ACL rule based on POST data possible?

vnomura · November 21, 2019, 10:47pm

Hi All,

Thank you in advance for all your help. I’m trying to create an ACL rule where the http request is denied if the POST data contains the word “nastyword”.

Something like

acl prevent_bad_words (something then reg ex search for “nastyword” etc…)
http-request deny if prevent_bad_words

Is this possible on POST data? I’ve also put

option http-buffer-request

In the defaults as I was told it would allow HAProxy access to the data.

Regards,

Victor

vnomura · November 21, 2019, 11:06pm

I think I solved it myself. Here’s the acl rule in case someone else needs it.

acl prevent_bad_words -m reg -i nastyword
http-request deny if prevent_bad_words

Prevents POST request if nastyword present

Victor

Topic		Replies	Views
PROPFIND - http-request deny unless METH_GET Help!	2	1430	November 16, 2017
ACL from file , limits (resolved) Help!	2	724	March 19, 2018
HAProxy ACL With Variable In Substring Help!	0	20	April 23, 2024
Deny access for URI Help!	0	275	May 6, 2020
Regex ACL haproxy Help!	5	8143	July 4, 2018

ACL rule based on POST data possible?

Related Topics