github_mirrors/openappsec
3
0
Fork 1
mirror of https://github.com/openappsec/openappsec.git synced 2025-06-28 16:41:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #86 from openappsec/Dec-12th-2023

Browse Source 
AppSec mode fix
This commit is contained in:
WrightNed 2023-12-20 16:16:38 +02:00 committed by GitHub
commit 8d0a44acac
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 14 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
components/security_apps/local_policy_mgmt_gen/appsec_practice_section.cc
View File

@ -187,11 +187,11 @@ AppSecPracticeWebAttacks::getMinimumConfidence() const
const string & const string &
AppSecPracticeWebAttacks::getMode(const string &default_mode) const AppSecPracticeWebAttacks::getMode(const string &default_mode) const
{ {
if (mode == "Unset" || (key_to_practices_val.find(mode) == key_to_practices_val.end())) { if (mode == "Unset" || (key_to_practices_val2.find(mode) == key_to_practices_val2.end())) {
dbgError(D_LOCAL_POLICY) << "Couldn't find a value for key: " << mode << ". Returning " << default_mode; dbgError(D_LOCAL_POLICY) << "Couldn't find a value for key: " << mode << ". Returning " << default_mode;
return default_mode; return default_mode;
} }
return key_to_practices_val.at(mode); return key_to_practices_val2.at(mode);
} }
void void
@ -433,7 +433,7 @@ WebAppSection::WebAppSection(
anti_bots(parsed_appsec_spec.getAntiBot()), anti_bots(parsed_appsec_spec.getAntiBot()),
trusted_sources({ parsed_trusted_sources }) trusted_sources({ parsed_trusted_sources })
{ {
web_attack_mitigation = true; web_attack_mitigation = web_attack_mitigation_mode != "Disabled";
web_attack_mitigation_action = web_attack_mitigation_action =
web_attack_mitigation_mode != "Prevent" ? "Transparent" : web_attack_mitigation_mode != "Prevent" ? "Transparent" :
web_attack_mitigation_severity == "critical" ? "low" : web_attack_mitigation_severity == "critical" ? "low" :
@ -481,7 +481,7 @@ WebAppSection::WebAppSection(
anti_bots(_anti_bots), anti_bots(_anti_bots),
trusted_sources({ parsed_trusted_sources }) trusted_sources({ parsed_trusted_sources })
{ {
web_attack_mitigation = true; web_attack_mitigation = web_attack_mitigation_mode != "Disabled";
web_attack_mitigation_action = web_attack_mitigation_action =
web_attack_mitigation_mode != "Prevent" ? "Transparent" : web_attack_mitigation_mode != "Prevent" ? "Transparent" :
web_attack_mitigation_severity == "critical" ? "low" : web_attack_mitigation_severity == "critical" ? "low" :

8
components/security_apps/local_policy_mgmt_gen/include/local_policy_common.h Normal file → Executable file
View File

@ -56,6 +56,14 @@ static const std::unordered_map<std::string, std::string> key_to_practices_val =
{ "inactive", "Inactive"} { "inactive", "Inactive"}
}; };
static const std::unordered_map<std::string, std::string> key_to_practices_val2 = {
{ "prevent-learn", "Prevent"},
{ "detect-learn", "Learn"},
{ "prevent", "Prevent"},
{ "detect", "Detect"},
{ "inactive", "Disabled"}
};
static const std::string default_appsec_url = "http://*:*"; static const std::string default_appsec_url = "http://*:*";
template <typename T> template <typename T>

4
components/security_apps/local_policy_mgmt_gen/new_practice.cc
View File

@ -210,11 +210,11 @@ NewAppSecPracticeWebAttacks::getMinimumConfidence() const
const string & const string &
NewAppSecPracticeWebAttacks::getMode(const string &default_mode) const NewAppSecPracticeWebAttacks::getMode(const string &default_mode) const
{ {
if (mode == "Unset" || (key_to_practices_val.find(mode) == key_to_practices_val.end())) { if (mode == "Unset" || (key_to_practices_val2.find(mode) == key_to_practices_val2.end())) {
dbgError(D_LOCAL_POLICY) << "Couldn't find a value for key: " << mode << ". Returning " << default_mode; dbgError(D_LOCAL_POLICY) << "Couldn't find a value for key: " << mode << ". Returning " << default_mode;
return default_mode; return default_mode;
} }
return key_to_practices_val.at(mode); return key_to_practices_val2.at(mode);
} }
SnortProtectionsSection::SnortProtectionsSection( SnortProtectionsSection::SnortProtectionsSection(