From 779609b1ef0ad36eebbedb09fdbde6bd87551624 Mon Sep 17 00:00:00 2001 From: AnastasiaTWW <61460069+AnastasiaTWW@users.noreply.github.com> Date: Fri, 18 Jul 2025 20:10:29 +0400 Subject: [PATCH 1/3] update the docs on the 0.9.2 version --- docs/configuration-guides/endpoint-related-response.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/docs/configuration-guides/endpoint-related-response.md b/docs/configuration-guides/endpoint-related-response.md index 7a98de3..142b400 100644 --- a/docs/configuration-guides/endpoint-related-response.md +++ b/docs/configuration-guides/endpoint-related-response.md @@ -1,6 +1,6 @@ # Endpoint-Related Response Actions -You can configure [validation modes](../installation-guides/docker-container.md#apifw-req-val) (`RequestValidation`, `ResponseValidation`) for each endpoint separately. If not set for the endpoint specifically, global value is used. +You can configure [validation modes](../installation-guides/docker-container.md#apifw-req-val) (`RequestValidation`, `ResponseValidation`, ModSecurity → `RequestValidation`, ModSecurity → `ResponseValidation`) for each endpoint separately. If not set for the endpoint specifically, global value is used. !!! info "Example of `apifw.yaml`" ```yaml @@ -15,6 +15,9 @@ You can configure [validation modes](../installation-guides/docker-container.md# - Path: "/test/endpoint1" RequestValidation: "LOG_ONLY" ResponseValidation: "LOG_ONLY" + ModSecurity: + RequestValidation: "BLOCK" + ResponseValidation: "BLOCK" - Path: "/test/endpoint1/{internal_id}" Method: "get" RequestValidation: "LOG_ONLY" From 5694f601d0cc8a45da23b5c5d32066f6b97e4906 Mon Sep 17 00:00:00 2001 From: AnastasiaTWW <61460069+AnastasiaTWW@users.noreply.github.com> Date: Fri, 25 Jul 2025 22:25:15 +0400 Subject: [PATCH 2/3] fixes --- docs/configuration-guides/endpoint-related-response.md | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/docs/configuration-guides/endpoint-related-response.md b/docs/configuration-guides/endpoint-related-response.md index 142b400..7a98de3 100644 --- a/docs/configuration-guides/endpoint-related-response.md +++ b/docs/configuration-guides/endpoint-related-response.md @@ -1,6 +1,6 @@ # Endpoint-Related Response Actions -You can configure [validation modes](../installation-guides/docker-container.md#apifw-req-val) (`RequestValidation`, `ResponseValidation`, ModSecurity → `RequestValidation`, ModSecurity → `ResponseValidation`) for each endpoint separately. If not set for the endpoint specifically, global value is used. +You can configure [validation modes](../installation-guides/docker-container.md#apifw-req-val) (`RequestValidation`, `ResponseValidation`) for each endpoint separately. If not set for the endpoint specifically, global value is used. !!! info "Example of `apifw.yaml`" ```yaml @@ -15,9 +15,6 @@ You can configure [validation modes](../installation-guides/docker-container.md# - Path: "/test/endpoint1" RequestValidation: "LOG_ONLY" ResponseValidation: "LOG_ONLY" - ModSecurity: - RequestValidation: "BLOCK" - ResponseValidation: "BLOCK" - Path: "/test/endpoint1/{internal_id}" Method: "get" RequestValidation: "LOG_ONLY" From bbfa82d06aa4dba4588d80755466ed9067fec13f Mon Sep 17 00:00:00 2001 From: AnastasiaTWW <61460069+AnastasiaTWW@users.noreply.github.com> Date: Fri, 25 Jul 2025 22:40:13 +0400 Subject: [PATCH 3/3] add ModSecurity params to the common apifw file example --- docs/include/apifw-yaml-example.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/docs/include/apifw-yaml-example.md b/docs/include/apifw-yaml-example.md index 3f16456..3c75b0a 100644 --- a/docs/include/apifw-yaml-example.md +++ b/docs/include/apifw-yaml-example.md @@ -2,6 +2,9 @@ mode: "PROXY" RequestValidation: "BLOCK" ResponseValidation: "BLOCK" +ModSecurity: + RequestValidation: "LOG_ONLY" + ResponseValidation: "LOG_ONLY" CustomBlockStatusCode: 403 AddValidationStatusHeader: false APISpecs: "openapi.yaml"