All Tests  /  Test 311

Test Id

Test 311

Test Trace Id

f79fb26f-c5c5-4159-bc1e-fd86c3b58152

Timestamp

Tue, 23 Jun 2026 21:24:23 GMT

Scenario

Send a 'happy' flow request with all fields and all headers

Expected Result

Should return 2XX

Result

Result Details

The following keywords were detected in the response which might suggest an error details leak: [forbidden]

Contract Path

/api/account/mfa/disable

Fuzzer

HappyPath

Full Request Path

https://qa-api.puk3p.online/api/account/mfa/disable

Http Method

post
Request Details
Payload
{
  "code": "747502"
}
Request Details
Headers
[
  {
    "key": "Accept",
    "value": "application/json"
  },
  {
    "key": "Content-Type",
    "value": "application/json"
  },
  {
    "key": "User-Agent",
    "value": "cats/13.8.1-SNAPSHOT (Test 311 - HappyPath)"
  },
  {
    "key": "X-Cats-Trace-Id",
    "value": "f79fb26f-c5c5-4159-bc1e-fd86c3b58152"
  }
]
Request Details
cURL
curl  -X POST \
     -H "Accept: application/json" \
-H "Content-Type: application/json" \
-H "User-Agent: cats/13.8.1-SNAPSHOT (Test 311 - HappyPath)" \
-H "X-Cats-Trace-Id: f79fb26f-c5c5-4159-bc1e-fd86c3b58152" \
 \
      -d '{"code":"747502"}' \
      https://qa-api.puk3p.online/api/account/mfa/disable
Response
{
  "responseCode": 403,
  "httpMethod": "POST",
  "responseTimeInMs": "128",
  "numberOfWordsInResponse": "1",
  "numberOfLinesInResponse": "1",
  "contentLengthInBytes": "107",
  "jsonBody": {
    "timestamp": "2026-06-23T21:24:23.717Z",
    "status": 403,
    "error": "Forbidden",
    "path": "/api/account/mfa/disable"
  },
  "headers": [
    {
      "key": "cache-control",
      "value": "no-cache, no-store, max-age=0, must-revalidate"
    },
    {
      "key": "content-type",
      "value": "application/json"
    },
    {
      "key": "date",
      "value": "Tue, 23 Jun 2026 21:24:23 GMT"
    },
    {
      "key": "expires",
      "value": "0"
    },
    {
      "key": "pragma",
      "value": "no-cache"
    },
    {
      "key": "server",
      "value": "nginx/1.24.0 (Ubuntu)"
    },
    {
      "key": "strict-transport-security",
      "value": "max-age=31536000 ; includeSubDomains"
    },
    {
      "key": "vary",
      "value": "Origin"
    },
    {
      "key": "x-content-type-options",
      "value": "nosniff"
    },
    {
      "key": "x-frame-options",
      "value": "DENY"
    },
    {
      "key": "x-xss-protection",
      "value": "0"
    }
  ],
  "responseContentType": "application/json"
}
CATS Replay
cats replay Test311