JSON
About
General View of JSON
When a new path is added on the JSON tab, the view is as follows. By clicking the Add Common Rule for JSON button, JSON control is enabled for the relevant path. Now, when a request with JSON content is made to this path, it will be subject to WAF rules based on the added rules. Before clicking the Add Common Rule for JSON, it appears as Rule Source > All Paths. The reason for this is that no JSON control has been performed on the relevant path, so JSON control has been inherited from All Paths. If it had been inherited from a Glob Path, it would have appeared as Rule Source > Relevant Glob Path (/admin/login.*).
Example JSON Variable Name and Variable Value
Interface
Add Common Rule for JSON Screen
- Virtual Host Group
Displays the information about which Virtual Host Group the relevant path belongs to.
- Path
Displays the information about the modified path.
- Area
Displays information about the modified control field.
- Argument Name
Shows that the changes will apply to all JSON variables and their values.
- JSON Key Length
Filters the length of each variable in JSON content by character count.
- JSON Key Count
Filtered by the total number of variables that can appear in JSON.
- Block All JSON Content
No JSON content can be sent to the relevant path; it will be blocked.
- Block Invalid JSON Content
"Unparseable" JSON content cannot be sent to the relevant path; it will be blocked.
- JSON Depth
Filters JSON depth.
- Allowed JSON Arguments
Allowed JSON variables are used to determine the variables that can be sent to the relevant path. No request can be made to the relevant path with any variable other than the entered allowed variables; it will be blocked.
- Value Length
Filters the value length of each variable in JSON content by character count.
- OWASP Check
Specifies whether each variable and value in JSON content will be subject to OWASP check.
- OWASP Exclusions
If subject to OWASP controls, OWASP Rules can be added as exceptions based on the structure of the incoming request.
- Detailed Log
Determines whether the variable or value where an attack is detected in the WAF log will be written to the description section.
- Value Regex Pattern
Used in cases where it is desired to restrict the value of each variable in JSON with RegEx.
- Add
Clicking the Add button adds the JSON general setting.
- Interface Representation in TR7 ASP After Adding the Check Field
After adding the JSON check field, the interface representation in TR7 ASP when clicked on the relevant path is as follows.
Interface
Add Argument Rule for JSON Screen
By clicking the Add Argument Rule for JSON button, new definitions can be added specifically for a JSON variable, except for the definitions made in the general settings.
- Virtual Host Group
Displays the information about which Virtual Host Group the relevant path belongs to.
- Path
Displays the information about the modified path.
- Area
Displays information about the modified control field.
- Argument Name
The name of the relevant JSON variable is entered because the changes will be specifically defined for a single JSON variable.
- Value Length
Filters the value length of the specified JSON variable by character count.
- OWASP Check
Specifies whether the specified JSON variable, variable, and value will be subject to OWASP check.
- OWASP Exclusions
If subject to OWASP controls, OWASP Rules can be added as exceptions based on the structure of the incoming request.
- Detailed Log
Determines whether the variable or value where an attack is detected in the WAF log will be written to the description section.
- Value Regex Pattern
Used in cases where it is desired to restrict the value of the specified JSON variable with RegEx.
- Add
Clicking the Add button adds the JSON variable setting.
- Interface Representation of JSON Variable Setting in TR7 ASP
After adding the JSON variable setting, the interface representation in TR7 ASP when clicked on the relevant path is as follows.
