Class: Nexpose::ReportTemplate

Inherits:

Object

• Object
• Nexpose::ReportTemplate

Includes:

Sanitize

Defined in:

lib/nexpose/report_template.rb

Overview

Definition object for a report template.

Instance Attribute Summary

• #attributes ⇒ Object

  Array of report attributes, in the order they will be present in a report.

• #built_in ⇒ Object

  The report template is built-in, and cannot be modified.

• #description ⇒ Object

  Description of this report template.

• #id ⇒ Object

  The ID of the report template.

• #name ⇒ Object

  The name of the report template.

• #properties ⇒ Object

  Map of report properties.

• #scope ⇒ Object

  The visibility (scope) of the report template.

• #sections ⇒ Object

  Array of report sections.

• #show_device_names ⇒ Object

  Display asset names with IPs.

• #type ⇒ Object

  With a data template, you can export comma-separated value (CSV) files with vulnerability-based data.

Class Method Summary

• .load(connection, template_id) ⇒ Object

  Retrieve the configuration for a report template.

• .parse(xml) ⇒ Object

Instance Method Summary

• #delete(connection) ⇒ Object
• #initialize(name, type = 'document', id = -1,, scope = 'silo', built_in = false) ⇒ ReportTemplate constructor

  A new instance of ReportTemplate.

• #save(connection) ⇒ Object

  Save the configuration for a report template.

• #to_xml ⇒ Object

Methods included from Sanitize

#replace_entities

Constructor Details

#initialize(name, type = 'document', id = -1,, scope = 'silo', built_in = false) ⇒ ReportTemplate

Returns a new instance of ReportTemplate.

# File 'lib/nexpose/report_template.rb', line 116

def initialize(name, type = 'document', id = -1, scope = 'silo', built_in = false)
  @name = name
  @type = type
  @id = id
  @scope = scope
  @built_in = built_in

  @sections = []
  @properties = {}
  @attributes = []
  @show_device_names = false
end

Instance Attribute Details

#attributes ⇒ Object

Array of report attributes, in the order they will be present in a report.

# File 'lib/nexpose/report_template.rb', line 112

def attributes
  @attributes
end

#built_in ⇒ Object

The report template is built-in, and cannot be modified.

# File 'lib/nexpose/report_template.rb', line 103

def built_in
  @built_in
end

#description ⇒ Object

Description of this report template.

# File 'lib/nexpose/report_template.rb', line 105

def description
  @description
end

#id ⇒ Object

The ID of the report template.

# File 'lib/nexpose/report_template.rb', line 88

def id
  @id
end

#name ⇒ Object

The name of the report template.

# File 'lib/nexpose/report_template.rb', line 90

def name
  @name
end

#properties ⇒ Object

Map of report properties.

# File 'lib/nexpose/report_template.rb', line 110

def properties
  @properties
end

#scope ⇒ Object

The visibility (scope) of the report template. One of: global|silo

# File 'lib/nexpose/report_template.rb', line 101

def scope
  @scope
end

#sections ⇒ Object

Array of report sections.

# File 'lib/nexpose/report_template.rb', line 108

def sections
  @sections
end

#show_device_names ⇒ Object

Display asset names with IPs.

# File 'lib/nexpose/report_template.rb', line 114

def show_device_names
  @show_device_names
end

#type ⇒ Object

With a data template, you can export comma-separated value (CSV) files with vulnerability-based data. With a document template, you can create PDF, RTF, HTML, or XML reports with asset-based information. When you retrieve a report template, the type will always be visible even though type is implied. When ReportTemplate is sent as a request, and the type attribute is not provided, the type attribute defaults to document, allowing for backward compatibility with existing API clients.

# File 'lib/nexpose/report_template.rb', line 98

def type
  @type
end

Class Method Details

.load(connection, template_id) ⇒ Object

Retrieve the configuration for a report template.

# File 'lib/nexpose/report_template.rb', line 141

def self.load(connection, template_id)
  xml = %(<ReportTemplateConfigRequest session-id='#{connection.session_id}' template-id='#{template_id}'/>)
  ReportTemplate.parse(connection.execute(xml))
end

.parse(xml) ⇒ Object

# File 'lib/nexpose/report_template.rb', line 180

def self.parse(xml)
  xml.res.elements.each('//ReportTemplate') do |tmp|
    template = ReportTemplate.new(tmp.attributes['name'],
                                  tmp.attributes['type'],
                                  tmp.attributes['id'],
                                  tmp.attributes['scope'] || 'silo',
                                  tmp.attributes['builtin'])
    tmp.elements.each('//description') do |desc|
      template.description = desc.text
    end

    tmp.elements.each('//ReportAttributes/ReportAttribute') do |attr|
      template.attributes << attr.attributes['name']
    end

    tmp.elements.each('//ReportSections/property') do |property|
      template.properties[property.attributes['name']] = property.text
    end

    tmp.elements.each('//ReportSection') do |section|
      template.sections << Section.parse(section)
    end

    tmp.elements.each('//showDeviceNames') do |show|
      template.show_device_names = show.attributes['enabled'] == '1'
    end

    return template
  end
  nil
end

Instance Method Details

#delete(connection) ⇒ Object

# File 'lib/nexpose/report_template.rb', line 146

def delete(connection)
  connection.delete_report_template(@id)
end

#save(connection) ⇒ Object

Save the configuration for a report template.

# File 'lib/nexpose/report_template.rb', line 130

def save(connection)
  xml = %(<ReportTemplateSaveRequest session-id='#{connection.session_id}' scope='#{@scope}'>)
  xml << to_xml
  xml << '</ReportTemplateSaveRequest>'
  response = connection.execute(xml)
  if response.success
    @id = response.attributes['template-id']
  end
end

#to_xml ⇒ Object

# File 'lib/nexpose/report_template.rb', line 152

def to_xml
  xml = %(<ReportTemplate id='#{@id}' name='#{@name}' type='#{@type}')
  xml << %( scope='#{@scope}') if @scope
  xml << %( builtin='#{@built_in}') if @built_in
  xml << '>'
  xml << %(<description>#{@description}</description>) if @description

  unless @attributes.empty?
    xml << '<ReportAttributes>'
    @attributes.each do |attr|
      xml << %(<ReportAttribute name='#{attr}'/>)
    end
    xml << '</ReportAttributes>'
  end

  unless @sections.empty?
    xml << '<ReportSections>'
    properties.each_pair do |name, value|
      xml << %(<property name='#{name}'>#{replace_entities(value)}</property>)
    end
    @sections.each { |section| xml << section.to_xml }
    xml << '</ReportSections>'
  end

  xml << %(<Settings><showDeviceNames enabled='#{@show_device_names ? 1 : 0}' /></Settings>)
  xml << '</ReportTemplate>'
end