Add error checking for HTTP error codes to all API calls

jeff-a-holland · jeff-a-holland · commit 5179b5d8268d · 2020-08-01T14:27:42.000-05:00
diff --git a/chain/create.py b/chain/create.py
@@ -57,15 +57,20 @@ def create_scans(policy_uuid, scan_name, description, policy_id, folder_id,
         payload = re.sub('\s+', ' ', payload)
         logger.info(f'Payload is: {payload}')
 
-        url = "https://cloud.tenable.com/scans"
-        response = requests.request("POST", url, data=payload, headers=headers)
-
-        logger.info(f'The scan \"{scan_name}\" has been created')
-        # A delay is not required, but is good to tread lightly on the API
-        # and avoice rate limiting isues. See the following URL:
-        # https://developer.tenable.com/docs/rate-limiting
-        logger.info('Pausing for 1 second before the next API call....')
-        time.sleep(1)
+        try:
+            url = "https://cloud.tenable.com/scans"
+            response = requests.request("POST", url, data=payload, headers=headers)
+            response.raise_for_status()
+            logger.info(f'The scan \"{scan_name}\" has been created')
+            # A delay is not required, but is good to tread lightly on the API
+            # and avoice rate limiting isues. See the following URL:
+            # https://developer.tenable.com/docs/rate-limiting
+            logger.info('Pausing for 1 second before the next API call....')
+            time.sleep(1)
+
+        except requests.HTTPError as e:
+            logger.info(f'ERROR - {e}')
+            sys.exit()
 # End function
 
 # main function
diff --git a/chain/delete.py b/chain/delete.py
@@ -46,11 +46,16 @@ def get_scan_names(headers):
 # Function to get scan id's
 def get_scan_ids(headers):
     """Get scanner ID's from IO"""
-    url = "https://cloud.tenable.com/scans"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
+    try:
+        url = "https://cloud.tenable.com/scans"
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     cntr = 0
     for scan in data_dict['scans']:
@@ -67,9 +72,15 @@ def delete_scans(headers):
         if scan_name in scan_id_dict:
             scan_id = scan_id_dict[scan_name]
             scan_name = '"'.join([scan_name])
-            url = f"https://cloud.tenable.com/scans/{scan_id}"
-            response = requests.request("DELETE", url, headers=headers)
-            logger.info(f'Deleting scan "{scan_name}" with scan_id {scan_id}')
+            try:
+                url = f"https://cloud.tenable.com/scans/{scan_id}"
+                response = requests.request("DELETE", url, headers=headers)
+                response.raise_for_status()
+                logger.info(f'Deleting scan "{scan_name}" with scan_id {scan_id}')
+
+            except requests.HTTPError as e:
+                logger.info(f'ERROR - {e}')
+                sys.exit()
         else:
             logger.info('This scan does not exist in IO. Skipping ' \
                         f'DELETE API call for: "{scan_name}"')
diff --git a/chain/info.py b/chain/info.py
@@ -3,6 +3,7 @@
 
 # Import libraries
 import json
+import sys
 import logging
 from logging.config import fileConfig
 import requests
@@ -25,10 +26,14 @@
 def get_folders(headers):
     """Get folder ID's from IO"""
     url = "https://cloud.tenable.com/folders"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
+    try:
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     for policies in data_dict:
         length = len(data_dict['folders'])
@@ -51,10 +56,14 @@ def get_folders(headers):
 def get_scanners(headers):
     """Get scanner ID's from IO"""
     url = "https://cloud.tenable.com/scanners"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
+    try:
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     for scanners in data_dict:
         length = len(data_dict['scanners'])
@@ -72,10 +81,14 @@ def get_scanners(headers):
 def get_policies(headers):
     """Get policy ID's from IO"""
     url = "https://cloud.tenable.com/policies"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
+    try:
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     for policies in data_dict:
         length = len(data_dict['policies'])
@@ -97,10 +110,14 @@ def get_policies(headers):
 def get_tags(headers):
     """Get tag data from IO for using in scans.ini"""
     url = "https://cloud.tenable.com/tags/values"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
+    try:
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     for values in data_dict:
         length = len(data_dict['values'])
diff --git a/chain/run.py b/chain/run.py
@@ -52,8 +52,14 @@ def get_scan_names():
 # Function to run scan
 def run_scan(scan_id, headers):
     """Run scans defined in scans.ini config file"""
-    url = f"https://cloud.tenable.com/scans/{scan_id}/launch"
-    response = requests.request("POST", url, headers=headers)
+    try:
+        url = f"https://cloud.tenable.com/scans/{scan_id}/launch"
+        response = requests.request("POST", url, headers=headers)
+        response.raise_for_status()
+
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 # End function
 
 # Funtion to check scan status
@@ -63,10 +69,15 @@ def check_scan_status(scan_id, scan_status, headers):
     while scan_status == 'running' or scan_status == 'pending' or \
           scan_status == 'None':
         url = f"https://cloud.tenable.com/scans/{scan_id}"
-        response = requests.request("GET", url, headers=headers)
-        pretty_json = json.loads(response.text)
-        data3 = (json.dumps(pretty_json, indent=2))
-        data_dict3 = json.loads(data3)
+        try:
+            response = requests.request("GET", url, headers=headers)
+            pretty_json = json.loads(response.text)
+            data3 = (json.dumps(pretty_json, indent=2))
+            data_dict3 = json.loads(data3)
+
+        except requests.HTTPError as e:
+            logger.info(f'ERROR - {e}')
+            sys.exit()
 
         # Don't need a condition for 'None' as scan status is now either
         # pending, running, or completed
@@ -102,13 +113,19 @@ def main(access_key, secret_key):
     # Call function to get scan names from scans.ini file
     get_scan_names()
     # Get list of scans
-    url = "https://cloud.tenable.com/scans"
-    response = requests.request("GET", url, headers=headers)
-    pretty_json = json.loads(response.text)
-    data = (json.dumps(pretty_json, indent=2))
-    data_dict = json.loads(data)
-    length = len(data_dict['scans'])
-    logger.info(f'Number of total scans in IO instance is: {length}')
+    try:
+        url = "https://cloud.tenable.com/scans"
+        response = requests.request("GET", url, headers=headers)
+        pretty_json = json.loads(response.text)
+        data = (json.dumps(pretty_json, indent=2))
+        data_dict = json.loads(data)
+        length = len(data_dict['scans'])
+        response.raise_for_status()
+        logger.info(f'Number of total scans in IO instance is: {length}')
+
+    except requests.HTTPError as e:
+        logger.info(f'ERROR - {e}')
+        sys.exit()
 
     # Beginning of the section that runs scans
     logger.info('Running the following scans in a chained manner,' \
@@ -161,23 +178,34 @@ def main(access_key, secret_key):
     # Populate previous_scan_history_list so we can check later if a second
     # instantiation of the scripts still has any scans running
     for scan_id in chained_scan_id_list:
-        url = f"https://cloud.tenable.com/scans/{scan_id}"
-        response = requests.request("GET", url, headers=headers)
-        pretty_json = json.loads(response.text)
-        data2 = (json.dumps(pretty_json, indent=2))
-        data_dict2 = json.loads(data2)
+        try:
+            url = f"https://cloud.tenable.com/scans/{scan_id}"
+            response = requests.request("GET", url, headers=headers)
+            pretty_json = json.loads(response.text)
+            data2 = (json.dumps(pretty_json, indent=2))
+            data_dict2 = json.loads(data2)
+
+        except requests.HTTPError as e:
+            logger.info(f'ERROR - {e}')
+            sys.exit()
+
         if data_dict2['history'] != []:
             previous_scan_history_list.append( \
             data_dict2['history'][0]['status'])
 
     # Iterate over the chained_scan_id_list again, this time using
     # the list previous_scan_history_list built above
     for scan_id in chained_scan_id_list:
-        url = f"https://cloud.tenable.com/scans/{scan_id}"
-        response = requests.request("GET", url, headers=headers)
-        pretty_json = json.loads(response.text)
-        data4 = (json.dumps(pretty_json, indent=2))
-        data_dict4 = json.loads(data4)
+        try:
+            url = f"https://cloud.tenable.com/scans/{scan_id}"
+            response = requests.request("GET", url, headers=headers)
+            pretty_json = json.loads(response.text)
+            data4 = (json.dumps(pretty_json, indent=2))
+            data_dict4 = json.loads(data4)
+
+        except requests.HTTPError as e:
+            logger.info(f'ERROR - {e}')
+            sys.exit()
 
         if data_dict4['history'] != []:
             dict_val_as_str = str(data_dict4['history'][0]['status'])
