58 votesJoon du Randt commented
I agree 100% on this one. I had a problem where the app gateway is picking up SQL injection characters in an auth token HTTP header.
I need the ability to exclude specific URLs, cookies or HTTP headers from the WAF rule matching
At the moment I have to disable the entire rule, I would much rather just exclude that header!
Thank you for all the votes/feedback. We are unable to give an ETA in this public forum but please be assured this is one of our top priorities at the moment.Joon du Randt commented
Yes please I really need this facility