VulnerableApp-facade
VulnerableApp-facade copied to clipboard
Handling issues where backed returns URL links
Issue: As VulnerableApp-Facade calls the underlying applications based on the criteria which is defined in nginx-conf however in case applications return a URI inside the response which might not have that criteria then the calls to those URI will break. an example is:
location /XYZ {
proxy_pass http://<something>:9090/PQR;
}
Here if backend is returning any URI then that URL will be /PQR but backend should return /XYZ for facade usecase.
Solution: Not sure how can we handle such usecases. Need to think more on this.