nbs-system / naxsi

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
GNU General Public License v3.0
4.8k stars 606 forks source link

Any benefit to running it on a Keycloak server? #473

Closed binaryfire closed 5 years ago

binaryfire commented 5 years ago

Hi all

I use naxsi on all my web servers. Recently we've set up a separate Keycloak server for SSO. nginx is being used as a reverse proxy port 443 to Keycloak's internal port 8080.

Will naxsi block malicious attacks on the Keycloak login form? I couldn't find any information online about this.

Thanks!

inetshell commented 5 years ago

I'm using NAXSI to protect a Keycloak server and is working smoothly. btw, I had to add this whilelist:

BasicRule wl:1001,1015,1101,1205 "mz:$URL_X:^/auth/admin/realms/|BODY" "msg: Account creation";

binaryfire commented 5 years ago

Awesome, thanks a lot!