -70,17 +70,20 @@ describe('Unit Tests', function () {
url: "url",
method: "POST",
requestBody:{
"criteria": {
"create_time": {
"end": state.until,
"start": state.since
},
"time_range": {
"start": state.since,
"end": state.until
},
"rows": 0,
"start": 0
"start": "0",
"rows": "0",
"exclusions": {
"type": [
"CB_ANALYTICS","WATCHLIST"
]
}
},
typeIdPaths: [{ path: ["id"] }],
tsPaths: [{ path: ["last_update_time"] }]
tsPaths: [{ path: ["backend_update_timestamp"] }]
};
let accumulator = [];
const apiEndpoint = process.env.paws_endpoint;
Expand Down
2 changes: 1 addition & 1 deletion collectors/carbonblack/themis-template/carbonblackevents.json
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"method": "GET",
"url": "{{endpoint}}/appservices/v6/orgs/{{collector_param_string2}}/alerts/search_suggestions?suggest.q=",
"url": "{{endpoint}}/api/alerts/v7/orgs/{{collector_param_string2}}/alerts/search_suggestions?query=n/a",
"headers": {
"X-Auth-Token": "{{secret}}/{{client_id}}"
},
Expand Down
57 changes: 31 additions & 26 deletions collectors/carbonblack/utils.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,14 +43,14 @@ function getAPILogs(apiDetails, accumulator, apiEndpoint, state, clientSecret, c
},
data: apiDetails.requestBody
}).then(response => {
if (response.results.length === 0) {
return resolve({ accumulator, nextPage });
}
accumulator.push(...response.results);
offset = offset + limit;
apiDetails.requestBody.start = offset;
pageCount++;
return getCarbonBlackData();
if (response.results.length > 0 && response.num_found >= offset) {
apiDetails.requestBody.start = offset;
pageCount++;
return getCarbonBlackData();
}
return resolve({ accumulator, nextPage });
}).catch(err => {
return reject(err);
});
Expand Down Expand Up @@ -78,48 +78,53 @@ function getAPIDetails(state, orgKey) {
tsPaths = [{ path: ["eventTime"] }];
break;
case Search_Alerts:
url = `/appservices/v6/orgs/${orgKey}/alerts/_search`;
url = `/api/alerts/v7/orgs/${orgKey}/alerts/_search`;
typeIdPaths = [{ path: ["id"] }];
tsPaths = [{ path: ["last_update_time"] }];
tsPaths = [{ path: ["backend_update_timestamp"] }];
method = "POST";
requestBody = {
"criteria": {
"create_time": {
"end": state.until,
"start": state.since
},
"time_range": {
"start": state.since,
"end": state.until
},
"rows": 0,
"start": 0
"start": 0,
"exclusions": {
"type": ["CB_ANALYTICS", "WATCHLIST"]
}
};
break;
case Search_Alerts_CB_Analytics:
url = `/appservices/v6/orgs/${orgKey}/alerts/cbanalytics/_search`;
url = `/api/alerts/v7/orgs/${orgKey}/alerts/_search`;
typeIdPaths = [{ path: ["id"] }];
tsPaths = [{ path: ["last_update_time"] }];
tsPaths = [{ path: ["backend_update_timestamp"] }];
method = "POST";
requestBody = {
"time_range": {
"start": state.since,
"end": state.until
},
"criteria": {
"create_time": {
"end": state.until,
"start": state.since
},
"type": ["CB_ANALYTICS"]
},
"rows": 0,
"start": 0
};
break;
case Search_Alerts_Watchlist:
url = `/appservices/v6/orgs/${orgKey}/alerts/watchlist/_search`;
url = `/api/alerts/v7/orgs/${orgKey}/alerts/_search`;
typeIdPaths = [{ path: ["id"] }];
tsPaths = [{ path: ["last_update_time"] }];
tsPaths = [{ path: ["backend_update_timestamp"] }];
method = "POST";
requestBody = {
"time_range": {
"start": state.since,
"end": state.until
},
"criteria": {
"create_time": {
"end": state.until,
"start": state.since
},
"type": [
"WATCHLIST"
]
},
"rows": 0,
"start": 0
Expand Down

0 comments on commit d298d75

Please sign in to comment.