LeakIX - Host idws-tierapi-test.optum.com

Domain idws-tierapi-test.optum.com

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.107.213.60
Domain: idws-tierapi-test.optum.com
Port: 443
URL: https://idws-tierapi-test.optum.com

First seen 2025-10-25 13:13
Last seen 2026-02-02 09:45
Open for 99 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549704ffafa55b7979160d06ef5c6127b9eeea965eb

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/opi/idws/v1/Contract/search/{mpin}/{frstsvcdt}/{lstsvcdt}
GET /api/opi/idws/v1/Jetson/search/{coreExtractRowId}/{mpin}/{taxId}
GET /api/opi/idws/v1/Jetson/search/{coreExtractRowId}/{mpin}/{taxId}/{businessLine}/{caseNumber}
GET /api/opi/idws/v1/SendMessageToStorageQueue/postqueue
GET /api/opi/idws/v1/cdboperations/dboperation
GET /api/opi/idws/v1/fileuploads/geterrorfile/{containerName}/{rowId}
GET /api/opi/idws/v1/synctable/geolocation
GET /api/opi/idws/v2/ASOCoreExtract/Process
GET /api/opi/idws/v2/RerunValidation/data/csv/{batchId}/{userId}
GET /api/opi/idws/v2/RerunValidation/data/status/{batchId}
GET /api/opi/idws/v2/Search/SearchData
GET /api/opi/idws/v2/WiproUsers
GET /api/opi/idws/v2/auditordashboard/BatchExport/{algorithmBatchForAuditTrail}
GET /api/opi/idws/v2/auto-assignments
GET /api/opi/idws/v2/auto-assignments/Tier
GET /api/opi/idws/v2/auto-assignments/{rowId}
GET /api/opi/idws/v2/autoassignmentusers/{CoreExtractRowId}/users
GET /api/opi/idws/v2/managerDashboard/GetManagerDashboardData
GET /api/opi/idws/v2/reassignments
GET /api/opi/idws/v2/reassignmentusers/{batchIds}/users
GET /api/opi/idws/v2/tafw-calendar
GET /api/opi/v1.0/tier
GET /api/opi/v1.0/tier/SLA
GET /api/opi/v1.0/tier/SLA/{tier}
GET /api/opi/v1.0/tier/uploads
GET /api/opi/v1.0/tier/uploads/months
GET /api/opi/v1.0/tier/{ceID}
POST /api/opi/idws/v1/cdboperations/posttocdbqueue
POST /api/opi/idws/v1/fileuploads
POST /api/opi/idws/v1/fileuploads/coreextractuploads
POST /api/opi/idws/v1/fileuploads/imageuploads
POST /api/opi/idws/v1/fileuploads/smarttieruploads
POST /api/opi/idws/v1/fileuploads/specialreferraluploads
POST /api/opi/idws/v1/fileuploads/srgetfile
POST /api/opi/idws/v2/RmoLoad/SaveFileProcessorStatus
POST /api/opi/idws/v2/RmoLoad/SaveLogStatus
POST /api/opi/idws/v2/auto-assignments/draft
POST /api/opi/v1.0/NessClient/administratoractivity
POST /api/opi/v1.0/NessClient/logoff
POST /api/opi/v1.0/NessClient/logonfaliure
POST /api/opi/v1.0/NessClient/logonsuccess
POST /api/opi/v1.0/NessClient/protectedinformationviewing
POST /api/opi/v1.0/NessClient/systemshutdown
POST /api/opi/v1.0/NessClient/systemstartup
POST /api/opi/v1.0/tier/SLA/create
POST /api/opi/v1.0/tier/create
POST /api/opi/v1.0/tier/list
POST /api/opi/v1.0/tier/updateactivetier
POST /api/opi/v1.0/tier/upload
PUT /api/opi/idws/v1/process-batch/postqueue
PUT /api/opi/idws/v1/synctable/SyncUserTable
PUT /api/opi/idws/v2/RmoLoad/UpdateImageStatus
PUT /api/opi/idws/v2/RmoLoad/UpdateRowStatus
PUT /api/opi/idws/v2/RmoLoad/UpdateRowStatusFp
PUT /api/opi/idws/v2/auto-assignments/postqueue

Found on 2026-02-02 09:45

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549704ffafa55b7979160d06ef5a7388f4fdec115d5

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/opi/idws/v1/Contract/search/{mpin}/{frstsvcdt}/{lstsvcdt}
GET /api/opi/idws/v1/Jetson/search/{coreExtractRowId}/{mpin}/{taxId}
GET /api/opi/idws/v1/Jetson/search/{coreExtractRowId}/{mpin}/{taxId}/{businessLine}/{caseNumber}
GET /api/opi/idws/v1/Jetson/users/{userId}
GET /api/opi/idws/v1/SendMessageToStorageQueue/postqueue
GET /api/opi/idws/v1/cdboperations/dboperation
GET /api/opi/idws/v1/fileuploads/geterrorfile/{containerName}/{rowId}
GET /api/opi/idws/v1/synctable/geolocation
GET /api/opi/idws/v2/ASOCoreExtract/Process
GET /api/opi/idws/v2/RerunValidation/data/csv/{batchId}/{userId}
GET /api/opi/idws/v2/RerunValidation/data/status/{batchId}
GET /api/opi/idws/v2/Search/SearchData
GET /api/opi/idws/v2/WiproUsers
GET /api/opi/idws/v2/auditordashboard/BatchExport/{algorithmBatchForAuditTrail}
GET /api/opi/idws/v2/auto-assignments
GET /api/opi/idws/v2/auto-assignments/Tier
GET /api/opi/idws/v2/auto-assignments/{rowId}
GET /api/opi/idws/v2/autoassignmentusers/{CoreExtractRowId}/users
GET /api/opi/idws/v2/managerDashboard/GetManagerDashboardData
GET /api/opi/idws/v2/reassignments
GET /api/opi/idws/v2/reassignmentusers/{batchIds}/users
GET /api/opi/idws/v2/tafw-calendar
GET /api/opi/v1.0/tier
GET /api/opi/v1.0/tier/SLA
GET /api/opi/v1.0/tier/SLA/{tier}
GET /api/opi/v1.0/tier/uploads
GET /api/opi/v1.0/tier/uploads/months
GET /api/opi/v1.0/tier/{ceID}
POST /api/opi/idws/v1/cdboperations/posttocdbqueue
POST /api/opi/idws/v1/fileuploads
POST /api/opi/idws/v1/fileuploads/coreextractuploads
POST /api/opi/idws/v1/fileuploads/imageuploads
POST /api/opi/idws/v1/fileuploads/smarttieruploads
POST /api/opi/idws/v1/fileuploads/specialreferraluploads
POST /api/opi/idws/v1/fileuploads/srgetfile
POST /api/opi/idws/v2/RmoLoad/SaveFileProcessorStatus
POST /api/opi/idws/v2/RmoLoad/SaveLogStatus
POST /api/opi/idws/v2/auto-assignments/draft
POST /api/opi/v1.0/NessClient/administratoractivity
POST /api/opi/v1.0/NessClient/logoff
POST /api/opi/v1.0/NessClient/logonfaliure
POST /api/opi/v1.0/NessClient/logonsuccess
POST /api/opi/v1.0/NessClient/protectedinformationviewing
POST /api/opi/v1.0/NessClient/systemshutdown
POST /api/opi/v1.0/NessClient/systemstartup
POST /api/opi/v1.0/tier/SLA/create
POST /api/opi/v1.0/tier/create
POST /api/opi/v1.0/tier/list
POST /api/opi/v1.0/tier/updateactivetier
POST /api/opi/v1.0/tier/upload
PUT /api/opi/idws/v1/process-batch/postqueue
PUT /api/opi/idws/v1/synctable/SyncUserTable
PUT /api/opi/idws/v2/RmoLoad/UpdateImageStatus
PUT /api/opi/idws/v2/RmoLoad/UpdateRowStatus
PUT /api/opi/idws/v2/RmoLoad/UpdateRowStatusFp
PUT /api/opi/idws/v2/auto-assignments/postqueue

Found on 2026-01-16 20:51

Create report

Open service 13.107.213.60:443 · idws-tierapi-test.optum.com

2026-01-23 09:00

HTTP/1.1 302 Found
Date: Fri, 23 Jan 2026 09:00:31 GMT
Content-Length: 0
Connection: close
Location: /swagger
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:1d2d0e87-b6a5-4fbc-9840-7d889a318240
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET
x-azure-ref: 20260123T090030Z-r17955489d5tbsjkhC1FRAs1uw0000001zq000000000kdah
X-Cache: CONFIG_NOCACHE

Found 2026-01-23 by HttpPlugin

Create report

Open service 13.107.213.60:443 · idws-tierapi-test.optum.com

2026-01-10 02:22
Found 2026-01-10 by HttpPlugin
Create report

idws-tierapi-test.optum.com

Fingerprint:

4d0e020514c5fc7ce526ff5c9407bf4319ca5c51bf6b66ccfb1d3b450d448b40

CN:

idws-tierapi-test.optum.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-12-12 00:00

Not after:

2026-04-14 23:59

Domain summary

idws-tierapi-test.optum.com 3

1 recorded

IP summary

13.107.213.60 2

1 recorded