latest--aws-wafv2-webacl
shared| Type | object |
|---|---|
| Schema URL | https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-wafv2-webacl.json |
| Parent schema | serverless-framework-configuration |
Contains the Rules that identify the requests that you want to allow, block, or count. In a WebACL, you also specify a default action (ALLOW or BLOCK), and the action for each Rule that you add to a WebACL, for example, block requests from specified IP addresses or block requests from specified referrers. You also associate the WebACL with a CloudFront distribution to identify the requests that you want AWS WAF to filter. If you add more than one Rule to a WebACL, a request needs to match only one of the specifications to be allowed, blocked, or counted.. Source:- https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-wafv2.git
Properties
Default Action WebACL will take against ingress traffic when there is no matching Rule.
2 nested properties
Allow traffic towards application.
1 nested properties
Block traffic towards application.
1 nested properties
Custom response.
3 nested properties
Custom response body key.
Use CLOUDFRONT for CloudFront WebACL, use REGIONAL for Application Load Balancer and API Gateway.
Visibility Metric of the WebACL.
3 nested properties
Description of the entity.
Name of the WebACL.
Collection of Rules.
Custom response key and body map.
1 nested properties
1 nested properties
1 nested properties
1 nested properties
List of domains to accept in web request tokens, in addition to the domain of the protected resource.
Definitions
The body of a web request. This immediately follows the request headers.
Handling of requests containing oversize fields
Byte Match statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Default Action WebACL will take against ingress traffic when there is no matching Rule.
Allow traffic towards application.
1 nested properties
Block traffic towards application.
1 nested properties
Custom response.
3 nested properties
Custom response body key.
Description of the entity.
Name of the WebACL.
Excluded Rule in the RuleGroup or ManagedRuleGroup will not be evaluated.
Name of the WebACL.
Action override for rules in the rule group.
Name of the WebACL.
Action taken when Rule matches its condition.
5 nested properties
Allow traffic towards application.
1 nested properties
Custom request handling.
Block traffic towards application.
1 nested properties
Custom response.
Allow traffic towards application.
1 nested properties
Custom request handling.
Field of the request to match.
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
2 nested properties
Inspect all parts of the web request's JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
3 nested properties
Inspect all parts of the web request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
3 nested properties
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Inspect the request body as JSON. The request body immediately follows the request headers.
The pattern to look for in the JSON body.
2 nested properties
Inspect all parts of the web request's JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
The inspection behavior to fall back to if the JSON in the request body is invalid.
The parts of the JSON to match against using the MatchPattern.
The pattern to look for in the JSON body.
Inspect all parts of the web request's JSON body.
JSON pointer path in the web request's JSON body
2 nested properties
Id of the WebACL
ARN of the WAF entity.
3 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
3 nested properties
ARN of the WAF entity.
Action overrides for rules in the rule group.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
7 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
3 nested properties
ARN of the WAF entity.
Action overrides for rules in the rule group.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
7 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
Override a RuleGroup or ManagedRuleGroup behavior. This can only be applied to Rule that has RuleGroupReferenceStatement or ManagedRuleGroupReferenceStatement.
Count traffic towards application.
Keep the RuleGroup or ManagedRuleGroup behavior as is.
Position of the evaluation in the FieldToMatch of request.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
3 nested properties
ARN of the WAF entity.
Action overrides for rules in the rule group.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
7 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
2 nested properties
ARN of the WAF entity.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
ARN of the WAF entity.
Rule of WebACL that contains condition and action.
Name of the WebACL.
Priority of the Rule, Rules get evaluated from lower to higher priority.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
5 nested properties
Field of the request to match.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
Sensitivity Level current only used for sqli match statements.
Size Constraint statement.
4 nested properties
Field of the request to match.
3 nested properties
ARN of the WAF entity.
Action overrides for rules in the rule group.
2 nested properties
ARN of the WAF entity.
3 nested properties
ARN of the WAF entity.
Field of the request to match.
7 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
2 nested properties
3 nested properties
Field of the request to match.
Visibility Metric of the WebACL.
3 nested properties
Action taken when Rule matches its condition.
5 nested properties
Allow traffic towards application.
1 nested properties
Custom request handling.
Block traffic towards application.
1 nested properties
Custom response.
Allow traffic towards application.
1 nested properties
Custom request handling.
Override a RuleGroup or ManagedRuleGroup behavior. This can only be applied to Rule that has RuleGroupReferenceStatement or ManagedRuleGroupReferenceStatement.
2 nested properties
Count traffic towards application.
Keep the RuleGroup or ManagedRuleGroup behavior as is.
Collection of Rule Labels.
Collection of Rules.
Action taken when Rule matches its condition.
Allow traffic towards application.
1 nested properties
Block traffic towards application.
1 nested properties
Custom response.
3 nested properties
Custom response body key.
Allow traffic towards application.
1 nested properties
Checks valid token exists with request.
1 nested properties
Allow traffic towards application.
Allow traffic towards application.
Checks valid token exists with request.
Checks that the request has a valid token with an unexpired challenge timestamp and, if not, returns a browser challenge to the client.
Block traffic towards application.
Custom response.
3 nested properties
Custom response body key.
HTTP header name.
HTTP header value.
HTTP header.
HTTP header name.
HTTP header value.
Custom request handling.
Custom response code.
Valid values are TEXT_PLAIN, TEXT_HTML, and APPLICATION_JSON.
Response content.
Custom response body.
Valid values are TEXT_PLAIN, TEXT_HTML, and APPLICATION_JSON.
Response content.
Custom response.
Custom response body key.
Custom response key and body map.
ARN of the WAF entity.
Action overrides for rules in the rule group.
Priority of the Rule, Rules get evaluated from lower to higher priority.
Use CLOUDFRONT for CloudFront WebACL, use REGIONAL for Application Load Balancer and API Gateway.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Size Constraint statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sqli Match Statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sensitivity Level current only used for sqli match statements.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
Byte Match statement.
5 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Position of the evaluation in the FieldToMatch of request.
String that is searched to find a match.
Base64 encoded string that is searched to find a match.
Sqli Match Statement.
3 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Sensitivity Level current only used for sqli match statements.
Xss Match Statement.
2 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Size Constraint statement.
4 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
2 nested properties
2 nested properties
3 nested properties
ARN of the WAF entity.
Action overrides for rules in the rule group.
2 nested properties
ARN of the WAF entity.
3 nested properties
3 nested properties
ARN of the WAF entity.
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
7 nested properties
Name of the WebACL.
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
Sqli Match Statement.
Xss Match Statement.
Size Constraint statement.
Collection of ManagedRuleGroupConfig.
Action overrides for rules in the rule group.
4 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
Sqli Match Statement.
Xss Match Statement.
Size Constraint statement.
2 nested properties
1 nested properties
1 nested properties
1 nested properties
First level statement that contains conditions, such as ByteMatch, SizeConstraint, etc
15 nested properties
Byte Match statement.
Sqli Match Statement.
Xss Match Statement.
Size Constraint statement.
2 nested properties
3 nested properties
Field of the request to match.
10 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
Includes headers of a web request.
Includes headers of a web request.
Text Transformation on the Search String before match.
Type of text transformation.
Priority of Rule being evaluated.
Type of text transformation.
Visibility Metric of the WebACL.
Xss Match Statement.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Name of the Label.
Name of the Label.
Field of the request to match.
10 nested properties
1 nested properties
One query argument in a web request, identified by name, for example UserName or SalesRegion. The name can be up to 30 characters long and isn't case sensitive.
1 nested properties
All query arguments of a web request.
The path component of the URI of a web request. This is the part of a web request that identifies a resource, for example, /images/daily-ad.jpg.
The query string of a web request. This is the part of a URL that appears after a ? character, if any.
The body of a web request. This immediately follows the request headers.
1 nested properties
Handling of requests containing oversize fields
The HTTP method of a web request. The method indicates the type of operation that the request is asking the origin to perform.
Inspect the request body as JSON. The request body immediately follows the request headers.
4 nested properties
The pattern to look for in the JSON body.
The parts of the JSON to match against using the MatchPattern.
The inspection behavior to fall back to if the JSON in the request body is invalid.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
3 nested properties
The pattern to look for in the request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
1 nested properties
1 nested properties
ManagedRuleGroupConfig.
1 nested properties
1 nested properties
Configures how to use the Bot Control managed rule group in the web ACL
1 nested properties
Configures how to use the Account Takeover Prevention managed rule group in the web ACL
3 nested properties
Configures the inspection of login responses
4 nested properties
Response status codes that indicate success or failure of a login request
Response headers that indicate success or failure of a login request
Response body contents that indicate success or failure of a login request
Response JSON that indicate success or failure of a login request
Configures how to use the Bot Control managed rule group in the web ACL
Configures how to use the Account Takeover Prevention managed rule group in the web ACL
Configures the inspection of login requests
3 nested properties
1 nested properties
1 nested properties
Configures the inspection of login responses
4 nested properties
Response status codes that indicate success or failure of a login request
2 nested properties
Response headers that indicate success or failure of a login request
3 nested properties
Response body contents that indicate success or failure of a login request
2 nested properties
Response JSON that indicate success or failure of a login request
3 nested properties
Configures the inspection of login requests
1 nested properties
1 nested properties
Configures the inspection of login responses
Response status codes that indicate success or failure of a login request
2 nested properties
Response headers that indicate success or failure of a login request
3 nested properties
Response body contents that indicate success or failure of a login request
2 nested properties
Response JSON that indicate success or failure of a login request
3 nested properties
Response status codes that indicate success or failure of a login request
Response headers that indicate success or failure of a login request
Response body contents that indicate success or failure of a login request
Response JSON that indicate success or failure of a login request
List of domains to accept in web request tokens, in addition to the domain of the protected resource.
Includes headers of a web request.
The pattern to look for in the request headers.
3 nested properties
Inspect all parts of the web request headers.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Includes headers of a web request.
The pattern to look for in the request cookies.
3 nested properties
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
The pattern to look for in the request headers.
Inspect all parts of the web request headers.
The pattern to look for in the request cookies.
Inspect all parts of the web request cookies.
The parts of the request to match against using the MatchPattern.
Handling of requests containing oversize fields
Sensitivity Level current only used for sqli match statements.