From 5895e843db13d19ebde786724b434b090acb63d3 Mon Sep 17 00:00:00 2001
From: Daniel Demus <dde@nine.dk>
Date: Sat, 16 Nov 2024 20:57:44 +0100
Subject: [PATCH] Suppress false positive on encoded % in URL

---
 plugins/openhab-proxy-rule-exclusions-before.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/plugins/openhab-proxy-rule-exclusions-before.conf b/plugins/openhab-proxy-rule-exclusions-before.conf
index f573517..e88cbfd 100644
--- a/plugins/openhab-proxy-rule-exclusions-before.conf
+++ b/plugins/openhab-proxy-rule-exclusions-before.conf
@@ -62,3 +62,5 @@ SecRule REQUEST_FILENAME "@beginsWith /rest" \
     setvar:'tx.allowed_methods=%{tx.allowed_methods} PUT DELETE',\
     setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/plain|'"
 
+# Disable CRS rule 920220, as % is often included in value formats
+SecRule WEBAPPID "@unconditionalMatch" "id:93020,phase:1,pass,nolog,ctl:ruleRemoveById=920220"