[Marketplace Contribution] Recorded Future Identity - Content Pack Up…

…date (#30391)

* [Marketplace Contribution] Recorded Future Identity - Content Pack Update (#30246)

* "contribution update to pack "Recorded Future Identity""

* Update Packs/IdentityRecordedFuture/ReleaseNotes/1_2_0.md

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Update Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.yml

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Update Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.py

Add credential backwards compatibility.

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Update Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.yml

Add credential backwards compatibility.

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Added credential backwards compatibility

* Update IdentityRecordedFuture.yml

Require credential parameter to be mandatory to ensure there is an API token before saving the instance.

* Changed parameter name from 'token' to 'credential'

* Uses new 'credential' parameter for api token

* Update Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.yml

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Update Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.yml

Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Fixed formatting and updated docker image

* Updated docker image

---------

Co-authored-by: Nicole Casartelli <npcasartelli@gmail.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Adding junit output support for test-content command (#29906)

Adding junit output support for test-content command #29906

* gitlab CI build parameters (#30392)

gitlab CI build parameters #30392

* fix merge to master pipeline (#30396)

fix merge to master pipeline #30396

* fix SDK nightly build on destroy instance & Content Merge build (#30397)

fix SDK nightly build on destroy instance & Content Merge build #30397

* RegexGroups - Empty Results on Error (#30386)

* implemented fetch-events

* add tests

* fix tests

* change to empty list upon error

* revert

* fixes

---------

Co-authored-by: xsoar-bot <67315154+xsoar-bot@users.noreply.github.com>
Co-authored-by: Nicole Casartelli <npcasartelli@gmail.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com>
Co-authored-by: Dean Arbel <darbel@paloaltonetworks.com>
Co-authored-by: MosheEichler <meichler@paloaltonetworks.com>

Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.py

@@ -125,10 +125,13 @@ def main() -> None:
         base_url = demisto_params.get("server_url", "").rstrip("/")
         verify_ssl = not demisto_params.get("unsecure", False)
         proxy = demisto_params.get("proxy", False)
-        # If user has not set password properties we will get empty string but client require empty list
+        api_token = demisto_params.get("credential", {}).get("password") or demisto_params.get("token")
+        if not api_token:
+            return_error('Please provide a valid API token')
 
+        # If user has not set password properties we will get empty string but client require empty list
         headers = {
-            "X-RFToken": demisto_params["token"],
+            "X-RFToken": api_token,
             "X-RF-User-Agent": f"xsoar-identity/{__version__} rfclient (Cortex_XSOAR_"
             f'{demisto.demistoVersion()["version"]})',
         }

Packs/IdentityRecordedFuture/Integrations/IdentityRecordedFuture/IdentityRecordedFuture.yml

@@ -4,7 +4,6 @@ commonfields:
 name: Recorded Future Identity
 display: Recorded Future Identity
 category: Data Enrichment & Threat Intelligence
-image:
 description: Recorded Future Identity Integration that provides access to Recorded Future Identity module data.
 configuration:
 - display: Server URL (e.g., https://api.recordedfuture.com/gw/xsoar-identity)
@@ -15,7 +14,13 @@ configuration:
 - display: API Token
   name: token
   type: 4
-  required: true
+  required: false
+  hidden: true
+- displaypassword: API Token
+  name: credential
+  type: 9
+  required: false
+  hiddenusername: true
 - display: Trust any certificate (not secure)
   name: unsecure
   defaultvalue: "false"
@@ -57,16 +62,16 @@ script:
   script: '-'
   type: python
   subtype: python3
-  dockerimage: demisto/python3:3.10.13.72123
+  dockerimage: demisto/python3:3.10.13.78960
   commands:
   - name: recordedfuture-identity-search
-    description: Search for identities in Recorded Future Identity Dataset
+    description: Search for identities in Recorded Future Identity Dataset.
     arguments:
     - name: latest-downloaded
       defaultValue: "All time"
-      description: Time period for last downloaded time.(e.g. "7 days ago", "Three months ago", "Last Year", "All time")
+      description: Time period for last downloaded time (e.g. "7 days ago", "Three months ago", "Last Year", "All time").
     - name: domains
-      description: Domains list separated by comma. (e.g. norsegods.online, norsegods.online ). If not specified, domains from app instance will be used.
+      description: Domains list separated by comma (e.g. norsegods.online, norsegods.online ). If not specified, domains from app instance will be used.
     - name: domain-type
       description: Type of identities to search for (Authorization or Email). If not specified use All.
       auto: PREDEFINED
@@ -108,12 +113,12 @@ script:
     arguments:
     - name: identities
       required: true
-      description: Identities for the lookup separated by comma.(e.g. "09719@norsegods.online, 1000739@norsegods.online").
+      description: Identities for the lookup separated by comma (e.g. "09719@norsegods.online, 1000739@norsegods.online").
     - name: domains
-      description: Domains list separated by comma. (e.g. norsegods.online, norsegods.online )
+      description: Domains list separated by comma (e.g. norsegods.online, norsegods.online).
     - name: first-downloaded
       defaultValue: "All time"
-      description: Time period for first downloaded time.(e.g. "7 days ago", "Three months ago", "Last Year", "All time")
+      description: Time period for first downloaded time (e.g. "7 days ago", "Three months ago", "Last Year", "All time").
     outputs:
     - contextPath: RecordedFuture.Credentials.Identities.identity.subjects
       description: Identity value.
@@ -170,7 +175,7 @@ script:
       description: Exposed secret hash value.
       type: String
     - contextPath: RecordedFuture.Credentials.Identities.credentials.exposed_secret.effectively_clear
-      description: Exposed secret clear or not
+      description: Exposed secret clear or not.
       type: Boolean
     - contextPath: RecordedFuture.Credentials.Identities.credentials.exposed_secret.details.properties
       description: Exposed secret properties.

Packs/IdentityRecordedFuture/ReleaseNotes/1_1_5.md

@@ -0,0 +1,7 @@
+
+#### Integrations
+
+##### Recorded Future Identity
+
+- Added the credential support for API token.
+- Updated the Docker image to: *demisto/python3:3.10.13.78960*.

Packs/IdentityRecordedFuture/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "Recorded Future Identity",
     "description": "Recorded Future App for Identity",
     "support": "partner",
-    "currentVersion": "1.1.4",
+    "currentVersion": "1.1.5",
     "author": "Recorded Future",
     "url": "https://www.recordedfuture.com/integrations/",
     "email": "support@recordedfuture.com",