[英]how to use cloud web security scanner in gcp if the login details are complex
I want to scan my app which is in GCP using cloud web security scanner and we are using more than two fields for login page, like client id, username and password but as per google document we have to pass two input username and password, so there anyway we can scan it without failed scan.我想使用云 web 安全扫描器扫描我在 GCP 中的应用程序,我们在登录页面使用了两个以上的字段,例如客户端 ID、用户名和密码,但根据谷歌文档,我们必须传递两个输入用户名和密码,所以无论如何我们可以扫描它而不会失败。
note:- we are not using IAP authentication注意:- 我们没有使用 IAP 身份验证
I would like to suggest you to raise a Feature Request to make the Web Security Scanner more adaptative to your needs.我想建议您提出一个功能请求,使 Web 安全扫描器更能适应您的需求。
Besides, you could gather the additional fields from the URL itself (from the GET request) to automatically populate the missing field.此外,您可以从 URL 本身(从 GET 请求)收集额外的字段来自动填充缺失的字段。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.