Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
李少辉-开发者
gitlab-foss
提交
0cd9cd4c
G
gitlab-foss
项目概览
李少辉-开发者
/
gitlab-foss
通知
15
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
G
gitlab-foss
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
前往新版Gitcode,体验更适合开发者的 AI 搜索 >>
提交
0cd9cd4c
编写于
6月 08, 2020
作者:
G
GitLab Bot
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Add latest changes from gitlab-org/gitlab@master
上级
8cbc4083
变更
1
隐藏空白更改
内联
并排
Showing
1 changed file
with
23 addition
and
0 deletion
+23
-0
doc/user/application_security/dast/index.md
doc/user/application_security/dast/index.md
+23
-0
未找到文件。
doc/user/application_security/dast/index.md
浏览文件 @
0cd9cd4c
...
...
@@ -526,6 +526,29 @@ variables:
The DAST job does not require the project's repository to be present when running, so by default
[
`GIT_STRATEGY`
](
../../../ci/yaml/README.md#git-strategy
)
is set to
`none`
.
### Debugging DAST jobs
A DAST job has two executing processes:
-
The ZAP server.
-
A series of scripts that start, control and stop the ZAP server.
Debug mode of the scripts can be enabled by using the
`DAST_DEBUG`
environment variable. This can help when troubleshooting the job,
and will output statements indicating what percentage of the scan is complete.
For details on using variables, see
[
Overriding the DAST template
](
#overriding-the-dast-template
)
.
Debug mode of the ZAP server can be enabled using the
`DAST_ZAP_LOG_CONFIGURATION`
environment variable.
The following table outlines examples of values that can be set and the effect that they have on the output that is logged.
Multiple values can be specified, separated by semicolons.
| Log configuration value | Effect |
|-------------------------------------------------- | ----------------------------------------------------------------- |
|
`log4j.rootLogger=DEBUG`
| Enable all debug logging statements. |
|
`log4j.logger.org.apache.commons.httpclient=DEBUG`
| Log every HTTP request and response made by the ZAP server. |
|
`log4j.logger.com.crawljax=DEBUG`
| Enable Ajax Crawler debug logging statements. |
|
`log4j.logger.org.parosproxy.paros=DEBUG`
| Enable ZAP server proxy debug logging statements. |
|
`log4j.logger.org.zaproxy.zap=DEBUG`
| Enable debug logging statements of the general ZAP server code. |
## Running DAST in an offline environment
For self-managed GitLab instances in an environment with limited, restricted, or intermittent access
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录