Added new directive (SecPdfProtectMethod) to enable the user to choose between using token redirection (falling back on forced download in some cases) and forced download (in all cases).

2025-09-29 11:16:33 +03:00 · 2007-06-14 15:26:08 +00:00
parent 9543e136ce
commit b1cbccdc6b
2 changed files with 67 additions and 1 deletions
--- a/apache2/modsecurity.h
+++ b/apache2/modsecurity.h
@@ -547,6 +547,14 @@ struct directory_config {
    int                 stream_inbody_inspection;
    int                 stream_outbody_inspection;

+    /* PDF XSS Protection. */
+    int                  pdfp_enabled;
+    const char          *pdfp_secret;
+    int                  pdfp_timeout;
+    const char          *pdfp_token_name;
+    int                  pdfp_only_get;
+    int                  pdfp_method;
+
    /* Geo Lookup */
    geo_db              *geo;