Commit661fcaa

authored and

Yanshu Zhao

committed

Nginx, scan all request bodies (microsoft#36)

1 parent78867ac commit661fcaaCopy full SHA for 661fcaa

File tree

-5

lines changed

-5

lines changed

Lines changed: 2 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -1038,19 +1038,16 @@ ngx_http_modsecurity_handler(ngx_http_request_t *r)`
`1038`	`1038`	`returnNGX_DECLINED;`
`1039`	`1039`	`}`
`1040`	`1040`
`1041`		`-if (r->method==NGX_HTTP_POST`
`1042`		`-&&modsecIsRequestBodyAccessEnabled(ctx->req) ) {`
`1043`	`1041`
`1044`		`-/* read POST request body, should we process PUT? */`
	`1042`	`+if (modsecIsRequestBodyAccessEnabled(ctx->req)&& (r->headers_in.content_length\|\|r->headers_in.chunked)) {`
`1045`	`1043`	`rc=ngx_http_read_client_request_body(r,ngx_http_modsecurity_body_handler);`
`1046`	`1044`	`if (rc >=NGX_HTTP_SPECIAL_RESPONSE) {`
`1047`	`1045`	`returnrc;`
`1048`	`1046`	`}`
`1049`	`1047`
`1050`	`1048`	`returnNGX_DONE;`
`1051`	`1049`	`}`
`1052`		`-`
`1053`		`-/* other method */`
	`1050`	`+`
`1054`	`1051`	`returnngx_http_modsecurity_status(r,modsecProcessRequestBody(ctx->req));`
`1055`	`1052`	`}`
`1056`	`1053`

Comments

(0)