Web Agents 2024.6

Ignore Path Info in Not-Enforced URLs

When true, strip path info and query from the request URL before comparing it with the URLs in Not-Enforced URL List for those URLs containing a wildcard character. This prevents a user from accessing http://host/index.html by requesting http://host/index.html/hack.gif when the not-enforced list includes http://host/*.gif.

The NGINX Plus web agent does not support this setting.

Default: true

Property name

com.sun.identity.agents.config.ignore.path.info.for.not.enforced.list
  Introduced in Web Agent 4.x

Function

Not-enforced

Type

Boolean: true returns true; all other strings return false.

Bootstrap property

No

Required property

No

Restart required

No

AM console

Tab: Application

Title: Ignore Path Info in Not-Enforced URLs