# Nginx WAF rules for EXCEPTIONS
# Automatically generated from OWASP rules.
# Include this file in your server or location block.

map $request_uri $waf_block_exceptions {
    default 0;
    "~*@ipMatch 127.0.0.1,::1" 1;
    "~*@streq GET /" 1;
    "~*^(?:GET /|OPTIONS *) HTTP/[12].[01]$" 1;
    "~*@endsWith (internal dummy connection)" 1;
}

if ($waf_block_exceptions) {
    return 403;
    # Log the blocked request (optional)
    # access_log /var/log/nginx/waf_blocked.log;
}