From 93cc9237d0f15ae20dbf87d4952a7466f3cb759b Mon Sep 17 00:00:00 2001
From: Jon Roberts <jon.roberts@gsa.gov>
Date: Fri, 14 Apr 2023 10:37:45 -0600
Subject: [PATCH] added another withdraw path

---
 src/zap.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/zap.conf b/src/zap.conf
index 49d698844..293582826 100644
--- a/src/zap.conf
+++ b/src/zap.conf
@@ -53,6 +53,7 @@
 10038	OUTOFSCOPE	http://app:8080/users/add
 10038	OUTOFSCOPE	http://app:8080/delete
 10038	OUTOFSCOPE	http://app:8080/withdraw 
+10038	OUTOFSCOPE	http://app:8080/withdrawconfirmed 
 # This URL always returns 404, so include it as well.
 10038	OUTOFSCOPE	http://app:8080/todo
 # OIDC isn't configured in the test environment and DEBUG=True so this gives a 500 without CSP headers