Revert "Extend site ssl settings resource with inbound tls settings (#360)" (#386)

This reverts commit f8af4b8.

Author: Pavel-Koev

incapsula/client_site_ssl_settings.go

@@ -15,38 +15,27 @@ type HSTSConfiguration struct {
 	PreLoaded          bool `json:"preLoaded"`
 }
 
-type InboundTLSSettingsConfiguration struct {
-	ConfigurationProfile string             `json:"configurationProfile"`
-	TLSConfigurations    []TLSConfiguration `json:"tlsConfiguration"`
-}
-
-type TLSConfiguration struct {
-	TLSVersion     string   `json:"tlsVersion"`
-	CiphersSupport []string `json:"ciphersSupport"`
+type Data struct {
+	HstsConfiguration HSTSConfiguration `json:"hstsConfiguration"`
 }
 
 type SSLSettingsDTO struct {
-	HstsConfiguration               HSTSConfiguration                `json:"hstsConfiguration"`
-	InboundTLSSettingsConfiguration *InboundTLSSettingsConfiguration `json:"inboundTlsSettings,omitempty"`
-}
-
-type SSLSettingsResponse struct {
-	Data []SSLSettingsDTO `json:"data"`
+	Data []Data `json:"data"`
 }
 
-func (c *Client) UpdateSiteSSLSettings(siteID int, mySSLSettings SSLSettingsResponse) (*SSLSettingsResponse, error) {
+func (c *Client) UpdateSiteSSLSettings(siteID int, mySSLSettings SSLSettingsDTO) (*SSLSettingsDTO, error) {
 	log.Printf("[INFO] Updating Incapsula Site SSL settings for Site ID %d\n", siteID)
 
 	requestJSON, err := json.Marshal(mySSLSettings)
 	if err != nil {
-		return nil, fmt.Errorf("failed to JSON marshal SSLSettings: %s", err)
+		return nil, fmt.Errorf("failed to JSON marshal HSTSConfiguration: %s", err)
 	}
 
-	// Patch request to Incapsula
-	reqURL := fmt.Sprintf("%s/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", c.config.BaseURLAPI, siteID)
-	log.Printf("[INFO] SSL Settings request json looks like this %s\n", requestJSON)
-	log.Printf("[INFO] SSL Settings request URL looks like this %s\n", reqURL)
-	resp, err := c.DoJsonRequestWithHeaders(http.MethodPatch, reqURL, requestJSON, UpdateSiteSSLSettings)
+	// Put request to Incapsula
+	reqURL := fmt.Sprintf("%s/sites/%d/settings/TLSConfiguration", c.config.BaseURLRev3, siteID)
+	log.Printf("[INFO] HSTS request json looks like this %s\n", requestJSON)
+	log.Printf("[INFO] HSTS request URL looks like this %s\n", reqURL)
+	resp, err := c.DoJsonRequestWithHeaders(http.MethodPost, reqURL, requestJSON, UpdateSiteSSLSettings)
 	if err != nil {
 		return nil, fmt.Errorf("error from Incapsula service when updating Site SSL settings %s for Site ID %d: %s", requestJSON, siteID, err)
 	}
@@ -64,20 +53,20 @@ func (c *Client) UpdateSiteSSLSettings(siteID int, mySSLSettings SSLSettingsResp
 	}
 
 	// Parse the JSON
-	var sslSettingsResponse SSLSettingsResponse
-	err = json.Unmarshal([]byte(responseBody), &sslSettingsResponse)
+	var sslSettingsDTO SSLSettingsDTO
+	err = json.Unmarshal([]byte(responseBody), &sslSettingsDTO)
 	if err != nil {
 		return nil, fmt.Errorf("Error parsing Incap Site settings JSON response for Site ID %d: %s\nresponse: %s", siteID, err, string(responseBody))
 	}
 
-	return &sslSettingsResponse, nil
+	return &sslSettingsDTO, nil
 }
 
-func (c *Client) ReadSiteSSLSettings(siteID int) (*SSLSettingsResponse, int, error) {
+func (c *Client) ReadSiteSSLSettings(siteID int) (*SSLSettingsDTO, int, error) {
 	log.Printf("[INFO] Getting Incapsula Incap SSL settings for Site ID %d\n", siteID)
 
-	// Get form to Incapsula
-	reqURL := fmt.Sprintf("%s/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", c.config.BaseURLAPI, siteID)
+	// Post form to Incapsula
+	reqURL := fmt.Sprintf("%s/sites/%d/settings/TLSConfiguration", c.config.BaseURLRev3, siteID)
 	resp, err := c.DoJsonRequestWithHeaders(http.MethodGet, reqURL, nil, ReadSiteSSLSettings)
 	if err != nil {
 		return nil, 0, fmt.Errorf("error from Incapsula service when reading SSL Settings for Site ID %d: %s", siteID, err)
@@ -96,11 +85,11 @@ func (c *Client) ReadSiteSSLSettings(siteID int) (*SSLSettingsResponse, int, err
 	}
 
 	// Parse the JSON
-	var sslSettingsResponse SSLSettingsResponse
-	err = json.Unmarshal([]byte(responseBody), &sslSettingsResponse)
+	var sslSettingsDTO SSLSettingsDTO
+	err = json.Unmarshal([]byte(responseBody), &sslSettingsDTO)
 	if err != nil {
 		return nil, resp.StatusCode, fmt.Errorf("error parsing Site SSL settings JSON response for Site ID %d: %s\nresponse: %s", siteID, err, string(responseBody))
 	}
 
-	return &sslSettingsResponse, resp.StatusCode, nil
+	return &sslSettingsDTO, resp.StatusCode, nil
 }

incapsula/client_site_ssl_settings_test.go

@@ -11,7 +11,7 @@ import (
 
 func TestUpdateSiteSSLSettingsHandleBadConnection(t *testing.T) {
 	// arrange
-	config := &Config{APIID: "foo", APIKey: "bar", BaseURLRev3: "badness.incapsula.com", BaseURLAPI: "badness.incapsula.com"}
+	config := &Config{APIID: "foo", APIKey: "bar", BaseURLRev3: "badness.incapsula.com"}
 	client := &Client{config: config, httpClient: &http.Client{Timeout: time.Millisecond * 1}}
 	sslSettingsDTO := getUpdateSiteSSLSettingsDTO()
 
@@ -34,7 +34,7 @@ func TestUpdateSiteSSLSettingsHandleResponseCodeNotSuccess(t *testing.T) {
 	apiKey := "bar"
 	siteID := 42
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(406)
@@ -71,7 +71,7 @@ func TestUpdateSiteSSLSettingsHandleInvalidResponseBody(t *testing.T) {
 	apiKey := "bar"
 	siteID := 42
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(200)
 
@@ -110,7 +110,7 @@ func TestUpdateSiteSSLSettingsSuccess(t *testing.T) {
 
 	validResponse := getValidJSONResponse()
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(200)
 
@@ -163,7 +163,7 @@ func TestReadSiteSSLSettingsHandleResponseCodeNotSuccess(t *testing.T) {
 	apiKey := "bar"
 	siteID := 42
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(406)
@@ -199,7 +199,7 @@ func TestReadSiteSSLSettingsHandleInvalidResponseBody(t *testing.T) {
 	apiKey := "bar"
 	siteID := 42
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(200)
 
@@ -237,7 +237,7 @@ func TestReadSiteSSLSettingsSuccess(t *testing.T) {
 
 	var validResponse = getValidJSONResponse()
 
-	endpoint := fmt.Sprintf("/sites-mgmt/v3/sites/%d/settings/TLSConfiguration", siteID)
+	endpoint := fmt.Sprintf("/sites/%d/settings/TLSConfiguration", siteID)
 	server := httptest.NewServer(http.HandlerFunc(func(rw http.ResponseWriter, req *http.Request) {
 		rw.WriteHeader(200)
 
@@ -265,40 +265,20 @@ func TestReadSiteSSLSettingsSuccess(t *testing.T) {
 	}
 }
 
-func getUpdateSiteSSLSettingsDTO() SSLSettingsResponse {
-	var sslSettingsDTO = SSLSettingsResponse{
-		Data: []SSLSettingsDTO{
+func getUpdateSiteSSLSettingsDTO() SSLSettingsDTO {
+	var sslSettingsDTO = SSLSettingsDTO{
+		Data: []Data{
 			{
 				HstsConfiguration: HSTSConfiguration{
 					PreLoaded:          true,
 					MaxAge:             1237,
 					SubDomainsIncluded: true,
 					IsEnabled:          true,
 				},
-				InboundTLSSettingsConfiguration: &InboundTLSSettingsConfiguration{
-					ConfigurationProfile: "CUSTOM",
-					TLSConfigurations: []TLSConfiguration{
-						{
-							TLSVersion: "TLS 1.1",
-							CiphersSupport: []string{
-								"TLS_AES_128_GCM_SHA256",
-								"TLS_AES_128_GCM_SHA256",
-							},
-						},
-						{
-							TLSVersion: "TLS 1.2",
-							CiphersSupport: []string{
-								"TLS_AES_128_GCM_SHA256",
-								"TLS_AES_128_GCM_SHA256",
-							},
-						},
-					},
-				},
 				// add more setting types here
 			},
 		},
 	}
-
 	return sslSettingsDTO
 }
 
@@ -315,29 +295,17 @@ func getClientTestConfig(apiID string, apiKey string, server *httptest.Server) *
 }
 
 func getValidJSONResponse() string {
-	var validResponse = `{
+	var invalidResponse = `{
 			"data":[
 				{
 					"hstsConfiguration":{
 						"isEnabled":true,
 						"maxAge":31536000,
 						"subDomainsIncluded":true,
 						"preLoaded":false
-					},
-                    "inboundTlsSettings": {
-                        "configurationProfile": "CUSTOM",
-                        "tlsConfiguration": [
-                            {
-                                "tlsVersion": "TLS 1.1",
-                                "ciphersSupport": [
-                                    "TLS_AES_128_GCM_SHA256",
-                                    "TLS_AES_128_GCM_SHA256"
-                                ]
-                            }
-                        ]
-                    }
+					}
 				}
 			]
 		}`
-	return validResponse
+	return invalidResponse
 }