Dosen't work on api.site.com/graphql
gprime31 opened this issue · 15 comments
Hi,
i tried 3 known with a path similar to https://api.site.com/graphql all with introspection enabeled and it says......
.[+] Downloading schema for https://api.site.com/graphql ...
.[-] Error downloading schema, is introspection enabled?
.[-] Exiting...
.[+] Done
any ideas what's going on?
Would you be able to provide more details? Can you pull up the schema in graphiql or a similar tool? Its sending a pretty standard introspection query to grab the schema so it shouldn't be running into an error there.
command used:
python3 graphCrawler.py -u https://api.redacted.com/graphql -a "Content-Type: application/json"
Ill dig into this. Currently doing an exam but once I finish Ill get on it. Thank you for the report.
no problem, looks like a great tool, appreciate your work.
Thanks for being so patient. I just submitted the report for the eWPT exam. I got a chance to look over and troubleshoot the issue and I think the last commit should have fixed it. Try again with it now.
Working now, awesome thanks.
Hi, I am having same problem:
Hi, I am having same problem:
Hey stephenbond. Can you try running GraphCrawler without adding the "Content-Type" header? It should already add that header and so might be causing a collision there.
Hi, i have tried that but it does not help unfortunately.
Hi, i have tried that but it does not help unfortunately.
Interesting... Ill take a deep dive and see what is up with it.
Hi, i have tried that but it does not help unfortunately.
So I am unable to replicate this with multiple different endpoints. Can you check if the user-agent header is required? I am unable to debug what I can't replicate.
The user-agent is not required.
The user-agent is not required.
Unfortunately, I still am unable to replicate this issue and would need to see how it's being used. My last bit without that is to make sure you have the most up-to-date version by running 'git pull'