github_mirrors/openappsec
3
0
Fork 1
mirror of https://github.com/openappsec/openappsec.git synced 2025-06-28 16:41:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

Update open-appsec-k8s-full-example-config-v1beta2.yaml

Browse Source
This commit is contained in:
orianelou 2024-12-30 16:30:36 +02:00 committed by GitHub
parent 602442fed4
commit 9d704455e8
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 41 additions and 29 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

70
config/k8s/v1beta2/open-appsec-k8s-full-example-config-v1beta2.yaml
View File

@ -84,42 +84,45 @@ spec:
threatPreventionPractices: [threat-prevention-practice-example] threatPreventionPractices: [threat-prevention-practice-example]
triggers: [log-trigger-example] triggers: [log-trigger-example]
customResponse: custom-response-response-code-example customResponse: custom-response-response-code-example
sourceIdentifiers: "" sourceIdentifiers: sources-identifier-example
trustedSources: "" trustedSources: trusted-sources-example
exceptions: exceptions:
- exception-example - exception-example
--- ---
apiVersion: openappsec.io/v1beta2 apiVersion: openappsec.io/v1beta2
kind: ThreatPreventionPractice kind: ThreatPreventionPractice
metadata: metadata:
name: threat-prevention-practice-example name: threat-prevention-practice-example
spec: spec:
name: custom-web-protection practiceMode: inherited
practiceMode: prevent
webAttacks: webAttacks:
overrideMode: prevent-learn overrideMode: inherited
minimumConfidence: high minimumConfidence: high
maxUrlSizeBytes: 4096 intrusionPrevention:
maxObjectDepth: 10 # intrusion prevention (IPS) requires "Premium Edition"
maxBodySizeKb: 1024 overrideMode: inherited
maxHeaderSizeBytes: 8192 maxPerformanceImpact: medium
protections: minSeverityLevel: medium
csrfProtection: prevent minCveYear: 2016
errorDisclosure: detect highConfidenceEventAction: inherited
openRedirect: inactive mediumConfidenceEventAction: inherited
nonValidHttpMethods: true lowConfidenceEventAction: detect
antiBot: fileSecurity:
overrideMode: detect # file security requires "Premium Edition"
injectedUris: overrideMode: inherited
- /admin/login minSeverityLevel: medium
- /user/auth highConfidenceEventAction: inherited
validatedUris: mediumConfidenceEventAction: inherited
- /secure-area lowConfidenceEventAction: detect
snortSignatures: snortSignatures:
# you must specify snort signatures in configmap or file to activate snort inspection
overrideMode: inherited overrideMode: inherited
configmap: [] configmap: []
# relevant for deployments on kubernetes
# 0 or 1 configmaps supported in array
files: [] files: []
# relevant for docker and linux embedded deployments
# 0 or 1 files supported in array
schemaValidation: # schema validation requires "Premium Edition" schemaValidation: # schema validation requires "Premium Edition"
overrideMode: inherited overrideMode: inherited
configmap: [] configmap: []
@ -128,13 +131,10 @@ spec:
files: [] files: []
# relevant for docker and linux embedded deployments # relevant for docker and linux embedded deployments
# 0 or 1 files supported in array # 0 or 1 files supported in array
intrusionPrevention: antiBot: # antibot requires "Premium Edition"
overrideMode: detect overrideMode: inherited
maxPerformanceImpact: medium injectedUris: []
minSeverityLevel: high validatedUris: []
minCveYear: 2015
highConfidenceEventAction: prevent
mediumConfidenceEventAction: detect
--- ---
apiVersion: openappsec.io/v1beta2 apiVersion: openappsec.io/v1beta2
@ -147,3 +147,15 @@ spec:
- 1.0.0.27 - 1.0.0.27
- 1.0.0.28 - 1.0.0.28
- 1.0.0.29 - 1.0.0.29
---
kind: SourcesIdentifier
metadata:
name: sources-identifier-example
spec:
sourcesIdentifiers:
- identifier: sourceip
value:
- "192.168.1.1"
- "10.0.0.1"