From 0c436e35aabd628a8457418e9bdfbcb9e8a16632 Mon Sep 17 00:00:00 2001
From: sandeep <8293321+ehsandeep@users.noreply.github.com>
Date: Thu, 3 Jun 2021 19:39:51 +0530
Subject: [PATCH] Added airflow-debug

---
 misconfiguration/airflow/airflow-debug.yaml   | 26 +++++++++++++++++++
 .../unauthenticated-airflow.yaml              |  0
 workflows/airflow-workflow.yaml               |  4 +--
 3 files changed, 28 insertions(+), 2 deletions(-)
 create mode 100644 misconfiguration/airflow/airflow-debug.yaml
 rename misconfiguration/{ => airflow}/unauthenticated-airflow.yaml (100%)

diff --git a/misconfiguration/airflow/airflow-debug.yaml b/misconfiguration/airflow/airflow-debug.yaml
new file mode 100644
index 00000000000..dc6f4a4a586
--- /dev/null
+++ b/misconfiguration/airflow/airflow-debug.yaml
@@ -0,0 +1,26 @@
+id: airflow-debug
+
+info:
+  name: Airflow Debug Trace
+  author: pdteam
+  severity: low
+  tags: apache,airflow,fpd
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/admin/airflow/login"
+
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        part: body
+        words:
+          - "<h1> Ooops. </h1>"
+          - "Traceback (most recent call last)"
+        condition: and
+
+      - type: status
+        status:
+          - 500
\ No newline at end of file
diff --git a/misconfiguration/unauthenticated-airflow.yaml b/misconfiguration/airflow/unauthenticated-airflow.yaml
similarity index 100%
rename from misconfiguration/unauthenticated-airflow.yaml
rename to misconfiguration/airflow/unauthenticated-airflow.yaml
diff --git a/workflows/airflow-workflow.yaml b/workflows/airflow-workflow.yaml
index 1a21c5ba10d..8a5a9164e8a 100644
--- a/workflows/airflow-workflow.yaml
+++ b/workflows/airflow-workflow.yaml
@@ -14,5 +14,5 @@ workflows:
       - template: cves/2020/CVE-2020-13927.yaml
       - template: exposed-panels/airflow-panel.yaml
       - template: exposures/configs/airflow-configuration-exposure.yaml
-      - template: misconfiguration/unauthenticated-airflow.yaml
-      - template: default-logins/apache/airflow-default-credentials.yaml
\ No newline at end of file
+      - template: default-logins/apache/airflow-default-credentials.yaml
+      - template: misconfiguration/airflow/
\ No newline at end of file