Hello, Can anyone help me with this.
We enabled WAF rules for my Azure app services and facing one issue with the rule "931130- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link".
Because of above rule i am getting the issue when we are requesting the below URL.
Is this because of having different domains for the requested resource and the redirect uri resource?
We tried disabling the rule "931130- Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link" and it is working fine.
Disabling the rule is the only option we have? If not, Can you suggest the alternatives to fix this show stopper issue.
Thanks in advance.