demus/openhab-proxy-rule-exclusions-plugin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 2 Wiki Activity

Suppress false positive on encoded % in URL

Browse Source
This commit is contained in:
Daniel Demus 2024-11-16 20:57:44 +01:00
parent 629fd2345e
commit 5895e843db
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
plugins/openhab-proxy-rule-exclusions-before.conf
View File

@ -62,3 +62,5 @@ SecRule REQUEST_FILENAME "@beginsWith /rest" \
setvar:'tx.allowed_methods=%{tx.allowed_methods} PUT DELETE',\ setvar:'tx.allowed_methods=%{tx.allowed_methods} PUT DELETE',\
setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/plain|'" setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/plain|'"
# Disable CRS rule 920220, as % is often included in value formats
SecRule WEBAPPID "@unconditionalMatch" "id:93020,phase:1,pass,nolog,ctl:ruleRemoveById=920220"