Crowdstrike OAuth API: Feature: Support for Online-State handler - Get the online status for one or more hosts

[JMeyer0101]

Please ensure your pull request (PR) adheres to the following guidelines:

• Please refer to our contributing documentation for any questions on submitting a pull request, link: Contribution Guide

Pull Request Checklist

Please check if your PR fulfills the following requirements:

• Testing of all the changes has been performed (for bug fixes / features)
• The manual_readme_content.md has been reviewed and added / updated if needed (for bug fixes / features)
• Use the following format for the PR description: <App Name>: <PR Type> - <PR Description>
• Provide release notes as part of the PR submission which describe high level points about the changes for the upcoming GA release.
• Verify all checks are passing.
• Do NOT use the next branch of the forked repo. Create separate feature branch for raising the PR.
• Do NOT submit updates to dependencies unless it fixes an issue.

Pull Request Type

Please check the type of change your PR introduces:

• New App
• Bugfix
• Feature
• Code style update (formatting, renaming)
• Refactoring (no functional changes, no api changes)
• Documentation
• Other (please describe):

Security Considerations (REQUIRED)

• If you are exposing any endpoints using a REST handler,
  please document them in the manual_readme_content.md.
• If this is a new connector or you are adding new actions
  • Please document in the manual_readme_content.md all methods (eg, OAuth) used to authenticate
    with the service that the connector is integrating with.
  • If any actions are unable to run on SOAR Cloud, please document this in the manual_readme_content.md.
• Are you introducing any new cryptography modules? If yes, please elaborate their purpose:
• Are you are accessing the file system? If yes, please verify that you are only accessing paths returned through
  the Vault API.
• Are you are marking code to be ignored by Semgrep with nosemgrep?
  If yes, please provide justification in an additional comment next to the ignored code.

Release Notes (REQUIRED)

• Added new action support
  • get online state

What is the current behavior? (OPTIONAL)

There does not currently exist a way to query for online-state of a device with the current app.

What is the new behavior? (OPTIONAL)

Adds ability to call existing "/devices/entities/online-state/v1" endpoint

Other information (OPTIONAL)

Gathering the online state is required in specific scenarios. ex: crowdstrike by default will reset a quarantine attempt on a machine with online state 'unknown' after ~30min, resulting in infinite looping quarantine attempts via playbook on a machine that is misconfigured. Allowing playbooks to query the online state will prevent the issue.

Pay close attention to (OPTIONAL)

• Any specific code change or test case points which must be addressed/reviewed at the time of GA release.

Screenshots (if relevant)

[splunk-soar-connectors-bot]

Thank you for your submission! We have a total of 21 PRs open right now, and we are working hard on all of them! We will take a look as soon as we can.

[JMeyer0101]

I am unsure of what the workfow is for testing, and I can't seem to find a way to install phantom locally, please advise

[splunk-soar-connectors-bot]

@JMeyer0101 Static Tests results for commit 59bb4ee - https://drive.google.com/file/d/1Hh23zgYQLHbDnCj25c_4pM5C9qWAT_zf/view?usp=drivesdk

[splunk-soar-connectors-bot]

@JMeyer0101 Compile Tests results for commit 59bb4ee - https://drive.google.com/file/d/1aEHlooPfMzGZ3seSm7SMu8JQ3pllTPXe/view?usp=drivesdk

[splunk-soar-connectors-bot]

@JMeyer0101 Static Tests results for commit d419a97 - https://drive.google.com/file/d/1buFHCzMfGobmp_vhTKuNxhqlD_t8ENQO/view?usp=drivesdk

[splunk-soar-connectors-bot]

@JMeyer0101 Compile Tests results for commit d419a97 - https://drive.google.com/file/d/1jbRstkP2tSmnEm7jm6RWMNpZdVjX4r7r/view?usp=drivesdk