Merge branch 'insecure'

Author: pimterry

src/targets/go/native.js

@@ -47,6 +47,10 @@ module.exports = function (source, options) {
       code.push(indent, '"time"')
     }
 
+    if (opts.insecureSkipVerify) {
+      code.push(indent, '"crypto/tls"')
+    }
+
     if (source.postData.text) {
       code.push(indent, '"strings"')
     }
@@ -63,14 +67,28 @@ module.exports = function (source, options) {
       .blank()
   }
 
+  // Create an insecure transport for the client
+  if (opts.insecureSkipVerify) {
+    code.push(indent, 'insecureTransport := http.DefaultTransport.(*http.Transport).Clone()')
+    code.push(indent, 'insecureTransport.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}')
+  }
+
   // Create client
   let client
-  if (opts.timeout > 0) {
+  if (opts.timeout > 0 || opts.insecureSkipVerify) {
     client = 'client'
     code.push(indent, 'client := http.Client{')
-      .push(indent + 1, 'Timeout: time.Duration(%s * time.Second),', opts.timeout)
-      .push(indent, '}')
-      .blank()
+
+    if (opts.timeout > 0) {
+      code.push(indent + 1, 'Timeout: time.Duration(%s * time.Second),', opts.timeout)
+    }
+
+    if (opts.insecureSkipVerify) {
+      code.push(indent + 1, 'Transport: insecureTransport,')
+    }
+
+    code.push(indent, '}')
+    code.blank()
   } else {
     client = 'http.DefaultClient'
   }

src/targets/node/native.js

@@ -28,6 +28,10 @@ module.exports = function (source, options) {
     headers: source.allHeaders
   }
 
+  if (options.insecureSkipVerify) {
+    reqOpts.rejectUnauthorized = false
+  }
+
   code.push('const http = require("%s");', source.uriObj.protocol.replace(':', ''))
 
   code.blank()

src/targets/python/python3.js

@@ -16,13 +16,25 @@ module.exports = function (source, options) {
   const code = new CodeBuilder()
   // Start Request
   code.push('import http.client')
-    .blank()
+
+  if (options.insecureSkipVerify) {
+    code.push('import ssl')
+  }
+
+  code.blank()
 
   // Check which protocol to be used for the client connection
   const protocol = source.uriObj.protocol
   if (protocol === 'https:') {
-    code.push('conn = http.client.HTTPSConnection("%s")', source.uriObj.host)
-      .blank()
+    if (options.insecureSkipVerify) {
+      code.push(
+        'conn = http.client.HTTPSConnection("%s", context = ssl._create_unverified_context())',
+        source.uriObj.host
+      ).blank()
+    } else {
+      code.push('conn = http.client.HTTPSConnection("%s")', source.uriObj.host)
+        .blank()
+    }
   } else {
     code.push('conn = http.client.HTTPConnection("%s")', source.uriObj.host)
       .blank()

src/targets/ruby/native.js

@@ -34,7 +34,10 @@ module.exports = function (source, options) {
 
   if (source.uriObj.protocol === 'https:') {
     code.push('http.use_ssl = true')
-      .push('http.verify_mode = OpenSSL::SSL::VERIFY_NONE')
+
+    if (options.insecureSkipVerify) {
+      code.push('http.verify_mode = OpenSSL::SSL::VERIFY_NONE')
+    }
   }
 
   code.blank()

src/targets/shell/curl.js

@@ -36,6 +36,10 @@ module.exports = function (source, options) {
   }
   code.push(util.format('%s%s', opts.short ? '' : '--url ', formattedUrl))
 
+  if (opts.insecureSkipVerify) {
+    code.push(opts.short ? '-k' : '--insecure')
+  }
+
   if (source.httpVersion === 'HTTP/1.0') {
     code.push(opts.short ? '-0' : '--http1.0')
   }

test/fixtures/output/ruby/native/https.rb

@@ -6,7 +6,6 @@
 
 http = Net::HTTP.new(url.host, url.port)
 http.use_ssl = true
-http.verify_mode = OpenSSL::SSL::VERIFY_NONE
 
 request = Net::HTTP::Get.new(url)
 

test/targets/go/native.js

@@ -132,6 +132,51 @@ func main() {
 \tfmt.Println(res)
 \tfmt.Println(string(body))
 
+}`)
+  })
+
+  it('should support insecureSkipVerify option', function () {
+    const result = new HTTPSnippet(fixtures.requests.full).convert('go', 'native', {
+      insecureSkipVerify: true
+    })
+
+    result.should.be.a.String()
+    result.should.eql(`package main
+
+import (
+\t"fmt"
+\t"crypto/tls"
+\t"strings"
+\t"net/http"
+\t"io/ioutil"
+)
+
+func main() {
+
+\tinsecureTransport := http.DefaultTransport.(*http.Transport).Clone()
+\tinsecureTransport.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
+\tclient := http.Client{
+\t\tTransport: insecureTransport,
+\t}
+
+\turl := "http://mockbin.com/har?foo=bar&foo=baz&baz=abc&key=value"
+
+\tpayload := strings.NewReader("foo=bar")
+
+\treq, _ := http.NewRequest("POST", url, payload)
+
+\treq.Header.Add("cookie", "foo=bar; bar=baz")
+\treq.Header.Add("accept", "application/json")
+\treq.Header.Add("content-type", "application/x-www-form-urlencoded")
+
+\tres, _ := client.Do(req)
+
+\tdefer res.Body.Close()
+\tbody, _ := ioutil.ReadAll(res.Body)
+
+\tfmt.Println(res)
+\tfmt.Println(string(body))
+
 }`)
   })
 }

test/targets/node/native.js

@@ -1,3 +1,36 @@
 'use strict'
 
-module.exports = function (snippet, fixtures) {}
+module.exports = function (HTTPSnippet, fixtures) {
+  it('should support the insecureSkipVerify option', function () {
+    const result = new HTTPSnippet(fixtures.requests.https).convert('node', 'native', {
+      insecureSkipVerify: true
+    })
+
+    result.should.be.a.String()
+    result.should.eql(`const http = require("https");
+
+const options = {
+  "method": "GET",
+  "hostname": "mockbin.com",
+  "port": null,
+  "path": "/har",
+  "headers": {},
+  "rejectUnauthorized": false
+};
+
+const req = http.request(options, function (res) {
+  const chunks = [];
+
+  res.on("data", function (chunk) {
+    chunks.push(chunk);
+  });
+
+  res.on("end", function () {
+    const body = Buffer.concat(chunks);
+    console.log(body.toString());
+  });
+});
+
+req.end();`)
+  })
+}

test/targets/python/python3.js

@@ -2,4 +2,23 @@
 
 require('should')
 
-module.exports = function (snippet, fixtures) {}
+module.exports = function (HTTPSnippet, fixtures) {
+  it('should support insecureSkipVerify', function () {
+    const result = new HTTPSnippet(fixtures.requests.https).convert('python', 'python3', {
+      insecureSkipVerify: true
+    })
+
+    result.should.be.a.String()
+    result.should.eql(`import http.client
+import ssl
+
+conn = http.client.HTTPSConnection("mockbin.com", context = ssl._create_unverified_context())
+
+conn.request("GET", "/har")
+
+res = conn.getresponse()
+data = res.read()
+
+print(data.decode("utf-8"))`)
+  })
+}

test/targets/ruby/native.js

@@ -1,3 +1,25 @@
 'use strict'
 
-module.exports = function (snippet, fixtures) {}
+module.exports = function (HTTPSnippet, fixtures) {
+  it('should support insecureSkipVerify', function () {
+    const result = new HTTPSnippet(fixtures.requests.https).convert('ruby', 'native', {
+      insecureSkipVerify: true
+    })
+
+    result.should.be.a.String()
+    result.should.eql(`require 'uri'
+require 'net/http'
+require 'openssl'
+
+url = URI("https://mockbin.com/har")
+
+http = Net::HTTP.new(url.host, url.port)
+http.use_ssl = true
+http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+
+request = Net::HTTP::Get.new(url)
+
+response = http.request(request)
+puts response.read_body`)
+  })
+}