commit 4a77f0026ae9ed8fb1f8f183ad47e7fce5b0d707 parent a75cbc0dda3f50ef79dc9b08823aa474b6a6ac09 Author: dankert <devnull@localhost> Date: Sat, 20 Jan 2007 17:57:54 +0100 Speichern von Element-Properties. Diffstat:
| doc/examples/mod-security.conf | | | 7 | +++++-- |
1 file changed, 5 insertions(+), 2 deletions(-)
diff --git a/doc/examples/mod-security.conf b/doc/examples/mod-security.conf @@ -66,7 +66,7 @@ # Parameter Whitelist - SecFilterSelective ARGS_NAMES "!^(targetSubAction|subaction|action|oi|id|login_name|login_password|elementid|dbid|ok|screenwidth|src|text|obj[0-9]+|type|valueid|release|objectid1|objectid2|commit|ids|groupid|username|name|fullname|desc|tel|ldap_dn|style|is_admin|ok|act_password|password1?|password2|e?mail|random|timeout|code|confirm)$" + SecFilterSelective ARGS_NAMES "!^(targetSubAction|subaction|action|oi|id|login_name|login_password|elementid|dbid|ok|screenwidth|src|text|obj[0-9]+|type|valueid|release|objectid1|objectid2|commit|ids|groupid|username|name|fullname|desc|description|templateid|tel|ldap_dn|style|is_admin|ok|act_password|password1?|password2|e?mail|random|timeout|code|confirm|addelement|addicon|addifempty|addifnotempty|elementid|iconid|ifemptyid|ifnotemptyid|with_icon|all_languages|writable|wiki|html|default_longtext)$" @@ -122,7 +122,7 @@ SecFilterSelective ARG_subaction "^(folder|page|pageelement|file|link|template|language|model|search|project|user|group)$" allow SecFilterSelective ARG_action "^template$" chain - SecFilterSelective ARG_subaction "^(|prop|el|listing|show|edit|src)$" allow + SecFilterSelective ARG_subaction "^(|prop|el|listing|show|edit|src|srcaddelement)$" allow SecFilterSelective ARG_action "^tree$" chain SecFilterSelective ARG_subaction "^(load|open|close)$" allow @@ -160,6 +160,9 @@ SecFilterSelective ARG_action "^profile$" chain SecFilterSelective ARG_subaction "^(|saveprofile|savepw)$" allow + SecFilterSelective ARG_action "^element$" chain + SecFilterSelective ARG_subaction "^(|saveproperties)$" allow + # Fallback: Alles ablehnen.