Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3
Info
titleVersion 1.1.0 Documentation
Section

 

Section
Column

To ensure that you are viewing the correct documentation, the title of this Informational box should reflect the most recent version of the ZAP Jenkins Plugin.

Column

 Latest Release

Section
Column

Note
titleJenkins Configuration
Section

 

Section
Column

The following steps will assume Jenkins is setup as a Master with a Slave on another machine to execute the job's build and run the ZAP Security Tool.

Section

 

 


Create a New Item

  1. Open Jenkins

    • (info) http://127.0.0.1:8080/

  2. Click New Item

    • (info)  http://127.0.0.1:8080/view/All/newJob

      • Name: ZAP_EXAMPLE_JOB
      • Type: Freestyle project
  3. Click OK

 


Create the Workspace

  1. Go to the Job Summary Page

    • (info) http://127.0.0.1:8080/job/ZAP_EXAMPLE_JOB/
  2. Click Configure
    • (info) http://127.0.0.1:8080/job/ZAP_EXAMPLE_JOB/configure
  3. Restrict where this project can be run (True)

    • Name of Slave where ZAP security tool is installed
  4. Click Save
  5. Click Build Now

Tip

New empty workspace will be created on the Slave machine

  • (info) C:\Users\<USER_ID>\Jenkins\workspace\ZAP_EXAMPLE_JOB

 


Configure the Job to Execute ZAP

Tip

Setup the job to run ZAP security tool with a loaded session.

Configure the Job to Execute ZAP as part of a Selenium Build

Tip

Setup the job to run a Selenium step during the executing of the ZAP security tool and persist the session afterwards.

Info

Info: This will allow ZAP security tool to act as an Intercepting Proxy. It will map all of the requests the Selenium script makes to a web app and all of the responses ZAP receives from it.

 


Configure the Job's Post Build Actions

  1. Summary Display(info) Documentation, how to use Summary Display in your own job configuration can be found here.

    Info

    Info: This plugin allows an easy and fully customized build report display. Useful for it's Post-Build action to Archive the artifacts, thus copying over the generated report(s) and ZAP log(s) into the build's directory from the workspace.

  2. HTML Publisher(info) Documentation, how to use HTML Publisher in your own job configuration can be found here.

    Info

    Info: This plugin publishes HTML reports. Useful for displaying the latest .html or .xhtml report.

 


Save

Tip

Congratulations you've successfully setup your first ZAP Jenkins Job.

 


Build Now

Tip

Congratulations you should have been able to run your first successful ZAP Jenkins Build.