AWS WAF XssMatchSet XssMatchTuple
XssMatchTuple is a property of the AWS::WAF::XssMatchSet resource that specifies the part of a web request that you want AWS WAF to inspect for cross-site scripting attacks.
The part of a web request that you want AWS WAF to search, such as a specific header or a query string.
Specifies how AWS WAF processes the
FieldToMatchproperty before inspecting a request for a match. Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF. If you specify a transformation, AWS WAF transforms the
FieldToMatchparameter before inspecting a web request for a match.
For example, AWS WAF can replace white space characters (such as
\n) with a single space. For valid values, see the
TextTransformationcontent for the XssMatchTuple data type in the AWS WAF API Reference.