diff options
| author | Maximilian Hils <git@maximilianhils.com> | 2016-02-18 11:27:40 +0100 |
|---|---|---|
| committer | Maximilian Hils <git@maximilianhils.com> | 2016-02-18 11:27:40 +0100 |
| commit | bf024cd15320119e341cdf9bf0fd4d69df233c64 (patch) | |
| tree | 05a6338d94c665421ae1eab07f14aed61b8bd2b1 /docs/features/sticky.rst | |
| parent | f42af9061220ec0373e94e96b69434575f60281d (diff) | |
| parent | 31ab3a231e540815009ffe5aeae108db2babd8a9 (diff) | |
| download | mitmproxy-bf024cd15320119e341cdf9bf0fd4d69df233c64.tar.gz mitmproxy-bf024cd15320119e341cdf9bf0fd4d69df233c64.tar.bz2 mitmproxy-bf024cd15320119e341cdf9bf0fd4d69df233c64.zip | |
Merge branch 'master' of https://github.com/mitmproxy/mitmproxy
Diffstat (limited to 'docs/features/sticky.rst')
| -rw-r--r-- | docs/features/sticky.rst | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/docs/features/sticky.rst b/docs/features/sticky.rst new file mode 100644 index 00000000..a79cbe8d --- /dev/null +++ b/docs/features/sticky.rst @@ -0,0 +1,41 @@ +.. _sticky: + +Sticky cookies and auth +======================= + +Sticky cookies +-------------- + +When the sticky cookie option is set, __mitmproxy__ will add the cookie most +recently set by the server to any cookie-less request. Consider a service that +sets a cookie to track the session after authentication. Using sticky cookies, +you can fire up mitmproxy, and authenticate to a service as you usually would +using a browser. After authentication, you can request authenticated resources +through mitmproxy as if they were unauthenticated, because mitmproxy will +automatically add the session tracking cookie to requests. Among other things, +this lets you script interactions with authenticated resources (using tools +like wget or curl) without having to worry about authentication. + +Sticky cookies are especially powerful when used in conjunction with :ref:`clientreplay` - you can +record the authentication process once, and simply replay it on startup every time you need +to interact with the secured resources. + +================== ====================== +command-line :option:`-t FILTER` +mitmproxy shortcut :kbd:`o` then :kbd:`t` +================== ====================== + + +Sticky auth +----------- + +The sticky auth option is analogous to the sticky cookie option, in that HTTP +**Authorization** headers are simply replayed to the server once they have been +seen. This is enough to allow you to access a server resource using HTTP Basic +authentication through the proxy. Note that :program:`mitmproxy` doesn't (yet) support +replay of HTTP Digest authentication. + +================== ====================== +command-line :option:`-u FILTER` +mitmproxy shortcut :kbd:`o` then :kbd:`A` +================== ====================== |