From d08efa39b26feb811ecfa902d30cdda47a6a2744 Mon Sep 17 00:00:00 2001
From: "srvproxy001.itguys.com.br" <srvproxy001@itguys.com.br>
Date: Sun, 21 Sep 2025 07:25:25 -0300
Subject: [PATCH] =?UTF-8?q?[Auto-Sync]=20Atualiza=C3=A7=C3=A3o=20das=20con?=
 =?UTF-8?q?figura=C3=A7=C3=B5es=20em=20srvproxy001.itguys.com.br=20-=20202?=
 =?UTF-8?q?5-09-21=2007:25:25?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 nginx/modsecurity/global-exceptions.conf | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/nginx/modsecurity/global-exceptions.conf b/nginx/modsecurity/global-exceptions.conf
index 45bfa63..489613c 100644
--- a/nginx/modsecurity/global-exceptions.conf
+++ b/nginx/modsecurity/global-exceptions.conf
@@ -54,3 +54,8 @@ SecRule REQUEST_URI "@beginsWith /api/dashboards/" "id:10009,phase:1,nolog,allow
 # Desativa a regra de falso positivo que bloqueia a criação de miniaturas.
 # Substitua '9XXXXX' pelo ID real encontrado no log de auditoria.
 SecRule REQUEST_URI "@beginsWith /index.php/core/preview" "id:10010,phase:1,nolog,pass,ctl:ruleRemoveById=9XXXXX
+
+# Exceções para a API do UniFi Controller
+# --------------------------------------------------------------------------
+# Desativa a regra que bloqueia o método 'PUT' para a API.
+SecRule REQUEST_URI "@rx ^/api/self" "id:10012,phase:2,nolog,pass,ctl:ruleRemoveTargetByTag=OWASP_CRS/920350"