Skip to main content
Version: 4.6.x.x LTS

XmlFilter

XmlFilter can be used to validate request bodies containing XML, i.e. to make sure that this xml-content is well-formed.

Classname
ch::nevis::nevisproxy::filter::validation::XmlFilter
Library
libValidationFilters.so.1

Configuration

NameType, Usage Constraints, DefaultsDescription
BlockOnErrorenum (on|off|log); optional, basic, conditional; default: onNewline separated list of conditions, defining whether requests containing malformed xml should be blocked (on), or only logged (log). In case of "off", the request body is not inspected at all by this filter.
StatusCodeinteger; optional, basic; min: 100, max: 1000, default: 403Defines the response status code of a blocked response.
LoadExternalDocumentsboolean; default: falseADVANCED Let the XmlFilter load external documents. If this is set to true, the proxy might do out-calls to the internet or intranet. This might or might not be harmful depending on your firewall setup. Furthermore, the proxy might get malicious DTDs from the internet with possible future flaws in it.
SchemaDirectorystring; optional, basicDefines the directory where schemas are located.
SchemaCatalogstring; optional, advancedDefines the mapping between a systemId and a file inside the configured schema directory. This mapping is defined as a newline-separated list of strings with the following syntax: <systemId> : <filename>. For example: http://www.w3.org/TR/html4/strict.dtd : strict.dtd.