It looks as the app IBM Security App Exchange - AbuseIPDB Function for IBM SOAR is updated.
Version 1.0.2
-Selftest function updated
Thank you for the prompt fix.
------------------------------
Katsuyuki Hirayama
------------------------------
Original Message:
Sent: Tue October 17, 2023 09:02 AM
From: Bo Bleckel
Subject: AbuseIPDB Function for IBM SOAR Selftest fails.
Hi Katsuyuki -
Yes, that does seem to be a bug in the selftest. I've directly inspected the code in the app and the function itself should continue to work properly. We'll get a fix out for selftest sometime soon.
Thanks,
Bo
------------------------------
Bo Bleckel
Original Message:
Sent: Mon October 16, 2023 01:12 AM
From: Katsuyuki Hirayama
Subject: AbuseIPDB Function for IBM SOAR Selftest fails.
AbuseIPDB Function for IBM SOAR failed with '404 Client Error: Not Found for url: https://api.abuseipdb.com/login'
The configured URL is 'https://api.abuseipdb.com/api/v2/check' and redirected to the one above.
As far as I could read from the CHECK Endpoint example, API key must be given to the 'Key' header, while selfset.py of this app set it to the 'X-Auth-Token' header. My guess is the API endpoint could not authenticate the user as the header name is wrong and redirected the request to '/login'.
Does anyone experience the same?
------------------------------
Katsuyuki Hirayama
------------------------------