Home Explore Help
Register Sign In
AFS
/
xdr-terraform-modules
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge pull request #411 from mdr-engineering/feature/bp_MSOCI-2121_disable_waf_rule

Adds more WAF excludes
Brad Poulton 3 years ago
parent
7e3737ba35 dff517b87f
commit
aa2dd90ec3
1 changed files with 7 additions and 2 deletions
Split View Show Diff Stats
  1. 7 2
      base/customer_portal/waf.tf

+ 7 - 2
base/customer_portal/waf.tf
View File 

@@ -10,8 +10,13 @@ module "waf" {
 
 
   excluded_rules_AWSManagedRulesCommonRuleSet = [
 
     "SizeRestrictions_BODY",
 
-    "GenericRFI_BODY",             # Blocks portal lambda MSOCI-2060
 
-    "CrossSiteScripting_BODY",     # Blocks portal API MSOCI-2121
 
+    "GenericRFI_BODY",              # Blocks portal lambda MSOCI-2060
 
+    "CrossSiteScripting_BODY",      # Blocks portal API MSOCI-2121
 
+    "EC2MetaDataSSRF_BODY",         # Blocks portal API MSOCI-2121
 
+  ]
 
+
 
+  excluded_rules_AWSManagedRulesUnixRuleSet = [
 
+    "UNIXShellCommandsVariables_BODY", # Blocks portal API MSOCI-2121
 
   ]
 
 
   # These are passed through and should be the same for module