From dac9948aa3dc75c0c8bc4b6433ef20da62ac8233 Mon Sep 17 00:00:00 2001
From: ale <ale@incal.net>
Date: Sat, 11 Nov 2023 15:10:32 +0000
Subject: [PATCH] Disable rules 920470 (Content-Type reuest check)

---
 .../crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf          | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf b/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
index 609a3083..89de3026 100644
--- a/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+++ b/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
@@ -21,6 +21,11 @@ SecRuleRemoveById 941180
 # headers (that specify a JSON-LD profile), just disable it.
 SecRuleRemoveById 920600
 
+# We've been unable to get ModSecurity to accept JSON-LD
+# requests with a Content-Type that includes a "profile" spec,
+# so let's just disable that rule.
+SecRuleRemoveById 920470
+
 # ModSec Rule Exclusion: 920273 : Invalid character in request (outside of very strict set)
 # ModSec Rule Exclusion: 942432 : Restricted SQL Character Anomaly Detection (args): 
 # number of special characters exceeded (2) (severity:  NONE/UNKOWN)
-- 
GitLab