I am trying to add an authentication header in the OpenAPI Job from the AF.
The import is working great and also the active scan but i need to authenticate via Authorization Header.
I tried using the -configfile conf option but it seems nothing is happening.
the conf file:
replacer.full_list(0).description=auth1
replacer.full_list(0).enabled=true
replacer.full_list(0).matchtype=REQ_HEADER
replacer.full_list(0).matchstr=Authorization
replacer.full_list(0).replacement=Bearer …
Perferably i need the header in every request so i tried using a httpsender script but even then the header is not added?
PS: Is it possible to also use the formhandler with the OpenAPI AF?
Read more here: Source link