LogoLogo
  • ShieldsGuard - User Guide
  • Installation Steps
    • Shields Guard Installation
    • Shields Guard SEG Installation
  • Getting Started
    • 1. General Welcome and Site Management Panel
    • 2. Overview
      • 2.1 Today's Data
      • 2.2 Country Statistics
      • 2.3 URL Statistics
      • 2.4 IP Statistics
      • 2.5 HTTP Status Statistics
    • 3. Protection
      • 3.1 DDoS Protection
        • 3.1.1 Google Recaptcha Setup
        • 3.1.2 Friendly Captcha Setup
      • 3.2 WAF โ€“ Web Application Firewall
    • 4. Security Rules
      • 4.1 BlackList & WhiteList
      • 4.2 User Agent Filtering
      • 4.3 Query String Filtering
      • 4.4 HTTP Header Filtering
      • 4.5 Block POST Values
      • 4.6 Custom Headers
      • 4.7 Block URL Requests
      • 4.8 URL Path Blocking
      • 4.9 Encrypt Path
      • 4.10 Remove Request Value
      • 4.11 Exclude Directories from Protection
    • 5. Logs
      • 5.1 Access Log
      • 5.2 Security Log
    • 6. Asset Management
      • 6.1 Asset Management
      • 6.2 Network Topology
      • 6.3 Vulnerability Scan
    • 7. Access
  • 8. DNS
  • 9. SSL
  • 10. Subdomain Manage
  • 11. Edit Page
  • ShieldsGuard SEG
    • 1. SEG Dashboard
    • 2. Reporting
    • 3. Analyzed
      • 3.1 Files
      • 3.2 URL
      • 3.3 Mail
      • 3.4 Domain
    • 4. Mail Settings
      • 4.1 File
      • 4.2 Mail Body
      • 4.3 Sender Domain
Powered by GitBook
On this page
Export as PDF
  1. Getting Started
  2. 4. Security Rules

4.10 Remove Request Value

๐Ÿงพ Overview

The Remove Request Value module allows you to strip unwanted or sensitive arguments from requests before they reach your backend servers. This can help prevent misuse of hidden features, developer flags, or outdated query parameters.

๐Ÿ› ๏ธ How It Works

You define:

  • Page Path โ€“ The URL to monitor (e.g., /checkout, /api/data)

  • Argument Content โ€“ The name of the parameter (e.g., debug, token, env) to remove from the request

If a request includes the defined path and contains the specified argument, that argument is silently removed.

โš™๏ธ How to Add a Rule

  1. Navigate to Security Rules > Remove Request Value

  2. Click Create Redactable Argument

  3. Fill in:

    • Enter Page Path: the full or partial URL where the rule applies

    • Enter Argument Content: the parameter name to strip

  4. Click Redact / Red Et

  5. The argument will be removed from all future requests to that path

โœ… Example

Request Before: GET /submit?email=test@example.com&debug=true

Rule:

  • Page Path: /submit

  • Argument Content: debug

Request After: GET /submit?email=test@example.com โ†’ debug parameter is removed

๐Ÿ” Why It Matters

Removing unnecessary or dangerous parameters helps:

  • Prevent abuse of undocumented features

  • Eliminate developer/debug switches from production

  • Clean up noisy or irrelevant input before processing

๐ŸŽฏ Remove Request Value ensures clean, secure, and predictable request handling โ€” directly at the edge.

Previous4.9 Encrypt PathNext4.11 Exclude Directories from Protection

Last updated 1 month ago