ZAP in Gitlab CI/CD with token authorization

[Maksym Francik]

Hi,

I would like to integrate ZAP scan in my Gitlab pipeline.

I have a problem with authorization to my app via access token.

Normally we get to the app through MS Entra login, but I've read this might encounter problems.

My question is how can I provide my token to ZAP and use it to authenticate?

Firstly I tried to set it up in ZAP GUI, but I wasn't able to make it work.

I tried to read documentation, but it didn't help and I couldn't find anything on the web either

Thanks in advance for all your help :)

[Simon Bennetts]

Hiya,

For anything related to authentication you should start here: https://www.zaproxy.org/docs/authentication/

Cheers,

Simon