nixpkgs/pkgs/tools/networking/zap/default.nix
2024-02-11 03:19:15 +01:00

46 lines
1.5 KiB
Nix

{ lib, stdenv, fetchurl, jre, runtimeShell }:
stdenv.mkDerivation rec {
pname = "zap";
version = "2.14.0";
src = fetchurl {
url = "https://github.com/zaproxy/zaproxy/releases/download/v${version}/ZAP_${version}_Linux.tar.gz";
sha256 = "sha256-IZ1/JbviUkdxOAWrAswSJ5iYyHB0PBquPCsLGIIZGWA=";
};
buildInputs = [ jre ];
# From https://github.com/zaproxy/zaproxy/blob/master/zap/src/main/java/org/parosproxy/paros/Constant.java
version_tag = "20012000";
# Copying config and adding version tag before first use to avoid permission
# issues if zap tries to copy config on it's own.
installPhase = ''
mkdir -p "$out/bin" "$out/share"
cp -pR . "$out/share/${pname}/"
cat >> "$out/bin/${pname}" << EOF
#!${runtimeShell}
export PATH="${lib.makeBinPath [ jre ]}:\$PATH"
export JAVA_HOME='${jre}'
if ! [ -f "\$HOME/.ZAP/config.xml" ];then
mkdir -p "\$HOME/.ZAP"
head -n 2 $out/share/${pname}/xml/config.xml > "\$HOME/.ZAP/config.xml"
echo "<version>${version_tag}</version>" >> "\$HOME/.ZAP/config.xml"
tail -n +3 $out/share/${pname}/xml/config.xml >> "\$HOME/.ZAP/config.xml"
fi
exec "$out/share/${pname}/zap.sh" "\$@"
EOF
chmod u+x "$out/bin/${pname}"
'';
meta = with lib; {
homepage = "https://www.owasp.org/index.php/ZAP";
description = "Java application for web penetration testing";
maintainers = with maintainers; [ mog rafael ];
platforms = platforms.linux;
license = licenses.asl20;
mainProgram = "zap";
};
}