stackhawk.yml

app:
  applicationId: ${APP_ID:dacc7d3e-babc-47d2-b040-ab117ab04526}
  env: ${APP_ENV:dev}
  host: ${APP_HOST:https://localhost:9000}
  waitForAppTarget:
    path: /
    waitTimeoutMillis: 200000
    pollDelay: 6000
  excludePaths:
    - "/logout"
#    - "/login-form-multi"
#    - "/login-code"
  antiCsrfParam: "_csrf"
  authentication:
    loggedInIndicator: "\\QSign Out\\E"
    loggedOutIndicator: ".*Location:.*/login.*"
    usernamePassword:
      type: FORM
      loginPath: /login
      loginPagePath: /login
      usernameField: username
      passwordField: password
      scanUsername: "user"
      scanPassword: "password"
    cookieAuthorization:
      cookieNames:
        - "JSESSIONID"
    testPath:
      path: /search
      success: "HTTP.*200.*"
hawk:
  spider:
    maxDurationMinutes: 5
#  config:
#    - "scanner.analyser.redirectEqualsNotFound=false"
#    - "scanner.analyser.followRedirect=true"