Rest API response to getEndpointData incomplete

ssllabs / ssllabs-scan

A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.

https://www.ssllabs.com/projects/ssllabs-apis/

Apache License 2.0

1.69k stars 240 forks source link

Rest API response to getEndpointData incomplete #923

Open ionutstanescu opened 1 year ago

ionutstanescu commented 1 year ago

When testing the API calls I was not able to find the certificates list in the object returned by the request. In version 2, this list was availabe though incomplete (it returned just the first certificate, even for some endpoints multiple certificates were shown in the ssl labs webpage). Please advice

naumanshah03 commented 1 year ago

Hi @ionutstanescu

Though this is not an expected behavior. I will look into and see if there is any issue Please share the following details for us to verify the issue:

domain name being scanned
complete URL of the API being consumed
which tool are you using for the API?

Regards, Nauman Shah

ionutstanescu commented 1 year ago

Hi!

I’ve testing the Api with postman. I used as host microsoft.com and google.com, since both have more than 1 certificate shown on ssl labs website.

Ionut

Sent from my iPhone

On 17 Apr 2023, at 11:51, Nauman Shah @.***> wrote:

Hi @ionutstanescuhttps://github.com/ionutstanescu

Though this is not an expected behavior. I will look into and see if there is any issue Please share the following details for us to verify the issue:

domain name being scanned
complete URL of the API being consumed
which tool are you using for the API?

Regards, Nauman Shah

— Reply to this email directly, view it on GitHubhttps://github.com/ssllabs/ssllabs-scan/issues/923#issuecomment-1510951001, or unsubscribehttps://github.com/notifications/unsubscribe-auth/ARBIB6O5F34V5U47IMBQY3DXBT763ANCNFSM6AAAAAAXAXXB7M. You are receiving this because you were mentioned.Message ID: @.***>

ionutstanescu commented 1 year ago

Hi @ionutstanescu

Though this is not an expected behavior. I will look into and see if there is any issue Please share the following details for us to verify the issue:

domain name being scanned

complete URL of the API being consumed

which tool are you using for the API?

Regards, Nauman Shah

Please find the exact url: API v3 : https://api.ssllabs.com/api/v3/getEndpointData?host=google.com&s=142.250.72.238&ignoreMismatch=on API v2 : https://api.ssllabs.com/api/v2/getEndpointData?host=google.com&s=142.250.72.238&ignoreMismatch=on

naumanshah03 commented 1 year ago

Thanks @ionutstanescu

I shall look into this issue. It indeed seems like an issue. Will keep you updated on the progress.

Regards, Nauman Shah

ionutstanescu commented 1 year ago

Thanks @ionutstanescu

I shall look into this issue. It indeed seems like an issue. Will keep you updated on the progress.

Regards, Nauman Shah

Hi @naumanshah03 !

Any update in this topic. Did you have the time to look into this issues ?

Thanks

pixelpaulaus commented 3 months ago

any update on this? as it would be great if all the endpoint data was returned on the endpoint API request, instead of doing the full analyze request