Vulnerability [null] : POST:/v2/auth/aws/role

[devopsenggineer]

Project : t

Template : V2AuthAwsRolePostAnonymousInvalid

Run Id : 8a808062697f73e00169802e4c400f7a

Job : Default

Env : Default

Category : null

Tags : No tags

Severity : null

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 400

Headers : {Server=[nginx/1.12.1], Date=[Fri, 15 Mar 2019 07:08:32 GMT], Content-Type=[application/json;charset=ISO-8859-1], Content-Length=[87], Connection=[keep-alive]}

Endpoint : http://52.53.242.1/vault/v2/auth/aws/role

Request :
{ "auth_type" : "oc85N2Z6", "role" : "oc85N2Z6", "bound_ami_id" : "oc85N2Z6", "bound_account_id" : "oc85N2Z6", "bound_region" : "oc85N2Z6", "bound_vpc_id" : "oc85N2Z6", "bound_subnet_id" : "oc85N2Z6", "bound_iam_role_arn" : "oc85N2Z6", "bound_iam_instance_profile_arn" : "oc85N2Z6", "policies" : "oc85N2Z6" }

Response :
{ "errors" : [ "Missing request header 'vault-token' for method parameter of type String" ] }

Logs :
Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [400 == 401 OR 400 == 403] result [Failed] --- FX Bot ---