Add: AutoCert: CSRFField: CSRFSecret: Certs: Exceptions: Headers: LogDir: Logs: Methods: Remove: Replace: Routes: SkipDetection: URLLength: UploadSizeMB: UploadTypes: WAF:


default: -

Whitelisted strings from your site where you found false-positive occured.

Please use this carefully as it can open doors to attacker.


For example, you found out that ruxy blocking valid request like /etc/js/my-valid-path.js because found /etc/ in requested URL.
Add exception so this will not be blocked.

    - "/etc/js/my-valid-path.js"