Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

SOLVED

Apache dispatcher rules not rejecting /.json;%0aa.css

mirza_akram
Level 1
Level 1

I am unable to block/reject /.json;%0aa.css

The error I get in dispatcher error.log is

The given path is misformatted or contained invalid characters: Cannot map GET /.json;%0aa.css

Although I am able to block /.json as I dont get any error for this.

I used ;%0aa.css with other URLs but they went ahead without any issue.

So my question is how can I block/reject /.json;%0aa.css as it is printing some output on browser.

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

1 Accepted Solution
a74048191r
Correct answer by
Level 2
Level 2

@mirza_akram 

is the filter file using /glob matchers for the extensions like this?

/0041 { /type "allow" /glob "* *.css *"   }  # enable css

 

if so, try this:

/0041 { /type "allow" /extension "css"   }  # enable css

 

if that fixes the issue, the glob matchers for all the extensions can be replaced with:
/0010 { /type "allow" /extension '(css|eot|gif|ico|jpeg|jpg|js|gif|pdf|png|svg|swf|ttf|woff|woff2|html)' /path "/content/*" } ## disable this rule to allow mapped content only

 

View solution in original post

3 Replies
ArpitVarshney
Community Advisor
Community Advisor

@mirza_akram 

Could you try adding the below rule in filter section of your web server configuration :

{ /type "deny" /glob "GET *.json*" }

 

Hopefully, this should work.

 

Regards,

Arpit

mirza_akram
Level 1
Level 1

Hi Arpit,

 

Thanks for the reply. I tried this but same output.

 

Thanks,

Mirza

a74048191r
Correct answer by
Level 2
Level 2

@mirza_akram 

is the filter file using /glob matchers for the extensions like this?

/0041 { /type "allow" /glob "* *.css *"   }  # enable css

 

if so, try this:

/0041 { /type "allow" /extension "css"   }  # enable css

 

if that fixes the issue, the glob matchers for all the extensions can be replaced with:
/0010 { /type "allow" /extension '(css|eot|gif|ico|jpeg|jpg|js|gif|pdf|png|svg|swf|ttf|woff|woff2|html)' /path "/content/*" } ## disable this rule to allow mapped content only

 

View solution in original post