different or incorrect logging when request is blocked because of invalid content-type #232
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
{{ message }}
Sending HTTP GET request thru lua-resty-waf reverse proxy with an invalid content-type:
curl -H "Content-Type:foobar" "http://reverseproxy.domain.tld/lua-resty-waf/index.html"
.. causes the request to be blocked with HTTP 403 Forbidden, which is a correct action to do.
But in this case openresty debug error.log doesn't have the usual JSON string of why the request was blocked, because lua-resty-waf doesn't actually see this as matching a rule, because it just calls ngx.exit(ngx.HTTP_FORBIDDEN) inside of resty.waf.request.lua.
As discussed on IRC this should be fixed.
The text was updated successfully, but these errors were encountered: