If I accept a request that I can find to be blocked in the Event Logs -> Application -> Requests what do i really allow in the active policy that the request hit ?
If there is for example a violation that is considered as a illegal repeated parameter name. Does it then allow the parameter name or.. ?
Depending on the violation... in the case that you mentioned (Illegal repeated parameter) ASM will add the parameter if it's not already in the policy and check the "Allow Repeated Occurrences" on it.
The rationale in the accepting an illegal request it keeping it as specific as possible.