Skip to content

Commit 65c1918

Browse files
pedrosousapedrosousa
authored
[WAF] Update fields/functions for custom detection locations (#17597)
1 parent 37c4fef commit 65c1918

File tree

1 file changed

+2
-1
lines changed
  • src/content/docs/waf/detections/leaked-credentials

1 file changed

+2
-1
lines changed

src/content/docs/waf/detections/leaked-credentials/index.mdx

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -71,10 +71,11 @@ When specifying a custom detection location, only the location of the username f
7171
Expressions used to specify custom detection locations can include the following fields and functions:
7272

7373
- Fields:
74+
- [`http.request.body.form`](/ruleset-engine/rules-language/fields/http-request-body/#httprequestbodyform)
7475
- [`http.request.body.raw`](/ruleset-engine/rules-language/fields/http-request-body/#httprequestbodyraw)
7576
- Functions:
7677
- [`lookup_json_string()`](/ruleset-engine/rules-language/functions/#lookup_json_string)
77-
- [`lower()`](/ruleset-engine/rules-language/functions/#lower)
78+
- [`url_decode()`](/ruleset-engine/rules-language/functions/#url_decode)
7879

7980
For instructions on configuring a custom detection location, refer to [Get started](/waf/detections/leaked-credentials/get-started/#4-optional-configure-a-custom-detection-location).
8081

0 commit comments

Comments
 (0)