anyone have experience with a scanning tool like a...
# support-questions
anyone have experience with a scanning tool like acuentix? i have an app i would like to be scanned, but i use passwordless auth, which their scanner isnt built to handle. they have a section where they allow custom cookies to be passed in.. is there some way i could make a long lived cookie for scanning purposes?
Hey @sarah
You can use our JWT recipe to issue tokens with arbitrary lifetime, and add that to cookies and consume / verify it in the acuentix service.
thanks! i generated a jwt, now how would i test using it to access my app running on localhost?
i think im mostly just unsure what the cookie key would be. these are the cookie values i see when i log in w/ passwordless auth.. maybe sAccessToken?
I tried using that key and passing in the jwt, but no luck. i have the app wrapped in passwordless auth, so i just get redirected to the sign in page
i would need more details on what you are doing: - how are you generating the jwt and sending it to the frontend - which API? - Once the JWT is in the cookie, what is it used for next? - Does the JWT get sent to the other service? Whats the url of the service? This isssue is a little too vague for me to help out on. The more details you provide, the more helpful.