Invoke proxy plugin handle_request for each request in HTTP/1.1 pipel…

…ine or when TLS interception is enabled (#128) * Add tests for is_http_1_1_keep_alive * Add ModifyPostDataPlugin in README * Fixes #126 * Refactor HttpProxyBasePlugin API * before_upstream_connection too can drop request by returning None * Remove HTTP Server startup during tests, no longer used * Removed unused imports * Simplify load_plugins
abhinavsingh · Oct 13, 2019 · 6455a34 · 6455a34
1 parent 2840afc
commit 6455a34
Show file tree

Hide file tree

Showing 6 changed files with 311 additions and 187 deletions.
diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -8,7 +8,8 @@ assignees: abhinavsingh
 ---
 
 **Check FAQs**
-Please check [Frequently Asked Questions](https://github.com/abhinavsingh/proxy.py#frequently-asked-questions) before filling a bug.
+Please check [Frequently Asked Questions](https://github.com/abhinavsingh/proxy.py#frequently-asked-questions)
+before opening a bug report.
 
 **Describe the bug**
 A clear and concise description of what the bug is.

diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -1,12 +1,16 @@
 ---
 name: Feature request
-about: Suggest an idea for this project
+about: Suggest an idea for proxy.py
 title: ''
 labels: Enhancement
 assignees: abhinavsingh
 
 ---
 
+**Check FAQs**
+Please check [Frequently Asked Questions](https://github.com/abhinavsingh/proxy.py#frequently-asked-questions)
+before opening a feature request.
+
 **Is your feature request related to a problem? Please describe.**
 A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
 

diff --git a/README.md b/README.md
@@ -39,6 +39,7 @@ Table of Contents
         * [Stable version](#stable-version-from-docker-hub)
         * [Development version](#build-development-version-locally)
 * [Plugin Examples](#plugin-examples)
+    * [ModifyPostDataPlugin](#modifypostdataplugin)
     * [ProposedRestApiPlugin](#proposedrestapiplugin)
     * [RedirectToCustomServerPlugin](#redirecttocustomserverplugin)
     * [FilterByUpstreamHostPlugin](#filterbyupstreamhostplugin)
@@ -203,6 +204,58 @@ See [plugin_examples.py](https://github.com/abhinavsingh/proxy.py/blob/develop/p
 All the examples below also works with `https` traffic but require additional flags and certificate generation. 
 See [TLS Interception](#tls-interception).
 
+## ModifyPostDataPlugin
+
+Modifies POST request body before sending request to upstream server.
+
+Start `proxy.py` as:
+
+```
+$ proxy.py \
+    --plugins plugin_examples.ModifyPostDataPlugin
+```
+
+By default plugin replaces POST body content with hardcoded `b'{"key": "modified"}'`
+and enforced `Content-Type: application/json`.
+
+Verify the same using `curl -x localhost:8899 -d '{"key": "value"}' http://httpbin.org/post`
+
+```
+{
+  "args": {},
+  "data": "{\"key\": \"modified\"}",
+  "files": {},
+  "form": {},
+  "headers": {
+    "Accept": "*/*",
+    "Content-Length": "19",
+    "Content-Type": "application/json",
+    "Host": "httpbin.org",
+    "User-Agent": "curl/7.54.0"
+  },
+  "json": {
+    "key": "modified"
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
+  "url": "https://httpbin.org/post"
+}
+```
+
+Note following from the response above:
+
+1. POST data was modified `"data": "{\"key\": \"modified\"}"`.
+   Original `curl` command data was `{"key": "value"}`.
+2. Our `curl` command didn't add any `Content-Type` header,
+   but our plugin did add one `"Content-Type": "application/json"`.
+   Same can also be verified by looking at `json` field in the output above:
+   ```
+   "json": {
+    "key": "modified"
+   },
+   ```
+3. Our plugin also added a `Content-Length` header to match length
+   of modified body.
+
 ## ProposedRestApiPlugin
 
 Mock responses for your server REST API.
@@ -332,13 +385,13 @@ Verify using `curl -v -x localhost:8899 http://httpbin.org/get`:
 < Connection: keep-alive
 < 
 {
-  "args": {}, 
+  "args": {},
   "headers": {
-    "Accept": "*/*", 
-    "Host": "httpbin.org", 
+    "Accept": "*/*",
+    "Host": "httpbin.org",
     "User-Agent": "curl/7.54.0"
-  }, 
-  "origin": "1.2.3.4, 5.6.7.8", 
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
   "url": "https://httpbin.org/get"
 }
 * Connection #0 to host localhost left intact
@@ -368,13 +421,13 @@ Content-Length: 202
 Connection: keep-alive
 
 {
-  "args": {}, 
+  "args": {},
   "headers": {
-    "Accept": "*/*", 
-    "Host": "httpbin.org", 
+    "Accept": "*/*",
+    "Host": "httpbin.org",
     "User-Agent": "curl/7.54.0"
-  }, 
-  "origin": "1.2.3.4, 5.6.7.8", 
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
   "url": "https://httpbin.org/get"
 }
 ```
@@ -443,13 +496,13 @@ Verify using `curl -x https://localhost:8899 --proxy-cacert https-cert.pem https
 
 ```
 {
-  "args": {}, 
+  "args": {},
   "headers": {
-    "Accept": "*/*", 
-    "Host": "httpbin.org", 
+    "Accept": "*/*",
+    "Host": "httpbin.org",
     "User-Agent": "curl/7.54.0"
-  }, 
-  "origin": "1.2.3.4, 5.6.7.8", 
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
   "url": "https://httpbin.org/get"
 }
 ```
@@ -485,13 +538,13 @@ Verify using `curl -v -x localhost:8899 --cacert ca-cert.pem https://httpbin.org
 < Connection: keep-alive
 < 
 {
-  "args": {}, 
+  "args": {},
   "headers": {
-    "Accept": "*/*", 
-    "Host": "httpbin.org", 
+    "Accept": "*/*",
+    "Host": "httpbin.org",
     "User-Agent": "curl/7.54.0"
-  }, 
-  "origin": "1.2.3.4, 5.6.7.8", 
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
   "url": "https://httpbin.org/get"
 }
 ```
@@ -518,16 +571,15 @@ Content-Length: 202
 Connection: keep-alive
 
 {
-  "args": {}, 
+  "args": {},
   "headers": {
-    "Accept": "*/*", 
-    "Host": "httpbin.org", 
+    "Accept": "*/*",
+    "Host": "httpbin.org",
     "User-Agent": "curl/7.54.0"
-  }, 
-  "origin": "1.2.3.4, 5.6.7.8", 
+  },
+  "origin": "1.2.3.4, 5.6.7.8",
   "url": "https://httpbin.org/get"
 }
-
 ```
 
 Viola!!!  If you remove CA flags, encrypted data will be found in the

diff --git a/plugin_examples.py b/plugin_examples.py
@@ -21,19 +21,23 @@ class ModifyPostDataPlugin(proxy.HttpProxyBasePlugin):
 
     MODIFIED_BODY = b'{"key": "modified"}'
 
-    def before_upstream_connection(self) -> bool:
-        if self.request.method == proxy.httpMethods.POST:
-            self.request.body = ModifyPostDataPlugin.MODIFIED_BODY
-            # Update Content-Length header only when request is NOT chunked encoded
-            if not self.request.is_chunked_encoded():
-                self.request.add_header(b'Content-Length', proxy.bytes_(len(self.request.body)))
-        return False
-
-    def on_upstream_connection(self) -> None:
-        pass
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def handle_upstream_response(self, raw: bytes) -> bytes:
-        return raw
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        if request.method == proxy.httpMethods.POST:
+            request.body = ModifyPostDataPlugin.MODIFIED_BODY
+            # Update Content-Length header only when request is NOT chunked encoded
+            if not request.is_chunked_encoded():
+                request.add_header(b'Content-Length', proxy.bytes_(len(request.body)))
+            # Enforce content-type json
+            if request.has_header(b'Content-Type'):
+                request.del_header(b'Content-Type')
+            request.add_header(b'Content-Type', b'application/json')
+        return request
+
+    def handle_upstream_chunk(self, chunk: bytes) -> bytes:
+        return chunk
 
     def on_upstream_connection_close(self) -> None:
         pass
@@ -71,29 +75,28 @@ class ProposedRestApiPlugin(proxy.HttpProxyBasePlugin):
         },
     }
 
-    def before_upstream_connection(self) -> bool:
-        """Called after client request is received and
-        before connecting to upstream server."""
-        if self.request.host == self.API_SERVER and self.request.url:
-            if self.request.url.path in self.REST_API_SPEC:
-                self.client.send(proxy.build_http_response(
-                    200, reason=b'OK',
-                    headers={b'Content-Type': b'application/json'},
-                    body=proxy.bytes_(json.dumps(
-                        self.REST_API_SPEC[self.request.url.path]))
-                ))
-            else:
-                self.client.send(proxy.build_http_response(
-                    404, reason=b'NOT FOUND', body=b'Not Found'
-                ))
-            return True
-        return False
-
-    def on_upstream_connection(self) -> None:
-        pass
-
-    def handle_upstream_response(self, raw: bytes) -> bytes:
-        return raw
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        if request.host != self.API_SERVER:
+            return request
+        assert request.path
+        if request.path in self.REST_API_SPEC:
+            self.client.queue(proxy.build_http_response(
+                200, reason=b'OK',
+                headers={b'Content-Type': b'application/json'},
+                body=proxy.bytes_(json.dumps(
+                    self.REST_API_SPEC[request.path]))
+            ))
+        else:
+            self.client.queue(proxy.build_http_response(
+                404, reason=b'NOT FOUND', body=b'Not Found'
+            ))
+        return None
+
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
+
+    def handle_upstream_chunk(self, chunk: bytes) -> bytes:
+        return chunk
 
     def on_upstream_connection_close(self) -> None:
         pass
@@ -104,20 +107,20 @@ class RedirectToCustomServerPlugin(proxy.HttpProxyBasePlugin):
 
     UPSTREAM_SERVER = b'http://localhost:8899'
 
-    def before_upstream_connection(self) -> bool:
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
         # Redirect all non-https requests to inbuilt WebServer.
-        if self.request.method != proxy.httpMethods.CONNECT:
-            self.request.url = urlparse.urlsplit(self.UPSTREAM_SERVER)
+        if request.method != proxy.httpMethods.CONNECT:
+            request.url = urlparse.urlsplit(self.UPSTREAM_SERVER)
             # This command will re-parse modified url and
             # update host, port, path fields
-            self.request.set_line_attributes()
-        return False
+            request.set_line_attributes()
+        return request
 
-    def on_upstream_connection(self) -> None:
-        pass
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def handle_upstream_response(self, raw: bytes) -> bytes:
-        return raw
+    def handle_upstream_chunk(self, chunk: bytes) -> bytes:
+        return chunk
 
     def on_upstream_connection_close(self) -> None:
         pass
@@ -128,17 +131,17 @@ class FilterByUpstreamHostPlugin(proxy.HttpProxyBasePlugin):
 
     FILTERED_DOMAINS = [b'google.com', b'www.google.com']
 
-    def before_upstream_connection(self) -> bool:
-        if self.request.host in self.FILTERED_DOMAINS:
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        if request.host in self.FILTERED_DOMAINS:
             raise proxy.HttpRequestRejected(
                 status_code=418, reason=b'I\'m a tea pot')
-        return False
+        return request
 
-    def on_upstream_connection(self) -> None:
-        pass
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def handle_upstream_response(self, raw: bytes) -> bytes:
-        return raw
+    def handle_upstream_chunk(self, chunk: bytes) -> bytes:
+        return chunk
 
     def on_upstream_connection_close(self) -> None:
         pass
@@ -149,22 +152,27 @@ class CacheResponsesPlugin(proxy.HttpProxyBasePlugin):
 
     CACHE_DIR = tempfile.gettempdir()
 
-    def __init__(self, config: proxy.ProtocolConfig, client: proxy.TcpClientConnection,
-                 request: proxy.HttpParser) -> None:
-        super().__init__(config, client, request)
+    def __init__(
+            self,
+            config: proxy.ProtocolConfig,
+            client: proxy.TcpClientConnection) -> None:
+        super().__init__(config, client)
         self.cache_file_path: Optional[str] = None
         self.cache_file: Optional[BinaryIO] = None
 
-    def before_upstream_connection(self) -> bool:
-        return False
-
-    def on_upstream_connection(self) -> None:
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        # Ideally should only create file if upstream connection succeeds.
         self.cache_file_path = os.path.join(
             self.CACHE_DIR,
-            '%s-%s.txt' % (proxy.text_(self.request.host), str(time.time())))
+            '%s-%s.txt' % (proxy.text_(request.host), str(time.time())))
         self.cache_file = open(self.cache_file_path, "wb")
+        return request
+
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def handle_upstream_response(self, chunk: bytes) -> bytes:
+    def handle_upstream_chunk(self,
+                              chunk: bytes) -> bytes:
         if self.cache_file:
             self.cache_file.write(chunk)
         return chunk
@@ -178,13 +186,13 @@ def on_upstream_connection_close(self) -> None:
 class ManInTheMiddlePlugin(proxy.HttpProxyBasePlugin):
     """Modifies upstream server responses."""
 
-    def before_upstream_connection(self) -> bool:
-        return False
+    def before_upstream_connection(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def on_upstream_connection(self) -> None:
-        pass
+    def handle_client_request(self, request: proxy.HttpParser) -> Optional[proxy.HttpParser]:
+        return request
 
-    def handle_upstream_response(self, raw: bytes) -> bytes:
+    def handle_upstream_chunk(self, chunk: bytes) -> bytes:
         return proxy.build_http_response(
             200, reason=b'OK', body=b'Hello from man in the middle')