details about "auth-token: YOUR-SECRET-AUTH-TOKEN"

[saranjsr]

Hello,

I would like to know what Auth token need to provide?
I want to test Jenkins which hosted on ECS which has enabled GitHub Authentication+ MFA.
I tried to provide my Jenkins user API key but didn't work and getting 403.

[kadrach]

Looks to be just another header that you can configure, that is sent with the request.

From a quick glance it appears Jenkins requires you to do basic authentication using your username and api token. So I guess in theory all you need to do is craft the required Authorization header and configure it in Goad.

Lifted straight from Wikipedia:

For example, if the browser uses Aladdin as the username and OpenSesame as the password, then the field's value is the base64-encoding of Aladdin:OpenSesame, or QWxhZGRpbjpPcGVuU2VzYW1l. Then the Authorization header will appear as:

Authorization: Basic QWxhZGRpbjpPcGVuU2VzYW1l