Automatic Parameterization of Access Tokens for OAuth Authorization
The OAuth authorization framework enables a third-party application to obtain a limited access to some HTTP service on the server.
WAPT Pro supports the usage of OAuth authorization which includes the automatic parameterization of
access tokens used in request headers.
Let's see how it works.
During recording WAPT Pro searches for request header
Authorization: Bearer. You can see it
on the "Request Header" tab of "Response processing". This header has a certain value:
It is the value of access token.
WAPT Pro extracts this value and searches for it in the body of server responses to the previous requests.
When such value is found, WAPT Pro creates a special variable OAuthToken1
(OAuthToken2 and so on) with the value of found access token:
Created variable is substituted in the "Authorization" headers of subsequent requests where this token is used:
In this way WAPT Pro performs the automatic parameterization of access tokens used in request headers.