Validation of json schema when posting to API endpoint

Hi,

Does UiPath Orchestrator make any check on the payload sent in to an API endpoint? I’m thinking to do a schema validation in a proxy we are building to allow only a few endpoints through, and would like to know if there is an available json schema we can compare it against.

Apart from it are there any mitigation steps to prevent malicious commands to be sent as part of the payload to the server?

Thanks

UiPath has not defined a separate JSON schema, but the JSON leveraged for the Orchestrator API does adhere to IETF standards. There are several mechanisms in place to prevent malicious commands. The API adheres to the OData protocol, you can find more data here: http://docs.oasis-open.org/odata/odata/v4.0/errata03/os/complete/part1-protocol/odata-v4.0-errata03-os-part1-protocol-complete.html

1 Like