Skip to main content
Version: 4.12.x.x LTS

Protecting a Web Application

The chapter Getting Started describes in detail how to make a web application accessible via nevisProxy. Depending on the type of application, you use one of the following patterns:

  • Web Application pattern

You can customize the CSRF protection and the ModSecurity rules directly in the Web Application pattern screen:

  • CSRF protection: Select "custom" from the drop-down menu in the Security: CSRF Protection field, then assign and configure the add-on pattern CSRF Protection Settings via the Additional Settings field.

  • ModSecurity rules: Select "custom" from the drop-down menu in the Security: Request Validation field, then assign and configure the add-on pattern Request Validation Settings via the Additional Settings field.

  • REST Service pattern

  • SOAP Service pattern

Note that you can add extra security features to all patterns in the GUI, by assigning add-on patterns via the Additional Settings field. You find this field on the bottom of the screen in which you configure the pattern.