1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
<?xml version="1.0" encoding="UTF-8"?>
<!--
This test file exemplifies an enforce-https rule.
Protection #1: a request of any kind for /foo should be redirected to secure request with 302.
Exception #1: Static path /index.html
Exception #2: Pattern path /images/.*
-->
<policy>
<settings>
<mode>redirect</mode>
<error-handling>
<default-redirect-page>/security/error.jsp</default-redirect-page>
<block-status>403</block-status>
</error-handling>
</settings>
<url-rules>
<enforce-https path="/.*">
<path-exception>/index.html</path-exception>
<path-exception type="regex">/images/.*</path-exception>
</enforce-https>
</url-rules>
</policy>
|
