JMeter Alter HTTP Headers During Test
I'm attempting to test an HTTP service with JMeter. The HTTP service requires authentication through a simple bearer token mechanism. I'm trying to proceed as follows:
- POST authentication request
- Store token as a variable
- Set Authorization HTTP header to stored variable
- Request protected resource(s)
- Evaluate performance
So far I've been able to post the request, get the token, extract it with regex, save it to a variable, and assert that the variable is appropriately set.
The problem is getting the variable into the HTTP header. In the "Header Manager" the value is set like this:
Unfortunately when the next requests are issued their authorization header has the value "Bearer ". Searching around the internet led me to believe that headers are configured before the thread starts, which would explain the "Bearer "
My sampling/grouping/nesting is as follows:
All the tests pass up to get restricted resource, which fails with a 400, since the authorization header is malformed.
I feel like I'm missing something really obvious, and/or approaching this problem the wrong way.
Solution 1:
You can dynamically construct your authorization header using Beanshell PreProcessor as follows:
-
Add empty HTTP Header Manager as a child of your request which requires authorization
-
Add Beanshell PreProcessor as a child of the same request with the following code:
import org.apache.jmeter.protocol.http.control.Header; sampler.getHeaderManager().add(new Header("Authorization","Bearer " + vars.get("BEARER")));
This will construct fully dynamic header using BEARER
variable.
-
sampler
is a shorthand to HTTPSamplerProxy class which gives access to parent Sampler instance -
vars
is the instance of JMeterVariables class which allows read/write access to all JMeter variables available within the bounds of current context (usually current Thread Group)
See How to use BeanShell: JMeter's favorite built-in component guide for more details on Beanshell scripting and kind of Beanshell cookbook.
Solution 2:
See this forum post: http://www.jmeter-archive.org/Variables-in-HTTP-headers-td4579331.html
You need to move your login under a controller. In my case, I used an Only Once Controller. Then after the controller you can add the HTTP Header Manager with the Authorization header as "Bearer ${BEARER}" and it will read your variable. This is better than the other answer because then you don't need to duplicate the BeanShell PreProcessor under every request. My tree looked like this: