Due to some maintenance issues, this service has been switched in read-only mode, you can find more information about the why

and how to migrate your plugin documentation in this blogpost

Skip to end of metadata
Go to start of metadata

Version 1.1.0 Documentation

 

To ensure that you are viewing the correct documentation, the title of this Informational box should reflect the most recent version of the ZAP Jenkins Plugin.

 Latest Release

 


Firefox Settings: Local Proxy Settings

Firefox Tools Options Advanced Network Connection Settings

(info) Configure the proxy host (e.g. 127.0.0.1) and the proxy port (e.g. 9090).

The host and port set here should be the SAME set in ZAP Jenkins plugin.

Notice: This should be the IP address of the Slave (the machine where ZAP security tool is installed).

Warning: If the target application is on the same host, then the value localhost, 127.0.0.1 in the No Proxy for should be deleted to proxy local sites through ZAP.

 


Firefox Settings: Dynamic SSL Certificates Export Import

Firefox Tools Options Advanced Certificates View Certificatess

Notice: Delete any pre-existing OWASP ZAP Certificates that may exist under any category (Your certificates, People, Servers, Authorities, Others).

  1. Select the Authorities tab and click on Import. Choose the OWASP ZAP Root Certificate we exported earlier.
     

     
  2. Check all the boxes, saying that this certificate can authenticate websites, mails, etc..
     

     
  3. Now the certificate is imported, it can be found under the Authorities in the Certificate Manager.
     

Once you successfully imported the ZAP SSL certificate, try browsing a site with HTTPS enabled. You'll see that you're no longer prompted with the SSL Security Exception Error message.

  • No labels