Example 6 with ZapXmlConfiguration
use of org.zaproxy.zap.utils.ZapXmlConfiguration in project zaproxy by zaproxy.
the class VulnerabilitiesLoader method loadVulnerabilities.
static List<Vulnerability> loadVulnerabilities(InputStream is) {
ZapXmlConfiguration config;
try {
config = new ZapXmlConfiguration(is);
} catch (ConfigurationException e) {
logger.error(e.getMessage(), e);
return null;
}
String[] test;
try {
test = config.getStringArray("vuln_items");
} catch (ConversionException e) {
logger.error(e.getMessage(), e);
return null;
}
final int numberOfVulns = test.length;
List<Vulnerability> tempVulns = new ArrayList<>(numberOfVulns);
String name;
List<String> references;
for (String item : test) {
name = "vuln_item_" + item;
try {
references = new ArrayList<>(Arrays.asList(config.getStringArray(name + ".reference")));
} catch (ConversionException e) {
logger.error(e.getMessage(), e);
references = new ArrayList<>(0);
}
Vulnerability v = new Vulnerability(item, config.getString(name + ".alert"), config.getString(name + ".desc"), config.getString(name + ".solution"), references);
tempVulns.add(v);
}
return tempVulns;
}
Also used :
ConversionException(org.apache.commons.configuration.ConversionException)
ConfigurationException(org.apache.commons.configuration.ConfigurationException)
ArrayList(java.util.ArrayList)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
Example 7 with ZapXmlConfiguration
use of org.zaproxy.zap.utils.ZapXmlConfiguration in project zaproxy by zaproxy.
the class ExtensionSessionManagementUnitTest method shouldImportContextWithCookieSessionMgmtType.
@Test
void shouldImportContextWithCookieSessionMgmtType() throws ConfigurationException {
// Given
Context context = mock(Context.class);
Configuration config = new ZapXmlConfiguration();
int sessMgmtTypeId = 0;
config.addProperty(ExtensionSessionManagement.CONTEXT_CONFIG_SESSION_TYPE, sessMgmtTypeId);
// When
extSessMgmt.importContextData(context, config);
// Then
verify(context).setSessionManagementMethod(any(CookieBasedSessionManagementMethod.class));
}
Also used :
Context(org.zaproxy.zap.model.Context)
Configuration(org.apache.commons.configuration.Configuration)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
CookieBasedSessionManagementMethod(org.zaproxy.zap.session.CookieBasedSessionManagementMethodType.CookieBasedSessionManagementMethod)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
Test(org.junit.jupiter.api.Test)
WithConfigsTest(org.zaproxy.zap.WithConfigsTest)
Example 8 with ZapXmlConfiguration
use of org.zaproxy.zap.utils.ZapXmlConfiguration in project zaproxy by zaproxy.
the class ExtensionSessionManagementUnitTest method shouldImportContextWithNoSessionMgmtType.
@Test
void shouldImportContextWithNoSessionMgmtType() throws ConfigurationException {
// Given
Context context = mock(Context.class);
Configuration config = new ZapXmlConfiguration();
// When
extSessMgmt.importContextData(context, config);
// Then
verify(context, times(0)).setSessionManagementMethod(any());
}
Also used :
Context(org.zaproxy.zap.model.Context)
Configuration(org.apache.commons.configuration.Configuration)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
Test(org.junit.jupiter.api.Test)
WithConfigsTest(org.zaproxy.zap.WithConfigsTest)
Example 9 with ZapXmlConfiguration
use of org.zaproxy.zap.utils.ZapXmlConfiguration in project zaproxy by zaproxy.
the class Constant method copyDefaultConfigFile.
private void copyDefaultConfigFile() throws IOException {
Path configFile = Paths.get(FILE_CONFIG);
copyFileToHome(configFile, "xml/" + FILE_CONFIG_NAME, PATH_BUNDLED_CONFIG_XML);
try {
setLatestVersion(new ZapXmlConfiguration(configFile.toFile()));
} catch (ConfigurationException e) {
throw new IOException("Failed to set the latest version:", e);
}
}
Also used :
Path(java.nio.file.Path)
ConfigurationException(org.apache.commons.configuration.ConfigurationException)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
IOException(java.io.IOException)
Example 10 with ZapXmlConfiguration
use of org.zaproxy.zap.utils.ZapXmlConfiguration in project zaproxy by zaproxy.
the class Constant method upgradeFrom1_1_0.
private void upgradeFrom1_1_0(XMLConfiguration config) throws ConfigurationException {
// Upgrade the regexs
// ZAP: Changed to use ZapXmlConfiguration, to enforce the same character encoding when
// reading/writing configurations.
XMLConfiguration newConfig = new ZapXmlConfiguration(getUrlDefaultConfigFile());
newConfig.setAutoSave(false);
copyAllProperties(newConfig, config, "pscans");
}
Also used :
XMLConfiguration(org.apache.commons.configuration.XMLConfiguration)
ZapXmlConfiguration(org.zaproxy.zap.utils.ZapXmlConfiguration)
Aggregations
ZapXmlConfiguration (org.zaproxy.zap.utils.ZapXmlConfiguration)82
Test (org.junit.jupiter.api.Test)37
Configuration (org.apache.commons.configuration.Configuration)19
WithConfigsTest (org.zaproxy.zap.WithConfigsTest)18
Context (org.zaproxy.zap.model.Context)17
ConfigurationException (org.apache.commons.configuration.ConfigurationException)15
File (java.io.File)11
IOException (java.io.IOException)9
ParameterizedTest (org.junit.jupiter.params.ParameterizedTest)7
ConversionException (org.apache.commons.configuration.ConversionException)6
XMLConfiguration (org.apache.commons.configuration.XMLConfiguration)5
InvalidParameterException (java.security.InvalidParameterException)4
HttpMessage (org.parosproxy.paros.network.HttpMessage)4
MalformedURLException (java.net.MalformedURLException)3
Path (java.nio.file.Path)3
ParseException (java.text.ParseException)3
ArrayList (java.util.ArrayList)3
Locale (java.util.Locale)3
NoSuchElementException (java.util.NoSuchElementException)3
URI (org.apache.commons.httpclient.URI)3
