Skip to content

VCST-1047: login-on-begalf for token auth (#2781) #708

VCST-1047: login-on-begalf for token auth (#2781)

VCST-1047: login-on-begalf for token auth (#2781) #708

# v1.2
name: Platform OWASP ZAP
on:
push:
paths-ignore:
- '.github/**'
- 'docs/**'
- 'build/**'
- 'README.md'
- 'LICENSE'
- '**/argoDeploy.json'
branches: [ dev ]
workflow_dispatch:
jobs:
owasp:
runs-on: ubuntu-latest
steps:
- name: Install VirtoCommerce.GlobalTool
uses: VirtoCommerce/vc-github-actions/setup-vcbuild@master
- name: Docker Login
uses: azure/docker-login@v1
with:
login-server: ghcr.io
username: $GITHUB_ACTOR
password: ${{ secrets.GITHUB_TOKEN }}
- name: Docker Env
uses: VirtoCommerce/vc-github-actions/docker-env@master
with:
githubUser: ${{ env.GITHUB_ACTOR }}
githubToken: ${{ env.GITHUB_TOKEN }}
platformImage: ghcr.io/virtocommerce/platform
storefrontImage: ghcr.io/virtocommerce/storefront
validateSwagger: 'false'
- name: OWASP ZAP Full Scan
uses: zaproxy/action-baseline@v0.4.0
with:
token: ${{ secrets.GITHUB_TOKEN }}
docker_name: 'owasp/zap2docker-stable'
target: 'http://localhost:8090'
cmd_options: '-a -d'