#Use of nginx variables with AppSec

1 messages · Page 1 of 1 (latest)

hearty spire
#

Hello, do you have any practical examples on how to utilize these?
https://docs.crowdsec.net/u/bouncers/openresty#nginx-variables

I tried setting for example within a specific location in my openresty config. But it does not disable appsec (still getting banned) - Maybe i have gotten this wrong?
set $disable_appsec 1

cs-openresty-bouncer = v1.1.1
crowdsec = v1.7.0

And also, if i were to change this value dynamically based on conditions, in what lua directive will this variable be evaluated?

OpenResty | CrowdSec

📚 Documentation

edgy ravenBOT
#
Important Information

Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command /resolve or press the green resolve button below.

Log Files

If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.

Guide Followed (CrowdSec Official)

If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.

Screenshots

Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.

© Created By WhyAydan for CrowdSec ❤️ ·
quiet pine
#

it's an issue in the documentation, the correct variable is crowdsec_disable_appsec

hearty spire
#

Ah ok, still not getting it to work. But i will keep trying.. Not sure how it's supposed to work. Appsec is initialized in the http directive and this variable needs to be declared within server/location/if directive. I guess some further evaluation is done behind the scenes?