用于palo alto networks应用程序框架的python惯用sdk。
pancloud的Python项目详细描述
帕洛阿尔托网络云python sdk
用于Palo Alto Networks应用程序框架的Python惯用sdk。
palo alto networks cloud python sdk(简称pancloud)是为了帮助开发人员 以编程方式与Palo Alto Networks应用程序框架交互。
主要目标是为以下应用程序框架服务提供全面、低级别的API覆盖:
< Buff行情>- 日志服务
- 目录同步服务
- 活动服务
第二个目标是以帮助者的形式为常见任务/操作提供服务。
< Buff行情>- 日志/事件分页
- OAuth 2.0和令牌刷新
- 更多,马上就来!
- 文档:https://pancloud.readthedocs.io rel="nofollow">https://pancloud.readthedocs.io
- 免费软件:ISC许可证
功能
- 可完全访问其功能的流行请求库的http客户端包装。
- 日志服务、事件服务和目录同步服务的语言绑定。
- 用于执行常见任务(如日志/事件分页)的帮助程序方法。
- 支持OAuth 2.0授权代码流。
- 演示如何利用pancloud的示例脚本库
- 支持API Explorer开发人员令牌(在v1.5.0中引入)。
状态
目前,Palo Alto Networks Cloud Python SDK被认为是 生产/稳定的 。
安装
来自PYPI:
$ pip install pancloud
从Github安装
复制回购:
$ git clone https://github.com/PaloAltoNetworks/pancloud.git
$ pipenv install
您可以通过添加"–2"或"–3"来指定要使用的python版本:
$ pipenv --three install
激活pipenv外壳:
$ pipenv shell
< H3>获得使用OAuth 2.0令牌
与开发人员关系代表一起注册 申请并接收获取访问令牌所需的凭据。 通常,这需要 客户机id , 客户机机密 ,以及 刷新令牌 。 api资源管理器可以选择性地用于生成开发人员令牌,它可以 用于代替 客户端ID , 客户端机密 ,以及 刷新令牌
有关详细信息,请访问以下RTD页面: 凭据
示例
以下示例假定存在有效凭据:
$ ./logging_query.py QUERY: {"queryId":"59801207-9a75-49c1-9f87-a2aa23f55774","sequenceNo":0,"queryStatus":"RUNNING","clientParameters":{},"result":{"esResult":null,"esQuery":{"table":["panw.traffic"],"query":{"aggregations":{},"size":1},"selections":[],"params":{}}}} JOB_FINISHED: queryId: 59801207-9a75-49c1-9f87-a2aa23f55774, sequenceNo: 0, retrieving from 0, size: 1, took: 117 ms RESULT: {"queryId":"59801207-9a75-49c1-9f87-a2aa23f55774","sequenceNo":0,"queryStatus":"JOB_FINISHED","clientParameters":{},"result":{"esResult":{"took":117,"hits":{"total":1878954,"maxScore":2,"hits":[{"_index":"117270009_panw.all_2018042400-2018062300_000000","_type":"traffic","_id":"117270009_lcaas:0:149314:0","_score":2,"_source":{"risk-of-app":"4","logset":"ForwardToLoggingService","bytes_received":14882,"natsport":53295,"sessionid":806912,"type":"traffic","parent_start_time":0,"packets":30,"characteristic-of-app":["able-to-transfer-file","has-known-vulnerability","tunnel-other-application","prone-to-misuse","is-saas"],"dg_hier_level_4":0,"dg_hier_level_1":11,"dg_hier_level_3":0,"dg_hier_level_2":0,"action":"allow","recsize":1622,"from":"L3-Trust","parent_session_id":0,"repeatcnt":1,"app":"web-browsing","vsys":"vsys1","nat":1,"technology-of-app":"browser-based","pkts_received":17,"chunks_sent":0,"receive_time":1524893357,"non-standard-dport":443,"subcategory-of-app":"internet-utility","chunks_received":0,"users":"panwdomain\\user1","srcuser":"panwdomain\\user1","proxy":1,"fwd":1,"config_ver":2049,"cloud_hostname":"sample-cft-fw","customer-id":"117270009","proto":"tcp","non_std_dport":1,"tunneled-app":"tunneled-app","is-saas-of-app":0,"natdport":443,"action_source":"from-policy","assoc_id":0,"dst":"66.135.212.201","natdst":"66.135.212.201","chunks":0,"flags":22020208,"rule":"Allow Outbound Browsing","dport":443,"elapsed":0,"sanctioned-state-of-app":0,"inbound_if":"ethernet1/2","device_name":"sample-cft-fw","subtype":"end","time_received":1524893357,"actionflags":-9223372036854776000,"tunnelid_imsi":0,"session_end_reason":"tcp-fin","natsrc":"10.0.0.100","seqno":1633879,"src":"10.0.1.101","start":1524893341,"time_generated":1524893357,"outbound_if":"ethernet1/1","category-of-app":"general-internet","bytes_sent":2152,"srcloc":"10.0.0.0-10.255.255.255","pkts_sent":13,"dstloc":"US","serial":"","bytes":17034,"vsys_id":1,"to":"L3-Untrust","category":"10006","sport":33562,"tunnel":0}}]},"id":"59801207-9a75-49c1-9f87-a2aa23f55774","from":0,"size":1,"completed":true,"state":"COMPLETED","timed_out":false},"esQuery":{"table":["panw.traffic"],"query":{"aggregations":{},"size":1},"selections":[],"params":{}}}} DELETE: {"success":true}