Add utils

Author: Inbal Tako

securenative/context/context_builder.py

@@ -1,4 +1,6 @@
 from securenative.context.securenative_context import SecureNativeContext
+from securenative.utils.request_utils import RequestUtils
+from securenative.utils.utils import Utils
 
 
 class ContextBuilder(object):
@@ -38,8 +40,22 @@ def with_body(self, body):
     def default_context_builder():
         return ContextBuilder()
 
-    def from_http_request(self, request):  # TODO!
-        pass
+    @staticmethod
+    def from_http_request(request):
+        headers = request.headers
+
+        client_token = request.cookies[RequestUtils.SECURENATIVE_COOKIE]
+        if Utils.is_null_or_empty(client_token):
+            client_token = RequestUtils.get_secure_header_from_request(headers)
+
+        return ContextBuilder()\
+            .with_url(request.url)\
+            .with_method(request.method)\
+            .with_headers(headers)\
+            .with_client_token(client_token)\
+            .with_ip(RequestUtils.get_client_ip_from_request(request))\
+            .with_remote_ip(RequestUtils.get_remote_ip_from_request(request))\
+            .with_body(None)
 
     def build(self):
         return self.context

securenative/sdk_options.py

@@ -1,13 +1,39 @@
-class IpUtils(object):  # TODO!
+import socket
+import re
+import ipaddress
+
+
+class IpUtils(object):
+    VALID_IPV4_PATTERN = re.compile("(([01]?\\d\\d?|2[0-4]\\d|25[0-5])\\.){3}([01]?\\d\\d?|2[0-4]\\d|25[0-5])")
+    VALID_IPV6_PATTERN = re.compile("([0-9a-f]{1,4}:){7}([0-9a-f]){1,4}")
 
     @staticmethod
-    def is_ip_address():
-        pass
+    def is_ip_address(ip_address):
+        if IpUtils.VALID_IPV4_PATTERN.match(ip_address):
+            return True
+        if IpUtils.VALID_IPV6_PATTERN.match(ip_address):
+            return True
+        return False
 
     @staticmethod
-    def is_valid_public_ip():
-        pass
+    def is_valid_public_ip(ip_address):
+        try:
+            socket.inet_aton(ip_address)
+        except socket.error:
+            return False
+
+        ip = ipaddress.IPv4Address(ip_address)
+        if ip.is_loopback \
+                or ip.is_global \
+                or ip.is_private \
+                or ip.is_link_local \
+                or ip.is_multicast \
+                or ip.is_multicast \
+                or ip.is_reserved \
+                or ip.is_unspecified:
+            return False
+        return True
 
     @staticmethod
-    def is_loop_back():
-        pass
+    def is_loop_back(ip_address):
+        return ipaddress.IPv4Address(ip_address).is_loopback

securenative/utils/ip_utils.py

@@ -1,25 +1,20 @@
-class RequestUtils(object):  # TODO!
+class RequestUtils(object):
+    SECURENATIVE_COOKIE = "_sn"
+    SECURENATIVE_HEADER = "x-securenative"
 
     @staticmethod
-    def get_headers_from_request():
-        pass
+    def get_secure_header_from_request(headers):
+        return headers[RequestUtils.SECURENATIVE_HEADER]
 
     @staticmethod
-    def get_secure_header_from_request():
-        pass
+    def get_client_ip_from_request(request):
+        x_forwarded_for = request.META.get('HTTP_X_FORWARDED_FOR')
+        if x_forwarded_for:
+            ip = x_forwarded_for.split(',')[-1].strip()
+        else:
+            ip = request.META.get('REMOTE_ADDR')
+        return ip
 
     @staticmethod
-    def get_value_from_request():
-        pass
-
-    @staticmethod
-    def get_client_ip_from_request():
-        pass
-
-    @staticmethod
-    def get_cookie_value_from_request():
-        pass
-
-    @staticmethod
-    def get_remote_ip_from_request():
-        pass
+    def get_remote_ip_from_request(request):
+        return request.raw._original_response.fp.raw._sock.getpeername()[0]

securenative/utils/request_utils.py

@@ -1,5 +1,15 @@
-class SignatureUtils(object):  # TODO!
+import hmac
+import hashlib
+
+
+class SignatureUtils(object):
 
     @staticmethod
-    def is_valid_signature():
-        pass
+    def is_valid_signature(api_key, payload, header_signature):
+        try:
+            key = api_key.encode('utf-8')
+            body = payload.encode('utf-8')
+            comparison_signature = hmac.new(key, body, hashlib.sha512).hexdigest()
+            return hmac.compare_digest(comparison_signature, header_signature)
+        except Exception:
+            return False

securenative/utils/signature_utils.py

@@ -1,39 +1,7 @@
-import base64
-import json
-import hmac
-import hashlib
+class Utils(object):
 
-
-def _parse_cookie(cookie_value=None):
-    fp = u''
-    cid = u''
-
-    if cookie_value is None:
-        return cid, fp
-
-    try:
-        base64_decoded = base64.b64decode(cookie_value)
-        if base64_decoded is None:
-            base64_decoded = u'{}'
-
-        json_obj = json.loads(base64_decoded)
-
-        if u'fp' in json_obj:
-            fp = json_obj['fp']
-
-        if u'cid' in json_obj:
-            cid = json_obj['cid']
-    except Exception as ex:
-        pass
-
-    return cid, fp
-
-
-def verify_signature(secret, text_body, header_signature):
-    try:
-        key = secret.encode('utf-8')
-        body = text_body.encode('utf-8')
-        comparison_signature = hmac.new(key, body, hashlib.sha512).hexdigest()
-        return hmac.compare_digest(comparison_signature, header_signature)
-    except Exception as ex:
-        return False
+    @staticmethod
+    def is_null_or_empty(string):
+        if not string or len(string) is 0:
+            return False
+        return True

securenative/utils/utils.py

@@ -1,5 +1,5 @@
 class VersionUtils(object):
 
     @staticmethod
-    def get_version():  # TODO!
-        pass
+    def get_version():
+        return "0.1.8"

securenative/utils/version_utils.py

@@ -1,14 +1,14 @@
-from setuptools import setup, Extension
+from setuptools import setup
 
-from securenative.config import sdk_version
+from securenative.utils.version_utils import VersionUtils
 
 with open("README.md", "r") as fh:
     long_description = fh.read()
 
 setup(
     name='securenative',
     packages=['securenative'],
-    version=sdk_version,
+    version=VersionUtils.get_version(),
     license='MIT',
     description='Secure Native SDK for python',
     author='Secure Native',

setup.py

@@ -1,21 +1,23 @@
 import json
 import unittest
 
-from securenative.config import sdk_version
-from securenative.http.http_client import HttpClient
+
+from securenative.http.securenative_http_client import SecureNativeHttpClient
+
+from securenative.utils.version_utils import VersionUtils
 
 
 class HttpClientTests(unittest.TestCase):
     def test_post(self):
-        client = HttpClient()
+        client = SecureNativeHttpClient()
         api_key = u'ABC'
         request_body = {"key": "test1", "value": "test2"}
-        response = client.post(url=u'https://httpbin.org/post', api_key=api_key, body=json.dumps(request_body))
+        response = client.post(path=u"https://httpbin.org/post", body=json.dumps(request_body))
 
         self.assertEqual(response.status_code, 200)
         json_body = json.loads(response.text)
         self.assertEqual(json_body['headers']['Content-Type'], 'application/json')
         self.assertEqual(json_body['headers']['User-Agent'], 'SecureNative-python')
-        self.assertEqual(json_body['headers']['Sn-Version'], sdk_version)
+        self.assertEqual(json_body['headers']['Sn-Version'], VersionUtils.get_version())
         self.assertEqual(json_body['headers']['Authorization'], api_key)
         self.assertEqual(json_body['json'], request_body)

tests/http_client_test.py

@@ -1,10 +1,10 @@
 import unittest
 
-from securenative.utils.sn_crypto import encrypt, decrypt
+from securenative.utils.encryption_utils import EncryptionUtils
 
 
 class CryptoTests(unittest.TestCase):
     def test_encrypt_decrypt(self):
         api_key = '6EA4915349C0AAC6F6572DA4F6B00C42'
         data = '{"cid":"198a41ff-a10f-4cda-a2f3-a9ca80c0703b","fp":"6d8cabd95987f8318b1fe01593d5c2a5.24700f9f1986800ab4fcc880530dd0ed"}'
-        self.assertEqual(data, decrypt(encrypt(data, api_key), api_key))
+        self.assertEqual(data, EncryptionUtils.decrypt(EncryptionUtils.encrypt(data, api_key), api_key))