Skip to content

Commit c041d2e

Browse files
J12934J12934
authored
Merge pull request #52 from secureCodeBox/feature/add-basic-auth-to-engine-api
Added environment variables to define scanner user
2 parents 3cfe6cb + 699e818 commit c041d2e

File tree

3 files changed

+19
-0
lines changed

3 files changed

+19
-0
lines changed

.env

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,3 +2,6 @@ CAMUNDADB_DATABASE=camundadb
22
CAMUNDADB_ROOT_PW=root
33
CAMUNDADB_USER=camunda
44
CAMUNDADB_PW=secret
5+
6+
ENGINE_SCANNERSERVICES_USER=default-scanner
7+
ENGINE_SCANNERSERVICES_PASSWORD=scan

README.md

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -66,6 +66,8 @@ Running `docker-compose up` uses the default credentials specified in the [`.env
6666
* `CAMUNDADB_ROOT_PW` MySQL root password
6767
* `CAMUNDADB_USER` MySQL username used by the Camunda Engine
6868
* `CAMUNDADB_PW` MySQL password also used by the Camunda Engine
69+
* `ENGINE_SCANNERSERVICES_USER` Technical user for the scanner services to access the engines API
70+
* `ENGINE_SCANNERSERVICES_PASSWORD` Technical users password for the scanner services to access the engines API
6971

7072
### Run your first security scan
7173
There are several ways to start a security scan with the secureCodeBox. One way is to use the WebUI of the engine and start the scan manually.

docker-compose.yml

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -26,6 +26,8 @@ services:
2626
- SECURECODEBOX_DEFAULT_TARGET_LOCATION=juice-shop
2727
- SECURECODEBOX_DEFAULT_TARGET_URI=http://juice-shop:3000
2828
- SECURECODEBOX_DEFAULT_CONTEXT=JuiceShop Test Scan
29+
- SECURECODEBOX_USER_SCANNER=${ENGINE_SCANNERSERVICES_USER}
30+
- SECURECODEBOX_USER_SCANNER_PW=${ENGINE_SCANNERSERVICES_PASSWORD}
2931
restart: on-failure:3
3032

3133
camundadb:
@@ -53,6 +55,8 @@ services:
5355
container_group: scanner
5456
environment:
5557
- ENGINE_ADDRESS=http://engine:8080
58+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
59+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
5660

5761
scanner-webserver-nikto:
5862
image: securecodebox/nikto:v0.9.0
@@ -64,6 +68,8 @@ services:
6468
container_group: scanner
6569
environment:
6670
- ENGINE_ADDRESS=http://engine:8080
71+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
72+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
6773

6874
scanner-webapplication-zap:
6975
image: securecodebox/zap:v0.9.0
@@ -75,6 +81,8 @@ services:
7581
container_group: scanner
7682
environment:
7783
- ENGINE_ADDRESS=http://engine:8080
84+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
85+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
7886

7987
scanner-webapplication-sslyze:
8088
image: securecodebox/sslyze:v0.9.0
@@ -86,6 +94,8 @@ services:
8694
container_group: scanner
8795
environment:
8896
- ENGINE_ADDRESS=http://engine:8080
97+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
98+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
8999

90100
scanner-webapplication-arachni:
91101
image: securecodebox/arachni:v0.9.0
@@ -97,6 +107,8 @@ services:
97107
container_group: scanner
98108
environment:
99109
- ENGINE_ADDRESS=http://engine:8080
110+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
111+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
100112
volumes:
101113
- "./plugins/arachni-login-scripts:/securecodebox/scripts/"
102114

@@ -110,6 +122,8 @@ services:
110122
container_group: scanner
111123
environment:
112124
- ENGINE_ADDRESS=http://engine:8080
125+
- ENGINE_BASIC_AUTH_USER=${ENGINE_SCANNERSERVICES_USER}
126+
- ENGINE_BASIC_AUTH_PASSWORD=${ENGINE_SCANNERSERVICES_PASSWORD}
113127
- DEBUG=true
114128

115129
persistence-elasticsearch:

0 commit comments

Comments
 (0)