Azure 应用程序网关排除 - 检查嵌套请求正文属性
[英]Azure Application Gateway exclude - inspection of nested request body property
问题描述
I need to exclude the inspection of a nested request body parameter in Azure Application Gateway.
我需要在 Azure 应用程序网关中排除对嵌套请求正文参数的检查。 Using the Azure Portal, I've tried the following without success:使用 Azure 门户,我尝试了以下但没有成功:
eg request body contents:例如请求正文内容:
{
"aRootProperty": "value",
"aRootContainer": {
"aNestedProperty": "some-string-that-causes-false-positives"
}
}
Azure Portal Exclusion config: Azure 门户排除配置:
Field:
Request Attribute NameRequest Attribute NameOperator:
EqualsEqualsSelector:
aNestedPropertyaNestedProperty
The documentation has a couple of examples but they're not very useful. 该文档有几个示例,但它们不是很有用。 Additionally, the docs don't really cover how the various Operators and the Selector work in practice.此外,文档并未真正涵盖各种运算符和选择器在实践中的工作方式。
With some testing, I found that I could use the Contains operator, but that's a bit more permissive than I'd like as any property that happens to contain the string "aNestedProperty" will be excluded.通过一些测试,我发现我可以使用Contains运算符,但这比我想要的要宽松一些,因为任何恰好包含字符串“aNestedProperty”的属性都将被排除在外。
1 个解决方案
解决方案1
1 2022-03-25 21:01:32
It's undocumented, but the Selector supports dot-notation for exclusion of nested properties.它没有记录,但Selector支持用于排除嵌套属性的点表示法。
So, the rule can be updated to the following for success (and it's not unnecessarily permissive:):因此,为了成功,可以将规则更新为以下内容(并且它不是不必要的宽容:):
Field:
Request Attribute NameRequest Attribute NameOperator:
EqualsEqualsSelector:
aRootContainer.aNestedPropertyaRootContainer.aNestedProperty
I've posted this doc issue so that the docs are (hopefully) updated soon.我已经发布了这个文档问题,以便(希望)尽快更新文档。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.