AWS::WAFv2::WebACL RegexPatternSetReferenceStatement - AWS CloudFormation

AWS::WAFv2::WebACL RegexPatternSetReferenceStatement

A rule statement used to search web request components for matches with regular expressions. To use this, create a AWS::WAFv2::RegexPatternSet that specifies the expressions that you want to detect, then use that set in this statement. A web request matches the pattern set rule statement if the request component matches any of the patterns in the set.

Each regex pattern set rule statement references a regex pattern set. You create and maintain the set independent of your rules. This allows you to use the single set in multiple rules. When you update the referenced set, AWS WAF automatically updates all rules that reference it.


To declare this entity in your AWS CloudFormation template, use the following syntax:


{ "Arn" : String, "FieldToMatch" : FieldToMatch, "TextTransformations" : [ TextTransformation, ... ] }



The Amazon Resource Name (ARN) of the regular expression pattern set that this statement references.

Required: Yes

Type: String

Minimum: 20

Maximum: 2048

Pattern: .*\S.*

Update requires: No interruption


The part of a web request that you want AWS WAF to inspect. For more information, see FieldToMatch.

Required: Yes

Type: FieldToMatch

Update requires: No interruption


Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection. If you specify one or more transformations in a rule statement, AWS WAF performs all transformations on the content identified by FieldToMatch, starting from the lowest priority setting, before inspecting the content for a match.

Required: Yes

Type: List of TextTransformation

Update requires: No interruption