You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: auth.md
+6-4Lines changed: 6 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -111,12 +111,14 @@ auth:
111
111
loginEndpointAuth:
112
112
# ... other data here
113
113
token:
114
-
headerPrefix="Bearer "
115
-
extractFromField = "/token/authToken"
116
-
httpHeaderName="Authorization"
114
+
extractFrom="body"
115
+
extractSelector="/token/authToken"
116
+
sendIn="header"
117
+
sendName="Authorization"
118
+
sendTemplate="Bearer {token}"
117
119
```
118
120
119
-
What will happen here is that a fuzzer will make a POST to `/login` and then extract the field `token.authToken` from the JSON response (the entry `extractFromField` is treated as a JSON Pointer (RFC 6901)).
121
+
What will happen here is that a fuzzer will make a POST to `/login` and then extract the field `token.authToken` from the JSON response (the entry `extractSelector` is treated as a JSON Pointer (RFC 6901)).
120
122
Assume for example we have `token.authToken = 123456`.
121
123
In the following auth requests, then the fuzzer will make requests with HTTP header: `Authorization:Bearer 123456`.
0 commit comments