Class: Arachni::UI::Web::ReportManager

Inherits:

Object

• Object
• Arachni::UI::Web::ReportManager

Defined in:

lib/arachni/ui/web/report_manager.rb

Overview

Provides nice little wrapper for the Arachni::Report::Manager while also handling<br/> conversions, storing etc.

@author: Tasos “Zapotek” Laskos

<tasos.laskos@gmail.com>
<zapotek@segfault.gr>

@version: 0.2

Defined Under Namespace

Classes: Report

Constant Summary

FOLDERNAME =

"reports"

EXTENSION =

'.afr'

Instance Method Summary

• #all(*args) ⇒ Array

  Returns the paths of all saved report files as an array.

• #available ⇒ Array

  Returns all available report types.

• #classes ⇒ Array

  Returns all available report classes.

• #delete(id) ⇒ Object
• #delete_all ⇒ Object
• #get(type, id) ⇒ String

  Returns a stored report as a <type> file.

• #get_finish_datetime(report) ⇒ Object
• #get_host(report) ⇒ Object
• #get_issue_count(report) ⇒ Object
• #initialize(opts, settings) ⇒ ReportManager constructor

  A new instance of ReportManager.

• #migrate_files ⇒ Object

  Migrates AFR reports from the savedir folder into the DB so that users will be able to manage them via the WebUI.

• #report_to_filename(report) ⇒ String

  Generates a filename based on the contents of the report in the form of host:audit_date.

• #report_to_path(report) ⇒ String

  Gets the path to a given report based on the contents of the report.

• #save(report) ⇒ String

  Saves the report to a file.

• #savedir ⇒ String

  Save directory.

• #tmpdir ⇒ String

  Tmp directory for storage while converting.

• #valid_class?(type) ⇒ Bool

  Checks whether the provided type is a usable report.

Constructor Details

#initialize(opts, settings) ⇒ ReportManager

Returns a new instance of ReportManager.

# File 'lib/arachni/ui/web/report_manager.rb', line 42

def initialize( opts, settings )
    @opts     = opts
    @settings = settings
    populate_available

    DataMapper::setup( :default, "sqlite3://#{@settings.db}/default.db" )
    DataMapper.finalize

    # Report.raise_on_save_failure = true
    Report.auto_upgrade!

    migrate_files
end

Instance Method Details

#all(*args) ⇒ Array

Returns the paths of all saved report files as an array

Returns:

• (Array)

# File 'lib/arachni/ui/web/report_manager.rb', line 133

def all( *args )
    Report.all( *args )
end

#available ⇒ Array

Returns all available report types

Returns:

• (Array)

# File 'lib/arachni/ui/web/report_manager.rb', line 215

def available
    return @@available
end

#classes ⇒ Array

Returns all available report classes

Returns:

• (Array)

# File 'lib/arachni/ui/web/report_manager.rb', line 224

def classes
    @@available_rep_classes
end

#delete(id) ⇒ Object

# File 'lib/arachni/ui/web/report_manager.rb', line 145

def delete( id )
    report = Report.get( id )
    begin
        FileUtils.rm( savedir + Report.get( id ).filename + EXTENSION )
    rescue
    end

    begin
        report.destroy
    rescue
    end
end

#delete_all ⇒ Object

# File 'lib/arachni/ui/web/report_manager.rb', line 137

def delete_all
    all.each {
        |report|
        delete( report.id )
    }
    all.destroy
end

#get(type, id) ⇒ String

Returns a stored report as a <type> file. Basically a convertion/export method.

Parameters:

• type (String) —

  html, txt, xml, etc

• id (Integer) —

  report id

Returns:

• (String) —

  the converted report

# File 'lib/arachni/ui/web/report_manager.rb', line 191

def get( type, id )
    return if !valid_class?( type )

    # begin
        location = savedir + Report.get( id ).filename + EXTENSION

        # if it's the default report type don't waste time converting
        if '.' + type == EXTENSION
            return File.read( location )
        else
            return convert( type, ::Arachni::AuditStore.load( location ) )
        end
    # rescue Exception => e
        # ap e
        # ap e.backtrace
        # return nil
    # end
end

#get_finish_datetime(report) ⇒ Object

# File 'lib/arachni/ui/web/report_manager.rb', line 179

def get_finish_datetime( report )
    return report.finish_datetime
end

#get_host(report) ⇒ Object

# File 'lib/arachni/ui/web/report_manager.rb', line 175

def get_host( report )
    return URI( report.options['url'] ).host
end

#get_issue_count(report) ⇒ Object

# File 'lib/arachni/ui/web/report_manager.rb', line 171

def get_issue_count( report )
    report.issues.size
end

#migrate_files ⇒ Object

Migrates AFR reports from the savedir folder into the DB so that users will be able to manage them via the WebUI

# File 'lib/arachni/ui/web/report_manager.rb', line 60

def migrate_files
    Dir.glob( "#{savedir}*" + EXTENSION ).each {
        |file|
        next if Report.first( :filename => File.basename( file, EXTENSION ) )

        begin
            report = ::Arachni::AuditStore.load( file )
            Report.create(
                :issue_count => get_issue_count( report ),
                :host        => get_host( report ),
                :filename    => File.basename( file, EXTENSION ),
                :datestamp   => get_finish_datetime( report )
            )
        rescue Exception => e
            # p file
            # ap e
            # ap e.backtrace
        end
    }
end

#report_to_filename(report) ⇒ String

Generates a filename based on the contents of the report in the form of host:audit_date

Parameters:

• report (Arachni::AuditStore)

Returns:

• (String) —

  host.audit_date.ext

# File 'lib/arachni/ui/web/report_manager.rb', line 166

def report_to_filename( report )
    filename = "#{URI(report.options['url']).host}:#{report.start_datetime}"
    filename.gsub( ':', '.' ).gsub( ' ', '_' ).gsub( '-', '_' ).gsub( '__', '_' )
end

#report_to_path(report) ⇒ String

Gets the path to a given report based on the contents of the report

Parameters:

• report (Arachni::AuditStore)

Returns:

• (String)

# File 'lib/arachni/ui/web/report_manager.rb', line 113

def report_to_path( report )
    savedir + File.basename( report_to_filename( report ) + EXTENSION )
end

#save(report) ⇒ String

Saves the report to a file

Parameters:

• report (Arachni::AuditStore)

Returns:

• (String) —

  the path to the saved report

# File 'lib/arachni/ui/web/report_manager.rb', line 102

def save( report )
    @settings.log.report_saved( {}, report_to_filename( report ) )
    return save_to_file( report, report_to_path( report ) )
end

#savedir ⇒ String

Returns save directory.

Returns:

• (String) —

  save directory

# File 'lib/arachni/ui/web/report_manager.rb', line 84

def savedir
    @settings.public_folder + "/#{FOLDERNAME}/"
end

#tmpdir ⇒ String

Returns tmp directory for storage while converting.

Returns:

• (String) —

  tmp directory for storage while converting

# File 'lib/arachni/ui/web/report_manager.rb', line 91

def tmpdir
    @settings.tmp + '/'
end

#valid_class?(type) ⇒ Bool

Checks whether the provided type is a usable report

Parameters:

• type (String) —

  usually html,txt,xml etc

Returns:

• (Bool)

# File 'lib/arachni/ui/web/report_manager.rb', line 124

def valid_class?( type )
    classes[type] || false
end