Versions Compared
compared with
Key
- This line was added.
- This line was removed.
- Formatting was changed.
Comment:
Published by Scroll Versions from space WAPIMGMNT232 and version 24.0
The Header Allow/Deny Policy allows the user to control which incoming requests may be forwarded to the backend service. Permission is granted by adding values for a header.
When a request is received, the policy examines the HTTP headers. The configured rules are applied using a regular expression against the names and values. If these are permitted, the request is passed unmodified to the backend API. If they are not allowed, an HTTP 403 response is returned and the call to the backend service is not executed.
Configuration Options
Basic Configuration
Option | Description | Possible Values | Default | ||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Header Name | Name of the HTTP header, e.g. Host | a string | - | ||||||||
Allow request if header is missing | Determines whether the request is accepted if a header is missing. |
| false | ||||||||
Allow request if no rules match | Determines whether the request is considered if no rule applies. |
| false | ||||||||
Rules | |||||||||||
Allow request if value matches | Determines whether the request is considered if the value applies. |
| false | ||||||||
Header Value Regex | Defines the header value.
| a string | - | ||||||||
|
Panel | ||
---|---|---|
| ||
|
Panel | ||
---|---|---|
|
Otp | ||
---|---|---|
|
Overview
Content Tools