latest--aws-wafv2-rulegroup
shared| Type | object |
|---|---|
| Schema URL | https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-wafv2-rulegroup.json |
| Parent schema | serverless-framework-configuration |
Contains the Rules that identify the requests that you want to allow, block, or count. In a RuleGroup, you also specify a default action (ALLOW or BLOCK), and the action for each Rule that you add to a RuleGroup, for example, block requests from specified IP addresses or block requests from specified referrers. You also associate the RuleGroup with a CloudFront distribution to identify the requests that you want AWS WAF to filter. If you add more than one Rule to a RuleGroup, a request needs to match only one of the specifications to be allowed, blocked, or counted.. Source:- https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-wafv2.git
Properties
Use CLOUDFRONT for CloudFront RuleGroup, use REGIONAL for Application Load Balancer and API Gateway.
Visibility Metric of the RuleGroup.
3 nested properties
Description of the entity.
Collection of Rules.
Custom response key and body map.
Collection of Available Labels.
Collection of Consumed Labels.
Definitions
Byte Match statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Description of the entity.
Name of the RuleGroup.
Field of the request to match.
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
2 nested properties
Inspect all parts of the web request's JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
3 nested properties
Inspect all parts of the web request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
3 nested properties
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Inspect the request body as JSON. The request body immediately follows the request headers.
The pattern to look for in the JSON body.
2 nested properties
Inspect all parts of the web request's JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
The inspection behavior to fall back to if the JSON in the request body is invalid.
The parts of the JSON to match against using the MatchPattern.
The pattern to look for in the JSON body.
Inspect all parts of the web request's JSON body.
JSON pointer path in the web request's JSON body
2 nested properties
Id of the RuleGroup
ARN of the WAF entity.
3 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
13 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
13 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
2 nested properties
ARN of the WAF entity.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
ARN of the WAF entity.
Rule of RuleGroup that contains condition and action.
Name of the RuleGroup.
Priority of the Rule, Rules get evaluated from lower to higher priority.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
13 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
Visibility Metric of the RuleGroup.
3 nested properties
Action taken when Rule matches its condition.
5 nested properties
Allow traffic towards application.
1 nested properties
Custom request handling.
Block traffic towards application.
1 nested properties
Custom response.
Count traffic towards application.
1 nested properties
Custom request handling.
Collection of Rule Labels.
Action taken when Rule matches its condition.
Allow traffic towards application.
1 nested properties
Block traffic towards application.
1 nested properties
Custom response.
3 nested properties
Custom response body key.
Count traffic towards application.
1 nested properties
Checks valid token exists with request.
1 nested properties
Allow traffic towards application.
Block traffic towards application.
Custom response.
3 nested properties
Custom response body key.
Count traffic towards application.
Checks valid token exists with request.
Checks that the request has a valid token with an unexpired challenge timestamp and, if not, returns a browser challenge to the client.
HTTP header name.
HTTP header value.
HTTP header.
HTTP header name.
HTTP header value.
Custom request handling.
Custom response code.
Valid values are TEXT_PLAIN, TEXT_HTML, and APPLICATION_JSON.
Response content.
Custom response body.
Valid values are TEXT_PLAIN, TEXT_HTML, and APPLICATION_JSON.
Response content.
Custom response.
Custom response body key.
Custom response key and body map.
Name of the RuleGroup.
Id of the RuleGroup
ARN of the WAF entity.
Description of the entity.
Collection of Rules.
Visibility Metric of the RuleGroup.
3 nested properties
Priority of the Rule, Rules get evaluated from lower to higher priority.
Use CLOUDFRONT for CloudFront RuleGroup, use REGIONAL for Application Load Balancer and API Gateway.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Size Constraint statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sqli Match Statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sensitivity Level current only used for sqli match statements.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Byte Match statement.
5 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Sensitivity Level current only used for sqli match statements.
Xss Match Statement.
2 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Size Constraint statement.
4 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
2 nested properties
2 nested properties
2 nested properties
ARN of the WAF entity.
3 nested properties
3 nested properties
ARN of the WAF entity.
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
4 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
13 nested properties
Byte Match statement.
Sqli Match Statement.
Xss Match Statement.
Size Constraint statement.
2 nested properties
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
13 nested properties
Byte Match statement.
Sqli Match Statement.
Xss Match Statement.
Size Constraint statement.
2 nested properties
3 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Text Transformation on the Search String before match.
Type of text transformation.
Priority of Rule being evaluated.
Type of text transformation.
Visibility Metric of the RuleGroup.
Xss Match Statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Name of the Label.
Name of the Label.
Name of the Label.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
1 nested properties
1 nested properties
The body of a web request. This immediately follows the request headers.
Handling of requests containing oversize fields
Includes headers of a web request.
The pattern to look for in the request headers.
3 nested properties
Inspect all parts of the web request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
The pattern to look for in the request cookies.
3 nested properties
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
The pattern to look for in the request headers.
Inspect all parts of the web request headers.
The pattern to look for in the request cookies.
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sensitivity Level current only used for sqli match statements.