This repository has been archived by the owner on Apr 24, 2024. It is now read-only.
UI-Validation for Expiration time field in CSRF/Protection section #45
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Observed no UI-validation for min and max values of 'Expiration time in seconds' field in CSRF/Protection section
Applied policy:
If negative value, Error Message:
"error_message" : "Failed to import Policy 'myPolicy' from '/etc/app_protect/conf/waf-1633516938513.json': Could not update the CSRF 'CSRF'. Failed validating value '-120' for expirationTimeInSeconds: The value contains an illegal character ("-")"
Applied policy:
If 0, Error Message:
"error_message" : "Failed to import Policy 'myPolicy' from '/etc/app_protect/conf/waf-1633516938513.json': Could not parse/validate the CSRF 'CSRF'. Illegal field value for expiration_time_in_seconds - 0, must be an "disabled""
Applied policy:
If length > 5, Error Message:
"error_message" : "Failed to import Policy 'myPolicy' from '/etc/app_protect/conf/waf-1633516938513.json': Could not update the CSRF 'CSRF'. Failed validating value '100000' for expirationTimeInSeconds: The value is too long (maximum length = 5)"
The text was updated successfully, but these errors were encountered: