Both delivery and search APIs are subject to validation by a blacklist. The blacklist in each case is configured via the blacklist.yaml config file / configmap.
Delivery APIs
In the configuration below, any query using the MongoDB $where or $regex keywords would be immediately rejected, regardless of the whitelist. More keywords can be added to the list to protect further. The blacklist will be applied to the keywords/operations of the query, and not the values.
delivery:
enforce: true
keywords:
- $where
- $regex
SOLR APIs
Any query containing "xmlparser" are rejected. More keywords can be added to the list to protect further. The blacklist is applied to the whole filter. The terms given are applied as regular expressions, so arbitrary complex filters may be specified.
solr:
enforce: true
keywords:
- xmlparser