Merge pull request #504 from ganesh-k13/waf-new-features

sreejithgs · web-flow · commit a7a6de823252 · 2021-12-16T20:30:13.000+05:30
WAF New Features
diff --git a/crd/waf/waf-full.yaml b/crd/waf/waf-full.yaml
@@ -98,12 +98,17 @@ spec:
             cookie_transform: "on"
             add_cookie_flags: "httpOnly"
             decode_request_cookies: "on"
+          rfc_profile:
+            name: "APPFW_RFC_BYPASS"
+          streaming:
+            value: "on"
         html:
           sql_injection:
             check_sql_wildchars: "on"
             transform_special_chars: "on"
             injection_type: "SQLSplCharORKeyword"
             parse_comments: "ansinested"
+            sql_injection_grammar: "on"
           cross_site_scripting:
             check_complete_urls: "on"
             transform_unsafe_html: "on"
@@ -159,6 +164,8 @@ spec:
               max_len: 128
             string:
               max_len: 1000000
+          sql_injection:
+            sql_injection_grammar: "off"
     relaxations:
         html:
           cross_site_scripting:
diff --git a/crd/waf/wafrfc.yaml b/crd/waf/wafrfc.yaml
@@ -0,0 +1,14 @@
+apiVersion: citrix.com/v1
+kind: waf
+metadata:
+    name: wafrfc
+spec:
+    servicenames:
+        - frontend
+    application_type:
+        - HTML
+    html_error_object: "http://x.x.x.x/crd/error_page.json"
+    settings:
+        common:
+          rfc_profile:
+            name: "APPFW_RFC_BYPASS"
