appfwprofile_crosssitescripting_binding¶
Binding object showing the crosssitescripting that can be bound to appfwprofile.
Properties¶
(click to see Operations)
| Name | Data Type | Permissions | Description |
|---|---|---|---|
| crosssitescripting | <String> | Read-write | The web form field name. |
| name | <String> | Read-write | Name of the profile to which to bind an exemption or rule.<br>Minimum length = 1 |
| isregex_xss | <String> | Read-write | Is the web form field name a regular expression?.<br>Possible values = REGEX, NOTREGEX |
| state | <String> | Read-write | Enabled.<br>Possible values = ENABLED, DISABLED |
| comment | <String> | Read-write | Any comments about the purpose of profile, or other useful information about the profile. |
| formactionurl_xss | <String> | Read-write | The web form action URL. |
| as_value_expr_xss | <String> | Read-write | The web form value expression. |
| as_scan_location_xss | <String> | Read-write | Location of cross-site scripting exception - form field, header or cookie.<br>Possible values = FORMFIELD, HEADER, COOKIE |
| as_value_type_xss | <String> | Read-write | The web form value type.<br>Possible values = Tag, Attribute, Pattern |
| isvalueregex_xss | <String> | Read-write | Is the web form field value a regular expression?.<br>Possible values = REGEX, NOTREGEX |
| __count | <Double> | Read-write | count parameter |
Operations¶
(click to see Properties)
ADD: | DELETE: | GET | GET (ALL) | COUNT
Some options that you can use for each operations:
Getting warnings in response: NITRO allows you to get warnings in an operation by specifying the "warning" query parameter as "yes". For example, to get warnings while connecting to the NetScaler appliance, the URL is as follows:
http://<netscaler-ip-address>/nitro/v1/config/login?warning=yes
If any, the warnings are displayed in the response payload with the HTTP code "209 X-NITRO-WARNING".
Authenticated access for individual NITRO operations: NITRO allows you to logon to the NetScaler appliance to perform individual operations. You can use this option instead of creating a NITRO session (using the login object) and then using that session to perform all operations,
To do this, you must specify the username and password in the request header of the NITRO request as follows:
X-NITRO-USER:<username>
X-NITRO-PASS:<password>
Note: In such cases, make sure that the request header DOES not include the following:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue>
Note:
Mandatory parameters are marked in red and placeholder content is marked in <green>.
add:¶
URL: http://<netscaler-ip-address/nitro/v1/config/appfwprofile_crosssitescripting_binding
HTTP Method: PUT
Request Headers:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Content-Type:application/json
Request Payload:
{
"appfwprofile_crosssitescripting_binding":{
"name":<String_value>,
"crosssitescripting":<String_value>,
"formactionurl_xss":<String_value>,
"isregex_xss":<String_value>,
"as_scan_location_xss":<String_value>,
"as_value_type_xss":<String_value>,
"as_value_expr_xss":<String_value>,
"isvalueregex_xss":<String_value>,
"comment":<String_value>,
"state":<String_value>
}}
Response:
HTTP Status Code on Success: 201 Created HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for NetScaler-specific errors). The response payload provides details of the error
delete:¶
URL: http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding/name_value<String>
HTTP Method: DELETE
Request Headers:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue>
Response:
HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for NetScaler-specific errors). The response payload provides details of the error
get¶
URL: http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding/name_value<String>
Query-parameters:
filter
http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding/name_value<String>?filter=property-name1:property-value1,property-name2:property-value2
Use this query-parameter to get the filtered set of appfwprofile_crosssitescripting_binding resources configured on NetScaler.Filtering can be done on any of the properties of the resource.
pagination
http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding/name_value<String>?pagesize=#no;pageno=#no
Use this query-parameter to get the appfwprofile_crosssitescripting_binding resources in chunks.
HTTP Method: GET
Request Headers:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json
Response:
HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for NetScaler-specific errors). The response payload provides details of the errorResponse Headers:
Content-Type:application/json
Response Payload:
{ "appfwprofile_crosssitescripting_binding": [ {
"crosssitescripting":<String_value>,
"name":<String_value>,
"isregex_xss":<String_value>,
"state":<String_value>,
"comment":<String_value>,
"formactionurl_xss":<String_value>,
"as_value_expr_xss":<String_value>,
"as_scan_location_xss":<String_value>,
"as_value_type_xss":<String_value>,
"isvalueregex_xss":<String_value>
}]}
get (all)¶
URL: http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding
Query-parameters:
bulkbindings
http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding?bulkbindings=yes
NITRO allows you to fetch bindings in bulk.
HTTP Method: GET
Request Headers:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json
Response:
HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for NetScaler-specific errors). The response payload provides details of the errorResponse Headers:
Content-Type:application/json
Response Payload:
{ "appfwprofile_crosssitescripting_binding": [ {
"crosssitescripting":<String_value>,
"name":<String_value>,
"isregex_xss":<String_value>,
"state":<String_value>,
"comment":<String_value>,
"formactionurl_xss":<String_value>,
"as_value_expr_xss":<String_value>,
"as_scan_location_xss":<String_value>,
"as_value_type_xss":<String_value>,
"isvalueregex_xss":<String_value>
}]}
count¶
URL: http://<netscaler-ip-address>/nitro/v1/config/appfwprofile_crosssitescripting_binding/name_value<String>?count=yes
HTTP Method: GET
Request Headers:
Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json
Response:
HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for NetScaler-specific errors). The response payload provides details of the errorResponse Headers:
Content-Type:application/json
Response Payload:
{"appfwprofile_crosssitescripting_binding": [ { "__count": "#no"} ] }