# Get Action Plan Findings source: https://developer.mastercard.com/riskrecon-api/documentation/testing/actionplan-samples/actnpln-fndg-smpl/index.md Allows you to fetch a list of open issues or findings as per a vendor's action plan. ## Pre-requisites {#pre-requisites} Refer to the [Retrieve Action Plan Findings](https://developer.mastercard.com/riskrecon-api/documentation/use-cases/risk-mgmt-issue-rmdfn/actionplan/fndg-det-actnpln/index.md) use case. ## Request URL for Sandbox environment {#request-url-for-sandbox-environment} GET https://api.sandbox.riskrecon.com/v1/action_plan/findings/{toe_id} ## Request URL for Production environment {#request-url-for-production-environment} GET https://api.riskrecon.com/v1/action_plan/findings/{toe_id} ## Test Cases {#test-cases} ### Test Case: Success - Retrieve action plan findings {#test-case-success---retrieve-action-plan-findings} **Request** Here is an example of a request made using a `curl` command. ```bash curl -X 'GET' \ 'https://api.sandbox.riskrecon.com/v1/action_plan/findings/09918d09-8d52-4e86-a3ec-5ef4d461e2ba' \ -H 'accept: application/json' -H 'Authorization: valid_JWT_token' ``` **Response** get: ```json { "data": [ { "attributes": { "analysis_id": "9420400", "asset_value": "high", "domain_name": "rempel.com", "finding_data_value": "certificate", "finding_detail": "web", "finding_extra_data_value": "", "finding_id": "671d5c9fe9bd49f09e2974ab5d03addf", "first_seen": "2022-07-08T19:02:24", "host_name": "gutmann.com", "hosting_provider": "Von-Baumbach", "ip_address": "178.17.172.146", "last_seen": "2022-07-08T19:02:24", "priority": 2, "security_criteria": "data_loss_6", "security_domain": "software_patching", "severity": "high" }, "id": "671d5c9fe9bd49f09e2974ab5d03addf", "type": "finding" }, { "attributes": { "analysis_id": "9420400", "asset_value": "high", "domain_name": "schimmel.net", "finding_data_value": "email", "finding_detail": "shared_hosting", "finding_extra_data_value": "", "finding_id": "13deb752589e4c3bae360d46b20f56f0", "first_seen": "2022-07-08T19:02:24", "host_name": "lynch.org", "hosting_provider": "Satterfield Inc", "ip_address": "178.17.172.146", "last_seen": "2022-07-08T19:02:24", "priority": 2, "security_criteria": "patching_os", "security_domain": "dns_security", "severity": "high" }, "id": "13deb752589e4c3bae360d46b20f56f0", "type": "finding" } ], "meta": { "current_page": 1, "next_page": 2, "prev_page": null, "total_count": 28595, "total_pages": 1430 } } ``` ### Test Case: Fail - Incorrect page number in pagination filter {#test-case-fail---incorrect-page-number-in-pagination-filter} **Request** Here is an example of a request using a `curl` command where the page number in the pagination filter is 0. ```bash curl -X 'GET' \ 'https://api.sandbox.riskrecon.com/v1/action_plan/findings/09918d09-8d52-4e86-a3ec-5ef4d461e2ba?page=0&per_page=2&sort_attribute=priority&sort_method=DESC&severity=high&asset_value=high' \ -H 'accept: application/json' \ -H 'Authorization: valid_JWT_token' ``` **Response** HTTP Error response 400 ```json { "Errors": { "Error": [ { "Description": "Bad Request", "Details": "page: must be greater than 1", "ReasonCode": "BAD_REQUEST", "Recoverable": false, "Source": "RISKRECON_API" } ] } } ``` ### Test Case: Fail - Incorrect per page value in pagination filter {#test-case-fail---incorrect-per-page-value-in-pagination-filter} **Request** Here is an example of a request using a `curl` command where the per page value in the pagination filter is 0. ```bash curl -X 'GET' \ 'https://api.sandbox.riskrecon.com/v1/action_plan/findings/09918d09-8d52-4e86-a3ec-5ef4d461e2ba?page=1&per_page=0&sort_attribute=priority&sort_method=DESC&severity=high&asset_value=high' \ -H 'accept: application/json' \ -H 'Authorization: valid_JWT_token' ``` **Response** HTTP Error response 400 ```json { "Errors": { "Error": [ { "Description": "Bad Request", "Details": "per_page: must be greater than 1", "ReasonCode": "BAD_REQUEST", "Recoverable": false, "Source": "RISKRECON_API" } ] } } ```