Domain picasso.api.test.sdocs.com
United States
AMAZON-02
Software information
Heroku
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 13.248.213.92
Domain: picasso.api.test.sdocs.com
Port: 80
URL: http://picasso.api.test.sdocs.comFirst seen 2025-10-30 00:40
Last seen 2026-01-02 01:28
Open for 64 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a80354b718b5Public Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /document/{documentId}/user/{documentUserId} DELETE /settings/{id} DELETE /template/{id}/merge-data DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId} DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids} DELETE /template/{templateId}/datasource/{datasourceId} GET /customer/{customerId}/connected-app/{connectedAppId}/assets GET /customer/{customerId}/connected-app/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId} GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName} GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships GET /customer/{customerId}/connectedapplications GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields GET /customer/{customerId}/objects/{objectId}/schema GET /customer/{id}/datasource GET /customer/{id}/templates GET /dataElements/{dataElementId}/options GET /datasource/{id}/refreshtime GET /datasource/{id}/{objName} GET /document-user/{documentId}/user/{userId} GET /document/{documentId}/comments GET /document/{documentId}/fieldConfig GET /document/{documentId}/fieldConfig/{id} GET /document/{documentId}/merge-data GET /document/{documentId}/related-list/{relatedListId} GET /document/{documentId}/section GET /document/{documentId}/section/{documentSectionId} GET /document/{documentId}/section/{documentSectionId}/contentBlock GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId} GET /document/{documentId}/users GET /document/{documentId}/version GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId} GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId} GET /documents/all GET /documents/customer/{customerId} GET /documents/documentCards GET /documents/file/{fileId} GET /documents/generate/init GET /documents/hub/{hubId} GET /documents/invitedDocument/{id} GET /documents/poll GET /documents/template/{templateId} GET /documents/{documentId}/generate/pdf GET /documents/{documentId}/{functionality}/{domain}/validate-access GET /documents/{hubId}/{objectId}/{templateId} GET /documents/{id} GET /documents/{id}/inputfields GET /file GET /settings GET /settings/app GET /template GET /template/workFlow GET /template/{id} GET /template/{id}/datasource GET /template/{id}/datasource/{dataSourceId}/elements/{objName} GET /template/{id}/datasource/{dataSourceId}/type GET /template/{id}/datasources/type GET /template/{id}/elements/{objName} GET /template/{id}/section/{sectionId}/content-block/{blockId} GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data GET /template/{id}/section/{sectionId}/content-blocks GET /template/{id}/section/{sectionId}/related-list GET /template/{templateId}/accessible-profile GET /template/{templateId}/fieldConfig GET /template/{templateId}/fieldConfig/{id} GET /template/{templateId}/inputfields GET /template/{templateId}/merge-data GET /template/{templateId}/preview GET /template/{templateId}/profile GET /template/{templateId}/profile/{profileId} GET /template/{templateId}/relations GET /template/{templateId}/section GET /template/{templateId}/section/{sectionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId} GET /v1/template/{id}/datasources/type PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id} PATCH /customer/{customerId}/fields/status PATCH /customer/{customerId}/objects/status PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh PATCH /document/{documentId}/version/{versionId} PATCH /documentUser/{documentId}/user/{userId} PATCH /documents/lock/{documentId} PATCH /documents/{id}/inputfields/all PATCH /documents/{id}/refresh PATCH /documents/{id}/restore PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId} PATCH /template/{templateId}/profiles POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh POST /customer/{customerId}/runtime-datasource POST /datasource/{dataSourceId}/elements POST /document/{documentId}/user POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment POST /documents POST /documents/generateDocument POST /documents/{documentId}/retry POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId} POST /template/{id}/datasource/{dataSourceId}/elements POST /template/{id}/section POST /template/{id}/section/{sectionId}/content-block POST /template/{id}/section/{sectionId}/content-block/{blockId}/image POST /template/{templateId}/clone POST /template/{templateId}/publish POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail POST /upload-fileFound on 2026-01-02 01:28 -
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a803820fb58dPublic Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /document/{documentId}/user/{documentUserId} DELETE /settings/{id} DELETE /template/{id}/merge-data DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId} DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids} DELETE /template/{templateId}/datasource/{datasourceId} GET /customer/{customerId}/connected-app/{connectedAppId}/assets GET /customer/{customerId}/connected-app/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId} GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName} GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships GET /customer/{customerId}/connectedapplications GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields GET /customer/{customerId}/objects/{objectId}/schema GET /customer/{id}/datasource GET /customer/{id}/templates GET /dataElements/{dataElementId}/options GET /datasource/{id}/refreshtime GET /datasource/{id}/{objName} GET /document-user/{documentId}/user/{userId} GET /document/{documentId}/comments GET /document/{documentId}/fieldConfig GET /document/{documentId}/fieldConfig/{id} GET /document/{documentId}/merge-data GET /document/{documentId}/related-list/{relatedListId} GET /document/{documentId}/section GET /document/{documentId}/section/{documentSectionId} GET /document/{documentId}/section/{documentSectionId}/contentBlock GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId} GET /document/{documentId}/users GET /document/{documentId}/version GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId} GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId} GET /documents GET /documents/all GET /documents/customer/{customerId} GET /documents/documentCards GET /documents/file/{fileId} GET /documents/generate/init GET /documents/hub/{hubId} GET /documents/invitedDocument/{id} GET /documents/poll GET /documents/template/{templateId} GET /documents/{documentId}/generate/pdf GET /documents/{documentId}/{functionality}/{domain}/validate-access GET /documents/{hubId}/{objectId}/{templateId} GET /documents/{id} GET /documents/{id}/inputfields GET /file GET /settings GET /settings/app GET /template GET /template/workFlow GET /template/{id} GET /template/{id}/datasource GET /template/{id}/datasource/{dataSourceId}/elements/{objName} GET /template/{id}/datasource/{dataSourceId}/type GET /template/{id}/datasources/type GET /template/{id}/elements/{objName} GET /template/{id}/section/{sectionId}/content-block/{blockId} GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data GET /template/{id}/section/{sectionId}/content-blocks GET /template/{id}/section/{sectionId}/related-list GET /template/{templateId}/accessible-profile GET /template/{templateId}/fieldConfig GET /template/{templateId}/fieldConfig/{id} GET /template/{templateId}/inputfields GET /template/{templateId}/merge-data GET /template/{templateId}/preview GET /template/{templateId}/profile GET /template/{templateId}/profile/{profileId} GET /template/{templateId}/relations GET /template/{templateId}/section GET /template/{templateId}/section/{sectionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId} GET /v1/template/{id}/datasources/type PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id} PATCH /customer/{customerId}/fields/status PATCH /customer/{customerId}/objects/status PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh PATCH /document/{documentId}/version/{versionId} PATCH /documentUser/{documentId}/user/{userId} PATCH /documents/lock/{documentId} PATCH /documents/{id}/inputfields/all PATCH /documents/{id}/refresh PATCH /documents/{id}/restore PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId} PATCH /template/{templateId}/profiles POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh POST /customer/{customerId}/runtime-datasource POST /datasource/{dataSourceId}/elements POST /document/{documentId}/user POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment POST /documents/generateDocument POST /documents/{documentId}/retry POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId} POST /template/{id}/datasource/{dataSourceId}/elements POST /template/{id}/section POST /template/{id}/section/{sectionId}/content-block POST /template/{id}/section/{sectionId}/content-block/{blockId}/image POST /template/{templateId}/clone POST /template/{templateId}/publish POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail POST /upload-fileFound on 2025-12-01 15:38
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 15.197.149.68
Domain: picasso.api.test.sdocs.com
Port: 443
URL: https://picasso.api.test.sdocs.comFirst seen 2025-10-30 00:40
Last seen 2026-01-08 21:02
Open for 70 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a80354b718b5Public Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /document/{documentId}/user/{documentUserId} DELETE /settings/{id} DELETE /template/{id}/merge-data DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId} DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids} DELETE /template/{templateId}/datasource/{datasourceId} GET /customer/{customerId}/connected-app/{connectedAppId}/assets GET /customer/{customerId}/connected-app/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId} GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName} GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships GET /customer/{customerId}/connectedapplications GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields GET /customer/{customerId}/objects/{objectId}/schema GET /customer/{id}/datasource GET /customer/{id}/templates GET /dataElements/{dataElementId}/options GET /datasource/{id}/refreshtime GET /datasource/{id}/{objName} GET /document-user/{documentId}/user/{userId} GET /document/{documentId}/comments GET /document/{documentId}/fieldConfig GET /document/{documentId}/fieldConfig/{id} GET /document/{documentId}/merge-data GET /document/{documentId}/related-list/{relatedListId} GET /document/{documentId}/section GET /document/{documentId}/section/{documentSectionId} GET /document/{documentId}/section/{documentSectionId}/contentBlock GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId} GET /document/{documentId}/users GET /document/{documentId}/version GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId} GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId} GET /documents/all GET /documents/customer/{customerId} GET /documents/documentCards GET /documents/file/{fileId} GET /documents/generate/init GET /documents/hub/{hubId} GET /documents/invitedDocument/{id} GET /documents/poll GET /documents/template/{templateId} GET /documents/{documentId}/generate/pdf GET /documents/{documentId}/{functionality}/{domain}/validate-access GET /documents/{hubId}/{objectId}/{templateId} GET /documents/{id} GET /documents/{id}/inputfields GET /file GET /settings GET /settings/app GET /template GET /template/workFlow GET /template/{id} GET /template/{id}/datasource GET /template/{id}/datasource/{dataSourceId}/elements/{objName} GET /template/{id}/datasource/{dataSourceId}/type GET /template/{id}/datasources/type GET /template/{id}/elements/{objName} GET /template/{id}/section/{sectionId}/content-block/{blockId} GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data GET /template/{id}/section/{sectionId}/content-blocks GET /template/{id}/section/{sectionId}/related-list GET /template/{templateId}/accessible-profile GET /template/{templateId}/fieldConfig GET /template/{templateId}/fieldConfig/{id} GET /template/{templateId}/inputfields GET /template/{templateId}/merge-data GET /template/{templateId}/preview GET /template/{templateId}/profile GET /template/{templateId}/profile/{profileId} GET /template/{templateId}/relations GET /template/{templateId}/section GET /template/{templateId}/section/{sectionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId} GET /v1/template/{id}/datasources/type PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id} PATCH /customer/{customerId}/fields/status PATCH /customer/{customerId}/objects/status PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh PATCH /document/{documentId}/version/{versionId} PATCH /documentUser/{documentId}/user/{userId} PATCH /documents/lock/{documentId} PATCH /documents/{id}/inputfields/all PATCH /documents/{id}/refresh PATCH /documents/{id}/restore PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId} PATCH /template/{templateId}/profiles POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh POST /customer/{customerId}/runtime-datasource POST /datasource/{dataSourceId}/elements POST /document/{documentId}/user POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment POST /documents POST /documents/generateDocument POST /documents/{documentId}/retry POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId} POST /template/{id}/datasource/{dataSourceId}/elements POST /template/{id}/section POST /template/{id}/section/{sectionId}/content-block POST /template/{id}/section/{sectionId}/content-block/{blockId}/image POST /template/{templateId}/clone POST /template/{templateId}/publish POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail POST /upload-fileFound on 2026-01-08 21:02 -
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b6fbd0de741919ef84711bfd088a4a803820fb58dPublic Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /document/{documentId}/user/{documentUserId} DELETE /settings/{id} DELETE /template/{id}/merge-data DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/image/{imageId} DELETE /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{ids} DELETE /template/{templateId}/datasource/{datasourceId} GET /customer/{customerId}/connected-app/{connectedAppId}/assets GET /customer/{customerId}/connected-app/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId} GET /customer/{customerId}/connectedapplication/{connectedAppId}/data/{objectApiName} GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/dataelements GET /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships GET /customer/{customerId}/connectedapplications GET /customer/{customerId}/objects/{objectId}/relationships/{relationshipId}/fields GET /customer/{customerId}/objects/{objectId}/schema GET /customer/{id}/datasource GET /customer/{id}/templates GET /dataElements/{dataElementId}/options GET /datasource/{id}/refreshtime GET /datasource/{id}/{objName} GET /document-user/{documentId}/user/{userId} GET /document/{documentId}/comments GET /document/{documentId}/fieldConfig GET /document/{documentId}/fieldConfig/{id} GET /document/{documentId}/merge-data GET /document/{documentId}/related-list/{relatedListId} GET /document/{documentId}/section GET /document/{documentId}/section/{documentSectionId} GET /document/{documentId}/section/{documentSectionId}/contentBlock GET /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId} GET /document/{documentId}/users GET /document/{documentId}/version GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId} GET /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment/{commentId} GET /documents GET /documents/all GET /documents/customer/{customerId} GET /documents/documentCards GET /documents/file/{fileId} GET /documents/generate/init GET /documents/hub/{hubId} GET /documents/invitedDocument/{id} GET /documents/poll GET /documents/template/{templateId} GET /documents/{documentId}/generate/pdf GET /documents/{documentId}/{functionality}/{domain}/validate-access GET /documents/{hubId}/{objectId}/{templateId} GET /documents/{id} GET /documents/{id}/inputfields GET /file GET /settings GET /settings/app GET /template GET /template/workFlow GET /template/{id} GET /template/{id}/datasource GET /template/{id}/datasource/{dataSourceId}/elements/{objName} GET /template/{id}/datasource/{dataSourceId}/type GET /template/{id}/datasources/type GET /template/{id}/elements/{objName} GET /template/{id}/section/{sectionId}/content-block/{blockId} GET /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data GET /template/{id}/section/{sectionId}/content-block/{blockId}/{fieldKey}/merge-data GET /template/{id}/section/{sectionId}/content-blocks GET /template/{id}/section/{sectionId}/related-list GET /template/{templateId}/accessible-profile GET /template/{templateId}/fieldConfig GET /template/{templateId}/fieldConfig/{id} GET /template/{templateId}/inputfields GET /template/{templateId}/merge-data GET /template/{templateId}/preview GET /template/{templateId}/profile GET /template/{templateId}/profile/{profileId} GET /template/{templateId}/relations GET /template/{templateId}/section GET /template/{templateId}/section/{sectionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/block-action/{blockActionId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId} GET /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail/{ruleDetailId} GET /v1/template/{id}/datasources/type PATCH /customer/{customerId}/connected-app/{connectedAppId}/data/migrate PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/status PATCH /customer/{customerId}/connected-app/{connectedAppId}/objects/{objectId}/relationships/{relationshipId}/fields/refresh PATCH /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/refresh PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/object/{apiName}/element PATCH /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationships/{data_source_rel_id} PATCH /customer/{customerId}/fields/status PATCH /customer/{customerId}/objects/status PATCH /document/{documentId}/section/{documentSectionId}/contentBlock/{documentContentBlockId}/refresh PATCH /document/{documentId}/version/{versionId} PATCH /documentUser/{documentId}/user/{userId} PATCH /documents/lock/{documentId} PATCH /documents/{id}/inputfields/all PATCH /documents/{id}/refresh PATCH /documents/{id}/restore PATCH /template/{id}/section/{sectionId}/content-block/{blockId}/merge-data/{mergeId} PATCH /template/{templateId}/profiles POST /customer/{customerId}/connected-app/{connectedAppId}/objects/schema POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects POST /customer/{customerId}/connected-app/{connectedAppId}/settings/objects/{objectId}/schema POST /customer/{customerId}/connectedapplication/{connectedAppId}/datasource POST /customer/{customerId}/connectedapplication/{connectedAppId}/objects/{apiName}/relationship POST /customer/{customerId}/connectedapplication/{connectedAppId}/refresh POST /customer/{customerId}/runtime-datasource POST /datasource/{dataSourceId}/elements POST /document/{documentId}/user POST /document/{documentId}/version/{versionId}/section/{sectionId}/contentBlock/{contentBlockId}/comment POST /documents/generateDocument POST /documents/{documentId}/retry POST /template/cloneTemplateToNewUser/{newCustomerId}/{existingCustomerId}/{newUserId} POST /template/{id}/datasource/{dataSourceId}/elements POST /template/{id}/section POST /template/{id}/section/{sectionId}/content-block POST /template/{id}/section/{sectionId}/content-block/{blockId}/image POST /template/{templateId}/clone POST /template/{templateId}/publish POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule POST /template/{templateId}/section/{sectionId}/content-block/{blockId}/render-rule/{ruleId}/rule-detail POST /upload-fileFound on 2025-11-30 04:36
-
-
Open service 13.248.213.92:80 · picasso.api.test.sdocs.com
2026-01-08 23:59
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Fri, 09 Jan 2026 00:00:30 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OCeaiTm941TqJhj7OXJMuqpHduTllLW8lmcp5iH3%2BH4%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767916830"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OCeaiTm941TqJhj7OXJMuqpHduTllLW8lmcp5iH3%2BH4%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767916830" Server: Heroku Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2026-01-09T00:00:30.444290100Z","message":"{\"timeStamp\":\"2026-01-09T00:00:30.440551552Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2 days ago by HttpPluginCreate report
-
Open service 15.197.149.68:443 · picasso.api.test.sdocs.com
2026-01-08 21:02
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Thu, 08 Jan 2026 21:02:13 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=82BPL8%2B0uKrkrLOB5zp1zOwaOfaR8AYYR%2Fd%2BDh4E0YY%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767906133"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=82BPL8%2B0uKrkrLOB5zp1zOwaOfaR8AYYR%2Fd%2BDh4E0YY%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767906133" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2026-01-08T21:02:13.032731550Z","message":"{\"timeStamp\":\"2026-01-08T21:02:13.030802965Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2 days ago by HttpPluginCreate report
-
Open service 13.248.213.92:80 · picasso.api.test.sdocs.com
2026-01-02 01:28
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Fri, 02 Jan 2026 01:28:32 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=C1EQ7%2Fwom64ueA1qsqI7QzLb319D21fCKh3TKtjTe%2F4%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767317313"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=C1EQ7%2Fwom64ueA1qsqI7QzLb319D21fCKh3TKtjTe%2F4%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767317313" Server: Heroku Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2026-01-02T01:28:33.156467722Z","message":"{\"timeStamp\":\"2026-01-02T01:28:33.154095720Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2026-01-02 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · picasso.api.test.sdocs.com
2026-01-01 21:11
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Thu, 01 Jan 2026 21:11:15 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=DNBpRgyP8W8sUbGvVj2eK6aL1aiuMTds%2BIiwpESuSZw%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767301876"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=DNBpRgyP8W8sUbGvVj2eK6aL1aiuMTds%2BIiwpESuSZw%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767301876" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2026-01-01T21:11:16.201917239Z","message":"{\"timeStamp\":\"2026-01-01T21:11:16.200003999Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2026-01-01 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · picasso.api.test.sdocs.com
2025-12-22 14:14
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Mon, 22 Dec 2025 14:14:47 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Hu6wWIUOEFqUpu0ssjl1A9u3%2FOHI8ajTf4Hu5thNBYE%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766412887"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Hu6wWIUOEFqUpu0ssjl1A9u3%2FOHI8ajTf4Hu5thNBYE%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766412887" Server: Heroku Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2025-12-22T14:14:47.753669238Z","message":"{\"timeStamp\":\"2025-12-22T14:14:47.751364157Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · picasso.api.test.sdocs.com
2025-12-22 06:31
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Mon, 22 Dec 2025 06:31:05 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=PWwLwXvLQm2y7snqt43eFyzSXUKcTary2chwGWaZdWY%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766385065"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=PWwLwXvLQm2y7snqt43eFyzSXUKcTary2chwGWaZdWY%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766385065" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2025-12-22T06:31:05.381276107Z","message":"{\"timeStamp\":\"2025-12-22T06:31:05.377031239Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · picasso.api.test.sdocs.com
2025-12-20 18:30
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Sat, 20 Dec 2025 18:30:52 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ixkzR%2BDCCt9vOq5HFyaBYrcQMWvJhSiGwsvdsPq8H1c%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766255452"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ixkzR%2BDCCt9vOq5HFyaBYrcQMWvJhSiGwsvdsPq8H1c%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766255452" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2025-12-20T18:30:52.819122362Z","message":"{\"timeStamp\":\"2025-12-20T18:30:52.813990434Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2025-12-20 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · picasso.api.test.sdocs.com
2025-12-20 14:36
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Sat, 20 Dec 2025 14:36:19 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=wVujgqnUmUZPyZbj7hacq80Oc%2FvKyru95pVoq%2B2c5%2FA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766241379"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=wVujgqnUmUZPyZbj7hacq80Oc%2FvKyru95pVoq%2B2c5%2FA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766241379" Server: Heroku Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2025-12-20T14:36:19.292989754Z","message":"{\"timeStamp\":\"2025-12-20T14:36:19.288388562Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2025-12-20 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · picasso.api.test.sdocs.com
2025-12-19 02:22
HTTP/1.1 401 Unauthorized Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: Content-Type, Authorization Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Cache-Control: no-cache, no-store, max-age=0, must-revalidate Content-Type: application/json Date: Fri, 19 Dec 2025 02:22:35 GMT Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Pragma: no-cache Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=7UWb%2BpSTjAOydwzSRzR8puB6QDMFoPR2hsnMX%2B0med4%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766110956"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=7UWb%2BpSTjAOydwzSRzR8puB6QDMFoPR2hsnMX%2B0med4%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766110956" Server: Heroku Strict-Transport-Security: max-age=31536000 ; includeSubDomains Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Xss-Protection: 0 Content-Length: 220 Connection: close {"timeStamp":"2025-12-19T02:22:36.255866711Z","message":"{\"timeStamp\":\"2025-12-19T02:22:36.252635654Z\",\"message\":\"Authentication token is missing.\",\"details\":\"uri=/login-user/details\"}","description":"uri=/"}Found 2025-12-19 by HttpPluginCreate report
picasso.api.test.sdocs.com
CN:
picasso.api.test.sdocs.com
Not before:
2025-12-29 00:07
Not after:
2026-03-29 00:07
picasso.api.test.sdocs.com
CN:
picasso.api.test.sdocs.com
Not before:
2025-10-29 23:41
Not after:
2026-01-27 23:41