I am using dynamic route in my next.js website. My website is protected by WAF (Web Application Firewall), it block all URL that contain special characters (such as (, ), [, ]). So that, URLs like https://mywebsite.xyz/_next/static/chunks/app/(home)/info-hub/%5Bposts%5D/page-55e4c6dc50d1aae0.js cannot be loaded. The security team refuses to ignore these special characters. So how can I change my next.js app to use dynamic route but not using these special characters?
Dynamic route in NextJS cause security problem
144 Views Asked by hieund At
1
There are 1 best solutions below
Related Questions in SECURITY
- HTTPS configuration in Spring Boot, server returning timeout
- HSM ZKA control mask values
- OWASP Amass Subcommands
- Is there a need for BPF Linux namespace?
- Error when trying to execute a binary compiled in a Kali Linux machine on an Ubuntu system
- When sanitize/encode while implementing tags system like on SO
- spring security version in spring-boot-starter-security
- I am currently trying to implement a rudimentary firewall from a video I watched but the nimda worm detection is not working and i do not know why?
- Is it possible for `sudo` to fail temporarily with the correct password? Hacking suspected
- Is it viable proxying all my mobile apps requests, to some kind knowing that a request is coming from a secure source
- What abilities should I concentrate on while bug hunting, and how can I improve the quality of my bug bounty reports?
- System.ArgumentOutOfRangeException: I passed this error in every single program
- How to prevent users from creating custom client apps?
- Does server-side content security policy exist for youtube video player API, app, mod apks and website?
- Can we pass a hostname/IP address as a query string in a GET request in REST API
Related Questions in NEXT.JS
- Error **net::ERR_CONNECTION_RESET** error while uploading files to AWS S3 using multipart upload and Pre-Signed URL
- Check list of pages with axios
- Calling functions from Main Component while using tanstack table
- NextJS 14 site working in development but not in vercel
- Route Handler not working Next auth, Next Intl & Next 14
- NextJS Docker build fails: fetch failed ECONNREFUSED
- Need some advice on differentiating between subscriptions using Stripe
- Update Sidebar Height to Cover the Document Height (with React Pro Sidebar)
- How do I send an audio file to OpenAi?
- Next.js not updating state during OnClick after router.push to same page with different ID
- Next js delay before applying Emotion and MUI styles
- Next.js. Server actions in form using formik. Action with arguments didnt work
- Protect Server Actions with Next Auth in Next JS 14
- Next-Auth credentials login troubles debugging
- Hydration failed because the initial UI does not match what was rendered on the server: Next js Tanstack table
Related Questions in ROUTES
- No webpage was found for the web address: https://localhost:7002/Category/Add?area=Admin. Why is my URL generated like ?area=Admin instead of /Admin/
- Symfony Framework - Route cannot be found even if it is defined in Controller
- Linux Networking - Routing packets from one network interface to another
- Redirect outbound traffic to a different port
- API not fetch data with dynamic page NEXT js
- Angular title routing translation
- Slim routing in PHP-DI container
- Laravel form action not accepting $order->id but accepting hard coded value
- Express-Router Library Error: Route.post() requires a callback function but got a [object Object]
- Vercel Problem | 404: NOT_FOUND Code: NOT_FOUND
- React Routes not Rendering Components
- data transfer to ip address using osi model
- `UseRouter` Caches the Cookies should I use `redirect`
- No connection could be made because the target machine actively refused it. (localhost:80) when attempting to test routes with TestServer
- Problem in hosting React App with react-router-dom on IIS Server
Related Questions in DYNAMIC
- VBA dynamic feed multiple files into current one but error of "Run-rime error 7 out of memory" occurs
- SSRS use a dynamic SQL query with parameter
- Go to the Next section in Google Forms after an option is selected using App Script
- Add and remove dynamic component Angular
- Server Side Rendering of Dynamic URL using NUXT 3
- html to PDF with new page detection
- How to absolutely position pin icons to different locations when you zoom in an image using the react-zoom-pan-pinch npm package
- Loading dynamic content for offline downloaded website
- Unable to find chart for react.js
- i want to use a dynamic expression in PIVOT values
- How do I dynamically load a CSS file in a TMS WEB Core Website using Delphi?
- Flutter DropdownButton Dynamic Default Value Error
- How to Pass-in a Collection name and Document Key to an AQL query to update the document
- Adding dynamic choices to ChoiceType form field in Symfony 6
- Pass class type that subclass or implements class; then access static methods & create instances of that type; is it possible in Java, and how?
Related Questions in WEB-APPLICATION-FIREWALL
- AWS Network Firewall + Network Load Balancer Architecture Question
- HTTP headers with two CSP
- terraform aws waf rules to allow access to path only for certain ip addreses
- Allow access to robots.txt in Azure Web application Firewall
- How much threshold should i give to set rate-limiting rule using AWS WAF for a frontend application?
- Disable NonBrowserUserAgent in AWS CDK Waf
- Conflict Resolution: Azure Web App Autoscaling with Azure Application Gateway and WAF
- Modsecurity blocks my legit POST request (403 forbidden)
- Updating REMOTE_ADDR at the IIS Level
- Mailpoet(WP) Newsletter images not showing in Gmail client
- AWS application load balancer deassociate from waf
- Error deploying global resources into China with Terraform
- Dynamic route in NextJS cause security problem
- aws waf regex pattern rule not working --rate limit
- Problems with Cloudflare's WAF When Using AWS Elastic Beanstalk for a PHP Application
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
If you are using next.js' app router then you don't have to worry about these "()[]". So, if your folder structure is like these:
App
then your url will be localhost:3000/123 where "123" can be any dynamic userId.
"()" are used for folder structure and are ignored by next.js, and "[ ]" are used for dynamic routes, so you won't be writing them in the URL.