anyone have experience with a scanning tool like acuentix i

Question

anyone have experience with a scanning tool like acuentix i have an app i would like to be scanned but i use passwordless auth which their scanner isnt built to handle they have a section where they allow custom cookies to be passed in is there some way i could make a long lived cookie for scanning purposes

rp · Answer

Hey < sarah>

rp · Answer

You can use our JWT recipe to issue tokens with arbitrary lifetime and add that to cookies and consume verify it in the acuentix service

sarah · Answer

thanks i generated a jwt now how would i test using it to access my app running on localhost

sarah · Answer

i think im mostly just unsure what the cookie key would be these are the cookie values i see when i log in w passwordless auth maybe sAccessToken

sarah · Answer

I tried using that key and passing in the jwt but no luck i have the app wrapped in passwordless auth so i just get redirected to the sign in page

rp · Answer

i would need more details on what you are doing how are you generating the jwt and sending it to the frontend which API Once the JWT is in the cookie what is it used for next Does the JWT get sent to the other service Whats the url of the service This isssue is a little too vague for me to help out on The more details you provide the more helpful