search

amjadafanah / FX-SAAS-7

This project is for automating the security and quality testing of FX SaaS
0 stars 0 forks source link

FX-SAAS-7 : ApiV1BotClustersGetOtherRbac #288

Open amjadafanah opened 6 years ago

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 401

Headers : {WWW-Authenticate=[Basic realm="Realm"], X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Wed, 29 Aug 2018 12:03:37 GMT]}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
null

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [401] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 401

Headers : {WWW-Authenticate=[Basic realm="Realm"], X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Mon, 03 Sep 2018 12:03:29 GMT]}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
null

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [401] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 500

Headers : {}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
I/O error on GET request for "http://13.56.210.25/api/v1/bot-clusters": Read timed out; nested exception is java.net.SocketTimeoutException: Read timed out

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [500] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 200

Headers : {X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Mon, 10 Sep 2018 12:03:11 GMT]}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
{ "requestId" : "None", "requestTime" : "2018-09-10T12:03:12.373+0000", "errors" : false, "messages" : [ ], "data" : [ { "id" : "8a8080e7657b6af401657b6d2b4f0000", "createdBy" : "8a80808a657aacf801657ab17ca30000", "createdDate" : "2018-08-27T12:47:56.749+0000", "modifiedBy" : "8a80808a657aacf801657ab17ca30000", "modifiedDate" : "2018-08-27T12:47:56.831+0000", "version" : null, "inactive" : false, "org" : { "id" : "8a80808a657aacf801657ab17dd30003", "createdBy" : "anonymousUser", "createdDate" : "2018-08-27T09:22:57.107+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-08-27T09:22:57.107+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "account" : { "id" : "8a80808a657aacf801657b0434880028", "createdBy" : "8a80808a657aacf801657ab17ca30000", "createdDate" : "2018-08-27T10:53:17.832+0000", "modifiedBy" : "8a80808a657aacf801657ab17ca30000", "modifiedDate" : "2018-08-27T10:53:17.832+0000", "version" : null, "inactive" : false, "name" : "Self_Hosted", "region" : null, "accessKey" : null, "secretKey" : null, "org" : { "id" : "8a80808a657aacf801657ab17dd30003", "createdBy" : "anonymousUser", "createdDate" : "2018-08-27T09:22:57.107+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-08-27T09:22:57.107+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "accountType" : "Self_Hosted", "prop1" : null, "prop2" : null, "prop3" : null, "allowedRegions" : [ ] }, "driver" : "MANUAL", "status" : null, "visibility" : "PRIVATE", "cloudType" : "OTHER", "name" : "US_WEST_1", "region" : "Self_Hosted", "key" : "eoPyhNuYYKZjVpTbONNnJfpDA9sEMzvctmoBIaRZNEo=", "min" : 1, "max" : null, "live" : null, "nodeId" : null, "manual" : false, "manualScript" : "docker run -d -e FX_HOST=13.56.210.25 -e FX_PORT=5672 -e FX_SSL=false -e FX_IAM=sH6XxQyw785qzH0jdQWNUfCYXIR8EOev -e FX_KEY=eoPyhNuYYKZjVpTbONNnJfpDA9sEMzvctmoBIaRZNEo= fxlabs/bot:latest" } ], "totalPages" : 1, "totalElements" : 1 }

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [200] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 200

Headers : {X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Tue, 11 Sep 2018 12:03:11 GMT]}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
{ "requestId" : "None", "requestTime" : "2018-09-11T12:03:12.533+0000", "errors" : false, "messages" : [ ], "data" : [ { "id" : "8a8080e7657b6af401657b6d2b4f0000", "createdBy" : "8a80808a657aacf801657ab17ca30000", "createdDate" : "2018-08-27T12:47:56.749+0000", "modifiedBy" : "8a80808a657aacf801657ab17ca30000", "modifiedDate" : "2018-08-27T12:47:56.831+0000", "version" : null, "inactive" : false, "org" : { "id" : "8a80808a657aacf801657ab17dd30003", "createdBy" : "anonymousUser", "createdDate" : "2018-08-27T09:22:57.107+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-08-27T09:22:57.107+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "account" : { "id" : "8a80808a657aacf801657b0434880028", "createdBy" : "8a80808a657aacf801657ab17ca30000", "createdDate" : "2018-08-27T10:53:17.832+0000", "modifiedBy" : "8a80808a657aacf801657ab17ca30000", "modifiedDate" : "2018-08-27T10:53:17.832+0000", "version" : null, "inactive" : false, "name" : "Self_Hosted", "region" : null, "accessKey" : null, "secretKey" : null, "org" : { "id" : "8a80808a657aacf801657ab17dd30003", "createdBy" : "anonymousUser", "createdDate" : "2018-08-27T09:22:57.107+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-08-27T09:22:57.107+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "accountType" : "Self_Hosted", "prop1" : null, "prop2" : null, "prop3" : null, "allowedRegions" : [ ] }, "driver" : "MANUAL", "status" : null, "visibility" : "PRIVATE", "cloudType" : "OTHER", "name" : "US_WEST_1", "region" : "Self_Hosted", "key" : "eoPyhNuYYKZjVpTbONNnJfpDA9sEMzvctmoBIaRZNEo=", "min" : 1, "max" : null, "live" : null, "nodeId" : null, "manual" : false, "manualScript" : "docker run -d -e FX_HOST=13.56.210.25 -e FX_PORT=5672 -e FX_SSL=false -e FX_IAM=sH6XxQyw785qzH0jdQWNUfCYXIR8EOev -e FX_KEY=eoPyhNuYYKZjVpTbONNnJfpDA9sEMzvctmoBIaRZNEo= fxlabs/bot:latest" } ], "totalPages" : 1, "totalElements" : 1 }

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [200] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 200

Headers : {X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Sun, 16 Sep 2018 12:03:11 GMT]}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
{ "requestId" : "None", "requestTime" : "2018-09-16T12:03:11.889+0000", "errors" : false, "messages" : [ ], "data" : [ { "id" : "8a8080cf65e02c0f0165e046b46e1265", "createdBy" : "8a8080cf65e02c0f0165e031fa6b0000", "createdDate" : "2018-09-16T02:47:34.766+0000", "modifiedBy" : "8a8080cf65e02c0f0165e031fa6b0000", "modifiedDate" : "2018-09-16T02:47:34.822+0000", "version" : null, "inactive" : false, "org" : { "id" : "8a8080cf65e02c0f0165e031fb9e0003", "createdBy" : "anonymousUser", "createdDate" : "2018-09-16T02:24:56.734+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-09-16T02:24:56.734+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "account" : { "id" : "8a8080cf65e02c0f0165e046a3771242", "createdBy" : "8a8080cf65e02c0f0165e031fa6b0000", "createdDate" : "2018-09-16T02:47:30.423+0000", "modifiedBy" : "8a8080cf65e02c0f0165e031fa6b0000", "modifiedDate" : "2018-09-16T02:47:30.423+0000", "version" : null, "inactive" : false, "name" : "Self_Hosted", "region" : null, "accessKey" : null, "secretKey" : null, "org" : { "id" : "8a8080cf65e02c0f0165e031fb9e0003", "createdBy" : "anonymousUser", "createdDate" : "2018-09-16T02:24:56.734+0000", "modifiedBy" : "anonymousUser", "modifiedDate" : "2018-09-16T02:24:56.734+0000", "version" : null, "inactive" : false, "name" : "FXLabs" }, "accountType" : "Self_Hosted", "prop1" : null, "prop2" : null, "prop3" : null, "allowedRegions" : [ ] }, "driver" : "MANUAL", "status" : null, "visibility" : "PRIVATE", "cloudType" : "OTHER", "name" : "US_WEST_1", "region" : "Self_Hosted", "key" : "7LNc5G7T4Kx3Hi5MKe6E1JRxeJpo9FDCKBUQZqVlW5I=", "min" : 1, "max" : null, "live" : null, "nodeId" : null, "manual" : false, "manualScript" : "docker run -d -e FX_IAM=Mwc/0zF7dfX+PUq6Jz26AkdbFUE13eL5 -e FX_KEY=7LNc5G7T4Kx3Hi5MKe6E1JRxeJpo9FDCKBUQZqVlW5I= fxlabs/bot:latest" } ], "totalPages" : 1, "totalElements" : 1 }

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [200] --- FX Bot ---

amjadafanah commented 6 years ago

Project : FX-SAAS-7

Job : Dev

Env : Dev

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 500

Headers : {}

Endpoint : http://13.56.210.25//api/v1/bot-clusters

Request :

Response :
I/O error on GET request for "http://13.56.210.25/api/v1/bot-clusters": Timeout waiting for connection from pool; nested exception is org.apache.http.conn.ConnectionPoolTimeoutException: Timeout waiting for connection from pool

Logs :
Assertion [@StatusCode == 403] failed, expected value [403] but found [500] --- FX Bot ---