[client] Fix return bundles on send_stix2

Samuel Hassine · Samuel Hassine · commit 1ba239185672 · 2019-12-05T09:41:38.000+01:00
diff --git a/examples/create_incident_with_ttps_and_observables.py b/examples/create_incident_with_ttps_and_observables.py
@@ -63,17 +63,6 @@
     type='Email-Address',
     observable_value='phishing@mail.com'
 )
-# Indicates the incident itself
-observable_ttp1_incident_relation = opencti_api_client.stix_relation.create(
-    fromType='Stix-Observable',
-    fromId=observable_ttp1['id'],
-    toType='Incident',
-    toId=incident['id'],
-    relationship_type='indicates',
-    description='This email address is the sender of the spearphishing in this incident.',
-    first_seen=date,
-    last_seen=date
-)
 # Indicates the relation Incident => uses => TTP
 observable_ttp1_relation = opencti_api_client.stix_relation.create(
     fromType='Stix-Observable',
@@ -90,7 +79,7 @@
     ttp1['id'],
     ttp1_relation['id'],
     observable_ttp1['id'],
-    observable_ttp1_incident_relation['id']
+    observable_ttp1_relation['id']
 ])
 
 # Registry Run Keys / Startup Folder
@@ -118,17 +107,6 @@
     type='Registry-Key',
     observable_value='Disk security'
 )
-# Indicates the incident itself
-observable_ttp2_incident_relation = opencti_api_client.stix_relation.create(
-    fromType='Stix-Observable',
-    fromId=observable_ttp2['id'],
-    toType='Incident',
-    toId=incident['id'],
-    relationship_type='indicates',
-    description='This registry key is used for persistence of tools in this incident.',
-    first_seen=date,
-    last_seen=date
-)
 # Indicates the relation Incident => uses => TTP
 observable_ttp2_relation = opencti_api_client.stix_relation.create(
     fromType='Stix-Observable',
@@ -145,7 +123,7 @@
     ttp2['id'],
     ttp2_relation['id'],
     observable_ttp2['id'],
-    observable_ttp2_incident_relation['id']
+    observable_ttp2_relation['id']
 ])
 
 # Data Encrypted
diff --git a/examples/ip_address_resolves_domain.py b/examples/ip_address_resolves_domain.py
@@ -0,0 +1,11 @@
+# coding: utf-8
+
+from pycti import OpenCTIApiClient
+
+# Variables
+api_url = 'https://demo.opencti.io'
+api_token = 'c2d944bb-aea6-4bd6-b3d7-6c10451e2256'
+
+# OpenCTI initialization
+opencti_api_client = OpenCTIApiClient(api_url, api_token)
+
diff --git a/pycti/connector/opencti_connector_helper.py b/pycti/connector/opencti_connector_helper.py
@@ -177,12 +177,14 @@ def send_stix2_bundle(self, bundle, entities_types=None, update=False, split=Tru
             channel = pika_connection.channel()
             for bundle in bundles:
                 self._send_bundle(channel, bundle, entities_types, update)
+            channel.close()
+            return bundles
         else:
             pika_connection = pika.BlockingConnection(pika.URLParameters(self.config['uri']))
             channel = pika_connection.channel()
             self._send_bundle(channel, bundle, entities_types, update)
-        channel.close()
-        return True
+            channel.close()
+            return [bundle]
 
     def _send_bundle(self, channel, bundle, entities_types=None, update=False):
         """
