Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiWeb 7.6.4 Administration Guide
    7.6.4
    8.0.3
    8.0.2
    8.0.1
    8.0.0
    7.6.7
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.12
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.3
    6.3.23
    6.2.8
    6.1.4
    5.7.0
    5.6.1
    5.6.0
    5.6.0

    Enhanced OpenAPI Validation Attack Logs with Schema Line Numbers (7.6.4)

    Enhanced OpenAPI Validation Attack Logs with Schema Line Numbers (7.6.4)

    FortiWeb 7.6.4 enhances OpenAPI Validation by including schema file line numbers in the attack logs for all supported validation failure types. This allows administrators to pinpoint the exact location of a violation within the OpenAPI document, significantly reducing time spent on troubleshooting and schema debugging.

    Previously, FortiWeb’s OpenAPI validation attack logs provided only a brief description of the error, without indicating where in the schema the failure occurred. As of this release, log messages now include both the line number and the schema file name, helping users immediately locate the issue in large or complex OpenAPI specifications.

    This enhancement applies to all eight OpenAPI validation subtypes:

    Subtype ID

    Validation Type

    Improved Log Example
    600

    Path parameter check

    		 Path parameter "inside_id" validation fails, please refer to the OpenAPI file at line 80: Failed to validate schema path.yaml
    601

    Query parameter check

    		 Query parameter "outside_id" validation fails, it's required, please refer to the OpenAPI file at line 353: Failed to validate schema sample.yaml
    602

    Cookie parameter check

    		 Cookie parameter "i_am_a_cookie" validation fails, please refer to the OpenAPI file at line 129: Failed to validate schema sample.yaml
    603

    Header parameter check

    		 Header parameter "hf" validation fails, it's required, please refer to the OpenAPI file at line 113: Failed to validate schema header.yaml
    604

    Request body check

    		 Request body validation failure – validation error({"maximum":{"actual":100,"expected":99,"instanceRef":"#/age","schemaRef":"#/components/schemas/User-Parameter/properties/age","line":330}}): Failed to validate schema sample.yaml
    605

    Security scheme check

    		 Security scheme validation failure, please refer to the OpenAPI file at line 358: Failed to validate schema sample.yaml
    606

    Unlisted media type

    		 Unlisted media type, please refer to the OpenAPI file at line 139: Failed to validate schema sample.yaml
    607

    Non-JSON media type

    		 Non-JSON media type, please refer to the OpenAPI file at line 207: Failed to validate schema sample.yaml

    These enhancements improve the efficiency and accuracy of troubleshooting OpenAPI validation issues by:

    • Allowing precise correlation between validation errors and schema definitions

    • Reducing time required to identify and resolve misconfigurations

    • Facilitating clearer schema auditability during API onboarding and maintenance

    Line number references are especially helpful when working with large or complex OpenAPI specifications, where locating the source of a violation manually would otherwise be time-consuming and error-prone.

    Previous
    Next

    Enhanced OpenAPI Validation Attack Logs with Schema Line Numbers (7.6.4)

    Enhanced OpenAPI Validation Attack Logs with Schema Line Numbers (7.6.4)

    FortiWeb 7.6.4 enhances OpenAPI Validation by including schema file line numbers in the attack logs for all supported validation failure types. This allows administrators to pinpoint the exact location of a violation within the OpenAPI document, significantly reducing time spent on troubleshooting and schema debugging.

    Previously, FortiWeb’s OpenAPI validation attack logs provided only a brief description of the error, without indicating where in the schema the failure occurred. As of this release, log messages now include both the line number and the schema file name, helping users immediately locate the issue in large or complex OpenAPI specifications.

    This enhancement applies to all eight OpenAPI validation subtypes:

    Subtype ID

    Validation Type

    Improved Log Example
    600

    Path parameter check

    		 Path parameter "inside_id" validation fails, please refer to the OpenAPI file at line 80: Failed to validate schema path.yaml
    601

    Query parameter check

    		 Query parameter "outside_id" validation fails, it's required, please refer to the OpenAPI file at line 353: Failed to validate schema sample.yaml
    602

    Cookie parameter check

    		 Cookie parameter "i_am_a_cookie" validation fails, please refer to the OpenAPI file at line 129: Failed to validate schema sample.yaml
    603

    Header parameter check

    		 Header parameter "hf" validation fails, it's required, please refer to the OpenAPI file at line 113: Failed to validate schema header.yaml
    604

    Request body check

    		 Request body validation failure – validation error({"maximum":{"actual":100,"expected":99,"instanceRef":"#/age","schemaRef":"#/components/schemas/User-Parameter/properties/age","line":330}}): Failed to validate schema sample.yaml
    605

    Security scheme check

    		 Security scheme validation failure, please refer to the OpenAPI file at line 358: Failed to validate schema sample.yaml
    606

    Unlisted media type

    		 Unlisted media type, please refer to the OpenAPI file at line 139: Failed to validate schema sample.yaml
    607

    Non-JSON media type

    		 Non-JSON media type, please refer to the OpenAPI file at line 207: Failed to validate schema sample.yaml

    These enhancements improve the efficiency and accuracy of troubleshooting OpenAPI validation issues by:

    • Allowing precise correlation between validation errors and schema definitions

    • Reducing time required to identify and resolve misconfigurations

    • Facilitating clearer schema auditability during API onboarding and maintenance

    Line number references are especially helpful when working with large or complex OpenAPI specifications, where locating the source of a violation manually would otherwise be time-consuming and error-prone.

    Previous
    Next