Modify Pragma settings for a security policy

put https://{hostname}/appsec/v1/configs/{configId}/versions/{versionNumber}/security-policies/{policyId}/advanced-settings/pragma-header

All products Update the pragma header excluded conditions. By default, the Pragma header debugging information is stripped from an operation's response except in cases where you set excludeCondition. To remove existing settings, submit your request with an empty payload {} at the top-level of an object. For example, submit "type": "{}" in the request body to remove the requestHeaderValueMatch from the excluded conditions. If you submit an empty payload for each member, you'll clear all of your condition settings. To modify Pragma header settings at the security configuration level, run Modify Pragma header settings for a configuration .

Path Params

configId

int64

required

A unique identifier for each configuration.

versionNumber

integer

required

A unique identifier for each version of a configuration.

policyId

string

required

A unique identifier for a security policy.

Query Params

accountSwitchKey

string

For customers who manage more than one account, this runs the operation from another account. The Identity and Access Management API provides a list of available account switch keys.

Body Params

action

string

required

The action to perform when a user passes a Pragma header. The only action currently supported is REMOVE.

conditionOperator

string

Use OR to match any condition, or AND to match on all conditions.

excludeCondition

array of objects

The conditions to exclude from the default remove action. Any condition you set in this object appears in the Pragma header debug response object.

excludeCondition

Responses

Response body

object

action

string

required

The action to perform when a user passes a Pragma header. The only action currently supported is REMOVE.

REMOVE

conditionOperator

string

Use OR to match any condition, or AND to match on all conditions.

OR AND

excludeCondition

array of objects

The conditions to exclude from the default remove action. Any condition you set in this object appears in the Pragma header debug response object.

excludeCondition

object

header

string

The name of the request header. In the example, accept.

name

string

The name of the request header to ignore from inspection. In the example, type.

positiveMatch

boolean

required

When true, matches the selected values. When false, matches on anything outside the selected values.

type

string

required

The header value you want to appear in the response. You can choose from requestHeaderValueMatch, ipMatch, networkList, or queryParamNameValueMatch.

requestHeaderValueMatch ipMatch networkList queryParamNameValueMatch

useHeaders

boolean

Whether the condition should include the X-Forwarded-For header (XFF) header. This only applies when the condition type is IP_MATCH or NETWORK_LIST.

value

array of strings

required

List of header values, query parameter values, IP addresses, or names of network lists. To manage networks lists, use the Network Lists API.

value*

valueCase

boolean

Whether to consider the case-sensitivity of the provided header value. This only applies when the condition type is REQUEST_HEADER_VALUE_MATCH.

valueWildcard

boolean

Whether the provided header value includes wildcards, such as * or ?. This only applies to the REQUEST_HEADER_VALUE_MATCH condition type.

Language

Authentication

Remember to add your authentication credentials to run this code.

URL


xxxxxxxxxx
1
curl --request PUT \
2
     --url https://hostname/appsec/v1/configs/configId/versions/versionNumber/security-policies/policyId/advanced-settings/pragma-header \
3
     --header 'accept: application/json' \
4
     --header 'content-type: application/json' \
5
     --data '{"action":"REMOVE"}'


xxxxxxxxxx
44
}
1
{
2
  "action": "REMOVE",
3
  "conditionOperator": "AND",
4
  "excludeCondition": [
5
    {
6
      "header": "accept",
7
      "positiveMatch": true,
8
      "type": "requestHeaderValueMatch",
9
      "value": [
10
        "application/json",
11
        "application/xml"
12
      ],
13
      "valueCase": true,
14
      "valueWildcard": true
15
    },
16
    {
17
      "positiveMatch": true,
18
      "type": "ipMatch",
19
      "useHeaders": false,
20
      "value": [
21
        "192.0.2.1",
22
        "192.0.2.250/24"
23
      ]
24
    },
25
    {

200Successfully updated the Pragma header settings:.

400Invalid. Client error, such as invalid or malformed input.

403Forbidden. You don't have permission to write to this resource.

404Not found. The named security policy doesn't exist, doesn't carry application layer controls, or no rule with this ID is available for use in this policy.

500Internal server error. Something went wrong on our side. Try again in a few minutes, and contact support if the error persists.