Testing unauthenticated RESTAPI file scans
Release : 9.0.0
sperestapi.auth.enabled=false
sperestapi.auth.filescanning.enabled=false
curl -k -X POST "http://localhost:8008/spe/api/v1/scan-file" -H "accept: application/xml" -H "Content-Type: multipart/form-data" -F "[email protected]"
Expected output:
<FileScanResult><scanStatus>SCAN_SUCCESS</scanStatus><fileScanned>Data.txt</fileScanned><fileStatus>CLEAN</fileStatus><fileQuarantineStatus>NOT_AVAILABLE</fileQuarantineStatus><totalInfections>0</totalInfections><virusDefinitionDate>2023-08-29T00:00:00.000+00:00</virusDefinitionDate><virusDefinitionRevisionNumber>008</virusDefinitionRevisionNumber><bytesScanned>-1</bytesScanned><totalFilesScanned>-1</totalFilesScanned><trueTypeOfFile>NA</trueTypeOfFile></FileScanResult>
Note: the example text file used in this test did not contain the EICAR Test String.
The test tool curl name means "Client for URL". The Curl project began in 1996. Many administrators view this tool as a basic utility for network troubleshooting. The curl utility is available on both Windows and Linux.
curl output will be similar to:
<Map><timestamp>2023-08-01T22:04:15.687+00:00</timestamp><status>401</status><error>Unauthorized</error><message>Unauthorized</message><path>/spe/api/v1/scan-file</path></Map>
Yes, just substitute the IP address of the SPE Server test box in place of localhost in the curl command above.
See the Help topic: How to scan files using the REST API
Where can I find out more about the REST API of SPE?
https://apidocs.securitycloud.symantec.com/#