Skip to content

Commit

Permalink
add support for soap+xml
Browse files Browse the repository at this point in the history 
As was talked about by @emphazer in SpiderLabs/owasp-modsecurity-crs#721, RFC 3902 adds support for the application/soap+xml header used by SOAP 1.2.
  • Loading branch information
Chaim Sanders authored and Felipe Zimmerle committed Apr 6, 2017
1 parent eb798d8 commit 5e4e2af
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion modsecurity.conf-recommended
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ SecRequestBodyAccess On
# Enable XML request body parser.
# Initiate XML Processor in case of xml content-type
#
SecRule REQUEST_HEADERS:Content-Type "(?:text|application)/xml" \
SecRule REQUEST_HEADERS:Content-Type "(?:application(?:/soap\+|/)|text/)xml" \
"id:'200000',phase:1,t:none,t:lowercase,pass,nolog,ctl:requestBodyProcessor=XML"

# Enable JSON request body parser.
Expand Down

0 comments on commit 5e4e2af

Please sign in to comment.