Skip to main content

classify_403_auth_block

parlov_analysis::aggregation::auth_classifier

Function classify_403_auth_block 

Source 
pub fn classify_403_auth_block(
    req: &ProbeDefinition,
    res: &ResponseSurface,
) -> Option<AuthBlockSignature>
Expand description

Classifies a 403 response. Returns Some only when an auth-layer signal is present — WWW-Authenticate header or insufficient_scope / invalid_token body. Otherwise returns None so the 403 propagates as potential oracle evidence (BOLA / IDOR territory).