Web Policy Agents 5.9.1

Invalid URL Regular Expression

A Perl-compatible regular expression to parse valid request URLs. The agent rejects requests to invalid URLs with HTTP 403 Forbidden status without further processing.

For example, to filter out URLs containing a list of characters and words such as …​ %00-%1f, %7f-%ff, %25, %2B, %2C, %7E, .info, configure the following regular expression:

com.forgerock.agents.agent.invalid.url.regex=^(\?!.\/\|\/.\|.\|.info\|%2B\|%00-%1f\|%7f-%ff\|%25\|%2C\|%7E).*$

Not available in the console for AM 6.0.x.

Default: Empty

Property name

com.forgerock.agents.agent.invalid.url.regex

Property aliases

com.forgerock.agents.agent.invalid.url.regex (since 4.x)

Type

String

Bootstrap property

No

Required property

No

Restart required

No

AM console tab

Miscellaneous

Copyright © 2010-2023 ForgeRock, all rights reserved.