DAST Site profile - add support for Authentication and Request headers - Backend (#225406) · Issues · GitLab.org / GitLab

DAST Site profile - add support for Authentication and Request headers - Backend

Parent issue: #222478 (closed)
frontend counterpart: #225378

Summary

This is the second backend iteration for building the DAST site profile form MVC. At this point, we should have a basic form already done, and we're going to add the Authentication section, as well as the Request headers field.

Designs

Figma file: https://www.figma.com/file/7CaJqOTOpPEOzkYkoU5bs5/DAST-Ondemand-Profile

Implementation plan

add support for request headers
add support for authentication

--- proposal_iteration1.graphql	2020-06-26 17:17:14.000000000 -0400
+++ proposal_iteration2.graphql	2020-06-26 17:13:12.000000000 -0400
@@ -2,6 +2,11 @@
   $fullPath: ID!
   $profileName: String!
   $targetUrl: String
+  $authUrl: String
+  $authUsernameField: String
+  $authPasswordField: String
+  $authPassword: String
+  $requestHeaders: String
 ) {
   project(fullPath: $fullPath) {
@@ -9,6 +14,13 @@
       input: {
         profileName: $profileName
         targetUrl: $targetUrl
+        auth: {
+          url: $url
+          usernameField: $usernameField
+          passwordField: $passwordField
+          password: $password
+        }
+        requestHeaders: $requestHeaders
       }
     ) {

- Parent issue: https://gitlab.com/gitlab-org/gitlab/-/issues/222478
- ~frontend counterpart: https://gitlab.com/gitlab-org/gitlab/-/issues/225378

## Summary

This is the second ~backend iteration for building the **DAST site profile** form MVC. At this point, we should have a basic form already done, and we're going to add the **Authentication** section, as well as the **Request headers** field.

## Designs

- Figma file: https://www.figma.com/file/7CaJqOTOpPEOzkYkoU5bs5/DAST-Ondemand-Profile

## Implementation plan

- [ ] add support for request headers
- [ ] add support for authentication

```diff
--- proposal_iteration1.graphql	2020-06-26 17:17:14.000000000 -0400
+++ proposal_iteration2.graphql	2020-06-26 17:13:12.000000000 -0400
@@ -2,6 +2,11 @@
   $fullPath: ID!
   $profileName: String!
   $targetUrl: String
+  $authUrl: String
+  $authUsernameField: String
+  $authPasswordField: String
+  $authPassword: String
+  $requestHeaders: String
 ) {
   project(fullPath: $fullPath) {
@@ -9,6 +14,13 @@
       input: {
         profileName: $profileName
         targetUrl: $targetUrl
+        auth: {
+          url: $url
+          usernameField: $usernameField
+          passwordField: $passwordField
+          password: $password
+        }
+        requestHeaders: $requestHeaders
       }
     ) {
```

Edited Jul 03, 2020 by Philip Cunningham

Discussion
Designs

GitLab Next

Are you sure you want to close this blocked issue?

DAST Site profile - add support for Authentication and Request headers - Backend

Summary

Designs

Implementation plan

Are you sure you want to close this blocked issue?

DAST Site profile - add support for Authentication and Request headers - Backend

Summary

Designs

Implementation plan

Linked issues