Examples of com.eviware.soapui.model.iface.MessageExchange

com.eviware.soapui.model.iface.MessageExchange
An exchange of a request and response message @author ole.matzura

                                      SecurityTestRunner securityTestRunner, List<String> urls,
                                      CrossSiteScriptingScanConfig parameterExposureCheckConfig, List<AssertionError> assertionErrorList) {
        boolean throwException = false;
        for (String url : urls) {
            HttpTestRequestStep httpRequest = createHttpRequest((WsdlTestStep) testStep, url);
            MessageExchange messageExchange2 = (MessageExchange) httpRequest.run((TestCaseRunner) securityTestRunner,
                    (SecurityTestRunContext) context);


            for (String value : parameterExposureCheckConfig.getParameterExposureStringsList()) {
                value = context.expand(value);// property expansion support
                String match = SecurityScanUtil.contains(context, new String(messageExchange2.getRawResponseData()),
                        value, false);
                if (match != null) {
                    String shortValue = value.length() > 25 ? value.substring(0, 22) + "... " : value;
                    String message = "XSS content sent in request '" + shortValue + "' is exposed in response on link "
                            + url + " . Possibility for XSS script attack in: " + messageExchange.getModelItem().getName();

View Full Code Here


    @Override
    protected void execute(SecurityTestRunner securityTestRunner, TestStep testStep, SecurityTestRunContext context) {
        try {
            StringToStringMap updatedParams = updateRequestContent(testStep, context);
            MessageExchange message = (MessageExchange) testStep.run((TestCaseRunner) securityTestRunner, context);


            createMessageExchange(updatedParams, message, context);
        } catch (XmlException e) {
            SoapUI.logError(e, "[InvalidtypeSecurityScan]XPath seems to be invalid!");
            reportSecurityScanException("Property value is not XML or XPath is wrong!");

View Full Code Here


    @Override
    protected void execute(SecurityTestRunner securityTestRunner, TestStep testStep, SecurityTestRunContext context) {
        try {
            StringToStringMap updatedParams = update(testStep, context);
            MessageExchange message = (MessageExchange) testStep.run((TestCaseRunner) securityTestRunner, context);
            createMessageExchange(updatedParams, message, context);
        } catch (XmlException e) {
            SoapUI.logError(e, "[SqlInjectionSecurityScan]XPath seems to be invalid!");
            reportSecurityScanException("Property value is not XML or XPath is wrong!");
        } catch (Exception e) {

View Full Code Here

                RestRequestStepResult message = (RestRequestStepResult) mutation.getTestStep().run(
                        (TestCaseRunner) securityTestRunner, context);
                message.setRequestContent("");
                createMessageExchange(mutation.getMutatedParameters(), message, context);
            } else {
                MessageExchange message = (MessageExchange) mutation.getTestStep().run(
                        (TestCaseRunner) securityTestRunner, context);
                if (message instanceof WsdlTestRequestStepResult) {
                    ((WsdlTestRequestStepResult) message).setRequestContent("", false);
                }

View Full Code Here


    @Override
    protected void execute(SecurityTestRunner runner, TestStep testStep, SecurityTestRunContext context) {
        try {
            StringToStringMap paramsUpdated = update(testStep, context);
            MessageExchange message = (MessageExchange) testStep.run((TestCaseRunner) runner, context);
            createMessageExchange(paramsUpdated, message, context);
        } catch (XmlException e) {
            SoapUI.logError(e, "[MalformedXmlSecurityScan]XPath seems to be invalid!");
            reportSecurityScanException("Property value is not XML or XPath is wrong!");
        } catch (Exception e) {

View Full Code Here

    protected void execute(SecurityTestRunner securityTestRunner, TestStep testStep, SecurityTestRunContext context) {
        try {
            request.removeAttachmentsChangeListener(this);
            generateFiles();
            updateRequestContent(testStep, context);
            MessageExchange message = (MessageExchange) testStep.run((TestCaseRunner) securityTestRunner, context);
            getSecurityScanRequestResult().setMessageExchange(message);
            request.addAttachmentsChangeListener(this);
        } catch (Exception e) {
            SoapUI.logError(e, "[MaliciousAttachmentSecurityScan]Property value is not valid xml!");
            reportSecurityScanException("Property value is not XML or XPath is wrong!");

View Full Code Here

    protected void execute(SecurityTestRunner securityTestRunner, TestStep testStep, SecurityTestRunContext context) {
        PropertyMutation mutation = popMutation(context);
        if (mutation != null) {


            updateRequestProperty(testStep, mutation);
            MessageExchange message = (MessageExchange) testStep.run((TestCaseRunner) securityTestRunner, context);
            createMessageExchange(mutation.getMutatedParameters(), message, context);
        }
    }

View Full Code Here

        public WsdlMessageExchangeRequestHeadersModel(MessageExchangeModelItem request) {
            super(true, request, MessageExchangeModelItem.MESSAGE_EXCHANGE);
        }


        public StringToStringsMap getHeaders() {
            MessageExchange messageExchange = getModelItem().getMessageExchange();
            return messageExchange == null ? new StringToStringsMap() : messageExchange.getRequestHeaders();
        }

View Full Code Here

        public WsdlMessageExchangeResponseHeadersModel(MessageExchangeModelItem response) {
            super(true, response, MessageExchangeModelItem.MESSAGE_EXCHANGE);
        }


        public StringToStringsMap getHeaders() {
            MessageExchange messageExchange = getModelItem().getMessageExchange();
            return messageExchange == null ? new StringToStringsMap() : messageExchange.getResponseHeaders();
        }

View Full Code Here

            super(true, messageExchangeModelItem, MessageExchangeModelItem.MESSAGE_EXCHANGE);
            this.messageExchangeModelItem = messageExchangeModelItem;
        }


        public StringToStringMap getJMSHeadersAndProperties() {
            MessageExchange messageExchange = getModelItem().getMessageExchange();
            if (messageExchange != null && messageExchange.getRequestHeaders() != null) {
                return messageExchange.getRequestHeaders().toStringToStringMap();
            } else {
                return new StringToStringMap();
            }
        }

View Full Code Here

0 1 2 3 4

TOP

Related Classes of com.eviware.soapui.model.iface.MessageExchange

com.eviware.soapui.impl.rest.panels.request.views.json.JsonResponseMessageExchangeView

com.eviware.soapui.impl.wsdl.submit.transports.jms.util.JMSUtils

com.eviware.soapui.impl.wsdl.support.MessageExchangeModelItem

com.eviware.soapui.impl.wsdl.support.MessageExchangeRequestMessageEditor

com.eviware.soapui.impl.wsdl.support.MessageExchangeResponseMessageEditor

com.eviware.soapui.impl.wsdl.teststeps.assertions.basic.GroovyScriptAssertion$GroovyScriptAssertionPanel$RunAction

com.eviware.soapui.security.assertion.CrossSiteScriptAssertion

com.eviware.soapui.security.scan.BoundarySecurityScan

com.eviware.soapui.security.scan.CrossSiteScriptingScan

com.eviware.soapui.security.scan.FuzzerSecurityScan

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.