From 71a253aea6a8cf8b25ed724f51a88a7859f8c807 Mon Sep 17 00:00:00 2001 From: Laurence Jones Date: Mon, 12 Aug 2024 09:34:45 +0100 Subject: [PATCH] Remove useragent set by RC (#3167) Fix #3166 --- pkg/appsec/request.go | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/pkg/appsec/request.go b/pkg/appsec/request.go index d0e3632ab..ccd7a9f9c 100644 --- a/pkg/appsec/request.go +++ b/pkg/appsec/request.go @@ -331,8 +331,9 @@ func NewParsedRequestFromRequest(r *http.Request, logger *log.Entry) (ParsedRequ originalHTTPRequest.Header.Set("User-Agent", userAgent) r.Header.Set("User-Agent", userAgent) //Override the UA in the original request, as this is what will be used by the waf engine } else { - //If we don't have a forwarded UA, delete the one that was set by the bouncer + //If we don't have a forwarded UA, delete the one that was set by the remediation in both original and incoming originalHTTPRequest.Header.Del("User-Agent") + r.Header.Del("User-Agent") } parsedURL, err := url.Parse(clientURI)