github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 05:45:59 +03:00
Code Issues Packages Projects Releases Wiki Activity

add support for soap+xml

Browse Source 
As was talked about by @emphazer in https://github.com/SpiderLabs/owasp-modsecurity-crs/pull/721, RFC 3902 adds support for the application/soap+xml header used by SOAP 1.2.
This commit is contained in:
Chaim Sanders 2017-04-03 19:52:14 -04:00 committed by Felipe Zimmerle
parent e2bbe9858f
commit b58f713fe9
No known key found for this signature in database
GPG Key ID: E6DFB08CE8B11277
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modsecurity.conf-recommended
View File

@ -19,7 +19,7 @@ SecRequestBodyAccess On
# Enable XML request body parser. # Enable XML request body parser.
# Initiate XML Processor in case of xml content-type # Initiate XML Processor in case of xml content-type
# #
SecRule REQUEST_HEADERS:Content-Type "(?:text|application)/xml" \ SecRule REQUEST_HEADERS:Content-Type "(?:application(?:/soap\+|/)|text/)xml" \
"id:'200000',phase:1,t:none,t:lowercase,pass,nolog,ctl:requestBodyProcessor=XML" "id:'200000',phase:1,t:none,t:lowercase,pass,nolog,ctl:requestBodyProcessor=XML"
# Enable JSON request body parser. # Enable JSON request body parser.