Skip to content
This repository was archived by the owner on Feb 26, 2021. It is now read-only.

Commit 55e497f

Browse files
Daniel PataninDaniel Patanin
Daniel Patanin
authored and
Daniel Patanin
committed
added Test for generic import
1 parent 4a12c9a commit 55e497f

File tree

2 files changed

+34
-2
lines changed

2 files changed

+34
-2
lines changed

scb-engine/src/main/resources/application-dev.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,5 +15,5 @@ securecodebox.rest.user.scanner-default:
1515
password: scan
1616

1717
securecodebox.persistence.defectdojo.baseurl: http://localhost:8000
18-
securecodebox.persistence.defectdojo.apikey:
18+
securecodebox.persistence.defectdojo.apikey: 6fd1b5e90d7afa33d1da939d7d51a9b745b11660
1919

scb-persistenceproviders/defectdojo-persistenceprovider/src/test/java/io/securecodebox/persistence/DefectDojoPersistenceProviderTest.java

Lines changed: 33 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,7 @@
22

33
import com.fasterxml.jackson.core.JsonProcessingException;
44
import com.fasterxml.jackson.databind.ObjectMapper;
5+
import io.securecodebox.model.findings.Finding;
56
import io.securecodebox.model.rest.Report;
67
import io.securecodebox.model.securitytest.CommonMetaFields;
78
import io.securecodebox.model.securitytest.SecurityTest;
@@ -22,6 +23,7 @@
2223
import java.time.ZoneId;
2324
import java.util.*;
2425

26+
import static io.securecodebox.model.findings.Severity.INFORMATIONAL;
2527
import static org.mockito.Matchers.any;
2628
import static org.mockito.Matchers.eq;
2729
import static org.mockito.Mockito.times;
@@ -173,7 +175,7 @@ public void failsIfProductCouldNotBeFound(){
173175
}
174176

175177
@Test
176-
public void createsFindings() throws JsonProcessingException {
178+
public void createsFindingsForSupportedScanner() throws JsonProcessingException {
177179
SecurityTest securityTest = new SecurityTest();
178180
securityTest.setContext("Nmap Scan 11");
179181
securityTest.setName("nmap");
@@ -197,4 +199,34 @@ public void createsFindings() throws JsonProcessingException {
197199
eq("Nmap Scan")
198200
);
199201
}
202+
203+
@Test
204+
public void createsFindingsForNonSupportedScanner() throws JsonProcessingException {
205+
SecurityTest securityTest = new SecurityTest();
206+
securityTest.setContext("Non supported Scan 11");
207+
securityTest.setName("any non supported scanner");
208+
209+
List<Finding> findings = new ArrayList<>();
210+
Finding finding = new Finding();
211+
finding.setName("findingname");
212+
finding.setDescription("description");
213+
finding.setFalsePositive(false);
214+
finding.setLocation("http://someadress");
215+
finding.setSeverity(INFORMATIONAL);
216+
findings.add(finding);
217+
218+
report.setFindings(findings);
219+
securityTest.setMetaData(metaData);
220+
securityTest.setReport(report);
221+
222+
persistenceProvider.persist(securityTest);
223+
verify(defectDojoService, times(1)).createFindings(
224+
eq( "date,title,cweid,url,severity,description,mitigation,impact,references,active,verified,falsepositive,duplicate\n"+
225+
"2019-01-07,findingname,,http://someadress,INFORMATIONAL,description,,,,,,false,false"),
226+
eq("http://localhost:8000/api/v2/engagements/2/"),
227+
eq("http://localhost:8000/api/v2/users/5/"),
228+
eq("2019-01-07"),
229+
eq("Generic Findings Import")
230+
);
231+
}
200232
}

0 commit comments

Comments
 (0)