Caido

Refresh Authentication Workflow

In this tutorial, we will create a passive workflow that will automatically store and update either session cookies or tokens, as environment variables.

Then, by using placeholders in requests for the environment variables, you can achieve continuous, uninterrupted testing without manually updating expired sessions.

setVar()

The setVar() function sets an environment variable to a given value. It requires the following parameters:

  • name: The name of the environment variable.
  • value: The value of the environment variable.
  • secret: Determines if the environment variable is displayed as plaintext or masked.
  • global: Determines if the envrionment variable is set globally or in the currently selected envrionment.
js
await sdk.env.setVar({
  name: "session",
  value: "123ABC321XYZ",
  secret: true,
  global: false
});

INFO

If the name does not already exist, a new environment variable will be created. If the name matches an existing environment variable, its value will be overwritten.

TIP

To set the variable to a specific environment, use the env field and supply an existing environment name as its value:

env: "Demo Environment"

This specification will take precedence over the global flag.

Creating a Passive Workflow

To begin, navigate to the Workflows interface, select the Passive tab, and click the + New workflow button.

Creating a new passive workflow.

Next, rename the workflow by typing in the Name input field. You can also provide an optional description of the workflow's functionality by typing in the Description input field.

Nodes and Connections

For both workflows, the overall node layout will be:

Refresh authentication workflow.
  • The On Intercept Response node outputs $on_intercept_response.request and $on_intercept_response.response objects which represent proxied requests and their corresponding responses.
  • The In Scope node checks if the value of a request's Host header is included in the in-scope list of a scope preset. If it is not - the workflow will end.
  • In-scope request and response objects will be passed to the Javascript node.
  • Once a request or response has been processed by the script in the Javascript node, the workflow will end.

Session Cookies

Consider a response to a successful credential submission that issues a session cookie via the Set-Cookie header:

http
Set-Cookie: session=757365723D636169646F3B726F6C653D75736572;

Click on the In Scope node to access its editor and ensure the $on_intercept_response.request object is referenced as input.

Referencing the request object.

Close the editor window, click on the Javascript node to access its editor, click within the coding environment, select all of the existing code, and replace it with the following script:

js
export async function run({ request, response }, sdk) {
  if (response) {
    let cookie = response.getHeader("Set-Cookie");
    if (cookie && cookie.length > 0) {
      await sdk.env.setVar({
        name: "session",
        value: cookie.join("; "),
        secret: false,
        global: true
      });
    }
  }
}

Also ensure to reference the $on_intercept_response.request and $on_intercept_response.response objects in the Javascript node.

Referencing the request object.

Once these steps are completed, close the editor window and click on the Save button to update and save the configuration.

Script Breakdown

First, an asynchronous function is defined that takes a request and response object pair and the sdk object as parameters. The script will execute every time an in-scope response object is passed from the In Scope node.

js
export async function run({ request, response }, sdk) {
  if (response) {

Then, using the .getHeader() method, the Set-Cookie header is extracted and stored in the cookie variable. If the header exists, the .setVar() method is used to set an environment variable.

js
    let cookie = response.getHeader("Set-Cookie");
    if (cookie && cookie.length > 0) {
      await sdk.env.setVar({
        name: "session",
        value: cookie.join("; "),
        secret: false,
        global: true
      });

Testing the Workflow

To test the workflow, type in an in-scope domain in the connection URL input field, and add a Set-Cookie: session=<value>; header to the response.

Creating the test response.

Next, click on the Run button. A message will appear notifying you that the workflow executed successfully.

Workflow execution success toast message.

The Result

To view the set environment variable, navigate to the Environment interface and refresh the Global environment by clicking on its list row.

Workflow cookie environment variable.

Session Tokens

Consider a response to a successful credential submission that issues a session token via an access_token JSON parameter:

http
{"access_token":"BQA_QoGKzM2I7sqcQ5cKB0oM4F_1VjwYXyUBdFJZ63nMwbrAejF0hel0dA0Ox9IRH_IT-rbt7F7dBudUOGX-kQExt3ezVuL0OBOOXYPaTVjQ5ZpE_ybkkKNEsyIjzIwOtx_7_xhuXvdaVp0BM_Lq2empsCauwvMujhPNf0HcTG0D-zIfLx9wh465oeGk0qVPM0ypFRxRWjkzM0BVMcRzG07pNk9HT_t3cBhuXt3r57o8XqKUQXlhNhWfMNca9N2v","token_type":"Bearer","expires_in":3600,"scope":"email"}

Extracting a Session Token

Click on the In Scope node to access its editor and ensure the $on_intercept_response.request object is referenced as input.

Referencing the request object.

Close the editor window, click on the Javascript node to access its editor, click within the coding environment, select all of the existing code, and replace it with the following script:

js
export async function run({ request, response }, sdk) {
  const authFilter = `req.path.cont:"/auth" OR req.path.cont:"/login" OR req.path.cont:"/token" OR req.path.cont:"/oauth" OR req.path.cont:"/refresh"`;
  if (sdk.requests.matches(authFilter, request, response)) {
    let body = response.getBody();
    if (body) {
      let json = body.toJson();
      let accessToken = json.access_token;
      if (accessToken) {
        await sdk.env.setVar({
          name: "Bearer",
          value: accessToken,
          secret: false,
          global: true,
        });
      }
    }
  }
}

Also ensure to reference the $on_intercept_response.request and $on_intercept_response.response objects in the Javascript node.

Referencing the request object.

Once these steps are completed, close the editor window and click on the Save button to update and save the configuration.

Script Breakdown

First an asynchronous function is defined that takes a request and response object pair and the sdk object as parameters.

js
export async function run({ request, response }, sdk) {

Using sdk.requests.matches() the execution of the script is scoped to common authentication endpoints with HTTPQL statements. The script will execute every time an in-scope request object to one of these endpoints is passed from the In Scope node.

js
  const authFilter = `req.path.cont:"/auth" OR req.path.cont:"/login" OR req.path.cont:"/token" OR req.path.cont:"/oauth" OR req.path.cont:"/refresh"`;
  if (sdk.requests.matches(authFilter, request, response)) {

Then, using the .getBody() method, we extract the response body and if it exists we parse it as JSON using .toJson(). If an access_token parameter exists, we use the .setVar() method to set an environment variable.

js
    let body = response.getBody();
    if (body) {
      let json = body.toJson();
      let accessToken = json.access_token;
      if (accessToken) {
        await sdk.env.setVar({
          name: "Bearer",
          value: accessToken,
          secret: false,
          global: true,
        });
      }
    }
  }
}

Testing the Workflow

To test the workflow, type in an in-scope domain in the connection URL input field, edit the request endpoint to be in-scope and add the following body data to the response:

json
{"access_token":"BQA_QoGKzM2I7sqcQ5cKB0oM4F_1VjwYXyUBdFJZ63nMwbrAejF0hel0dA0Ox9IRH_IT-rbt7F7dBudUOGX-kQExt3ezVuL0OBOOXYPaTVjQ5ZpE_ybkkKNEsyIjzIwOtx_7_xhuXvdaVp0BM_Lq2empsCauwvMujhPNf0HcTG0D-zIfLx9wh465oeGk0qVPM0ypFRxRWjkzM0BVMcRzG07pNk9HT_t3cBhuXt3r57o8XqKUQXlhNhWfMNca9N2v","token_type":"Bearer","expires_in":3600,"scope":"email"}
Creating the test response.

Next, click on the Run button. A message will appear notifying you that the workflow executed successfully.

Workflow execution success toast message.

The Result

To view the set environment variable, navigate to the Environment interface and refresh the Global environment by clicking on its list row.

Workflow token environment variable.

Using the Environment Variables

Now, with these workflows providing up-to-date session identifiers, navigate to the Replay interface. Within a request editing pane, click, hold, and drag the left mouse button over the value you want to be replaced and then click the + button to add it as a placeholder.

Adding a placeholder in a Replay request.

Next, click the edit button located to the right of the placeholder. Doing so will present the Placeholder Settings window. Select Environment Variable from the top drop-down menu. Then, select the desired environment variable by name from the other drop-down menu. Click on the Add button to save the configuration. The addition will be reflected in the list below.

Adding an environment variable to a Replay request.

Close the settings window and send the request. To verify the addition was successful, you can view the request by navigating to the Search interface.

Viewing the Replay request environment variable addition.