From 9c69d4deef645863ea973ca566cb22f96c6235f5 Mon Sep 17 00:00:00 2001
From: ale <ale@incal.net>
Date: Mon, 21 Nov 2022 17:17:19 +0000
Subject: [PATCH] Add application/activity+json to allowed content types

---
 docker/conf/modsecurity/crs/crs-setup.conf | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/docker/conf/modsecurity/crs/crs-setup.conf b/docker/conf/modsecurity/crs/crs-setup.conf
index 5ebc4886..c36358d7 100644
--- a/docker/conf/modsecurity/crs/crs-setup.conf
+++ b/docker/conf/modsecurity/crs/crs-setup.conf
@@ -387,13 +387,13 @@ SecAction \
 # application/xml|application/soap+xml|application/x-amf|application/json|\
 # application/octet-stream|text/plain
 # Uncomment this rule to change the default.
-#SecAction \
-# "id:900220,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.allowed_request_content_type=application/x-www-form-urlencoded|multipart/form-data|text/xml|application/xml|application/soap+xml|application/x-amf|application/json|application/octet-stream|text/plain'"
+SecAction \
+ "id:900220,\
+  phase:1,\
+  nolog,\
+  pass,\
+  t:none,\
+  setvar:'tx.allowed_request_content_type=application/x-www-form-urlencoded|multipart/form-data|text/xml|application/xml|application/soap+xml|application/x-amf|application/json|application/octet-stream|text/plain|application/activity+json'"
 
 # Content-Types charsets that a client is allowed to send in a request.
 # Default: utf-8|iso-8859-1|iso-8859-15|windows-1252
-- 
GitLab