Provide an easier way to get ZAP root cert out of a docker image #5214
Comments
|
One option would be to have a command line option (eg -dumprootcert filename ?) which would output the cert to the file specified which could be on a mounted directory. |
|
Another option would be to make it possible to launch a browser from the command line using selenium that is set up to proxy through ZAP and ignore cert warnings, eg:
Note that would require ZAP (or some of its jars) to be installed locally and java to be available. |
|
Simon, What about including a script in the docker image that could be executed externally? |
|
This was fixed a while ago, as per described on https://www.zaproxy.org/blog/2021-02-03-run-zap-without-java-using-docker-and-webswing/ |
|
This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Proxying a local browser through ZAP running in a docker image is a good option, especially if you dont have / want java installed locally.
However you need to be able to import the ZAP root CA into your browser, and getting it out of the docker image is non trivial.
Anything that can be done to make this easier would help - please add ideas to this issue.
See this thread for background https://groups.google.com/d/msg/zaproxy-users/1dBs5fkz1AY/nVkNNuI1GgAJ
The text was updated successfully, but these errors were encountered: