Alexey Sviridov
Alexey Sviridov
Feel free to run debug on https://structurizr.com/share/47754 if you compare 2 json files, the following sections a missing from the web json: Workspace is missing "lastModifiedUser", "lastModifiedAgent", "configuration" And with...
Yes, sorry, you are correct. I have updated the report. Our main concern is 'locations' and 'environment' are missing from API json. Any way to fix that ?
environment>> workspace.views.deploymentViews.item location >> model.softwareSystems.item
Could you please also add an integration test to make sure such deviations won't happen in the future ?
Why enumeration attacks if I still have to provide API key/secret. I want to build a dropdown for available workspaces within an account. My understanding is paid accounts can have...
Then why do you even need a workspaceId in your get request if authentication is mandatory and you always know which workspace the given key/secret belongs to ?
then again easier would be to GET/workspaces for all possible workspaces for the given API and secret. not sure how it can be used for enum attack ?
But I just mention the value, which exactly that - get a workspaceid(s) by key/secret. Otherwise I would have to write an enum attack to get the worksapceId knowing the...
yeah, so there wont be same level of interaction through any thirdparty tool if you wont allow us to get meta info. as I understand your app still uses user...