[ BUG ] Passing bad credentials to a Service Class when using Credential or Object authentication produces a KeyError #134

jshcodes · 2021-04-19T09:44:03Z

Describe the bug
If you try to use Credential or Object authentication with a Service Class and provide invalid credentials when doing so, a KeyError is generated for the key 'access_token'.

To Reproduce

from falconpy import cloud_connect_aws as FalconAWS
falcon = FalconAWS.Cloud_Connect_AWS(creds={"client_id":"BadID","client_secret":"BadSecret"})
result = QueryAWSAccounts()

Results in

Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
  File "/usr/local/lib/python3.9/site-packages/falconpy/_service_class.py", line 60, in __init__
    self.headers = {'Authorization': 'Bearer {}'.format(auth_object.token()['body']['access_token'])}
KeyError: 'access_token'

Expected behavior
The object should instantiate successfully, then generate a HTTP 401 error (access denied, invalid bearer token) when a call to the API is made.

Environment (please complete the following information):

OS: Discovered using MacOS 10.15, assume impacts all operating systems
Python: Discovered using Python 3.9, assume impacts all versions
FalconPy: Affects versions 0.4.0 - 0.4.5

Additional context
Discovered while working on the multi-CID classes.

…uth), Closes #134

…essment Service Classes, Uber class endpoint submodule and linting refactor, Default value decorator, Gitbooks updates, Fixes (#133) * Added Zero Trust Assessment Service Class, Unit test adjustments * Removed _endpoint.py * Uber class endpoint private submodule * Fixed workflow naming convention that bugged me * Bump version 0.4.5 -> 0.4.6 * Added MSSP Service Class (Falcon Flight Control) * Updated main README.md * Updated package README.md * Fist shaking at the whitespace * Updated CHANGELOG.md * Update CHANGELOG.md * Update CHANGELOG.md * Update wordlist.txt * Update wordlist.txt * Update wordlist.txt * Update README.md * Unique ID parameter naming convention fixes * Removing old gitbooks content * Update gitbooks content * Update wordlist.txt * Update wordlist.txt * Typo fixes * Update wordlist.txt * Add Gitbook assets * Fix formatting issue * Update gitbook base README * Fixed the checkmark * Update README.md * Uber class linting refactor, updated default handling, new helper functions * Update CHANGELOG.md * Fix whitespace * Fix formatting * Fix KeyError on invalid creds to Service Class (Credential / Object auth), Closes #134 * Update CHANGELOG.md * Update wordlist.txt * Update CHANGELOG.md * Unit test coverage parameters moved to stand-alone configuration file

jshcodes added the bug 🐛 Something isn't working label Apr 19, 2021

jshcodes self-assigned this Apr 19, 2021

jshcodes added a commit that referenced this issue Apr 19, 2021

Fix KeyError on invalid creds to Service Class (Credential / Object a…

89093e3

…uth), Closes #134

jshcodes mentioned this issue Apr 19, 2021

[DEPLOY] v0.4.6 Update - MSSP / Falcon Flight Control, Zero Trust Assessment Service Classes, Uber class endpoint submodule and linting refactor, Default value decorator, Gitbooks updates, Fixes #133

Merged

2 tasks

jhseceng closed this as completed in #133 Apr 19, 2021

jshcodes added the API usage General API usage issues and questions label Aug 2, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[ BUG ] Passing bad credentials to a Service Class when using Credential or Object authentication produces a KeyError #134

[ BUG ] Passing bad credentials to a Service Class when using Credential or Object authentication produces a KeyError #134

jshcodes commented Apr 19, 2021

[ BUG ] Passing bad credentials to a Service Class when using Credential or Object authentication produces a KeyError #134

[ BUG ] Passing bad credentials to a Service Class when using Credential or Object authentication produces a KeyError #134

Comments

jshcodes commented Apr 19, 2021

Results in