4. haproxy acl path and method

haproxy acl path and method

  • X

    I'm trying to create a rule like this :

    path_beg /api/user/ && method GET

    I need specifically validate a URL and method it uses

    but it doesn't works, some ideas?

    0
    P
     1 Reply
  • P

    @Xivexell
    I would try something like this:

    acl check1 path_beg /api/user/
acl check2 method GET
http-request deny 404 if check1 check2
    0
    X
     1 Reply
  • X

    Thanks for your answer, I try it, works when I have one path, but If I have other rules, it doesn't works c992ce7a-1e0a-400c-bb3d-d8af8957eda1-imagen.png

    0
    P
     1 Reply
  • P

    @Xivexell
    I notice that you have the "NOT" checkbox set.. So i wonder what you expect to happen.?

    If the user is 'NOT requesting /api/user' AND the user is 'NOT using method GET/POST/DELETE' then do something.?

    Or would you perhaps prefer to have and 'OR' = || between those 2 acls.?

    add0a4e8-3533-48fe-a796-f6a808eb60ec-image.png
    Result in haproxy.cfg (see the ! signs and the | ..):

    	acl			Rule1	var(txn.txnpath) -m beg -i /api/user/
	acl			Rule2	method GET POST DELETE
	http-request deny deny_status 402  if  !Rule1 || !Rule2
    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy