XML Policy
Configure XML Security Policy for XML based API web service.
Overview
XML Policy is a feature of Haltdos WAF. It allows application owners to block unwanted requests that feature malware XML documents or documents bigger than the allowed size. The owner can set their Minimum & Maximum size limit for the XML document.
How to Use:
- Go to WAF > Zones > Listeners > Security Profiles > Policy > XML Policy.
- Configure your settings.
- Click Save.
| SETTINGS | ACCEPTED VALUES | DEFAULT |
|---|---|---|
| Maximum Children | Integer | 100 |
| Maximum Depth | Integer | 100 |
| Maximum Attributes | Integer | 100 |
| Maximum Node Name | Integer | 1000 |
| Maximum Node Value | Integer | 1000 |
| Maximum Attribute Name | Integer | 1000 |
| Maximum Attribute Value | Integer | 1000 |
<bookstore>
<book category="children">
<title>Harry Potter</title>
<author>J K. Rowling</author>
<year>2005</year>
<price>29.99</price>
</book>
<book category="web">
<title>Learning XML</title>
<author>Erik T. Ray</author>
<year>2003</year>
<price>39.95</price>
</book>
</bookstore>
Maximum Children
This field specifies the maximum child nodes of the XML document.
In the above example, Tag <book> has 4 children.
An XML document can have a minimum of 1 child and a maximum of 10000 children.
Maximum Depth
This field specifies the maximum depth of an XML document.
In the above example, maximum depth is 2, Tag <book> is at depth 1 & children are at depth 2.
An XML document can have a minimum depth of 1 and a maximum depth up to 1000000.
Maximum Attributes
This field specifies the maximum attributes for a single node of an XML document.
In the above example, the maximum attribute is 1, Tag <book> has 1 attribute.
An XML document can have a minimum of 1 attribute and a maximum of 1000 attributes.
Maximum Node Name
This field specifies the maximum node name size of an XML document.
In the above example, the maximum node name is 9, Tag <bookstore> length is 9.
An XML document can have a minimum of 1 node name size and a maximum of 10000 node name size.
Maximum Node Value
This field specifies the maximum node value of the XML document.
In the above example, the maximum node value is 12, Tag <title> has value Harry Potter of length 12.
An XML document can have a minimum of 1 node value and a maximum of 1000000 node values.
Maximum Attribute Name
This field specifies the maximum attribute name size of an XML document.
In the above example, the maximum attribute name is 8, Tag <book> has an attribute category of length 8.
An XML document can have a minimum of 1 attribute name and a maximum of 10000 attribute names.
Maximum Attribute Value
This field specifies the maximum attribute value size of the XML document.
In the above example, the maximum attribute value is 8, Tag <book> has an attribute category of length 8.
An XML document can have a minimum of 1 attribute value and a maximum of 1000000 attribute value.