Cats

All Tests / Test 864

Test Id

Test 864

Test Trace Id

8a242e17-a1ed-412c-b0a9-004c2420ca4d

Timestamp

Tue, 23 Jun 2026 21:25:49 GMT

Scenario

Send a 'happy' flow request with all fields and all headers

Expected Result

Should return 2XX

Result

error

Result Details

The following keywords were detected in the response which might suggest an error details leak: [forbidden]

Contract Path

/api/account/mfa/setup

Fuzzer

HappyPath

Full Request Path

https://qa-api.puk3p.online/api/account/mfa/setup

Http Method

post

Request Details

Payload

"{}"

Request Details

Headers

[
  {
    "key": "Accept",
    "value": "application/json"
  },
  {
    "key": "Content-Type",
    "value": "application/json"
  },
  {
    "key": "User-Agent",
    "value": "cats/13.8.1-SNAPSHOT (Test 864 - HappyPath)"
  },
  {
    "key": "X-Cats-Trace-Id",
    "value": "8a242e17-a1ed-412c-b0a9-004c2420ca4d"
  }
]

Request Details

cURL

curl  -X POST \
     -H "Accept: application/json" \
-H "Content-Type: application/json" \
-H "User-Agent: cats/13.8.1-SNAPSHOT (Test 864 - HappyPath)" \
-H "X-Cats-Trace-Id: 8a242e17-a1ed-412c-b0a9-004c2420ca4d" \
 \
      -d '"{}"' \
      https://qa-api.puk3p.online/api/account/mfa/setup

Response

{
  "responseCode": 403,
  "httpMethod": "POST",
  "responseTimeInMs": "134",
  "numberOfWordsInResponse": "1",
  "numberOfLinesInResponse": "1",
  "contentLengthInBytes": "105",
  "jsonBody": {
    "timestamp": "2026-06-23T21:25:49.500Z",
    "status": 403,
    "error": "Forbidden",
    "path": "/api/account/mfa/setup"
  },
  "headers": [
    {
      "key": "cache-control",
      "value": "no-cache, no-store, max-age=0, must-revalidate"
    },
    {
      "key": "content-type",
      "value": "application/json"
    },
    {
      "key": "date",
      "value": "Tue, 23 Jun 2026 21:25:49 GMT"
    },
    {
      "key": "expires",
      "value": "0"
    },
    {
      "key": "pragma",
      "value": "no-cache"
    },
    {
      "key": "server",
      "value": "nginx/1.24.0 (Ubuntu)"
    },
    {
      "key": "strict-transport-security",
      "value": "max-age=31536000 ; includeSubDomains"
    },
    {
      "key": "vary",
      "value": "Origin"
    },
    {
      "key": "x-content-type-options",
      "value": "nosniff"
    },
    {
      "key": "x-frame-options",
      "value": "DENY"
    },
    {
      "key": "x-xss-protection",
      "value": "0"
    }
  ],
  "responseContentType": "application/json"
}

CATS Replay

cats replay Test864