en-milie
commented
1 year ago I'm not sure I understand the question. Can you please provide additional context with a more detailed example.
Closed beam-me-up closed 9 months ago
en-milie
commented
1 year ago I'm not sure I understand the question. Can you please provide additional context with a more detailed example.
beam-me-up
commented
1 year ago Sure @en-milie, here is the curl command sample for the above request.
curl --location --request POST 'http://localhost:8080/users' \
--header 'Content-Type: application/json' \
--data-raw '"dGVzdERhdGE="'This is a valid body. As a content-type as json, the body is expected to have a JSON object, array or literal.
en-milie
commented
10 months ago Hi @beam-me-up. I want to resume this issue. And want to check if my understanding is correct. You would like to be able to check if a certain request body is missing fields that you would typically expect? And deduct this from the endpoint name and http method? Or specify the expected fields in the functional fuzzer file? It will help if you can provide a full example, like:
Thanks!
beam-me-up
commented
10 months ago Hi @en-milie,
Apologies for the delay.
For a request like this:
curl --location --request POST 'http://localhost:8080/users' \
--header 'Content-Type: application/json' \
--data-raw '"dGVzdERhdGE="'If there's no JSON payload and only raw content in the body, I was curious if Functional Fuzzer supports testing this scenario. It's not a mandatory requirement. A simple "yes" or "no" response would be sufficient, and we can close this accordingly.
en-milie
commented
10 months ago Currently it's a 'no'.
I'm interested in learning how to write a functional fuzzer for OpenAPI specifications that lack keys. To illustrate, I have provided a sample OpenAPI spec below:
In this example, the OpenAPI spec is missing keys that are typically present. I would greatly appreciate some guidance or best practices on how to approach fuzzing such specifications effectively.