This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Json threat protection throwing 'Not a number' for KVM variables

Posted on 06-06-2018 04:12 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

When i try to give variable names as below, i am getting "Schema validation failed. Cause: Not a number". 

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<JSONThreatProtection async="false" continueOnError="false" enabled="true" name="JSON-Threat-Protection-1">
    <DisplayName>JSON Threat Protection-1</DisplayName>
    <Properties/>
    <ArrayElementCount>{Json_ArrayElementCount}</ArrayElementCount>
    <ContainerDepth>{Json_ContainerDepth}</ContainerDepth>
    <ObjectEntryCount>{Json_ObjectEntryCount}</ObjectEntryCount>
    <ObjectEntryNameLength>{Json_ObjectEntryNameLength}</ObjectEntryNameLength>
    <Source>request</Source>
    <StringValueLength>{Json_StringValueLength}</StringValueLength>
</JSONThreatProtection>
1 6 447
Topic Labels
6 REPLIES 6

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Yes, according to my reading of the documentation for the JSONThreatProtection policy, the values inside those elements are not "message templates", which means you need to specify an actual number, not a reference to a variable like {my_variable_name_here}.

The behavior you're seeing is expected.

Posted on --/--/---- --:-- AM
zeggarin
Bronze 2
Bronze 2
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

hello dchiesa1

what will happen if I will pass a negative integer like :

<ArrayElementCount>-1</ArrayElementCount>
    <ContainerDepth>-1</ContainerDepth>

thanks

0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
In response to zeggarin
Reply posted on --/--/---- --:-- AM

It disables the relevant check. (We should document this). 

0 Likes

Posted on --/--/---- --:-- AM
ahibbert
New Member
Reply posted on --/--/---- --:-- AM

Hi @Dino-at-Google

It would be really useful if this was a feature though, either by using a ref or template element to set these values. We have some shared flows where we intend to use these policies with different values for different consumers. Is this possible by any current means?

Can we raise a feature request?

Posted on --/--/---- --:-- AM
shawkyfoda
Silver 1
Silver 1
In response to ahibbert
Reply posted on --/--/---- --:-- AM

@dchiesa1  Highly useful requirement to have a dynamic variables to configure your "json thread protection" policy 

0 Likes

Posted on --/--/---- --:-- AM
apickelsimer
Staff
Reply posted on --/--/---- --:-- AM

We are currently tracking this feature request internally (ref: b/149943055). I will update this post if the FR is prioritized and delivered.

0 Likes