ModSecurity/test/test-cases/regression/variable-REQUEST_URI.json

[  
  {  
    "enabled":1,
    "version_min":300000,
    "title":"Testing Variables :: REQUEST_URI",
    "client":{  
      "ip":"200.249.12.31",
      "port":123
    },
    "server":{  
      "ip":"200.249.12.31",
      "port":80
    },
    "request":{  
      "headers":{  
        "Host":"localhost",
        "User-Agent":"curl/7.38.0",
        "Accept":"*/*"
      },
      "uri":"/?key=value&key=other_value",
      "method":"GET",
      "http_version":1.1
    },
    "response":{  
      "headers":{  
        "Date":"Mon, 13 Jul 2015 20:02:41 GMT",
        "Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
        "Content-Type":"text/html"
      },
      "body":[  
        "no need."
      ]
    },
    "expected":{  
      "debug_log":"Target value: \"/\\?key=value\\&key=other_value\" \\(Variable: REQUEST_URI\\)"
    },
    "rules":[  
      "SecRuleEngine On",
      "SecRule REQUEST_URI \"@contains test \" \"id:1,pass,t:trim\""
    ]
  },
  {
    "enabled":1,
    "version_min":300000,
    "title":"Testing Variables :: REQUEST_URI (with URI fragment)",
    "client":{
      "ip":"200.249.12.31",
      "port":123
    },
    "server":{
      "ip":"200.249.12.31",
      "port":80
    },
    "request":{
      "headers":{
        "Host":"localhost",
        "User-Agent":"curl/7.38.0",
        "Accept":"*/*"
      },
      "uri":"/?key=value&key=other_value#urifrag",
      "method":"GET",
      "http_version":1.1
    },
    "response":{
      "headers":{
        "Date":"Mon, 13 Jul 2015 20:02:41 GMT",
        "Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
        "Content-Type":"text/html"
      },
      "body":[
        "no need."
      ]
    },
    "expected":{
      "http_code": 403
    },
    "rules":[
      "SecRuleEngine On",
      "SecRule REQUEST_URI \"!@contains urifrag\" \"id:1,phase:1,deny,status:403\""
    ]
  },
  {
    "enabled":1,
    "version_min":300000,
    "title":"Testing Variables :: REQUEST_URI (with URI fragment)",
    "client":{
      "ip":"200.249.12.31",
      "port":123
    },
    "server":{
      "ip":"200.249.12.31",
      "port":80
    },
    "request":{
      "headers":{
        "Host":"localhost",
        "User-Agent":"curl/7.38.0",
        "Accept":"*/*"
      },
      "uri":"/one/two/testpost.php#urifrag",
      "method":"GET",
      "http_version":1.1
    },
    "response":{
      "headers":{
        "Date":"Mon, 13 Jul 2015 20:02:41 GMT",
        "Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
        "Content-Type":"text/html"
      },
      "body":[
        "no need."
      ]
    },
    "expected":{
      "http_code": 403
    },
    "rules":[
      "SecRuleEngine On",
      "SecRule REQUEST_URI \"!@contains urifrag\" \"id:1,phase:1,deny,status:403\""
    ]
  }
]