Class: Relevance::Tarantula::FormSubmission

Inherits:

Object

• Object
• Relevance::Tarantula::FormSubmission

Includes:

Relevance::Tarantula

Defined in:

lib/relevance/tarantula/form_submission.rb

Instance Attribute Summary

• #action ⇒ Object

  Returns the value of attribute action.

• #attack ⇒ Object

  Returns the value of attribute attack.

• #data ⇒ Object

  Returns the value of attribute data.

• #form ⇒ Object

  Returns the value of attribute form.

• #method ⇒ Object

  Returns the value of attribute method.

Class Method Summary

• .attacks ⇒ Object
• .attacks=(atts) ⇒ Object
• .mutate(form) ⇒ Object

Instance Method Summary

• #crawl ⇒ Object
• #create_random_data_for(form, tag_selector) ⇒ Object
• #initialize(form, attack = Relevance::Tarantula::BasicAttack.new) ⇒ FormSubmission constructor

  A new instance of FormSubmission.

• #mutate_inputs(form) ⇒ Object
• #mutate_selects(form) ⇒ Object
• #mutate_text_areas(form) ⇒ Object
• #random_data(input) ⇒ Object
• #signature ⇒ Object

  a form’s signature is what makes it unique (e.g. action + fields) used to keep track of which forms we have submitted already.

• #to_s ⇒ Object

Methods included from Relevance::Tarantula

#log, #rails_root, #tarantula_home, #verbose

Constructor Details

#initialize(form, attack = Relevance::Tarantula::BasicAttack.new) ⇒ FormSubmission

Returns a new instance of FormSubmission.

# File 'lib/relevance/tarantula/form_submission.rb', line 22

def initialize(form, attack = Relevance::Tarantula::BasicAttack.new)
  @form = form
  @method = form.method
  @action = form.action
  @attack = attack
  @data = mutate_selects(form).merge(mutate_text_areas(form)).merge(mutate_inputs(form))
end

Instance Attribute Details

#action ⇒ Object

Returns the value of attribute action.

# File 'lib/relevance/tarantula/form_submission.rb', line 3

def action
  @action
end

#attack ⇒ Object

Returns the value of attribute attack.

# File 'lib/relevance/tarantula/form_submission.rb', line 3

def attack
  @attack
end

#data ⇒ Object

Returns the value of attribute data.

# File 'lib/relevance/tarantula/form_submission.rb', line 3

def data
  @data
end

#form ⇒ Object

Returns the value of attribute form.

# File 'lib/relevance/tarantula/form_submission.rb', line 3

def form
  @form
end

#method ⇒ Object

Returns the value of attribute method.

# File 'lib/relevance/tarantula/form_submission.rb', line 3

def method
  @method
end

Class Method Details

.attacks ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 6

def attacks
  # normalize from hash input to Attack
  @attacks = @attacks.map do |val|
    Hash === val ? Relevance::Tarantula::Attack.new(val) : val
  end
  @attacks
end

.attacks=(atts) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 13

def attacks=(atts)
  # normalize from hash input to Attack
  @attacks = atts.map do |val|
    Hash === val ? Relevance::Tarantula::Attack.new(val) : val
  end
end

.mutate(form) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 42

def self.mutate(form)
  attacks.map{|attack| new(form, attack)} if attacks
end

Instance Method Details

#crawl ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 30

def crawl
  begin
    response = form.crawler.submit(method, action, data)
    log "Response #{response.code} for #{self}"
  rescue ActiveRecord::RecordNotFound => e
    log "Skipping #{action}, presumed ok that record is missing"
    response = Relevance::Tarantula::Response.new(:code => "404", :body => e.message, :content_type => "text/plain")
  end
  form.crawler.handle_form_results(self, response)
  response
end

#create_random_data_for(form, tag_selector) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 56

def create_random_data_for(form, tag_selector)
  form.search(tag_selector).inject({}) do |form_args, input|
    # TODO: test
    form_args[input['name']] = random_data(input) if input['name']
    form_args
  end
end

#mutate_inputs(form) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 64

def mutate_inputs(form)
  create_random_data_for(form, 'input')
end

#mutate_selects(form) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 72

def mutate_selects(form)
  form.search('select').inject({}) do |form_args, select|
    options = select.search('option')
    option = options.rand
    form_args[select['name']] = option['value']
    form_args
  end
end

#mutate_text_areas(form) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 68

def mutate_text_areas(form)
  create_random_data_for(form, 'textarea')
end

#random_data(input) ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 81

def random_data(input)
  case input['name']
  when /^_method$/      then input['value']
  else
    attack.input(input)
  end
end

#signature ⇒ Object

a form’s signature is what makes it unique (e.g. action + fields) used to keep track of which forms we have submitted already

# File 'lib/relevance/tarantula/form_submission.rb', line 52

def signature
  [action, data.keys.sort, attack.name]
end

#to_s ⇒ Object

# File 'lib/relevance/tarantula/form_submission.rb', line 46

def to_s
  "#{action} #{method} #{data.inspect} #{attack.inspect}"
end