Merge pull request #686 from arijitr-citrix/master

subashd · web-flow · commit 2418cf245f5b · 2025-07-10T11:04:52.000+05:30
Adding WAF CRD changes
diff --git a/crd/nsic-crds.yaml b/crd/nsic-crds.yaml
@@ -1808,6 +1808,28 @@ spec:
                     items:
                       type: string
                       description: "header name"
+              exclude:
+                description: 'To control what traffic to be excluded by Web Application Firewall. If you do not provide the exclude list, nothing will be skipped by default explicitly'
+                type: object
+                properties:
+                  path:
+                    type: array
+                    description: "List of http urls to exclude"
+                    items:
+                      type: string
+                      description: "URL path"
+                  method:
+                    type: array
+                    description: "List of http methods to exclude"
+                    items:
+                      type: string
+                      enum: ['GET', 'PUT', 'POST', 'DELETE', 'HEAD', 'OPTIONS', 'TRACE', 'CONNECT', 'UNKNOWN_METHOD']
+                  header:
+                    type: array
+                    description: "List of http headers to exclude"
+                    items:
+                      type: string
+                      description: "header name"
               security_checks:
                 description: 'To enable/disable application firewall security checks'
                 type: object
diff --git a/crd/waf/waf-crd.yaml b/crd/waf/waf-crd.yaml
@@ -95,6 +95,28 @@ spec:
                     items:
                       type: string
                       description: "header name"
+              exclude:
+                description: 'To control what traffic to be excluded by Web Application Firewall. If you do not provide the exclude list, nothing will be skipped by default explicitly'
+                type: object
+                properties:
+                  path:
+                    type: array
+                    description: "List of http urls to exclude"
+                    items:
+                      type: string
+                      description: "URL path"
+                  method:
+                    type: array
+                    description: "List of http methods to exclude"
+                    items:
+                      type: string
+                      enum: ['GET', 'PUT', 'POST', 'DELETE', 'HEAD', 'OPTIONS', 'TRACE', 'CONNECT', 'UNKNOWN_METHOD']
+                  header:
+                    type: array
+                    description: "List of http headers to exclude"
+                    items:
+                      type: string
+                      description: "header name"
               security_checks:
                 description: 'To enable/disable application firewall security checks'
                 type: object
