value-PCRE
Specifies a PCRE that is applied to a value input to see if it is an expected
input.
policy
Specifies the action to take when a value does not match the expression.
Values are as follows:
error
(Default) The profile validation fails and an error is generated.
passthru
Passes the given name-value pair to the next step in processing.
set
Replaces the given value is replaced with a default value. The Map
Value input appears when this option is selected.
strip
The name-value pair is removed from the entity and processing
continues.
check-XSS
Can be
on
to enable Cross-Site Script checking, or can be
off
to disable
checking.
Guidelines
The
validation
command creates the validation list.
The Name-Value Profile works by comparing each name of a name-value pair to
the name expressions on the validation list. If no match is found, the “No Match
Policy” is run. When a match is found, the corresponding value is compared to the
corresponding value constraint in the validation list. If a match is found, the
name-value pair passes. If no match is found, the “Failure Policy” is executed.
Additionally, unmatched values can be checked for Cross-Site Scripting.
Cross-site scripting signatures are generally attempts to obfuscate the real meaning
of the value if the value were displayed directly in a browser. You want to validate
any data that might get stored and displayed again later, such as the contents of a
comment form. The check looks for escaped characters, characters with the high-bit
set, and various forms of the term script, which is often used to engage JavaScript
™
on a browser without the user knowing.
Examples
v
Matches any
Name
attribute that contains the string
hdr
. When a match is made,
the value must start with
PRE
followed by any numeric character 0 through 8,
followed by anything. If the validation fails, the name-value pair is stripped
from the entity. Cross-Site Script checking is disabled.
# validation hdr "^PRE[012345678]*" strip "" "off"
v
Matches any
Name
attribute that contains the string
hdr
. When a match is made,
the value must start with
PRE
followed by any numeric character 0 through 8,
followed by anything. If the validation fails, the
Value
attribute is set to the
string
BogieAlert
. Cross-Site Script checking is enabled.
# validation hdr "^PRE[012345678]*" set "BogieAlert" "on"
756
Command Reference
Summary of Contents for WebSphere XS40
Page 1: ...WebSphere DataPower XML Security Gateway XS40 Command Reference Version 3 7 2 ...
Page 2: ......
Page 3: ...WebSphere DataPower XML Security Gateway XS40 Command Reference Version 3 7 2 ...
Page 44: ...18 Command Reference ...
Page 194: ...168 Command Reference ...
Page 198: ...172 Command Reference ...
Page 206: ...180 Command Reference ...
Page 210: ...184 Command Reference ...
Page 222: ...196 Command Reference ...
Page 232: ...206 Command Reference ...
Page 238: ...212 Command Reference ...
Page 268: ...242 Command Reference ...
Page 272: ...246 Command Reference ...
Page 276: ...250 Command Reference ...
Page 288: ...262 Command Reference ...
Page 292: ...266 Command Reference ...
Page 298: ...272 Command Reference ...
Page 320: ...294 Command Reference ...
Page 322: ...296 Command Reference ...
Page 340: ...314 Command Reference ...
Page 344: ...318 Command Reference ...
Page 352: ...326 Command Reference ...
Page 360: ...334 Command Reference ...
Page 368: ...342 Command Reference ...
Page 376: ...350 Command Reference ...
Page 386: ...360 Command Reference ...
Page 392: ...366 Command Reference ...
Page 396: ...370 Command Reference ...
Page 402: ...376 Command Reference ...
Page 404: ...378 Command Reference ...
Page 408: ...382 Command Reference ...
Page 446: ...420 Command Reference ...
Page 450: ...424 Command Reference ...
Page 456: ...430 Command Reference ...
Page 520: ...494 Command Reference ...
Page 536: ...510 Command Reference ...
Page 550: ...524 Command Reference ...
Page 584: ...558 Command Reference ...
Page 600: ...574 Command Reference ...
Page 605: ... timeout 500 Chapter 63 RADIUS configuration mode 579 ...
Page 606: ...580 Command Reference ...
Page 650: ...624 Command Reference ...
Page 668: ...642 Command Reference ...
Page 704: ...678 Command Reference ...
Page 714: ...688 Command Reference ...
Page 726: ...700 Command Reference ...
Page 734: ...708 Command Reference ...
Page 752: ...726 Command Reference ...
Page 756: ...730 Command Reference ...
Page 804: ...778 Command Reference ...
Page 880: ...854 Command Reference ...
Page 892: ...866 Command Reference ...
Page 912: ...886 Command Reference ...
Page 918: ...892 Command Reference ...
Page 940: ...914 Command Reference ...
Page 946: ...920 Command Reference ...
Page 974: ...948 Command Reference ...
Page 1004: ...978 Command Reference ...
Page 1030: ...1004 Command Reference ...
Page 1032: ...1006 Command Reference ...
Page 1065: ......
Page 1066: ... Printed in USA ...