Documentation
¶
Overview ¶
+k8s:deepcopy-gen=package Package v1alpha1 is the v1alpha1 version of the wafv2.services.k8s.aws API. +groupName=wafv2.services.k8s.aws
Index ¶
- Variables
- type ActionValue
- type AssociatedResourceType
- type BodyParsingFallbackBehavior
- type ComparisonOperator
- type CountryCode
- type CustomResponse
- type ExcludedRule
- type FailureReason
- type FallbackBehavior
- type FilterBehavior
- type FilterRequirement
- type FirewallManagerRuleGroup
- type ForwardedIPPosition
- type IPAddressVersion
- type IPSet
- type IPSetList
- type IPSetReferenceStatement
- type IPSetSpec
- type IPSetStatus
- type IPSetSummary
- type IPSet_SDK
- type InspectionLevel
- type JSONMatchScope
- type LabelMatchScope
- type LoggingConfiguration
- type ManagedProductDescriptor
- type ManagedRuleGroupStatement
- type ManagedRuleGroupSummary
- type ManagedRuleSet
- type ManagedRuleSetSummary
- type ManagedRuleSetVersion
- type MapMatchScope
- type MobileSDKRelease
- type OversizeHandling
- type ParameterExceptionField
- type PayloadType
- type Platform
- type PositionalConstraint
- type RateBasedStatementAggregateKeyType
- type RateBasedStatementManagedKeysIPSet
- type RegexPatternSet
- type RegexPatternSetReferenceStatement
- type RegexPatternSetSummary
- type ResourceType
- type ResponseContentType
- type Rule
- type RuleActionOverride
- type RuleGroup
- type RuleGroupReferenceStatement
- type RuleGroupSummary
- type RuleSummary
- type SampledHTTPRequest
- type Scope
- type SensitivityLevel
- type SizeInspectionLimit
- type Tag
- type TagInfoForResource
- type TextTransformationType
- type VersionToPublish
- type WebACL
- type WebACLSummary
Constants ¶
This section is empty.
Variables ¶
var ( // GroupVersion is the API Group Version used to register the objects GroupVersion = schema.GroupVersion{Group: "wafv2.services.k8s.aws", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type ActionValue ¶
type ActionValue string
const ( ActionValue_ALLOW ActionValue = "ALLOW" ActionValue_BLOCK ActionValue = "BLOCK" ActionValue_COUNT ActionValue = "COUNT" ActionValue_CAPTCHA ActionValue = "CAPTCHA" ActionValue_CHALLENGE ActionValue = "CHALLENGE" ActionValue_EXCLUDED_AS_COUNT ActionValue = "EXCLUDED_AS_COUNT" )
type AssociatedResourceType ¶
type AssociatedResourceType string
const ( AssociatedResourceType_CLOUDFRONT AssociatedResourceType = "CLOUDFRONT" AssociatedResourceType_API_GATEWAY AssociatedResourceType = "API_GATEWAY" AssociatedResourceType_COGNITO_USER_POOL AssociatedResourceType = "COGNITO_USER_POOL" AssociatedResourceType_APP_RUNNER_SERVICE AssociatedResourceType = "APP_RUNNER_SERVICE" AssociatedResourceType_VERIFIED_ACCESS_INSTANCE AssociatedResourceType = "VERIFIED_ACCESS_INSTANCE" )
type BodyParsingFallbackBehavior ¶
type BodyParsingFallbackBehavior string
const ( BodyParsingFallbackBehavior_MATCH BodyParsingFallbackBehavior = "MATCH" BodyParsingFallbackBehavior_NO_MATCH BodyParsingFallbackBehavior = "NO_MATCH" BodyParsingFallbackBehavior_EVALUATE_AS_STRING BodyParsingFallbackBehavior = "EVALUATE_AS_STRING" )
type ComparisonOperator ¶
type ComparisonOperator string
const ( ComparisonOperator_EQ ComparisonOperator = "EQ" ComparisonOperator_NE ComparisonOperator = "NE" ComparisonOperator_LE ComparisonOperator = "LE" ComparisonOperator_LT ComparisonOperator = "LT" ComparisonOperator_GE ComparisonOperator = "GE" ComparisonOperator_GT ComparisonOperator = "GT" )
type CountryCode ¶
type CountryCode string
const ( CountryCode_AF CountryCode = "AF" CountryCode_AX CountryCode = "AX" CountryCode_AL CountryCode = "AL" CountryCode_DZ CountryCode = "DZ" CountryCode_AS CountryCode = "AS" CountryCode_AD CountryCode = "AD" CountryCode_AO CountryCode = "AO" CountryCode_AI CountryCode = "AI" CountryCode_AQ CountryCode = "AQ" CountryCode_AG CountryCode = "AG" CountryCode_AR CountryCode = "AR" CountryCode_AM CountryCode = "AM" CountryCode_AW CountryCode = "AW" CountryCode_AU CountryCode = "AU" CountryCode_AT CountryCode = "AT" CountryCode_AZ CountryCode = "AZ" CountryCode_BS CountryCode = "BS" CountryCode_BH CountryCode = "BH" CountryCode_BD CountryCode = "BD" CountryCode_BB CountryCode = "BB" CountryCode_BY CountryCode = "BY" CountryCode_BE CountryCode = "BE" CountryCode_BZ CountryCode = "BZ" CountryCode_BJ CountryCode = "BJ" CountryCode_BM CountryCode = "BM" CountryCode_BT CountryCode = "BT" CountryCode_BO CountryCode = "BO" CountryCode_BQ CountryCode = "BQ" CountryCode_BA CountryCode = "BA" CountryCode_BW CountryCode = "BW" CountryCode_BV CountryCode = "BV" CountryCode_BR CountryCode = "BR" CountryCode_IO CountryCode = "IO" CountryCode_BN CountryCode = "BN" CountryCode_BG CountryCode = "BG" CountryCode_BF CountryCode = "BF" CountryCode_BI CountryCode = "BI" CountryCode_KH CountryCode = "KH" CountryCode_CM CountryCode = "CM" CountryCode_CA CountryCode = "CA" CountryCode_CV CountryCode = "CV" CountryCode_KY CountryCode = "KY" CountryCode_CF CountryCode = "CF" CountryCode_TD CountryCode = "TD" CountryCode_CL CountryCode = "CL" CountryCode_CN CountryCode = "CN" CountryCode_CX CountryCode = "CX" CountryCode_CC CountryCode = "CC" CountryCode_CO CountryCode = "CO" CountryCode_KM CountryCode = "KM" CountryCode_CG CountryCode = "CG" CountryCode_CD CountryCode = "CD" CountryCode_CK CountryCode = "CK" CountryCode_CR CountryCode = "CR" CountryCode_CI CountryCode = "CI" CountryCode_HR CountryCode = "HR" CountryCode_CU CountryCode = "CU" CountryCode_CW CountryCode = "CW" CountryCode_CY CountryCode = "CY" CountryCode_CZ CountryCode = "CZ" CountryCode_DK CountryCode = "DK" CountryCode_DJ CountryCode = "DJ" CountryCode_DM CountryCode = "DM" CountryCode_DO CountryCode = "DO" CountryCode_EC CountryCode = "EC" CountryCode_EG CountryCode = "EG" CountryCode_SV CountryCode = "SV" CountryCode_GQ CountryCode = "GQ" CountryCode_ER CountryCode = "ER" CountryCode_EE CountryCode = "EE" CountryCode_ET CountryCode = "ET" CountryCode_FK CountryCode = "FK" CountryCode_FO CountryCode = "FO" CountryCode_FJ CountryCode = "FJ" CountryCode_FI CountryCode = "FI" CountryCode_FR CountryCode = "FR" CountryCode_GF CountryCode = "GF" CountryCode_PF CountryCode = "PF" CountryCode_TF CountryCode = "TF" CountryCode_GA CountryCode = "GA" CountryCode_GM CountryCode = "GM" CountryCode_GE CountryCode = "GE" CountryCode_DE CountryCode = "DE" CountryCode_GH CountryCode = "GH" CountryCode_GI CountryCode = "GI" CountryCode_GR CountryCode = "GR" CountryCode_GL CountryCode = "GL" CountryCode_GD CountryCode = "GD" CountryCode_GP CountryCode = "GP" CountryCode_GU CountryCode = "GU" CountryCode_GT CountryCode = "GT" CountryCode_GG CountryCode = "GG" CountryCode_GN CountryCode = "GN" CountryCode_GW CountryCode = "GW" CountryCode_GY CountryCode = "GY" CountryCode_HT CountryCode = "HT" CountryCode_HM CountryCode = "HM" CountryCode_VA CountryCode = "VA" CountryCode_HN CountryCode = "HN" CountryCode_HK CountryCode = "HK" CountryCode_HU CountryCode = "HU" CountryCode_IS CountryCode = "IS" CountryCode_IN CountryCode = "IN" CountryCode_ID CountryCode = "ID" CountryCode_IR CountryCode = "IR" CountryCode_IQ CountryCode = "IQ" CountryCode_IE CountryCode = "IE" CountryCode_IM CountryCode = "IM" CountryCode_IL CountryCode = "IL" CountryCode_IT CountryCode = "IT" CountryCode_JM CountryCode = "JM" CountryCode_JP CountryCode = "JP" CountryCode_JE CountryCode = "JE" CountryCode_JO CountryCode = "JO" CountryCode_KZ CountryCode = "KZ" CountryCode_KE CountryCode = "KE" CountryCode_KI CountryCode = "KI" CountryCode_KP CountryCode = "KP" CountryCode_KR CountryCode = "KR" CountryCode_KW CountryCode = "KW" CountryCode_KG CountryCode = "KG" CountryCode_LA CountryCode = "LA" CountryCode_LV CountryCode = "LV" CountryCode_LB CountryCode = "LB" CountryCode_LS CountryCode = "LS" CountryCode_LR CountryCode = "LR" CountryCode_LY CountryCode = "LY" CountryCode_LI CountryCode = "LI" CountryCode_LT CountryCode = "LT" CountryCode_LU CountryCode = "LU" CountryCode_MO CountryCode = "MO" CountryCode_MK CountryCode = "MK" CountryCode_MG CountryCode = "MG" CountryCode_MW CountryCode = "MW" CountryCode_MY CountryCode = "MY" CountryCode_MV CountryCode = "MV" CountryCode_ML CountryCode = "ML" CountryCode_MT CountryCode = "MT" CountryCode_MH CountryCode = "MH" CountryCode_MQ CountryCode = "MQ" CountryCode_MR CountryCode = "MR" CountryCode_MU CountryCode = "MU" CountryCode_YT CountryCode = "YT" CountryCode_MX CountryCode = "MX" CountryCode_FM CountryCode = "FM" CountryCode_MD CountryCode = "MD" CountryCode_MC CountryCode = "MC" CountryCode_MN CountryCode = "MN" CountryCode_ME CountryCode = "ME" CountryCode_MS CountryCode = "MS" CountryCode_MA CountryCode = "MA" CountryCode_MZ CountryCode = "MZ" CountryCode_MM CountryCode = "MM" CountryCode_NA CountryCode = "NA" CountryCode_NR CountryCode = "NR" CountryCode_NP CountryCode = "NP" CountryCode_NL CountryCode = "NL" CountryCode_NC CountryCode = "NC" CountryCode_NZ CountryCode = "NZ" CountryCode_NI CountryCode = "NI" CountryCode_NE CountryCode = "NE" CountryCode_NG CountryCode = "NG" CountryCode_NU CountryCode = "NU" CountryCode_NF CountryCode = "NF" CountryCode_MP CountryCode = "MP" CountryCode_NO CountryCode = "NO" CountryCode_OM CountryCode = "OM" CountryCode_PK CountryCode = "PK" CountryCode_PW CountryCode = "PW" CountryCode_PS CountryCode = "PS" CountryCode_PA CountryCode = "PA" CountryCode_PG CountryCode = "PG" CountryCode_PY CountryCode = "PY" CountryCode_PE CountryCode = "PE" CountryCode_PH CountryCode = "PH" CountryCode_PN CountryCode = "PN" CountryCode_PL CountryCode = "PL" CountryCode_PT CountryCode = "PT" CountryCode_PR CountryCode = "PR" CountryCode_QA CountryCode = "QA" CountryCode_RE CountryCode = "RE" CountryCode_RO CountryCode = "RO" CountryCode_RU CountryCode = "RU" CountryCode_RW CountryCode = "RW" CountryCode_BL CountryCode = "BL" CountryCode_SH CountryCode = "SH" CountryCode_KN CountryCode = "KN" CountryCode_LC CountryCode = "LC" CountryCode_MF CountryCode = "MF" CountryCode_PM CountryCode = "PM" CountryCode_VC CountryCode = "VC" CountryCode_WS CountryCode = "WS" CountryCode_SM CountryCode = "SM" CountryCode_ST CountryCode = "ST" CountryCode_SA CountryCode = "SA" CountryCode_SN CountryCode = "SN" CountryCode_RS CountryCode = "RS" CountryCode_SC CountryCode = "SC" CountryCode_SL CountryCode = "SL" CountryCode_SG CountryCode = "SG" CountryCode_SX CountryCode = "SX" CountryCode_SK CountryCode = "SK" CountryCode_SI CountryCode = "SI" CountryCode_SB CountryCode = "SB" CountryCode_SO CountryCode = "SO" CountryCode_ZA CountryCode = "ZA" CountryCode_GS CountryCode = "GS" CountryCode_SS CountryCode = "SS" CountryCode_ES CountryCode = "ES" CountryCode_LK CountryCode = "LK" CountryCode_SD CountryCode = "SD" CountryCode_SR CountryCode = "SR" CountryCode_SJ CountryCode = "SJ" CountryCode_SZ CountryCode = "SZ" CountryCode_SE CountryCode = "SE" CountryCode_CH CountryCode = "CH" CountryCode_SY CountryCode = "SY" CountryCode_TW CountryCode = "TW" CountryCode_TJ CountryCode = "TJ" CountryCode_TZ CountryCode = "TZ" CountryCode_TH CountryCode = "TH" CountryCode_TL CountryCode = "TL" CountryCode_TG CountryCode = "TG" CountryCode_TK CountryCode = "TK" CountryCode_TO CountryCode = "TO" CountryCode_TT CountryCode = "TT" CountryCode_TN CountryCode = "TN" CountryCode_TR CountryCode = "TR" CountryCode_TM CountryCode = "TM" CountryCode_TC CountryCode = "TC" CountryCode_TV CountryCode = "TV" CountryCode_UG CountryCode = "UG" CountryCode_UA CountryCode = "UA" CountryCode_AE CountryCode = "AE" CountryCode_GB CountryCode = "GB" CountryCode_US CountryCode = "US" CountryCode_UM CountryCode = "UM" CountryCode_UY CountryCode = "UY" CountryCode_UZ CountryCode = "UZ" CountryCode_VU CountryCode = "VU" CountryCode_VE CountryCode = "VE" CountryCode_VN CountryCode = "VN" CountryCode_VG CountryCode = "VG" CountryCode_VI CountryCode = "VI" CountryCode_WF CountryCode = "WF" CountryCode_EH CountryCode = "EH" CountryCode_YE CountryCode = "YE" CountryCode_ZM CountryCode = "ZM" CountryCode_ZW CountryCode = "ZW" CountryCode_XK CountryCode = "XK" )
type CustomResponse ¶
type CustomResponse struct {
CustomResponseBodyKey *string `json:"customResponseBodyKey,omitempty"`
}
A custom response to send to the client. You can define a custom response for rule actions and default web ACL actions that are set to BlockAction.
For information about customizing web requests and responses, see Customizing web requests and responses in WAF (https://docs.aws.amazon.com/waf/latest/developerguide/waf-custom-request-response.html) in the WAF Developer Guide.
func (*CustomResponse) DeepCopy ¶
func (in *CustomResponse) DeepCopy() *CustomResponse
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CustomResponse.
func (*CustomResponse) DeepCopyInto ¶
func (in *CustomResponse) DeepCopyInto(out *CustomResponse)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ExcludedRule ¶
type ExcludedRule struct {
Name *string `json:"name,omitempty"`
}
Specifies a single rule in a rule group whose action you want to override to Count.
Instead of this option, use RuleActionOverrides. It accepts any valid action setting, including Count.
func (*ExcludedRule) DeepCopy ¶
func (in *ExcludedRule) DeepCopy() *ExcludedRule
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ExcludedRule.
func (*ExcludedRule) DeepCopyInto ¶
func (in *ExcludedRule) DeepCopyInto(out *ExcludedRule)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FailureReason ¶
type FailureReason string
const ( FailureReason_TOKEN_MISSING FailureReason = "TOKEN_MISSING" FailureReason_TOKEN_EXPIRED FailureReason = "TOKEN_EXPIRED" FailureReason_TOKEN_INVALID FailureReason = "TOKEN_INVALID" FailureReason_TOKEN_DOMAIN_MISMATCH FailureReason = "TOKEN_DOMAIN_MISMATCH" )
type FallbackBehavior ¶
type FallbackBehavior string
const ( FallbackBehavior_MATCH FallbackBehavior = "MATCH" FallbackBehavior_NO_MATCH FallbackBehavior = "NO_MATCH" )
type FilterBehavior ¶
type FilterBehavior string
const ( FilterBehavior_KEEP FilterBehavior = "KEEP" FilterBehavior_DROP FilterBehavior = "DROP" )
type FilterRequirement ¶
type FilterRequirement string
const ( FilterRequirement_MEETS_ALL FilterRequirement = "MEETS_ALL" FilterRequirement_MEETS_ANY FilterRequirement = "MEETS_ANY" )
type FirewallManagerRuleGroup ¶
type FirewallManagerRuleGroup struct {
Name *string `json:"name,omitempty"`
}
A rule group that's defined for an Firewall Manager WAF policy.
func (*FirewallManagerRuleGroup) DeepCopy ¶
func (in *FirewallManagerRuleGroup) DeepCopy() *FirewallManagerRuleGroup
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FirewallManagerRuleGroup.
func (*FirewallManagerRuleGroup) DeepCopyInto ¶
func (in *FirewallManagerRuleGroup) DeepCopyInto(out *FirewallManagerRuleGroup)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ForwardedIPPosition ¶
type ForwardedIPPosition string
const ( ForwardedIPPosition_FIRST ForwardedIPPosition = "FIRST" ForwardedIPPosition_LAST ForwardedIPPosition = "LAST" ForwardedIPPosition_ANY ForwardedIPPosition = "ANY" )
type IPAddressVersion ¶
type IPAddressVersion string
const ( IPAddressVersion_IPV4 IPAddressVersion = "IPV4" IPAddressVersion_IPV6 IPAddressVersion = "IPV6" )
type IPSet ¶
type IPSet struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec IPSetSpec `json:"spec,omitempty"`
Status IPSetStatus `json:"status,omitempty"`
}
IPSet is the Schema for the IPSets API +kubebuilder:object:root=true +kubebuilder:subresource:status
func (*IPSet) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSet.
func (*IPSet) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IPSet) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IPSetList ¶
type IPSetList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []IPSet `json:"items"`
}
IPSetList contains a list of IPSet +kubebuilder:object:root=true
func (*IPSetList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSetList.
func (*IPSetList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IPSetList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IPSetReferenceStatement ¶
type IPSetReferenceStatement struct {
ARN *string `json:"arn,omitempty"`
}
A rule statement used to detect web requests coming from particular IP addresses or address ranges. To use this, create an IPSet that specifies the addresses you want to detect, then use the ARN of that set in this statement. To create an IP set, see CreateIPSet.
Each IP set rule statement references an IP set. You create and maintain the set independent of your rules. This allows you to use the single set in multiple rules. When you update the referenced set, WAF automatically updates all rules that reference it.
func (*IPSetReferenceStatement) DeepCopy ¶
func (in *IPSetReferenceStatement) DeepCopy() *IPSetReferenceStatement
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSetReferenceStatement.
func (*IPSetReferenceStatement) DeepCopyInto ¶
func (in *IPSetReferenceStatement) DeepCopyInto(out *IPSetReferenceStatement)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IPSetSpec ¶
type IPSetSpec struct {
// Contains an array of strings that specifies zero or more IP addresses or
// blocks of IP addresses that you want WAF to inspect for in incoming requests.
// All addresses must be specified using Classless Inter-Domain Routing (CIDR)
// notation. WAF supports all IPv4 and IPv6 CIDR ranges except for /0.
//
// Example address strings:
//
// - For requests that originated from the IP address 192.0.2.44, specify
// 192.0.2.44/32.
//
// - For requests that originated from IP addresses from 192.0.2.0 to 192.0.2.255,
// specify 192.0.2.0/24.
//
// - For requests that originated from the IP address 1111:0000:0000:0000:0000:0000:0000:0111,
// specify 1111:0000:0000:0000:0000:0000:0000:0111/128.
//
// - For requests that originated from IP addresses 1111:0000:0000:0000:0000:0000:0000:0000
// to 1111:0000:0000:0000:ffff:ffff:ffff:ffff, specify 1111:0000:0000:0000:0000:0000:0000:0000/64.
//
// For more information about CIDR notation, see the Wikipedia entry Classless
// Inter-Domain Routing (https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing).
//
// Example JSON Addresses specifications:
//
// - Empty array: "Addresses": []
//
// - Array with one address: "Addresses": ["192.0.2.44/32"]
//
// - Array with three addresses: "Addresses": ["192.0.2.44/32", "192.0.2.0/24",
// "192.0.0.0/16"]
//
// - INVALID specification: "Addresses": [""] INVALID
//
// +kubebuilder:validation:Required
Addresses []*string `json:"addresses"`
// A description of the IP set that helps with identification.
Description *string `json:"description,omitempty"`
// The version of the IP addresses, either IPV4 or IPV6.
// +kubebuilder:validation:Required
IPAddressVersion *string `json:"ipAddressVersion"`
// The name of the IP set. You cannot change the name of an IPSet after you
// create it.
// +kubebuilder:validation:Required
Name *string `json:"name"`
// Specifies whether this is for an Amazon CloudFront distribution or for a
// regional application. A regional application can be an Application Load Balancer
// (ALB), an Amazon API Gateway REST API, an AppSync GraphQL API, an Amazon
// Cognito user pool, an App Runner service, or an Amazon Web Services Verified
// Access instance.
//
// To work with CloudFront, you must also specify the Region US East (N. Virginia)
// as follows:
//
// - CLI - Specify the Region when you use the CloudFront scope: --scope=CLOUDFRONT
// --region=us-east-1.
//
// - API and SDKs - For all calls, use the Region endpoint us-east-1.
//
// +kubebuilder:validation:Required
Scope *string `json:"scope"`
// An array of key:value pairs to associate with the resource.
Tags []*Tag `json:"tags,omitempty"`
}
IPSetSpec defines the desired state of IPSet.
Contains zero or more IP addresses or blocks of IP addresses specified in Classless Inter-Domain Routing (CIDR) notation. WAF supports all IPv4 and IPv6 CIDR ranges except for /0. For information about CIDR notation, see the Wikipedia entry Classless Inter-Domain Routing (https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing).
WAF assigns an ARN to each IPSet that you create. To use an IP set in a rule, you provide the ARN to the Rule statement IPSetReferenceStatement.
func (*IPSetSpec) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSetSpec.
func (*IPSetSpec) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IPSetStatus ¶
type IPSetStatus struct {
// All CRs managed by ACK have a common `Status.ACKResourceMetadata` member
// that is used to contain resource sync state, account ownership,
// constructed ARN for the resource
// +kubebuilder:validation:Optional
ACKResourceMetadata *ackv1alpha1.ResourceMetadata `json:"ackResourceMetadata"`
// All CRS managed by ACK have a common `Status.Conditions` member that
// contains a collection of `ackv1alpha1.Condition` objects that describe
// the various terminal states of the CR and its backend AWS service API
// resource
// +kubebuilder:validation:Optional
Conditions []*ackv1alpha1.Condition `json:"conditions"`
// A unique identifier for the set. This ID is returned in the responses to
// create and list commands. You provide it to operations like update and delete.
// +kubebuilder:validation:Optional
ID *string `json:"id,omitempty"`
// A token used for optimistic locking. WAF returns a token to your get and
// list requests, to mark the state of the entity at the time of the request.
// To make changes to the entity associated with the token, you provide the
// token to operations like update and delete. WAF uses the token to ensure
// that no changes have been made to the entity since you last retrieved it.
// If a change has been made, the update fails with a WAFOptimisticLockException.
// If this happens, perform another get, and use the new token returned by that
// operation.
// +kubebuilder:validation:Optional
LockToken *string `json:"lockToken,omitempty"`
}
IPSetStatus defines the observed state of IPSet
func (*IPSetStatus) DeepCopy ¶
func (in *IPSetStatus) DeepCopy() *IPSetStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSetStatus.
func (*IPSetStatus) DeepCopyInto ¶
func (in *IPSetStatus) DeepCopyInto(out *IPSetStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IPSetSummary ¶
type IPSetSummary struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
LockToken *string `json:"lockToken,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information about an IPSet, returned by operations like create and list. This provides information like the ID, that you can use to retrieve and manage an IPSet, and the ARN, that you provide to the IPSetReferenceStatement to use the address set in a Rule.
func (*IPSetSummary) DeepCopy ¶
func (in *IPSetSummary) DeepCopy() *IPSetSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSetSummary.
func (*IPSetSummary) DeepCopyInto ¶
func (in *IPSetSummary) DeepCopyInto(out *IPSetSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IPSet_SDK ¶
type IPSet_SDK struct {
ARN *string `json:"arn,omitempty"`
Addresses []*string `json:"addresses,omitempty"`
Description *string `json:"description,omitempty"`
IPAddressVersion *string `json:"ipAddressVersion,omitempty"`
ID *string `json:"id,omitempty"`
Name *string `json:"name,omitempty"`
}
Contains zero or more IP addresses or blocks of IP addresses specified in Classless Inter-Domain Routing (CIDR) notation. WAF supports all IPv4 and IPv6 CIDR ranges except for /0. For information about CIDR notation, see the Wikipedia entry Classless Inter-Domain Routing (https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing).
WAF assigns an ARN to each IPSet that you create. To use an IP set in a rule, you provide the ARN to the Rule statement IPSetReferenceStatement.
func (*IPSet_SDK) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IPSet_SDK.
func (*IPSet_SDK) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type InspectionLevel ¶
type InspectionLevel string
const ( InspectionLevel_COMMON InspectionLevel = "COMMON" InspectionLevel_TARGETED InspectionLevel = "TARGETED" )
type JSONMatchScope ¶
type JSONMatchScope string
const ( JSONMatchScope_ALL JSONMatchScope = "ALL" JSONMatchScope_KEY JSONMatchScope = "KEY" JSONMatchScope_VALUE JSONMatchScope = "VALUE" )
type LabelMatchScope ¶
type LabelMatchScope string
const ( LabelMatchScope_LABEL LabelMatchScope = "LABEL" LabelMatchScope_NAMESPACE LabelMatchScope = "NAMESPACE" )
type LoggingConfiguration ¶
type LoggingConfiguration struct {
ResourceARN *string `json:"resourceARN,omitempty"`
}
Defines an association between logging destinations and a web ACL resource, for logging from WAF. As part of the association, you can specify parts of the standard logging fields to keep out of the logs and you can specify filters so that you log only a subset of the logging records.
You can define one logging destination per web ACL.
You can access information about the traffic that WAF inspects using the following steps:
Create your logging destination. You can use an Amazon CloudWatch Logs log group, an Amazon Simple Storage Service (Amazon S3) bucket, or an Amazon Kinesis Data Firehose.
The name that you give the destination must start with aws-waf-logs-. Depending on the type of destination, you might need to configure additional settings or permissions.
For configuration requirements and pricing information for each destination type, see Logging web ACL traffic (https://docs.aws.amazon.com/waf/latest/developerguide/logging.html) in the WAF Developer Guide.
Associate your logging destination to your web ACL using a PutLoggingConfiguration request.
When you successfully enable logging using a PutLoggingConfiguration request, WAF creates an additional role or policy that is required to write logs to the logging destination. For an Amazon CloudWatch Logs log group, WAF creates a resource policy on the log group. For an Amazon S3 bucket, WAF creates a bucket policy. For an Amazon Kinesis Data Firehose, WAF creates a service-linked role.
For additional information about web ACL logging, see Logging web ACL traffic information (https://docs.aws.amazon.com/waf/latest/developerguide/logging.html) in the WAF Developer Guide.
func (*LoggingConfiguration) DeepCopy ¶
func (in *LoggingConfiguration) DeepCopy() *LoggingConfiguration
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new LoggingConfiguration.
func (*LoggingConfiguration) DeepCopyInto ¶
func (in *LoggingConfiguration) DeepCopyInto(out *LoggingConfiguration)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedProductDescriptor ¶
type ManagedProductDescriptor struct {
ManagedRuleSetName *string `json:"managedRuleSetName,omitempty"`
SNSTopicARN *string `json:"snsTopicARN,omitempty"`
}
The properties of a managed product, such as an Amazon Web Services Managed Rules rule group or an Amazon Web Services Marketplace managed rule group.
func (*ManagedProductDescriptor) DeepCopy ¶
func (in *ManagedProductDescriptor) DeepCopy() *ManagedProductDescriptor
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedProductDescriptor.
func (*ManagedProductDescriptor) DeepCopyInto ¶
func (in *ManagedProductDescriptor) DeepCopyInto(out *ManagedProductDescriptor)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedRuleGroupStatement ¶
type ManagedRuleGroupStatement struct {
Name *string `json:"name,omitempty"`
}
A rule statement used to run the rules that are defined in a managed rule group. To use this, provide the vendor name and the name of the rule group in this statement. You can retrieve the required names by calling ListAvailableManagedRuleGroups.
You cannot nest a ManagedRuleGroupStatement, for example for use inside a NotStatement or OrStatement. You cannot use a managed rule group inside another rule group. You can only reference a managed rule group as a top-level statement within a rule that you define in a web ACL.
You are charged additional fees when you use the WAF Bot Control managed rule group AWSManagedRulesBotControlRuleSet, the WAF Fraud Control account takeover prevention (ATP) managed rule group AWSManagedRulesATPRuleSet, or the WAF Fraud Control account creation fraud prevention (ACFP) managed rule group AWSManagedRulesACFPRuleSet. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/).
func (*ManagedRuleGroupStatement) DeepCopy ¶
func (in *ManagedRuleGroupStatement) DeepCopy() *ManagedRuleGroupStatement
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedRuleGroupStatement.
func (*ManagedRuleGroupStatement) DeepCopyInto ¶
func (in *ManagedRuleGroupStatement) DeepCopyInto(out *ManagedRuleGroupStatement)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedRuleGroupSummary ¶
type ManagedRuleGroupSummary struct {
Description *string `json:"description,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information about a managed rule group, returned by ListAvailableManagedRuleGroups. This provides information like the name and vendor name, that you provide when you add a ManagedRuleGroupStatement to a web ACL. Managed rule groups include Amazon Web Services Managed Rules rule groups and Amazon Web Services Marketplace managed rule groups. To use any Amazon Web Services Marketplace managed rule group, first subscribe to the rule group through Amazon Web Services Marketplace.
func (*ManagedRuleGroupSummary) DeepCopy ¶
func (in *ManagedRuleGroupSummary) DeepCopy() *ManagedRuleGroupSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedRuleGroupSummary.
func (*ManagedRuleGroupSummary) DeepCopyInto ¶
func (in *ManagedRuleGroupSummary) DeepCopyInto(out *ManagedRuleGroupSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedRuleSet ¶
type ManagedRuleSet struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
Name *string `json:"name,omitempty"`
}
A set of rules that is managed by Amazon Web Services and Amazon Web Services Marketplace sellers to provide versioned managed rule groups for customers of WAF.
This is intended for use only by vendors of managed rule sets. Vendors are Amazon Web Services and Amazon Web Services Marketplace sellers.
Vendors, you can use the managed rule set APIs to provide controlled rollout of your versioned managed rule group offerings for your customers. The APIs are ListManagedRuleSets, GetManagedRuleSet, PutManagedRuleSetVersions, and UpdateManagedRuleSetVersionExpiryDate.
func (*ManagedRuleSet) DeepCopy ¶
func (in *ManagedRuleSet) DeepCopy() *ManagedRuleSet
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedRuleSet.
func (*ManagedRuleSet) DeepCopyInto ¶
func (in *ManagedRuleSet) DeepCopyInto(out *ManagedRuleSet)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedRuleSetSummary ¶
type ManagedRuleSetSummary struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
LockToken *string `json:"lockToken,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information for a managed rule set.
This is intended for use only by vendors of managed rule sets. Vendors are Amazon Web Services and Amazon Web Services Marketplace sellers.
Vendors, you can use the managed rule set APIs to provide controlled rollout of your versioned managed rule group offerings for your customers. The APIs are ListManagedRuleSets, GetManagedRuleSet, PutManagedRuleSetVersions, and UpdateManagedRuleSetVersionExpiryDate.
func (*ManagedRuleSetSummary) DeepCopy ¶
func (in *ManagedRuleSetSummary) DeepCopy() *ManagedRuleSetSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedRuleSetSummary.
func (*ManagedRuleSetSummary) DeepCopyInto ¶
func (in *ManagedRuleSetSummary) DeepCopyInto(out *ManagedRuleSetSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ManagedRuleSetVersion ¶
type ManagedRuleSetVersion struct {
AssociatedRuleGroupARN *string `json:"associatedRuleGroupARN,omitempty"`
}
Information for a single version of a managed rule set.
This is intended for use only by vendors of managed rule sets. Vendors are Amazon Web Services and Amazon Web Services Marketplace sellers.
Vendors, you can use the managed rule set APIs to provide controlled rollout of your versioned managed rule group offerings for your customers. The APIs are ListManagedRuleSets, GetManagedRuleSet, PutManagedRuleSetVersions, and UpdateManagedRuleSetVersionExpiryDate.
func (*ManagedRuleSetVersion) DeepCopy ¶
func (in *ManagedRuleSetVersion) DeepCopy() *ManagedRuleSetVersion
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ManagedRuleSetVersion.
func (*ManagedRuleSetVersion) DeepCopyInto ¶
func (in *ManagedRuleSetVersion) DeepCopyInto(out *ManagedRuleSetVersion)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type MapMatchScope ¶
type MapMatchScope string
const ( MapMatchScope_ALL MapMatchScope = "ALL" MapMatchScope_KEY MapMatchScope = "KEY" MapMatchScope_VALUE MapMatchScope = "VALUE" )
type MobileSDKRelease ¶
type MobileSDKRelease struct {
Tags []*Tag `json:"tags,omitempty"`
}
Information for a release of the mobile SDK, including release notes and tags.
The mobile SDK is not generally available. Customers who have access to the mobile SDK can use it to establish and manage WAF tokens for use in HTTP(S) requests from a mobile device to WAF. For more information, see WAF client application integration (https://docs.aws.amazon.com/waf/latest/developerguide/waf-application-integration.html) in the WAF Developer Guide.
func (*MobileSDKRelease) DeepCopy ¶
func (in *MobileSDKRelease) DeepCopy() *MobileSDKRelease
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new MobileSDKRelease.
func (*MobileSDKRelease) DeepCopyInto ¶
func (in *MobileSDKRelease) DeepCopyInto(out *MobileSDKRelease)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type OversizeHandling ¶
type OversizeHandling string
const ( OversizeHandling_CONTINUE OversizeHandling = "CONTINUE" OversizeHandling_MATCH OversizeHandling = "MATCH" OversizeHandling_NO_MATCH OversizeHandling = "NO_MATCH" )
type ParameterExceptionField ¶
type ParameterExceptionField string
const ( ParameterExceptionField_WEB_ACL ParameterExceptionField = "WEB_ACL" ParameterExceptionField_RULE_GROUP ParameterExceptionField = "RULE_GROUP" ParameterExceptionField_REGEX_PATTERN_SET ParameterExceptionField = "REGEX_PATTERN_SET" ParameterExceptionField_IP_SET ParameterExceptionField = "IP_SET" ParameterExceptionField_MANAGED_RULE_SET ParameterExceptionField = "MANAGED_RULE_SET" ParameterExceptionField_RULE ParameterExceptionField = "RULE" ParameterExceptionField_EXCLUDED_RULE ParameterExceptionField = "EXCLUDED_RULE" ParameterExceptionField_STATEMENT ParameterExceptionField = "STATEMENT" ParameterExceptionField_BYTE_MATCH_STATEMENT ParameterExceptionField = "BYTE_MATCH_STATEMENT" ParameterExceptionField_SQLI_MATCH_STATEMENT ParameterExceptionField = "SQLI_MATCH_STATEMENT" ParameterExceptionField_XSS_MATCH_STATEMENT ParameterExceptionField = "XSS_MATCH_STATEMENT" ParameterExceptionField_SIZE_CONSTRAINT_STATEMENT ParameterExceptionField = "SIZE_CONSTRAINT_STATEMENT" ParameterExceptionField_GEO_MATCH_STATEMENT ParameterExceptionField = "GEO_MATCH_STATEMENT" ParameterExceptionField_RATE_BASED_STATEMENT ParameterExceptionField = "RATE_BASED_STATEMENT" ParameterExceptionField_RULE_GROUP_REFERENCE_STATEMENT ParameterExceptionField = "RULE_GROUP_REFERENCE_STATEMENT" ParameterExceptionField_REGEX_PATTERN_REFERENCE_STATEMENT ParameterExceptionField = "REGEX_PATTERN_REFERENCE_STATEMENT" ParameterExceptionField_IP_SET_REFERENCE_STATEMENT ParameterExceptionField = "IP_SET_REFERENCE_STATEMENT" ParameterExceptionField_MANAGED_RULE_SET_STATEMENT ParameterExceptionField = "MANAGED_RULE_SET_STATEMENT" ParameterExceptionField_LABEL_MATCH_STATEMENT ParameterExceptionField = "LABEL_MATCH_STATEMENT" ParameterExceptionField_AND_STATEMENT ParameterExceptionField = "AND_STATEMENT" ParameterExceptionField_OR_STATEMENT ParameterExceptionField = "OR_STATEMENT" ParameterExceptionField_NOT_STATEMENT ParameterExceptionField = "NOT_STATEMENT" ParameterExceptionField_IP_ADDRESS ParameterExceptionField = "IP_ADDRESS" ParameterExceptionField_IP_ADDRESS_VERSION ParameterExceptionField = "IP_ADDRESS_VERSION" ParameterExceptionField_FIELD_TO_MATCH ParameterExceptionField = "FIELD_TO_MATCH" ParameterExceptionField_TEXT_TRANSFORMATION ParameterExceptionField = "TEXT_TRANSFORMATION" ParameterExceptionField_SINGLE_QUERY_ARGUMENT ParameterExceptionField = "SINGLE_QUERY_ARGUMENT" ParameterExceptionField_SINGLE_HEADER ParameterExceptionField = "SINGLE_HEADER" ParameterExceptionField_DEFAULT_ACTION ParameterExceptionField = "DEFAULT_ACTION" ParameterExceptionField_RULE_ACTION ParameterExceptionField = "RULE_ACTION" ParameterExceptionField_ENTITY_LIMIT ParameterExceptionField = "ENTITY_LIMIT" ParameterExceptionField_OVERRIDE_ACTION ParameterExceptionField = "OVERRIDE_ACTION" ParameterExceptionField_SCOPE_VALUE ParameterExceptionField = "SCOPE_VALUE" ParameterExceptionField_RESOURCE_ARN ParameterExceptionField = "RESOURCE_ARN" ParameterExceptionField_RESOURCE_TYPE ParameterExceptionField = "RESOURCE_TYPE" ParameterExceptionField_TAGS ParameterExceptionField = "TAGS" ParameterExceptionField_TAG_KEYS ParameterExceptionField = "TAG_KEYS" ParameterExceptionField_METRIC_NAME ParameterExceptionField = "METRIC_NAME" ParameterExceptionField_FIREWALL_MANAGER_STATEMENT ParameterExceptionField = "FIREWALL_MANAGER_STATEMENT" ParameterExceptionField_FALLBACK_BEHAVIOR ParameterExceptionField = "FALLBACK_BEHAVIOR" ParameterExceptionField_POSITION ParameterExceptionField = "POSITION" ParameterExceptionField_FORWARDED_IP_CONFIG ParameterExceptionField = "FORWARDED_IP_CONFIG" ParameterExceptionField_IP_SET_FORWARDED_IP_CONFIG ParameterExceptionField = "IP_SET_FORWARDED_IP_CONFIG" ParameterExceptionField_HEADER_NAME ParameterExceptionField = "HEADER_NAME" ParameterExceptionField_CUSTOM_REQUEST_HANDLING ParameterExceptionField = "CUSTOM_REQUEST_HANDLING" ParameterExceptionField_RESPONSE_CONTENT_TYPE ParameterExceptionField = "RESPONSE_CONTENT_TYPE" ParameterExceptionField_CUSTOM_RESPONSE ParameterExceptionField = "CUSTOM_RESPONSE" ParameterExceptionField_CUSTOM_RESPONSE_BODY ParameterExceptionField = "CUSTOM_RESPONSE_BODY" ParameterExceptionField_JSON_MATCH_PATTERN ParameterExceptionField = "JSON_MATCH_PATTERN" ParameterExceptionField_JSON_MATCH_SCOPE ParameterExceptionField = "JSON_MATCH_SCOPE" ParameterExceptionField_BODY_PARSING_FALLBACK_BEHAVIOR ParameterExceptionField = "BODY_PARSING_FALLBACK_BEHAVIOR" ParameterExceptionField_LOGGING_FILTER ParameterExceptionField = "LOGGING_FILTER" ParameterExceptionField_FILTER_CONDITION ParameterExceptionField = "FILTER_CONDITION" ParameterExceptionField_EXPIRE_TIMESTAMP ParameterExceptionField = "EXPIRE_TIMESTAMP" ParameterExceptionField_CHANGE_PROPAGATION_STATUS ParameterExceptionField = "CHANGE_PROPAGATION_STATUS" ParameterExceptionField_ASSOCIABLE_RESOURCE ParameterExceptionField = "ASSOCIABLE_RESOURCE" ParameterExceptionField_LOG_DESTINATION ParameterExceptionField = "LOG_DESTINATION" ParameterExceptionField_MANAGED_RULE_GROUP_CONFIG ParameterExceptionField = "MANAGED_RULE_GROUP_CONFIG" ParameterExceptionField_PAYLOAD_TYPE ParameterExceptionField = "PAYLOAD_TYPE" ParameterExceptionField_HEADER_MATCH_PATTERN ParameterExceptionField = "HEADER_MATCH_PATTERN" ParameterExceptionField_COOKIE_MATCH_PATTERN ParameterExceptionField = "COOKIE_MATCH_PATTERN" ParameterExceptionField_MAP_MATCH_SCOPE ParameterExceptionField = "MAP_MATCH_SCOPE" ParameterExceptionField_OVERSIZE_HANDLING ParameterExceptionField = "OVERSIZE_HANDLING" ParameterExceptionField_CHALLENGE_CONFIG ParameterExceptionField = "CHALLENGE_CONFIG" ParameterExceptionField_TOKEN_DOMAIN ParameterExceptionField = "TOKEN_DOMAIN" ParameterExceptionField_ATP_RULE_SET_RESPONSE_INSPECTION ParameterExceptionField = "ATP_RULE_SET_RESPONSE_INSPECTION" ParameterExceptionField_ASSOCIATED_RESOURCE_TYPE ParameterExceptionField = "ASSOCIATED_RESOURCE_TYPE" ParameterExceptionField_SCOPE_DOWN ParameterExceptionField = "SCOPE_DOWN" ParameterExceptionField_CUSTOM_KEYS ParameterExceptionField = "CUSTOM_KEYS" ParameterExceptionField_ACP_RULE_SET_RESPONSE_INSPECTION ParameterExceptionField = "ACP_RULE_SET_RESPONSE_INSPECTION" )
type PayloadType ¶
type PayloadType string
const ( PayloadType_JSON PayloadType = "JSON" PayloadType_FORM_ENCODED PayloadType = "FORM_ENCODED" )
type PositionalConstraint ¶
type PositionalConstraint string
const ( PositionalConstraint_EXACTLY PositionalConstraint = "EXACTLY" PositionalConstraint_STARTS_WITH PositionalConstraint = "STARTS_WITH" PositionalConstraint_ENDS_WITH PositionalConstraint = "ENDS_WITH" PositionalConstraint_CONTAINS PositionalConstraint = "CONTAINS" PositionalConstraint_CONTAINS_WORD PositionalConstraint = "CONTAINS_WORD" )
type RateBasedStatementAggregateKeyType ¶
type RateBasedStatementAggregateKeyType string
const ( RateBasedStatementAggregateKeyType_IP RateBasedStatementAggregateKeyType = "IP" RateBasedStatementAggregateKeyType_FORWARDED_IP RateBasedStatementAggregateKeyType = "FORWARDED_IP" RateBasedStatementAggregateKeyType_CUSTOM_KEYS RateBasedStatementAggregateKeyType = "CUSTOM_KEYS" RateBasedStatementAggregateKeyType_CONSTANT RateBasedStatementAggregateKeyType = "CONSTANT" )
type RateBasedStatementManagedKeysIPSet ¶
type RateBasedStatementManagedKeysIPSet struct {
Addresses []*string `json:"addresses,omitempty"`
IPAddressVersion *string `json:"ipAddressVersion,omitempty"`
}
The set of IP addresses that are currently blocked for a RateBasedStatement. This is only available for rate-based rules that aggregate on just the IP address, with the AggregateKeyType set to IP or FORWARDED_IP.
A rate-based rule applies its rule action to requests from IP addresses that are in the rule's managed keys list and that match the rule's scope-down statement. When a rule has no scope-down statement, it applies the action to all requests from the IP addresses that are in the list. The rule applies its rule action to rate limit the matching requests. The action is usually Block but it can be any valid rule action except for Allow.
The maximum number of IP addresses that can be rate limited by a single rate-based rule instance is 10,000. If more than 10,000 addresses exceed the rate limit, WAF limits those with the highest rates.
func (*RateBasedStatementManagedKeysIPSet) DeepCopy ¶
func (in *RateBasedStatementManagedKeysIPSet) DeepCopy() *RateBasedStatementManagedKeysIPSet
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RateBasedStatementManagedKeysIPSet.
func (*RateBasedStatementManagedKeysIPSet) DeepCopyInto ¶
func (in *RateBasedStatementManagedKeysIPSet) DeepCopyInto(out *RateBasedStatementManagedKeysIPSet)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegexPatternSet ¶
type RegexPatternSet struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
Name *string `json:"name,omitempty"`
}
Contains one or more regular expressions.
WAF assigns an ARN to each RegexPatternSet that you create. To use a set in a rule, you provide the ARN to the Rule statement RegexPatternSetReferenceStatement.
func (*RegexPatternSet) DeepCopy ¶
func (in *RegexPatternSet) DeepCopy() *RegexPatternSet
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RegexPatternSet.
func (*RegexPatternSet) DeepCopyInto ¶
func (in *RegexPatternSet) DeepCopyInto(out *RegexPatternSet)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegexPatternSetReferenceStatement ¶
type RegexPatternSetReferenceStatement struct {
ARN *string `json:"arn,omitempty"`
}
A rule statement used to search web request components for matches with regular expressions. To use this, create a RegexPatternSet that specifies the expressions that you want to detect, then use the ARN of that set in this statement. A web request matches the pattern set rule statement if the request component matches any of the patterns in the set. To create a regex pattern set, see CreateRegexPatternSet.
Each regex pattern set rule statement references a regex pattern set. You create and maintain the set independent of your rules. This allows you to use the single set in multiple rules. When you update the referenced set, WAF automatically updates all rules that reference it.
func (*RegexPatternSetReferenceStatement) DeepCopy ¶
func (in *RegexPatternSetReferenceStatement) DeepCopy() *RegexPatternSetReferenceStatement
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RegexPatternSetReferenceStatement.
func (*RegexPatternSetReferenceStatement) DeepCopyInto ¶
func (in *RegexPatternSetReferenceStatement) DeepCopyInto(out *RegexPatternSetReferenceStatement)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegexPatternSetSummary ¶
type RegexPatternSetSummary struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
LockToken *string `json:"lockToken,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information about a RegexPatternSet, returned by operations like create and list. This provides information like the ID, that you can use to retrieve and manage a RegexPatternSet, and the ARN, that you provide to the RegexPatternSetReferenceStatement to use the pattern set in a Rule.
func (*RegexPatternSetSummary) DeepCopy ¶
func (in *RegexPatternSetSummary) DeepCopy() *RegexPatternSetSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RegexPatternSetSummary.
func (*RegexPatternSetSummary) DeepCopyInto ¶
func (in *RegexPatternSetSummary) DeepCopyInto(out *RegexPatternSetSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ResourceType ¶
type ResourceType string
const ( ResourceType_APPLICATION_LOAD_BALANCER ResourceType = "APPLICATION_LOAD_BALANCER" ResourceType_API_GATEWAY ResourceType = "API_GATEWAY" ResourceType_APPSYNC ResourceType = "APPSYNC" ResourceType_COGNITO_USER_POOL ResourceType = "COGNITO_USER_POOL" ResourceType_APP_RUNNER_SERVICE ResourceType = "APP_RUNNER_SERVICE" ResourceType_VERIFIED_ACCESS_INSTANCE ResourceType = "VERIFIED_ACCESS_INSTANCE" )
type ResponseContentType ¶
type ResponseContentType string
const ( ResponseContentType_TEXT_PLAIN ResponseContentType = "TEXT_PLAIN" ResponseContentType_TEXT_HTML ResponseContentType = "TEXT_HTML" ResponseContentType_APPLICATION_JSON ResponseContentType = "APPLICATION_JSON" )
type Rule ¶
type Rule struct {
Name *string `json:"name,omitempty"`
}
A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to manage in some way. Each rule includes one top-level Statement that WAF uses to identify matching web requests, and parameters that govern how WAF handles them.
func (*Rule) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Rule.
func (*Rule) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RuleActionOverride ¶
type RuleActionOverride struct {
Name *string `json:"name,omitempty"`
}
Action setting to use in the place of a rule action that is configured inside the rule group. You specify one override for each rule whose action you want to change.
You can use overrides for testing, for example you can override all of rule actions to Count and then monitor the resulting count metrics to understand how the rule group would handle your web traffic. You can also permanently override some or all actions, to modify how the rule group manages your web traffic.
func (*RuleActionOverride) DeepCopy ¶
func (in *RuleActionOverride) DeepCopy() *RuleActionOverride
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuleActionOverride.
func (*RuleActionOverride) DeepCopyInto ¶
func (in *RuleActionOverride) DeepCopyInto(out *RuleActionOverride)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RuleGroup ¶
type RuleGroup struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
Name *string `json:"name,omitempty"`
}
A rule group defines a collection of rules to inspect and control web requests that you can use in a WebACL. When you create a rule group, you define an immutable capacity limit. If you update a rule group, you must stay within the capacity. This allows others to reuse the rule group with confidence in its capacity requirements.
func (*RuleGroup) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuleGroup.
func (*RuleGroup) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RuleGroupReferenceStatement ¶
type RuleGroupReferenceStatement struct {
ARN *string `json:"arn,omitempty"`
}
A rule statement used to run the rules that are defined in a RuleGroup. To use this, create a rule group with your rules, then provide the ARN of the rule group in this statement.
You cannot nest a RuleGroupReferenceStatement, for example for use inside a NotStatement or OrStatement. You cannot use a rule group reference statement inside another rule group. You can only reference a rule group as a top-level statement within a rule that you define in a web ACL.
func (*RuleGroupReferenceStatement) DeepCopy ¶
func (in *RuleGroupReferenceStatement) DeepCopy() *RuleGroupReferenceStatement
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuleGroupReferenceStatement.
func (*RuleGroupReferenceStatement) DeepCopyInto ¶
func (in *RuleGroupReferenceStatement) DeepCopyInto(out *RuleGroupReferenceStatement)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RuleGroupSummary ¶
type RuleGroupSummary struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
LockToken *string `json:"lockToken,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information about a RuleGroup, returned by operations like create and list. This provides information like the ID, that you can use to retrieve and manage a RuleGroup, and the ARN, that you provide to the RuleGroupReferenceStatement to use the rule group in a Rule.
func (*RuleGroupSummary) DeepCopy ¶
func (in *RuleGroupSummary) DeepCopy() *RuleGroupSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuleGroupSummary.
func (*RuleGroupSummary) DeepCopyInto ¶
func (in *RuleGroupSummary) DeepCopyInto(out *RuleGroupSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RuleSummary ¶
type RuleSummary struct {
Name *string `json:"name,omitempty"`
}
High-level information about a Rule, returned by operations like DescribeManagedRuleGroup. This provides information like the ID, that you can use to retrieve and manage a RuleGroup, and the ARN, that you provide to the RuleGroupReferenceStatement to use the rule group in a Rule.
func (*RuleSummary) DeepCopy ¶
func (in *RuleSummary) DeepCopy() *RuleSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RuleSummary.
func (*RuleSummary) DeepCopyInto ¶
func (in *RuleSummary) DeepCopyInto(out *RuleSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SampledHTTPRequest ¶
type SampledHTTPRequest struct {
RuleNameWithinRuleGroup *string `json:"ruleNameWithinRuleGroup,omitempty"`
}
Represents a single sampled web request. The response from GetSampledRequests includes a SampledHTTPRequests complex type that appears as SampledRequests in the response syntax. SampledHTTPRequests contains an array of SampledHTTPRequest objects.
func (*SampledHTTPRequest) DeepCopy ¶
func (in *SampledHTTPRequest) DeepCopy() *SampledHTTPRequest
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SampledHTTPRequest.
func (*SampledHTTPRequest) DeepCopyInto ¶
func (in *SampledHTTPRequest) DeepCopyInto(out *SampledHTTPRequest)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SensitivityLevel ¶
type SensitivityLevel string
const ( SensitivityLevel_LOW SensitivityLevel = "LOW" SensitivityLevel_HIGH SensitivityLevel = "HIGH" )
type SizeInspectionLimit ¶
type SizeInspectionLimit string
const ( SizeInspectionLimit_KB_16 SizeInspectionLimit = "KB_16" SizeInspectionLimit_KB_32 SizeInspectionLimit = "KB_32" SizeInspectionLimit_KB_48 SizeInspectionLimit = "KB_48" SizeInspectionLimit_KB_64 SizeInspectionLimit = "KB_64" )
type Tag ¶
A tag associated with an Amazon Web Services resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing or other management. Typically, the tag key represents a category, such as "environment", and the tag value represents a specific value within that category, such as "test," "development," or "production". Or you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through WAF: web ACLs, rule groups, IP sets, and regex pattern sets. You can't manage or view tags through the WAF console.
func (*Tag) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Tag.
func (*Tag) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TagInfoForResource ¶
type TagInfoForResource struct {
ResourceARN *string `json:"resourceARN,omitempty"`
TagList []*Tag `json:"tagList,omitempty"`
}
The collection of tagging definitions for an Amazon Web Services resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing or other management. Typically, the tag key represents a category, such as "environment", and the tag value represents a specific value within that category, such as "test," "development," or "production". Or you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
You can tag the Amazon Web Services resources that you manage through WAF: web ACLs, rule groups, IP sets, and regex pattern sets. You can't manage or view tags through the WAF console.
func (*TagInfoForResource) DeepCopy ¶
func (in *TagInfoForResource) DeepCopy() *TagInfoForResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TagInfoForResource.
func (*TagInfoForResource) DeepCopyInto ¶
func (in *TagInfoForResource) DeepCopyInto(out *TagInfoForResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TextTransformationType ¶
type TextTransformationType string
const ( TextTransformationType_NONE TextTransformationType = "NONE" TextTransformationType_COMPRESS_WHITE_SPACE TextTransformationType = "COMPRESS_WHITE_SPACE" TextTransformationType_HTML_ENTITY_DECODE TextTransformationType = "HTML_ENTITY_DECODE" TextTransformationType_LOWERCASE TextTransformationType = "LOWERCASE" TextTransformationType_CMD_LINE TextTransformationType = "CMD_LINE" TextTransformationType_URL_DECODE TextTransformationType = "URL_DECODE" TextTransformationType_BASE64_DECODE TextTransformationType = "BASE64_DECODE" TextTransformationType_HEX_DECODE TextTransformationType = "HEX_DECODE" TextTransformationType_MD5 TextTransformationType = "MD5" TextTransformationType_REPLACE_COMMENTS TextTransformationType = "REPLACE_COMMENTS" TextTransformationType_ESCAPE_SEQ_DECODE TextTransformationType = "ESCAPE_SEQ_DECODE" TextTransformationType_SQL_HEX_DECODE TextTransformationType = "SQL_HEX_DECODE" TextTransformationType_CSS_DECODE TextTransformationType = "CSS_DECODE" TextTransformationType_JS_DECODE TextTransformationType = "JS_DECODE" TextTransformationType_NORMALIZE_PATH TextTransformationType = "NORMALIZE_PATH" TextTransformationType_NORMALIZE_PATH_WIN TextTransformationType = "NORMALIZE_PATH_WIN" TextTransformationType_REMOVE_NULLS TextTransformationType = "REMOVE_NULLS" TextTransformationType_REPLACE_NULLS TextTransformationType = "REPLACE_NULLS" TextTransformationType_BASE64_DECODE_EXT TextTransformationType = "BASE64_DECODE_EXT" TextTransformationType_URL_DECODE_UNI TextTransformationType = "URL_DECODE_UNI" TextTransformationType_UTF8_TO_UNICODE TextTransformationType = "UTF8_TO_UNICODE" )
type VersionToPublish ¶
type VersionToPublish struct {
AssociatedRuleGroupARN *string `json:"associatedRuleGroupARN,omitempty"`
}
A version of the named managed rule group, that the rule group's vendor publishes for use by customers.
This is intended for use only by vendors of managed rule sets. Vendors are Amazon Web Services and Amazon Web Services Marketplace sellers.
Vendors, you can use the managed rule set APIs to provide controlled rollout of your versioned managed rule group offerings for your customers. The APIs are ListManagedRuleSets, GetManagedRuleSet, PutManagedRuleSetVersions, and UpdateManagedRuleSetVersionExpiryDate.
func (*VersionToPublish) DeepCopy ¶
func (in *VersionToPublish) DeepCopy() *VersionToPublish
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VersionToPublish.
func (*VersionToPublish) DeepCopyInto ¶
func (in *VersionToPublish) DeepCopyInto(out *VersionToPublish)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type WebACL ¶
type WebACL struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
Name *string `json:"name,omitempty"`
}
A web ACL defines a collection of rules to use to inspect and control web requests. Each rule has a statement that defines what to look for in web requests and an action that WAF applies to requests that match the statement. In the web ACL, you assign a default action to take (allow, block) for any request that does not match any of the rules. The rules in a web ACL can be a combination of the types Rule, RuleGroup, and managed rule group. You can associate a web ACL with one or more Amazon Web Services resources to protect. The resources can be an Amazon CloudFront distribution, an Amazon API Gateway REST API, an Application Load Balancer, an AppSync GraphQL API, an Amazon Cognito user pool, an App Runner service, or an Amazon Web Services Verified Access instance.
func (*WebACL) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new WebACL.
func (*WebACL) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type WebACLSummary ¶
type WebACLSummary struct {
ARN *string `json:"arn,omitempty"`
Description *string `json:"description,omitempty"`
ID *string `json:"id,omitempty"`
LockToken *string `json:"lockToken,omitempty"`
Name *string `json:"name,omitempty"`
}
High-level information about a WebACL, returned by operations like create and list. This provides information like the ID, that you can use to retrieve and manage a WebACL, and the ARN, that you provide to operations like AssociateWebACL.
func (*WebACLSummary) DeepCopy ¶
func (in *WebACLSummary) DeepCopy() *WebACLSummary
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new WebACLSummary.
func (*WebACLSummary) DeepCopyInto ¶
func (in *WebACLSummary) DeepCopyInto(out *WebACLSummary)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files