github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-13 13:26:01 +03:00
Code Issues Packages Projects Releases Wiki Activity

Adds test case for the ctl:ruleEngine action

Browse Source
This commit is contained in:
Felipe Zimmerle 2017-07-27 22:09:59 -03:00
parent 4bec6b0019
commit 0242646610
No known key found for this signature in database
GPG Key ID: E6DFB08CE8B11277
2 changed files with 316 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Makefile.am
View File

@ -135,6 +135,7 @@ TESTS+=test/test-cases/regression/variable-RESPONSE_CONTENT_TYPE.json
TESTS+=test/test-cases/regression/action-disruptive.json
TESTS+=test/test-cases/regression/variable-REQUEST_BASENAME.json
TESTS+=test/test-cases/regression/sec_component_signature.json
TESTS+=test/test-cases/regression/action-ctl_rule_engine.json
TESTS+=test/test-cases/regression/action-ctl_rule_remove_target_by_tag.json
TESTS+=test/test-cases/regression/variable-REQUEST_METHOD.json
TESTS+=test/test-cases/regression/action-initcol.json

315
test/test-cases/regression/action-ctl_rule_engine.json Normal file
View File

@ -0,0 +1,315 @@
[
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (1)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"POST",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to Disabled as requested by a ctl:ruleEngine action",
"http_code": 200
},
"rules":[
"SecRuleEngine On",
"SecRequestBodyAccess On",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=Off\"",
"SecRule ARGS \"@contains test\" \"id:2,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (2)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"POST",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to DetectionOnly as requested by a ctl:ruleEngine action",
"http_code": 200
},
"rules":[
"SecRuleEngine On",
"SecRequestBodyAccess On",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=DetectionOnly\"",
"SecRule ARGS \"@contains test\" \"id:2,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (3)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"GET",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to Enabled as requested by a ctl:ruleEngine action",
"http_code": 302
},
"rules":[
"SecRuleEngine DetectionOnly",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=On\"",
"SecRule ARGS \"@contains test\" \"id:2,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (4)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"GET",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to Enabled as requested by a ctl:ruleEngine action",
"http_code": 302
},
"rules":[
"SecRuleEngine DetectionOnly",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=On,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (5)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"GET",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to Disabled as requested by a ctl:ruleEngine action",
"http_code": 200
},
"rules":[
"SecRuleEngine DetectionOnly",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=Off,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (6)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"GET",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to DetectionOnly as requested by a ctl:ruleEngine action",
"http_code": 200
},
"rules":[
"SecRuleEngine DetectionOnly",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,ctl:RuleEngine=DetectionOnly,log,phase:3,block,deny,status:302\""
]
},
{
"enabled":1,
"version_min":300000,
"title":"Testing CtlRuleEngine (7)",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
"ip":"200.249.12.31",
"port":80
},
"request":{
"headers":{
"Host":"localhost",
"User-Agent":"curl/7.38.0",
"Accept":"*/*",
"Content-Length":"12",
"Content-Type":"plain/text",
"Expect":"100-continue"
},
"uri":"/test?test=test",
"method":"GET",
"body":[ ]
},
"response":{
"headers":{
"Date":"Mon, 13 Jul 2015 20:02:41 GMT",
"Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
"Content-Type":"text/html"
},
"body":[
"no need."
]
},
"expected":{
"debug_log":"Setting SecRuleEngine to DetectionOnly as requested by a ctl:ruleEngine action",
"http_code": 200
},
"rules":[
"SecRuleEngine DetectionOnly",
"SecRule REQUEST_URI \"@contains test\" \"id:1,phase:1,pass,t:trim,log,phase:3,block,deny,status:302,ctl:RuleEngine=DetectionOnly\""
]
}
]