Auth: Modern Web UI
Action: Create a Selenium Authentication script
Your app is “modern” i.e. it makes heavy use of JavaScript.
In order to explore your app in automation you will need to use the AJAX Spider - this launches browsers in order to explore your app.
Injecting session state into a browser is not always possible, and where it is, it is always application specific.
A much better solution is to get the browser’s launched by the AJAX Spider to login via the login page. ZAP can handle many login pages automatically, but you have got to this page because that did not work for you.
Creating a Selenium Authentication Script is beyond the scope of this guide, but more details are available via:
- Blog: Authenticating Using Selenium
- Video: Automation Auth Scripts
- Video: Automation SSO with Juice Shop