Overriding security restrictions of HTTP methods

When you use HTTP methods, consider the security aspects. For tighter security, some firewalls do not allow HTTP PUT or DELETE traffic.

To accommodate this restriction, you can send these requests in two ways:

  • Use the X-Method-Override or X-HTTP-Method-Override HTTP header fields to channel a PUT or DELETE request through a POST request.
  • Use the x-method-override or the x-http-method-override URI parameters.
    See the following example of the REST API for Rule Execution Server:
    POST /api/v1/ruleapps?...&x-method-override=PUT