Added: bypass flag to skip a rule if user has a high priv user role.

Author: dave83649

src/Processor.php

@@ -142,6 +142,9 @@ public function launch($mustExit = true)
             return true;
         }
 
+        // Determine if the current request is whitelisted or not (role based).
+        $isWhitelisted = $this->extension->canBypass();
+
         // Merge the rules together. First iterate through the whitelist rules.
         $rules = array_merge($this->whitelistRules, $this->firewallRules);
         foreach ($rules as $rule) {
@@ -150,6 +153,11 @@ public function launch($mustExit = true)
                 continue;
             }
 
+            // If this rule should respect the whitelist, we check this before we continue.
+            if (isset($rule['bypass_whitelist']) && ($rule['bypass_whitelist'] === 0 || $rule['bypass_whitelist'] === false) && $isWhitelisted) {
+                continue;
+            }
+
             // Transform rule object to array, then execute the firewall rule.
             $rule_hit = $this->executeFirewall($rule['rules']);