chore(iast): move inner funcions

tests/contrib/django/django_app/appsec_urls.py

@@ -80,9 +80,14 @@ def checkuser_view(request, user_id):
 
 
 def sqli_http_request_parameter(request):
+    import bcrypt
+    from django.contrib.auth.hashers import BCryptSHA256PasswordHasher
+
+    password_django = BCryptSHA256PasswordHasher()
+    obj = password_django.encode("i'm a password", bcrypt.gensalt())
     with connection.cursor() as cursor:
         # label iast_enabled_sqli_http_request_parameter
-        cursor.execute(request.GET["q"])
+        cursor.execute(add_aspect(add_aspect(request.GET["q"], obj), "'"))
 
     return HttpResponse(request.META["HTTP_USER_AGENT"], status=200)
 

tests/contrib/django/test_django_appsec_iast.py

@@ -204,14 +204,14 @@ def test_django_tainted_user_agent_iast_disabled(client, test_spans, tracer):
 @pytest.mark.django_db()
 @pytest.mark.skipif(not python_supported_by_iast(), reason="Python version not supported by IAST")
 def test_django_tainted_user_agent_iast_enabled_sqli_http_request_parameter(client, test_spans, tracer):
-    with override_global_config(dict(_iast_enabled=True)):
+    with override_global_config(dict(_iast_enabled=True, _deduplication_enabled=False, _iast_request_sampling=100.0)):
         root_span, response = _aux_appsec_get_root_span(
             client,
             test_spans,
             tracer,
             payload=urlencode({"mytestingbody_key": "mytestingbody_value"}),
             content_type="application/x-www-form-urlencoded",
-            url="/appsec/sqli_http_request_parameter/?q=SELECT 1 FROM sqlite_master",
+            url="/appsec/sqli_http_request_parameter/?q=SELECT 1 FROM sqlite_master WHERE name='",
             headers={"HTTP_USER_AGENT": "test/1.2.3"},
         )
 
@@ -228,7 +228,7 @@ def test_django_tainted_user_agent_iast_enabled_sqli_http_request_parameter(clie
             {
                 "name": "q",
                 "origin": "http.request.parameter",
-                "pattern": "abcdefghijklmnopqrstuvwxyzA",
+                "pattern": "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMN",
                 "redacted": True,
             }
         ]
@@ -238,7 +238,9 @@ def test_django_tainted_user_agent_iast_enabled_sqli_http_request_parameter(clie
             "valueParts": [
                 {"source": 0, "value": "SELECT "},
                 {"pattern": "h", "redacted": True, "source": 0},
-                {"source": 0, "value": " FROM sqlite_master"},
+                {"source": 0, "value": " FROM sqlite_master WHERE name='"},
+                {"redacted": True},
+                {"value": "'"},
             ]
         }
         assert loaded["vulnerabilities"][0]["location"]["path"] == TEST_FILE