github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-29 11:16:33 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix SecResponseBodyAccess and ctl:requestBodyAccess directives

Browse Source
This commit is contained in:
Victor Hora
2018-08-30 18:01:53 -04:00
committed by Felipe Zimmerle
parent 5c048e3cc4
commit 379f370095
1 changed files with 1 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/transaction.cc
View File

@@ -766,14 +766,11 @@ int Transaction::processRequestBody() {
m_variableReqbodyProcessorError.set("0", m_variableOffset);
}
#if 1
if (m_rules->m_secRequestBodyAccess != RulesProperties::TrueConfigBoolean) {
if (m_requestBodyAccess != RulesProperties::TrueConfigBoolean) {
#ifndef NO_LOGS
debug(4, "Request body processing is disabled");
#endif
this->m_rules->evaluate(modsecurity::RequestBodyPhase, this);
return true;
} else {
#ifndef NO_LOGS
@@ -786,14 +783,12 @@ int Transaction::processRequestBody() {
if (m_requestBodyAccess == RulesProperties::FalseConfigBoolean) {
#ifndef NO_LOGS
debug(4, "Request body processing is enabled, but " \
"disable to this transaction due to ctl:requestBodyAccess " \
"disabled to this transaction due to ctl:requestBodyAccess " \
"action");
#endif
this->m_rules->evaluate(modsecurity::RequestBodyPhase, this);
return true;
}
}
#endif
/**
* FIXME: This variable should be calculated on demand, it is