Tree - source-git/mod_security

source-git / mod_security

Blame tests/regression/rule/00-basics.t

Blob History Raw

Packit	284210	`### Tests for basic rule components`
Packit	284210
Packit	284210	`# SecAction`
Packit	284210	`{`
Packit	284210	`type => "rule",`
Packit	284210	`comment => "SecAction (override default)",`
Packit	284210	`conf => qq(`
Packit	284210	`SecRuleEngine On`
Packit	284210	`SecDebugLog $ENV{DEBUG_LOG}`
Packit	284210	`SecDebugLogLevel 4`
Packit	284210	`SecAction "nolog,id:500001"`
Packit	284210	`),`
Packit	284210	`match_log => {`
Packit	284210	`-error => [ qr/500001/, 1 ],`
Packit	284210	`-audit => [ qr/./, 1 ],`
Packit	284210	`debug => [ qr/Warning\. Unconditional match in SecAction\./, 1 ],`
Packit	284210	`},`
Packit	284210	`match_response => {`
Packit	284210	`status => qr/^200$/,`
Packit	284210	`},`
Packit	284210	`request => new HTTP::Request(`
Packit	284210	`GET => "http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt",`
Packit	284210	`),`
Packit	284210	`},`
Packit	284210
Packit	284210	`# SecRule`
Packit	284210	`{`
Packit	284210	`type => "rule",`
Packit	284210	`comment => "SecRule (no action)",`
Packit	284210	`conf => qq(`
Packit	284210	`SecRuleEngine On`
Packit	284210	`SecDebugLog $ENV{DEBUG_LOG}`
Packit	284210	`SecDebugLogLevel 5`
Packit	284210	`SecDefaultAction "phase:2,deny,status:403"`
Packit	284210	`SecRule ARGS:test "value" "id:500032"`
Packit	284210	`),`
Packit	284210	`match_log => {`
Packit	284210	`error => [ qr/500032/, 1 ],`
Packit	284210	`debug => [ qr/Rule [0-9a-f]+: SecRule "ARGS:test" "\@rx value" "phase:2,deny,status:403,id:500032"$/m, 1 ],`
Packit	284210	`},`
Packit	284210	`match_response => {`
Packit	284210	`status => qr/^403$/,`
Packit	284210	`},`
Packit	284210	`request => new HTTP::Request(`
Packit	284210	`GET => "http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt?test=value",`
Packit	284210	`),`
Packit	284210	`},`
Packit	284210	`{`
Packit	284210	`type => "rule",`
Packit	284210	`comment => "SecRule (action)",`
Packit	284210	`conf => qq(`
Packit	284210	`SecRuleEngine On`
Packit	284210	`SecDebugLog $ENV{DEBUG_LOG}`
Packit	284210	`SecDebugLogLevel 5`
Packit	284210	`SecDefaultAction "phase:2,pass"`
Packit	284210	`SecRule ARGS:test "value" "deny,status:403,id:500033"`
Packit	284210	`),`
Packit	284210	`match_log => {`
Packit	284210	`error => [ qr/ModSecurity: /, 1 ],`
Packit	284210	`debug => [ qr/Rule [0-9a-f]+: SecRule "ARGS:test" "\@rx value" "phase:2,deny,status:403,id:500033"$/m, 1 ],`
Packit	284210	`},`
Packit	284210	`match_response => {`
Packit	284210	`status => qr/^403$/,`
Packit	284210	`},`
Packit	284210	`request => new HTTP::Request(`
Packit	284210	`GET => "http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt?test=value",`
Packit	284210	`),`
Packit	284210	`},`
Packit	284210	`{`
Packit	284210	`type => "rule",`
Packit	284210	`comment => "SecRule (chain)",`
Packit	284210	`conf => qq(`
Packit	284210	`SecRuleEngine On`
Packit	284210	`SecDebugLog $ENV{DEBUG_LOG}`
Packit	284210	`SecDebugLogLevel 5`
Packit	284210	`SecDefaultAction "phase:2,log,noauditlog,pass,tag:foo"`
Packit	284210	`SecRule ARGS:test "value" "chain,phase:2,deny,status:403,id:500034"`
Packit	284210	`SecRule &ARGS "\@eq 1" "chain,setenv:tx.foo=bar"`
Packit	284210	`SecRule REQUEST_METHOD "\@streq GET"`
Packit	284210	`),`
Packit	284210	`match_log => {`
Packit	284210	`error => [ qr/ModSecurity: /, 1 ],`
Packit	284210	`debug => [ qr/Rule [0-9a-f]+: SecRule "ARGS:test" "\@rx value" "phase:2,log,noauditlog,tag:foo,chain,deny,status:403,id:500034"\r?\n.Rule [0-9a-f]+: SecRule "&ARGS" "\@eq 1" "chain,setenv:tx.foo=bar"\r?\n.Rule [0-9a-f]+: SecRule "REQUEST_METHOD" "\@streq GET"\r?\n/s, 1 ],`
Packit	284210	`},`
Packit	284210	`match_response => {`
Packit	284210	`status => qr/^403$/,`
Packit	284210	`},`
Packit	284210	`request => new HTTP::Request(`
Packit	284210	`GET => "http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt?test=value",`
Packit	284210	`),`
Packit	284210	`},`

source-git / mod_security

Source Code

Blame tests/regression/rule/00-basics.t