I have a requirement to integration IBM AppScan via CA RA for scanning activities in our deployment design.
IBM AppScan provides Rest API methods to login and also to trigger a scan. However, I am seeing difficulties in configuring Rest Action available under Web action pack.
Moreover, this method uses NORMAL authentication and x-www-form-urlencoded header format. Can someone help me on the same?
EMC Data Storage Systems
What type of difficulties are you having? In regards to the header you described you can try adding "Content-Type: x-www-form-urlencoded" as a single value to the input field array used for Http Headers for the REST Operation action. Based on the screenshot above it looks like you would need to change the REST Operation action to use the Rest Verb POST method vs default GET. I'm not sure what to make of the Normal authentication. Maybe that means that it should be posted via the "parameters" or "body" input fields. Reviewing the Raw or Preview data might help you decipher what fields should contain which values as if you were going to try getting it to work with curl.
Thanks for your response! I am able to login via RestAction available in CA RA suite.
However, I need to capture session cookie provided in response. Do we have an easy way to capture the same?
Thanks Gregg! As you mentioned, response data is been taken to a string array and applied RegEx pattern to extract the cookie.
Later, invoked these cookies via string as a header to trigger AppScan job! Here is the flow designed and it's working according our expectations.