DELETE requests not allowed
I'm currently running crowdsec with the appsec component in a docker container together with the Traefik bouncer to protect my proxy.
However I ran into a problem where crowdsec blocks requests that use the DELETE HTTP method.
Unfortunately one of my apps makes use of DELETE so how do I go about disabling this rule?
I would like to do so unsing my docker-config file and a separate yaml config if possible.
Here's a snippet of one of the alerts:
2 Replies
Important Information
Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command
/resolve or press the green resolve button below.Log Files
If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.
Guide Followed (CrowdSec Official)
If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.
Screenshots
Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.
© Created By WhyAydan for CrowdSec ❤️
At the moment you would have to create a pre_eval hook to disable the native rule number https://docs.crowdsec.net/docs/next/appsec/rules_examples#4-disable-rules-by-id
full example:
remove the
# infront of req.Host if you want to limit the "scope" of the removing the rule to a specific host where this rule is triggering
then you add it to your appsec configuration: