| bindappfwprofile_cmdinjection |
Use this method to bind cmdinjection to appfw profile. |
Syntax |
Parameters |
name |
Name of the profile to which to bind an exemption or rule. This is mandatory parameter. |
cmdinjection |
Exempt the specified HTTP header, web form field and the form action URL, or cookie from the method injection check.
A method injection exemption (relaxation) consists of the following items:
*Item name. Name of the web form field, cookie, or HTTP header to exempt from this check.
* Form action URL. If the item to be exempted is a web form field, the action URL for the web form.
* IsRegex flag. The IsRegex flag, followed by YES if the name or form action URL is a regular expression, or NO if it is a literal string.
* Location. Location that should be examined by the CMD injection check, either FORMFIELD for web form field, HEADER for HTTP header, or COOKIE for cookie. |
formactionurl |
Form action URL for exceptions in fields, or request URL for exceptions in headers and cookies. |
isregex |
Is a regular expression? Possible Values : REGEX, NOTREGEX. |
location |
Location of method injection exception - form field, header or cookie. Possible Values : FORMFIELD, HEADER, COOKIE. |
valuetype |
Command value type. (Keyword | SpecialString) Possible Values : Keyword, SpecialString. |
valueexpression |
CMD value expressions consistituting expressions for Keyword and SpecialString |
isvalueregex |
Is a regular expression? Possible Values : REGEX, NOTREGEX. |
Return Value |
Returns simpleResult |
See Also |