Skip to content

docs: improve filters.rst #7827

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Aug 17, 2023
Merged

docs: improve filters.rst #7827

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
19073e8
docs: improve descriptions
kenjis Aug 16, 2023
51d4dfd
docs: make sample code more realistic
kenjis Aug 16, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 5 additions & 5 deletions user_guide_src/source/incoming/filters.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -120,14 +120,14 @@ Except for a Few URIs
There are times where you want to apply a filter to almost every request, but have a few that should be left alone.
One common example is if you need to exclude a few URI's from the CSRF protection filter to allow requests from
third-party websites to hit one or two specific URI's, while keeping the rest of them protected. To do this, add
an array with the ``except`` key and a URI to match as the value alongside the alias:
an array with the ``except`` key and a URI path (relative to BaseURL) to match as the value alongside the alias:

.. literalinclude:: filters/006.php

Any place you can use a URI in the filter settings, you can use a regular expression or, like in this example, use
an asterisk (``*``) for a wildcard that will match all characters after that. In this example, any URL's starting with ``api/``
Any place you can use a URI path (relative to BaseURL) in the filter settings, you can use a regular expression or, like in this example, use
an asterisk (``*``) for a wildcard that will match all characters after that. In this example, any URI path starting with ``api/``
would be exempted from CSRF protection, but the site's forms would all be protected. If you need to specify multiple
URI's you can use an array of URI patterns:
URI paths, you can use an array of URI path patterns:

.. literalinclude:: filters/007.php

Expand All @@ -153,7 +153,7 @@ $filters
========

This property is an array of filter aliases. For each alias, you can specify ``before`` and ``after`` arrays that contain
a list of URI patterns that filter should apply to:
a list of URI path (relative to BaseURL) patterns that filter should apply to:

.. literalinclude:: filters/009.php

Expand Down
4 changes: 2 additions & 2 deletions user_guide_src/source/incoming/filters/008.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,8 +9,8 @@ class Filters extends BaseConfig
// ...

public array $methods = [
'post' => ['foo', 'bar'],
'get' => ['baz'],
'post' => ['InvalidChars', 'csrf'],
'get' => ['csrf'],
];

// ...
Expand Down