Demonstrate defining URI and reflected response

Signed-off-by: Sebitosh <[email protected]>

Author: Sebitosh

feature_demo/config_tests/DEMO_008_URI_REFLECT.yaml

@@ -0,0 +1,28 @@
+target: ARGS
+rulefile: DEMO_008_URI_REFLECT.conf
+testfile: DEMO_008_URI_REFLECT.yaml
+templates:
+- SecRule for TARGETS
+colkey:
+- - ''
+operator:
+- '@contains'
+oparg:
+- foo
+phase:
+- 2
+testdata:
+  phase_methods:
+    2: post
+  targets:
+    - target: ''
+      test:
+        data: '{"status": 201, "body": "<html>reflected-token</html>"}'
+        input:
+          headers:
+            - name: Content-Type
+              value: application/json
+          uri: '/reflect'
+        output:
+          status: 201
+          response_contains: "reflected-token"

feature_demo/generated/rules/DEMO_008_URI_REFLECT.conf

@@ -0,0 +1,9 @@
+SecRule ARGS "@contains foo" \
+    "id:100013,\
+    phase:2,\
+    deny,\
+    t:none,\
+    log,\
+    msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\
+    ver:'MRTS/0.1'"
+

feature_demo/generated/tests/DEMO_008_URI_REFLECT_100013.yaml

@@ -0,0 +1,29 @@
+---
+meta:
+  author: MRTS generate-rules.py
+  enabled: true
+  name: DEMO_008_URI_REFLECT.yaml
+  description: Desc
+tests:
+- test_title: 100013-1
+  ruleid: 100013
+  test_id: 1
+  desc: 'Test case for rule 100013, #1'
+  stages:
+  - description: Send request
+    input:
+      dest_addr: 127.0.0.1
+      port: 80
+      protocol: http
+      method: POST
+      headers:
+        User-Agent: OWASP MRTS test agent
+        Host: localhost
+        Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
+        Content-Type: application/json
+      uri: /reflect
+      version: HTTP/1.1
+      data: '{"status": 201, "body": "<html>reflected-token</html>"}'
+    output:
+      status: 201
+      response_contains: reflected-token