Fortify Plugin is designed to be able to communicate with FoD server to:
- retrieve information about the security analysis of the projects code, vulnerabilities, etc.
- initiate scans of new versions of the projects
- monitor scan status
- and much more ...
To install the plugin place the cla-fortify-plugin folder inside $CLARIVE_BASE/plugins
directory in Clarive's instance.
Once the plugin is placed in its folder, you can start using it going to your Clarive's instance.
To configurate the Fortify Instance Resource:
In Clarive SE: Resources -> ClariveSE.
In Clarive EE: Resources -> Fortify.
- URL - This is the Fortify url.
- API URL - This is the Fortify API url.
- Key - User for Fortify Server.
- Secret - Password for Fortify connection.
Example:
URL: https://emea.fortify.com
API URL: https://api.emea.fortify.com/api/v3
key: sdfap98145ulnañgd6'9p8urijnñqdl
secret: yhp000fahsduyhgblkja
This service will deploy a WAR file on a Fortify Server Resource.
- Fortify server (variable name: instance) - The server you want to deploy the WAR file to.
- WAR file path (war_path) - The path on the remote server where the WAR file to deploy is located.
- Application path (app_path) - The application path in the Fortify server where the application will be deployed.
- Force update? (update) - Check this if you want the application to be overwritten if already exists.
You can find this service in the Rule Designer palette.
Op Name: Deploy WAR to Fortify
Fortify server: Fortify_server
WAR file path: /deploys/tomcat.war
Application path: /path/apps/
Force update?: 0
If you want to use the plugin through the Rulebook, in any do
block, use this ops as examples to configure the different parameters:
Configuration example:
rule: Fortify demo
do:
- tomcat_deploy:
instance: tomcat_instance # Required. Use the mid set to the resource you created
war_path: '/deploys/tomcat.war' # Required.
app_path: ${destination_folder} # Required.
update: "0"
This service will return the deployment message.
Task failed
You will get an error returned by the Fortify plugin.
Variable required
Error in rulebook (compile): Required argument(s) missing for op "tomcat_deploy": "war_path"
Make sure you have all required variables defined.
Not allowed variable
Error in rulebook (compile): Argument `webs` not available for op "tomcat_deploy"
Make sure you are using the correct paramaters (make sure you are writing the variable names correctly).
Feel free to join Clarive Community to resolve any of your doubts.