Closed theseion closed 4 months ago
The new modsecurity.conf file was missing rule 200001, which enables body processing of application/json.
application/json
Also took the opportunity to put the content of the file into a form that is easier to maintain w.r.t. to changes from upstream.
Fixes #252
Hmmmm.... https://github.com/coreruleset/modsecurity-crs-docker/pull/239#discussion_r1581753064 ?
Ok, so both are needed, right?
Yes. One is for application/json, the other one for application/<something>+json.
application/<something>+json
The new modsecurity.conf file was missing rule 200001, which enables body processing of
application/json
.Also took the opportunity to put the content of the file into a form that is easier to maintain w.r.t. to changes from upstream.
Fixes #252