Improved token handling

auth.md

@@ -111,12 +111,14 @@ auth:
   loginEndpointAuth:
      # ... other data here
      token:
-        headerPrefix="Bearer "
-        extractFromField = "/token/authToken"
-        httpHeaderName="Authorization"
+        extractFrom="body"
+        extractSelector="/token/authToken"
+        sendIn="header"
+        sendName="Authorization"
+        sendTemplate="Bearer {token}"
 ```
 
-What will happen here is that a fuzzer will make a POST to `/login` and then extract the field `token.authToken` from the JSON response (the entry `extractFromField` is treated as a JSON Pointer (RFC 6901)).
+What will happen here is that a fuzzer will make a POST to `/login` and then extract the field `token.authToken` from the JSON response (the entry `extractSelector` is treated as a JSON Pointer (RFC 6901)).
 Assume for example we have `token.authToken = 123456`.
 In the following auth requests, then the fuzzer will make requests with HTTP header: `Authorization:Bearer 123456`.
 

pom.xml

@@ -5,7 +5,7 @@
     <groupId>com.webfuzzing</groupId>
     <artifactId>commons</artifactId>
 
-    <version>0.1.1-SNAPSHOT</version>
+    <version>0.2.0</version>
 
     <inceptionYear>2024</inceptionYear>
     <name>WFC</name>
@@ -108,6 +108,8 @@
                    3) run:
                       mvn  -P release -DskipTests  deploy
 
+                      IMPORTANT: must make sure you are building with JDK 8!!!
+
                       make sure it is visible at:
                       https://central.sonatype.com/artifact/com.webfuzzing/commons
                       if not, check publishing status at

release_notes.md

@@ -2,6 +2,9 @@
 
 Under development in `master` branch.
 
+# 0.2.0
+
+- breaking changes: refactored how _TokenHandling_ is defined in auth schema
 - in report, added info on _executionTimeInSeconds_ and _evaluatedHttpCalls_
 
 # 0.1.0