Hello, i'm trying to integrate Fortify SSC into my gitlab pipeline but i didn't work for me.
this is my pipeline script :
Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Hello, i'm trying to integrate Fortify SSC into my gitlab pipeline but i didn't work for me.
this is my pipeline script :
First, I always worry that the SC-SAST Login could be using an incorrect value. Please check that the Value used for $FCLI_DEFAULT_SC_SAST_CLIENT_AUTH_TOKEN is the special password created and used in the configuration file of the ScanCentral SAST Controller. This "shared secret" is known as the client_auth_token in our product guides, and needs to be shared to the users of the ScanCentral Client (and FCLI). It is just a text password created by the SCSAST installation user/admin, not an actual Auth Token generated on the SSC Server nor the SCSAST Controller. I just wanted to be sure you had not inadvertently used a CIToken Value from the SSC Server for that entry in your command.
e.g. fcli sc-sast session login --session=my_sc-sast_session --client-auth-token=$FCLI_DEFAULT_SC_SAST_CLIENT_AUTH_TOKEN --ssc-url=$FCLI_DEFAULT_SSC_URL
Secondly, I believe the SC-SAST Session Login command requires you add either your SSC Username\Password or an SSC Server Token. For that Token you would use a CIToken, or a custom token ("Scans Only") generated for your pipeline use.
fcli sc-sast session login -c[=<clientAuthToken>] [--session=<sessionName>] [[-h] [--env-prefix=<envPrefix>] [--log-file=<logFile>] [--log-level=<logLevel>]] ] [--store=_variableName _ ] [--to-file=<outputFile>_]] ([-k] [--socket-timeout=<socketTimeout>] [--connect-timeout=<connectTimeout>] --ssc-url=<url>) ((-u=<user> -p[=<password>] [--expire-in=<expireIn>]) | -t[=<token>])
e.g. fcli sc-sast session login --session=my_sc-sast_session --client-auth-token=$FCLI_DEFAULT_SC_SAST_CLIENT_AUTH_TOKEN --ssc-url=$FCLI_DEFAULT_SSC_URL -t=$FCLI_DEFAULT_SSC_CI_TOKEN
Thank you, it works