Interface CfnWebACL.IChallengeActionProperty

Specifies that AWS WAF should run a Challenge check against the request to verify that the request is coming from a legitimate client session: - If the request includes a valid, unexpired challenge token, AWS WAF applies any custom request handling and labels that you've configured and then allows the web request inspection to proceed to the next rule, similar to a CountAction .

Namespace: Amazon.CDK.AWS.WAFv2
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public interface CfnWebACL.IChallengeActionProperty
Syntax (vb)
Public Interface CfnWebACL.IChallengeActionProperty
Remarks

    AWS WAF then generates a challenge response that it sends back to the client, which includes the following:

      Challenges run silent browser interrogations in the background, and don't generally affect the end user experience.

      A challenge enforces token acquisition using an interstitial JavaScript challenge that inspects the client session for legitimate behavior. The challenge blocks bots or at least increases the cost of operating sophisticated bots.

      After the client session successfully responds to the challenge, it receives a new token from AWS WAF , which the challenge script uses to resubmit the original request.

      You can configure the expiration time in the ChallengeConfig ImmunityTimeProperty setting at the rule and web ACL level. The rule setting overrides the web ACL setting.

      This action option is available for rules. It isn't available for web ACL default actions.

      See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-challengeaction.html

      ExampleMetadata: fixture=_generated

      Examples
      // The code below shows an example of how to instantiate this type.
             // The values are placeholders you should change.
             using Amazon.CDK.AWS.WAFv2;

             var challengeActionProperty = new ChallengeActionProperty {
                 CustomRequestHandling = new CustomRequestHandlingProperty {
                     InsertHeaders = new [] { new CustomHTTPHeaderProperty {
                         Name = "name",
                         Value = "value"
                     } }
                 }
             };

      Synopsis

      Properties

      CustomRequestHandling

      Defines custom handling for the web request, used when the challenge inspection determines that the request's token is valid and unexpired.

      Properties

      CustomRequestHandling

      Defines custom handling for the web request, used when the challenge inspection determines that the request's token is valid and unexpired.

      object? CustomRequestHandling { get; }
      Property Value

      object

      Remarks

      For information about customizing web requests and responses, see Customizing web requests and responses in AWS WAF in the AWS WAF developer guide .

      See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-challengeaction.html#cfn-wafv2-webacl-challengeaction-customrequesthandling

      Type union: either IResolvable or CfnWebACL.ICustomRequestHandlingProperty