Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve XML parsing error messages #38

Merged
merged 10 commits into from
Nov 6, 2018
Merged

Improve XML parsing error messages #38

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
337528c
Add xmlParser
Nov 1, 2018
ddc579f
Update pomParser
Nov 1, 2018
2fac7e2
Update validateApiFiles
Nov 1, 2018
1097b76
Update validateGlobal
Nov 2, 2018
3425570
Update validateImplementation
Nov 2, 2018
5a5acbf
Update validateLog4j
Nov 2, 2018
dd376bb
Fix read file encoding on validateDataWeaveFiles
Nov 2, 2018
3d6f18f
Fix read file encoding on validateGitignore
Nov 2, 2018
706fb5f
Fix read file encoding on validateProperties
Nov 2, 2018
2512f15
Version 1.3.1
Nov 2, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 4 additions & 1 deletion constants.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,10 @@ const cloudCIOnlyMavenProperties = [
"anypoint.platform.client_secret"
];

const encoding = "utf8";

module.exports = {
propertyPlaceholderRegEx,
cloudCIOnlyMavenProperties
cloudCIOnlyMavenProperties,
encoding
};
2 changes: 1 addition & 1 deletion mulint.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ const validateDataWeaveFiles = require("./validateDataWeaveFiles");
const assert = require("./assert");

program
.version("1.3.0")
.version("1.3.1")
.description("Mule project linter")
.arguments("<apiBasePath>")
.on("--help", () => {
Expand Down
26 changes: 6 additions & 20 deletions pomParser.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,27 +1,13 @@
const fs = require("fs");
const xml2js = require("xml2js");
const error = require("./error");
const xmlParser = require("./xmlParser");

const pomParser = pomFile => {
let contents = fs.readFileSync(pomFile);
let parser = new xml2js.Parser();
let { xml } = xmlParser(pomFile);
let xmlProperties = xml.project.properties[0];
let properties = new Map();
let xml;

// synchronous by default in current version of xml2js
parser.parseString(contents, (err, result) => {
if (err) {
error.fatal(err);
}

xml = result;

let xmlProperties = xml.project.properties[0];

for (let property in xmlProperties) {
properties.set(property, xmlProperties[property][0]);
}
});
for (let property in xmlProperties) {
properties.set(property, xmlProperties[property][0]);
}

let isOnPrem = properties.get("deployment.type") === "arm";

Expand Down
77 changes: 34 additions & 43 deletions validateApiFiles.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,5 @@
const fs = require("fs");
const xmlParser = require("./xmlParser");
const path = require("path");
const xml2js = require("xml2js");
const error = require("./error");
const assert = require("./assert");

const expectedOnPremListenerConfig = "standardHTTPS";
Expand All @@ -10,58 +8,51 @@ const expectedListenerPathRegEx = /^\/(?:console|api)\/.+\/v1\/(?:.+\/)?\*$/;
const validateApiFiles = (folderInfo, pomInfo) => {
folderInfo.apiFiles.forEach(apiFile => {
let apiFileName = path.basename(apiFile);
let contents = fs.readFileSync(apiFile);
let parser = new xml2js.Parser();
let { xml } = xmlParser(apiFile);

parser.parseString(contents, (err, result) => {
if (err) {
error.fatal(err);
}

result.mule.flow.map(flow => {
let listener = flow["http:listener"];
xml.mule.flow.map(flow => {
let listener = flow["http:listener"];

if (listener) {
let listenerAttributes = listener[0]["$"];
if (listener) {
let listenerAttributes = listener[0]["$"];

if (pomInfo.isOnPrem) {
assert.equals(
expectedOnPremListenerConfig,
listenerAttributes["config-ref"],
`${apiFileName} http:listener config`
);
}

assert.matches(
expectedListenerPathRegEx,
listenerAttributes["path"],
`${apiFileName} http:listener path`
if (pomInfo.isOnPrem) {
assert.equals(
expectedOnPremListenerConfig,
listenerAttributes["config-ref"],
`${apiFileName} http:listener config`
);
}

let exceptionStrategy = flow["exception-strategy"];

assert.isTrue(
exceptionStrategy,
`${apiFileName}: Missing exception strategy`
assert.matches(
expectedListenerPathRegEx,
listenerAttributes["path"],
`${apiFileName} http:listener path`
);
}

if (exceptionStrategy) {
let exceptionStrategyAttributes = exceptionStrategy[0]["$"];

assert.equals(
"ChoiceExceptionStrategy",
exceptionStrategyAttributes.ref,
`${apiFileName} exception-strategy ref`
);
}
});
let exceptionStrategy = flow["exception-strategy"];

assert.isTrue(
!result.mule["apikit:mapping-exception-strategy"],
`${apiFileName}: APIkit exception strategy not removed`
exceptionStrategy,
`${apiFileName}: Missing exception strategy`
);

if (exceptionStrategy) {
let exceptionStrategyAttributes = exceptionStrategy[0]["$"];

assert.equals(
"ChoiceExceptionStrategy",
exceptionStrategyAttributes.ref,
`${apiFileName} exception-strategy ref`
);
}
});

assert.isTrue(
!xml.mule["apikit:mapping-exception-strategy"],
`${apiFileName}: APIkit exception strategy not removed`
);
});
};

Expand Down
4 changes: 2 additions & 2 deletions validateDataWeaveFiles.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@ const fs = require("fs");
const path = require("path");
const os = require("os");
const assert = require("./assert");
const { encoding } = require("./constants");

// Possible false positive - might be line comment
// as opposed to commented-out code.
Expand All @@ -13,8 +14,7 @@ const validateDataWeaveFiles = folderInfo => {
let context = path.basename(dataWeaveFile);

let lines = fs
.readFileSync(dataWeaveFile)
.toString()
.readFileSync(dataWeaveFile, encoding)
.split(os.EOL);

let isCommentedOutLine = false;
Expand Down
3 changes: 2 additions & 1 deletion validateGitignore.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,9 @@
const fs = require("fs");
const assert = require("./assert");
const { encoding } = require("./constants");

const validateGitignore = folderInfo => {
let contents = fs.readFileSync(folderInfo.gitignoreFile).toString();
let contents = fs.readFileSync(folderInfo.gitignoreFile, encoding);

assert.isTrue(
/^\.project\s*$/m.test(contents),
Expand Down
131 changes: 61 additions & 70 deletions validateGlobal.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,96 +1,87 @@
const { propertyPlaceholderRegEx } = require("./constants");
const fs = require("fs");
const xml2js = require("xml2js");
const error = require("./error");
const xmlParser = require("./xmlParser");
const assert = require("./assert");

const expectedTlsContext = "clientTlsContext";

const validateGlobal = folderInfo => {
let contents = fs.readFileSync(folderInfo.globalFile);
let parser = new xml2js.Parser();
let { contents, xml } = xmlParser(folderInfo.globalFile);

assert.isTrue(
!contents.includes("<db:dynamic-query>"),
"Global: Dynamic query is not permitted - vulnerable to SQL injection"
);

parser.parseString(contents, (err, result) => {
if (err) {
error.fatal(err);
}

assert.isTrue(
result.mule["api-platform-gw:api"] &&
result.mule["api-platform-gw:api"][0]["$"]["doc:name"] ===
"API Autodiscovery",
"Global: API Autodiscovery not configured"
);

let requestConfigs = result.mule["http:request-config"];
assert.isTrue(
xml.mule["api-platform-gw:api"] &&
xml.mule["api-platform-gw:api"][0]["$"]["doc:name"] ===
"API Autodiscovery",
"Global: API Autodiscovery not configured"
);

if (requestConfigs) {
requestConfigs.forEach(requestConfig => {
let requestConfigAttributes = requestConfig["$"];
let requestConfigs = xml.mule["http:request-config"];

let protocol = requestConfigAttributes.protocol;
let host = requestConfigAttributes["host"];
let usesMockService = host && host.includes("mock");
if (requestConfigs) {
requestConfigs.forEach(requestConfig => {
let requestConfigAttributes = requestConfig["$"];

if (usesMockService) {
return; // continue forEach, skip remaining checks
}
let protocol = requestConfigAttributes.protocol;
let host = requestConfigAttributes["host"];
let usesMockService = host && host.includes("mock");

if (protocol === "HTTPS") {
let tlsContext = requestConfigAttributes["tlsContext-ref"];
if (usesMockService) {
return; // continue forEach, skip remaining checks
}

assert.equals(
expectedTlsContext,
tlsContext,
`Global ${requestConfigAttributes.name} tlsContext`
);
}
if (protocol === "HTTPS") {
let tlsContext = requestConfigAttributes["tlsContext-ref"];

assert.matches(
propertyPlaceholderRegEx,
requestConfigAttributes.host,
`Global ${requestConfigAttributes.name} host`
assert.equals(
expectedTlsContext,
tlsContext,
`Global ${requestConfigAttributes.name} tlsContext`
);

assert.matches(
propertyPlaceholderRegEx,
requestConfigAttributes.port,
`Global ${requestConfigAttributes.name} port`
}

assert.matches(
propertyPlaceholderRegEx,
requestConfigAttributes.host,
`Global ${requestConfigAttributes.name} host`
);

assert.matches(
propertyPlaceholderRegEx,
requestConfigAttributes.port,
`Global ${requestConfigAttributes.name} port`
);
});
}

let templateQueries = xml.mule["db:template-query"];

if (templateQueries) {
templateQueries.forEach(templateQuery => {
let query = templateQuery["db:parameterized-query"];

if (query) {
let queryAttributes = query[0]["$"];
let isFileQuery = queryAttributes && queryAttributes.file;

assert.isTrue(
isFileQuery,
"Global: Inline SQL should be moved to file"
);
});
}

let templateQueries = result.mule["db:template-query"];

if (templateQueries) {
templateQueries.forEach(templateQuery => {
let query = templateQuery["db:parameterized-query"];

if (query) {
let queryAttributes = query[0]["$"];
let isFileQuery = queryAttributes && queryAttributes.file;

assert.isTrue(
isFileQuery,
"Global: Inline SQL should be moved to file"
if (isFileQuery) {
assert.matches(
/^sql\//,
queryAttributes.file,
"Global: Database query file"
);

if (isFileQuery) {
assert.matches(
/^sql\//,
queryAttributes.file,
"Global: Database query file"
);
}
}
});
}
});
}
});
}
};

module.exports = validateGlobal;
25 changes: 8 additions & 17 deletions validateImplementation.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,5 @@
const fs = require("fs");
const path = require("path");
const xml2js = require("xml2js");
const error = require("./error");
const xmlParser = require("./xmlParser");
const assert = require("./assert");

// XML elements immediately below the root other than
Expand All @@ -19,8 +17,7 @@ const permittedTopLevelElements = new Set([
const validateImplementation = folderInfo => {
folderInfo.implementationFiles.forEach(implementationFile => {
let implementationFileName = path.basename(implementationFile);
let contents = fs.readFileSync(implementationFile);
let parser = new xml2js.Parser();
let { contents, xml } = xmlParser(implementationFile);

assert.isTrue(
!contents.includes("<db:dynamic-query>"),
Expand All @@ -32,18 +29,12 @@ const validateImplementation = folderInfo => {
`${implementationFileName}: Inline SQL should be moved to file/template`
);

parser.parseString(contents, (err, result) => {
if (err) {
error.fatal(err);
}

for (let topLevelElement in result.mule) {
assert.isTrue(
permittedTopLevelElements.has(topLevelElement),
`${implementationFileName}: ${topLevelElement} is not permitted`
);
}
});
for (let topLevelElement in xml.mule) {
assert.isTrue(
permittedTopLevelElements.has(topLevelElement),
`${implementationFileName}: ${topLevelElement} is not permitted`
);
}
});
};

Expand Down
Loading