nuclei-templates/http/token-spray/api-spotify.yaml

32 lines
761 B
YAML

id: api-spotify
info:
name: Spotify API Test
author: zzeitlin
severity: info
reference:
- https://developer.spotify.com/documentation/general/guides/authorization-guide/
metadata:
max-request: 1
tags: token-spray,spotify
self-contained: true
http:
- method: GET
path:
- "https://api.spotify.com/v1/me/player/devices"
headers:
Authorization: Bearer {{token}}
matchers:
- type: word
part: body
words:
- '"devices":'
- '"id":'
- '"is_active":'
condition: and
# digest: 4a0a00473045022100bfa9c51c453212bb217cccd26bd38e3a08368404e2fd3bd84800c76f4f3c0b8302207b37fcf4fb39b559417a5abc293f8a654383e066302f942d53e186707a6572dc:922c64590222798bb761d5b6d8e72950