diff options
| author | Maximilian Hils <git@maximilianhils.com> | 2014-01-28 17:29:28 +0100 |
|---|---|---|
| committer | Maximilian Hils <git@maximilianhils.com> | 2014-01-28 17:29:28 +0100 |
| commit | 1e3e0dd1271afda59ec244b64391b6579a998dce (patch) | |
| tree | 5f1f617ccc8ea2b29650c10197407b1d3ecb7139 /doc-src/features/sticky.html | |
| parent | 17f09aa0afe9695505b746c370e1c5b889c19058 (diff) | |
| parent | 3aa78f9ff38471f84a471618e1a43ca02fc65b6a (diff) | |
| download | mitmproxy-1e3e0dd1271afda59ec244b64391b6579a998dce.tar.gz mitmproxy-1e3e0dd1271afda59ec244b64391b6579a998dce.tar.bz2 mitmproxy-1e3e0dd1271afda59ec244b64391b6579a998dce.zip | |
merge master
Diffstat (limited to 'doc-src/features/sticky.html')
| -rw-r--r-- | doc-src/features/sticky.html | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/doc-src/features/sticky.html b/doc-src/features/sticky.html new file mode 100644 index 00000000..59116067 --- /dev/null +++ b/doc-src/features/sticky.html @@ -0,0 +1,60 @@ + +## Sticky cookies + +When the sticky cookie option is set, __mitmproxy__ will add the cookie most +recently set by the server to any cookie-less request. Consider a service that +sets a cookie to track the session after authentication. Using sticky cookies, +you can fire up mitmproxy, and authenticate to a service as you usually would +using a browser. After authentication, you can request authenticated resources +through mitmproxy as if they were unauthenticated, because mitmproxy will +automatically add the session tracking cookie to requests. Among other things, +this lets you script interactions with authenticated resources (using tools +like wget or curl) without having to worry about authentication. + +Sticky cookies are especially powerful when used in conjunction with [client +replay](@!urlTo("clientreplay.html")!@) - you can record the authentication +process once, and simply replay it on startup every time you need to interact +with the secured resources. + +<table class="table"> + <tbody> + <tr> + <th width="20%">command-line</th> + <td> + <ul> + <li>-t FILTER</li> + </ul> + </td> + </tr> + <tr> + <th>mitmproxy shortcut</th> <td><b>t</b></td> + </tr> + </tbody> +</table> + + +## Sticky auth + +The sticky auth option is analogous to the sticky cookie option, in that HTTP +__Authorization__ headers are simply replayed to the server once they have been +seen. This is enough to allow you to access a server resource using HTTP Basic +authentication through the proxy. Note that __mitmproxy__ doesn't (yet) support +replay of HTTP Digest authentication. + +<table class="table"> + <tbody> + <tr> + <th width="20%">command-line</th> + <td> + <ul> + <li>-u FILTER</li> + </ul> + </td> + </tr> + <tr> + <th>mitmproxy shortcut</th> <td><b>u</b></td> + </tr> + </tbody> +</table> + + |