Adding WebSocket handshake rules - PingAccess

Adding WebSocket handshake rules - PingAccess - 7.0

PingAccess

bundle

pingaccess-70

ft:publication_title

PingAccess

Product_Version_ce

PingAccess 7.0

category

Product

pa-70

pingaccess

ContentType_ce

Page created: 26 Jul 2021 |

Page updated: 14 Jan 2022

| 1 min read

7.0 PingAccess Product IT Administrator Administrator Audience Product documentation Content Type Administration User task

Add a WebSocket handshake rule, which lets you define the domains that can open a cross-origin WebSocket to the application or resource.

You can also define allowed WebSocket subprotocols and extensions, providing more fine-grained control over how the application behaves.

Click Access and then go to Rules > Rules.
Click + Add Rule.
In the Name field, enter a unique name up to 64 characters long.

Special characters and spaces are allowed.
From the Type list, select WebSocket Handshake.
In the Allowed Origins, enter one or more origins.

If no origins are defined, all cross-origin WebSocket requests are denied.

Important:
Avoid using a value of * in this field. While this is a valid configuration, it is considered an insecure practice.
Modify the list of Allowed Subprotocols.

Subprotocols are defined in the Sec-WebSocket-Protocol handshake header. The default value of * allows all subprotocols.
Modify the list of Allowed Extensions.

WebSocket extensions are defined in the Sec-WebSocket-Extensions handshake header. The default value of * allows all extensions.

Additional advanced fields for handling error responses can also be defined here. For more information, see Advanced Fields.
Click Save.