Namespace Amazon.CDK.AWS.WAFv2

Classes

CfnIPSet

This is the latest version of AWS WAF , named AWS WAF V2, released in November, 2019.
CfnIPSetProps

Properties for defining a CfnIPSet.
CfnLoggingConfiguration

Defines an association between logging destinations and a web ACL resource, for logging from AWS WAF .
CfnLoggingConfiguration.ActionConditionProperty

A single action condition for a condition in a logging filter.
CfnLoggingConfiguration.ConditionProperty

A single match condition for a log filter.
CfnLoggingConfiguration.FieldToMatchProperty

The parts of the request that you want to keep out of the logs.
CfnLoggingConfiguration.FilterProperty

A single logging filter, used in LoggingFilter .
CfnLoggingConfiguration.JsonBodyProperty
CfnLoggingConfiguration.LabelNameConditionProperty

A single label name condition for a condition in a logging filter.
CfnLoggingConfiguration.LoggingFilterProperty

Filtering that specifies which web requests are kept in the logs and which are dropped, defined for a web ACL's LoggingConfiguration .
CfnLoggingConfiguration.MatchPatternProperty
CfnLoggingConfiguration.SingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnLoggingConfigurationProps

Properties for defining a CfnLoggingConfiguration.
CfnRegexPatternSet

This is the latest version of AWS WAF , named AWS WAF V2, released in November, 2019.
CfnRegexPatternSetProps

Properties for defining a CfnRegexPatternSet.
CfnRuleGroup

This is the latest version of AWS WAF , named AWS WAF V2, released in November, 2019.
CfnRuleGroup.AllowProperty

Allow traffic towards application.
CfnRuleGroup.AndStatementProperty

A logical rule statement used to combine other rule statements with AND logic.
CfnRuleGroup.AsnMatchStatementProperty

A rule statement that inspects web traffic based on the Autonomous System Number (ASN) associated with the request's IP address.
CfnRuleGroup.BlockProperty

Block traffic towards application.
CfnRuleGroup.BodyProperty

Inspect the body of the web request. The body immediately follows the request headers.
CfnRuleGroup.ByteMatchStatementProperty

A rule statement that defines a string match search for AWS WAF to apply to web requests.
CfnRuleGroup.CaptchaConfigProperty

Specifies how AWS WAF should handle CAPTCHA evaluations.
CfnRuleGroup.CaptchaProperty

Checks valid token exists with request.
CfnRuleGroup.ChallengeConfigProperty

Specifies how AWS WAF should handle Challenge evaluations.
CfnRuleGroup.ChallengeProperty

Checks that the request has a valid token with an unexpired challenge timestamp and, if not, returns a browser challenge to the client.
CfnRuleGroup.CookieMatchPatternProperty

The filter to use to identify the subset of cookies to inspect in a web request.
CfnRuleGroup.CookiesProperty

Inspect the cookies in the web request.
CfnRuleGroup.CountProperty

Count traffic towards application.
CfnRuleGroup.CustomHTTPHeaderProperty

A custom header for custom request and response handling.
CfnRuleGroup.CustomRequestHandlingProperty

Custom request handling behavior that inserts custom headers into a web request.
CfnRuleGroup.CustomResponseBodyProperty

The response body to use in a custom response to a web request.
CfnRuleGroup.CustomResponseProperty

A custom response to send to the client.
CfnRuleGroup.FieldToMatchProperty

Specifies a web request component to be used in a rule match statement or in a logging configuration.
CfnRuleGroup.ForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnRuleGroup.GeoMatchStatementProperty

A rule statement that labels web requests by country and region and that matches against web requests based on country code.
CfnRuleGroup.HeaderMatchPatternProperty

The filter to use to identify the subset of headers to inspect in a web request.
CfnRuleGroup.HeaderOrderProperty

The string containing the list of a web request's header names, ordered as they appear in the web request, separated by colons.
CfnRuleGroup.HeadersProperty

Inspect all headers in the web request.
CfnRuleGroup.IPSetForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnRuleGroup.IPSetReferenceStatementProperty

A rule statement used to detect web requests coming from particular IP addresses or address ranges.
CfnRuleGroup.ImmunityTimePropertyProperty

Used for CAPTCHA and challenge token settings.
CfnRuleGroup.JA3FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnRuleGroup.JA4FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnRuleGroup.JsonBodyProperty

Inspect the body of the web request as JSON. The body immediately follows the request headers.
CfnRuleGroup.JsonMatchPatternProperty

The patterns to look for in the JSON body.
CfnRuleGroup.LabelMatchStatementProperty

A rule statement to match against labels that have been added to the web request by rules that have already run in the web ACL.
CfnRuleGroup.LabelProperty

A single label container.
CfnRuleGroup.LabelSummaryProperty

List of labels used by one or more of the rules of a RuleGroup .
CfnRuleGroup.NotStatementProperty

A logical rule statement used to negate the results of another rule statement.
CfnRuleGroup.OrStatementProperty

A logical rule statement used to combine other rule statements with OR logic.
CfnRuleGroup.RateBasedStatementCustomKeyProperty

Specifies a single custom aggregate key for a rate-base rule.
CfnRuleGroup.RateBasedStatementProperty

A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate.
CfnRuleGroup.RateLimitCookieProperty

Specifies a cookie as an aggregate key for a rate-based rule.
CfnRuleGroup.RateLimitHeaderProperty

Specifies a header as an aggregate key for a rate-based rule.
CfnRuleGroup.RateLimitJA3FingerprintProperty

Use the request's JA3 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnRuleGroup.RateLimitJA4FingerprintProperty

Use the request's JA4 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnRuleGroup.RateLimitLabelNamespaceProperty

Specifies a label namespace to use as an aggregate key for a rate-based rule.
CfnRuleGroup.RateLimitQueryArgumentProperty

Specifies a query argument in the request as an aggregate key for a rate-based rule.
CfnRuleGroup.RateLimitQueryStringProperty

Specifies the request's query string as an aggregate key for a rate-based rule.
CfnRuleGroup.RateLimitUriPathProperty

Specifies the request's URI path as an aggregate key for a rate-based rule.
CfnRuleGroup.RegexMatchStatementProperty

A rule statement used to search web request components for a match against a single regular expression.
CfnRuleGroup.RegexPatternSetReferenceStatementProperty

A rule statement used to search web request components for matches with regular expressions.
CfnRuleGroup.RuleActionProperty

The action that AWS WAF should take on a web request when it matches a rule's statement.
CfnRuleGroup.RuleProperty

A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to manage in some way.
CfnRuleGroup.SingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnRuleGroup.SingleQueryArgumentProperty

Inspect one query argument in the web request, identified by name, for example UserName or SalesRegion .
CfnRuleGroup.SizeConstraintStatementProperty

A rule statement that compares a number of bytes against the size of a request component, using a comparison operator, such as greater than (>) or less than (<).
CfnRuleGroup.SqliMatchStatementProperty

A rule statement that inspects for malicious SQL code.
CfnRuleGroup.StatementProperty

The processing guidance for a rule, used by AWS WAF to determine whether a web request matches the rule.
CfnRuleGroup.TextTransformationProperty

Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.
CfnRuleGroup.UriFragmentProperty

Inspect fragments of the request URI.
CfnRuleGroup.VisibilityConfigProperty

Defines and enables Amazon CloudWatch metrics and web request sample collection.
CfnRuleGroup.XssMatchStatementProperty

A rule statement that inspects for cross-site scripting (XSS) attacks.
CfnRuleGroupProps

Properties for defining a CfnRuleGroup.
CfnWebACL

This is the latest version of AWS WAF , named AWS WAF V2, released in November, 2019.
CfnWebACL.AWSManagedRulesACFPRuleSetProperty

Details for your use of the account creation fraud prevention managed rule group, AWSManagedRulesACFPRuleSet .
CfnWebACL.AWSManagedRulesATPRuleSetProperty

Details for your use of the account takeover prevention managed rule group, AWSManagedRulesATPRuleSet .
CfnWebACL.AWSManagedRulesAntiDDoSRuleSetProperty

Configures the use of the anti-DDoS managed rule group, AWSManagedRulesAntiDDoSRuleSet . This configuration is used in ManagedRuleGroupConfig .
CfnWebACL.AWSManagedRulesBotControlRuleSetProperty

Details for your use of the Bot Control managed rule group, AWSManagedRulesBotControlRuleSet .
CfnWebACL.AllowActionProperty

Specifies that AWS WAF should allow the request and optionally defines additional custom handling for the request.
CfnWebACL.AndStatementProperty

A logical rule statement used to combine other rule statements with AND logic.
CfnWebACL.ApplicationAttributeProperty

Application details defined during the web ACL creation process.
CfnWebACL.ApplicationConfigProperty

A list of ApplicationAttribute s that contains information about the application.
CfnWebACL.AsnMatchStatementProperty

A rule statement that inspects web traffic based on the Autonomous System Number (ASN) associated with the request's IP address.
CfnWebACL.AssociationConfigProperty

Specifies custom configurations for the associations between the web ACL and protected resources.
CfnWebACL.BlockActionProperty

Specifies that AWS WAF should block the request and optionally defines additional custom handling for the response to the web request.
CfnWebACL.BodyProperty

Inspect the body of the web request. The body immediately follows the request headers.
CfnWebACL.ByteMatchStatementProperty

A rule statement that defines a string match search for AWS WAF to apply to web requests.
CfnWebACL.CaptchaActionProperty

Specifies that AWS WAF should run a CAPTCHA check against the request:.
CfnWebACL.CaptchaConfigProperty

Specifies how AWS WAF should handle CAPTCHA evaluations for rules that don't have their own CaptchaConfig settings.
CfnWebACL.ChallengeActionProperty

Specifies that AWS WAF should run a Challenge check against the request to verify that the request is coming from a legitimate client session: - If the request includes a valid, unexpired challenge token, AWS WAF applies any custom request handling and labels that you've configured and then allows the web request inspection to proceed to the next rule, similar to a CountAction .
CfnWebACL.ChallengeConfigProperty

Specifies how AWS WAF should handle Challenge evaluations.
CfnWebACL.ClientSideActionConfigProperty

This is part of the configuration for the managed rules AWSManagedRulesAntiDDoSRuleSet in ManagedRuleGroupConfig .
CfnWebACL.ClientSideActionProperty

This is part of the AWSManagedRulesAntiDDoSRuleSet ClientSideActionConfig configuration in ManagedRuleGroupConfig .
CfnWebACL.CookieMatchPatternProperty

The filter to use to identify the subset of cookies to inspect in a web request.
CfnWebACL.CookiesProperty

Inspect the cookies in the web request.
CfnWebACL.CountActionProperty

Specifies that AWS WAF should count the request. Optionally defines additional custom handling for the request.
CfnWebACL.CustomHTTPHeaderProperty

A custom header for custom request and response handling.
CfnWebACL.CustomRequestHandlingProperty

Custom request handling behavior that inserts custom headers into a web request.
CfnWebACL.CustomResponseBodyProperty

The response body to use in a custom response to a web request.
CfnWebACL.CustomResponseProperty

A custom response to send to the client.
CfnWebACL.DataProtectProperty
CfnWebACL.DataProtectionConfigProperty

Specifies data protection to apply to the web request data for the web ACL.
CfnWebACL.DefaultActionProperty

In a WebACL , this is the action that you want AWS WAF to perform when a web request doesn't match any of the rules in the WebACL .
CfnWebACL.ExcludedRuleProperty

Specifies a single rule in a rule group whose action you want to override to Count .
CfnWebACL.FieldIdentifierProperty

The identifier of a field in the web request payload that contains customer data.
CfnWebACL.FieldToMatchProperty

Specifies a web request component to be used in a rule match statement or in a logging configuration.
CfnWebACL.FieldToProtectProperty

Specifies a field type and keys to protect in stored web request data.
CfnWebACL.ForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnWebACL.GeoMatchStatementProperty

A rule statement that labels web requests by country and region and that matches against web requests based on country code.
CfnWebACL.HeaderMatchPatternProperty

The filter to use to identify the subset of headers to inspect in a web request.
CfnWebACL.HeaderOrderProperty

The string containing the list of a web request's header names, ordered as they appear in the web request, separated by colons.
CfnWebACL.HeadersProperty

Inspect all headers in the web request.
CfnWebACL.IPSetForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnWebACL.IPSetReferenceStatementProperty

A rule statement used to detect web requests coming from particular IP addresses or address ranges.
CfnWebACL.ImmunityTimePropertyProperty

Used for CAPTCHA and challenge token settings.
CfnWebACL.JA3FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnWebACL.JA4FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnWebACL.JsonBodyProperty

Inspect the body of the web request as JSON. The body immediately follows the request headers.
CfnWebACL.JsonMatchPatternProperty

The patterns to look for in the JSON body.
CfnWebACL.LabelMatchStatementProperty

A rule statement to match against labels that have been added to the web request by rules that have already run in the web ACL.
CfnWebACL.LabelProperty

A single label container.
CfnWebACL.ManagedRuleGroupConfigProperty

Additional information that's used by a managed rule group. Many managed rule groups don't require this.
CfnWebACL.ManagedRuleGroupStatementProperty

A rule statement used to run the rules that are defined in a managed rule group.
CfnWebACL.NotStatementProperty

A logical rule statement used to negate the results of another rule statement.
CfnWebACL.OnSourceDDoSProtectionConfigProperty

Configures the level of DDoS protection that applies to web ACLs associated with Application Load Balancers.
CfnWebACL.OrStatementProperty

A logical rule statement used to combine other rule statements with OR logic.
CfnWebACL.OverrideActionProperty

The action to use in the place of the action that results from the rule group evaluation.
CfnWebACL.RateBasedStatementCustomKeyProperty

Specifies a single custom aggregate key for a rate-base rule.
CfnWebACL.RateBasedStatementProperty

A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate.
CfnWebACL.RateLimitCookieProperty

Specifies a cookie as an aggregate key for a rate-based rule.
CfnWebACL.RateLimitHeaderProperty

Specifies a header as an aggregate key for a rate-based rule.
CfnWebACL.RateLimitJA3FingerprintProperty

Use the request's JA3 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnWebACL.RateLimitJA4FingerprintProperty

Use the request's JA4 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnWebACL.RateLimitLabelNamespaceProperty

Specifies a label namespace to use as an aggregate key for a rate-based rule.
CfnWebACL.RateLimitQueryArgumentProperty

Specifies a query argument in the request as an aggregate key for a rate-based rule.
CfnWebACL.RateLimitQueryStringProperty

Specifies the request's query string as an aggregate key for a rate-based rule.
CfnWebACL.RateLimitUriPathProperty

Specifies the request's URI path as an aggregate key for a rate-based rule.
CfnWebACL.RegexMatchStatementProperty

A rule statement used to search web request components for a match against a single regular expression.
CfnWebACL.RegexPatternSetReferenceStatementProperty

A rule statement used to search web request components for matches with regular expressions.
CfnWebACL.RegexProperty

A single regular expression.
CfnWebACL.RequestBodyAssociatedResourceTypeConfigProperty

Customizes the maximum size of the request body that your protected CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified Access resources forward to AWS WAF for inspection.
CfnWebACL.RequestInspectionACFPProperty

The criteria for inspecting account creation requests, used by the ACFP rule group to validate and track account creation attempts.
CfnWebACL.RequestInspectionProperty

The criteria for inspecting login requests, used by the ATP rule group to validate credentials usage.
CfnWebACL.ResponseInspectionBodyContainsProperty

Configures inspection of the response body.
CfnWebACL.ResponseInspectionHeaderProperty

Configures inspection of the response header. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet and AWSManagedRulesACFPRuleSet .
CfnWebACL.ResponseInspectionJsonProperty

Configures inspection of the response JSON.
CfnWebACL.ResponseInspectionProperty

The criteria for inspecting responses to login requests and account creation requests, used by the ATP and ACFP rule groups to track login and account creation success and failure rates.
CfnWebACL.ResponseInspectionStatusCodeProperty

Configures inspection of the response status code. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet and AWSManagedRulesACFPRuleSet .
CfnWebACL.RuleActionOverrideProperty

Action setting to use in the place of a rule action that is configured inside the rule group.
CfnWebACL.RuleActionProperty

The action that AWS WAF should take on a web request when it matches a rule's statement.
CfnWebACL.RuleGroupReferenceStatementProperty

A rule statement used to run the rules that are defined in a RuleGroup .
CfnWebACL.RuleProperty

A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to manage in some way.
CfnWebACL.SingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnWebACL.SingleQueryArgumentProperty

Inspect one query argument in the web request, identified by name, for example UserName or SalesRegion .
CfnWebACL.SizeConstraintStatementProperty

A rule statement that compares a number of bytes against the size of a request component, using a comparison operator, such as greater than (>) or less than (<).
CfnWebACL.SqliMatchStatementProperty

A rule statement that inspects for malicious SQL code.
CfnWebACL.StatementProperty

The processing guidance for a rule, used by AWS WAF to determine whether a web request matches the rule.
CfnWebACL.TextTransformationProperty

Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.
CfnWebACL.UriFragmentProperty

Inspect fragments of the request URI.
CfnWebACL.VisibilityConfigProperty

Defines and enables Amazon CloudWatch metrics and web request sample collection.
CfnWebACL.XssMatchStatementProperty

A rule statement that inspects for cross-site scripting (XSS) attacks.
CfnWebACLAssociation

This is the latest version of AWS WAF , named AWS WAF V2, released in November, 2019.
CfnWebACLAssociationProps

Properties for defining a CfnWebACLAssociation.
CfnWebACLProps

Properties for defining a CfnWebACL.

Interfaces

CfnLoggingConfiguration.IActionConditionProperty

A single action condition for a condition in a logging filter.
CfnLoggingConfiguration.IConditionProperty

A single match condition for a log filter.
CfnLoggingConfiguration.IFieldToMatchProperty

The parts of the request that you want to keep out of the logs.
CfnLoggingConfiguration.IFilterProperty

A single logging filter, used in LoggingFilter .
CfnLoggingConfiguration.IJsonBodyProperty
CfnLoggingConfiguration.ILabelNameConditionProperty

A single label name condition for a condition in a logging filter.
CfnLoggingConfiguration.ILoggingFilterProperty

Filtering that specifies which web requests are kept in the logs and which are dropped, defined for a web ACL's LoggingConfiguration .
CfnLoggingConfiguration.IMatchPatternProperty
CfnLoggingConfiguration.ISingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnRuleGroup.IAllowProperty

Allow traffic towards application.
CfnRuleGroup.IAndStatementProperty

A logical rule statement used to combine other rule statements with AND logic.
CfnRuleGroup.IAsnMatchStatementProperty

A rule statement that inspects web traffic based on the Autonomous System Number (ASN) associated with the request's IP address.
CfnRuleGroup.IBlockProperty

Block traffic towards application.
CfnRuleGroup.IBodyProperty

Inspect the body of the web request. The body immediately follows the request headers.
CfnRuleGroup.IByteMatchStatementProperty

A rule statement that defines a string match search for AWS WAF to apply to web requests.
CfnRuleGroup.ICaptchaConfigProperty

Specifies how AWS WAF should handle CAPTCHA evaluations.
CfnRuleGroup.ICaptchaProperty

Checks valid token exists with request.
CfnRuleGroup.IChallengeConfigProperty

Specifies how AWS WAF should handle Challenge evaluations.
CfnRuleGroup.IChallengeProperty

Checks that the request has a valid token with an unexpired challenge timestamp and, if not, returns a browser challenge to the client.
CfnRuleGroup.ICookieMatchPatternProperty

The filter to use to identify the subset of cookies to inspect in a web request.
CfnRuleGroup.ICookiesProperty

Inspect the cookies in the web request.
CfnRuleGroup.ICountProperty

Count traffic towards application.
CfnRuleGroup.ICustomHTTPHeaderProperty

A custom header for custom request and response handling.
CfnRuleGroup.ICustomRequestHandlingProperty

Custom request handling behavior that inserts custom headers into a web request.
CfnRuleGroup.ICustomResponseBodyProperty

The response body to use in a custom response to a web request.
CfnRuleGroup.ICustomResponseProperty

A custom response to send to the client.
CfnRuleGroup.IFieldToMatchProperty

Specifies a web request component to be used in a rule match statement or in a logging configuration.
CfnRuleGroup.IForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnRuleGroup.IGeoMatchStatementProperty

A rule statement that labels web requests by country and region and that matches against web requests based on country code.
CfnRuleGroup.IHeaderMatchPatternProperty

The filter to use to identify the subset of headers to inspect in a web request.
CfnRuleGroup.IHeaderOrderProperty

The string containing the list of a web request's header names, ordered as they appear in the web request, separated by colons.
CfnRuleGroup.IHeadersProperty

Inspect all headers in the web request.
CfnRuleGroup.IIPSetForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnRuleGroup.IIPSetReferenceStatementProperty

A rule statement used to detect web requests coming from particular IP addresses or address ranges.
CfnRuleGroup.IImmunityTimePropertyProperty

Used for CAPTCHA and challenge token settings.
CfnRuleGroup.IJA3FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnRuleGroup.IJA4FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnRuleGroup.IJsonBodyProperty

Inspect the body of the web request as JSON. The body immediately follows the request headers.
CfnRuleGroup.IJsonMatchPatternProperty

The patterns to look for in the JSON body.
CfnRuleGroup.ILabelMatchStatementProperty

A rule statement to match against labels that have been added to the web request by rules that have already run in the web ACL.
CfnRuleGroup.ILabelProperty

A single label container.
CfnRuleGroup.ILabelSummaryProperty

List of labels used by one or more of the rules of a RuleGroup .
CfnRuleGroup.INotStatementProperty

A logical rule statement used to negate the results of another rule statement.
CfnRuleGroup.IOrStatementProperty

A logical rule statement used to combine other rule statements with OR logic.
CfnRuleGroup.IRateBasedStatementCustomKeyProperty

Specifies a single custom aggregate key for a rate-base rule.
CfnRuleGroup.IRateBasedStatementProperty

A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate.
CfnRuleGroup.IRateLimitCookieProperty

Specifies a cookie as an aggregate key for a rate-based rule.
CfnRuleGroup.IRateLimitHeaderProperty

Specifies a header as an aggregate key for a rate-based rule.
CfnRuleGroup.IRateLimitJA3FingerprintProperty

Use the request's JA3 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnRuleGroup.IRateLimitJA4FingerprintProperty

Use the request's JA4 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnRuleGroup.IRateLimitLabelNamespaceProperty

Specifies a label namespace to use as an aggregate key for a rate-based rule.
CfnRuleGroup.IRateLimitQueryArgumentProperty

Specifies a query argument in the request as an aggregate key for a rate-based rule.
CfnRuleGroup.IRateLimitQueryStringProperty

Specifies the request's query string as an aggregate key for a rate-based rule.
CfnRuleGroup.IRateLimitUriPathProperty

Specifies the request's URI path as an aggregate key for a rate-based rule.
CfnRuleGroup.IRegexMatchStatementProperty

A rule statement used to search web request components for a match against a single regular expression.
CfnRuleGroup.IRegexPatternSetReferenceStatementProperty

A rule statement used to search web request components for matches with regular expressions.
CfnRuleGroup.IRuleActionProperty

The action that AWS WAF should take on a web request when it matches a rule's statement.
CfnRuleGroup.IRuleProperty

A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to manage in some way.
CfnRuleGroup.ISingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnRuleGroup.ISingleQueryArgumentProperty

Inspect one query argument in the web request, identified by name, for example UserName or SalesRegion .
CfnRuleGroup.ISizeConstraintStatementProperty

A rule statement that compares a number of bytes against the size of a request component, using a comparison operator, such as greater than (>) or less than (<).
CfnRuleGroup.ISqliMatchStatementProperty

A rule statement that inspects for malicious SQL code.
CfnRuleGroup.IStatementProperty

The processing guidance for a rule, used by AWS WAF to determine whether a web request matches the rule.
CfnRuleGroup.ITextTransformationProperty

Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.
CfnRuleGroup.IUriFragmentProperty

Inspect fragments of the request URI.
CfnRuleGroup.IVisibilityConfigProperty

Defines and enables Amazon CloudWatch metrics and web request sample collection.
CfnRuleGroup.IXssMatchStatementProperty

A rule statement that inspects for cross-site scripting (XSS) attacks.
CfnWebACL.IAWSManagedRulesACFPRuleSetProperty

Details for your use of the account creation fraud prevention managed rule group, AWSManagedRulesACFPRuleSet .
CfnWebACL.IAWSManagedRulesATPRuleSetProperty

Details for your use of the account takeover prevention managed rule group, AWSManagedRulesATPRuleSet .
CfnWebACL.IAWSManagedRulesAntiDDoSRuleSetProperty

Configures the use of the anti-DDoS managed rule group, AWSManagedRulesAntiDDoSRuleSet . This configuration is used in ManagedRuleGroupConfig .
CfnWebACL.IAWSManagedRulesBotControlRuleSetProperty

Details for your use of the Bot Control managed rule group, AWSManagedRulesBotControlRuleSet .
CfnWebACL.IAllowActionProperty

Specifies that AWS WAF should allow the request and optionally defines additional custom handling for the request.
CfnWebACL.IAndStatementProperty

A logical rule statement used to combine other rule statements with AND logic.
CfnWebACL.IApplicationAttributeProperty

Application details defined during the web ACL creation process.
CfnWebACL.IApplicationConfigProperty

A list of ApplicationAttribute s that contains information about the application.
CfnWebACL.IAsnMatchStatementProperty

A rule statement that inspects web traffic based on the Autonomous System Number (ASN) associated with the request's IP address.
CfnWebACL.IAssociationConfigProperty

Specifies custom configurations for the associations between the web ACL and protected resources.
CfnWebACL.IBlockActionProperty

Specifies that AWS WAF should block the request and optionally defines additional custom handling for the response to the web request.
CfnWebACL.IBodyProperty

Inspect the body of the web request. The body immediately follows the request headers.
CfnWebACL.IByteMatchStatementProperty

A rule statement that defines a string match search for AWS WAF to apply to web requests.
CfnWebACL.ICaptchaActionProperty

Specifies that AWS WAF should run a CAPTCHA check against the request:.
CfnWebACL.ICaptchaConfigProperty

Specifies how AWS WAF should handle CAPTCHA evaluations for rules that don't have their own CaptchaConfig settings.
CfnWebACL.IChallengeActionProperty

Specifies that AWS WAF should run a Challenge check against the request to verify that the request is coming from a legitimate client session: - If the request includes a valid, unexpired challenge token, AWS WAF applies any custom request handling and labels that you've configured and then allows the web request inspection to proceed to the next rule, similar to a CountAction .
CfnWebACL.IChallengeConfigProperty

Specifies how AWS WAF should handle Challenge evaluations.
CfnWebACL.IClientSideActionConfigProperty

This is part of the configuration for the managed rules AWSManagedRulesAntiDDoSRuleSet in ManagedRuleGroupConfig .
CfnWebACL.IClientSideActionProperty

This is part of the AWSManagedRulesAntiDDoSRuleSet ClientSideActionConfig configuration in ManagedRuleGroupConfig .
CfnWebACL.ICookieMatchPatternProperty

The filter to use to identify the subset of cookies to inspect in a web request.
CfnWebACL.ICookiesProperty

Inspect the cookies in the web request.
CfnWebACL.ICountActionProperty

Specifies that AWS WAF should count the request. Optionally defines additional custom handling for the request.
CfnWebACL.ICustomHTTPHeaderProperty

A custom header for custom request and response handling.
CfnWebACL.ICustomRequestHandlingProperty

Custom request handling behavior that inserts custom headers into a web request.
CfnWebACL.ICustomResponseBodyProperty

The response body to use in a custom response to a web request.
CfnWebACL.ICustomResponseProperty

A custom response to send to the client.
CfnWebACL.IDataProtectProperty
CfnWebACL.IDataProtectionConfigProperty

Specifies data protection to apply to the web request data for the web ACL.
CfnWebACL.IDefaultActionProperty

In a WebACL , this is the action that you want AWS WAF to perform when a web request doesn't match any of the rules in the WebACL .
CfnWebACL.IExcludedRuleProperty

Specifies a single rule in a rule group whose action you want to override to Count .
CfnWebACL.IFieldIdentifierProperty

The identifier of a field in the web request payload that contains customer data.
CfnWebACL.IFieldToMatchProperty

Specifies a web request component to be used in a rule match statement or in a logging configuration.
CfnWebACL.IFieldToProtectProperty

Specifies a field type and keys to protect in stored web request data.
CfnWebACL.IForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnWebACL.IGeoMatchStatementProperty

A rule statement that labels web requests by country and region and that matches against web requests based on country code.
CfnWebACL.IHeaderMatchPatternProperty

The filter to use to identify the subset of headers to inspect in a web request.
CfnWebACL.IHeaderOrderProperty

The string containing the list of a web request's header names, ordered as they appear in the web request, separated by colons.
CfnWebACL.IHeadersProperty

Inspect all headers in the web request.
CfnWebACL.IIPSetForwardedIPConfigurationProperty

The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address that's reported by the web request origin.
CfnWebACL.IIPSetReferenceStatementProperty

A rule statement used to detect web requests coming from particular IP addresses or address ranges.
CfnWebACL.IImmunityTimePropertyProperty

Used for CAPTCHA and challenge token settings.
CfnWebACL.IJA3FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnWebACL.IJA4FingerprintProperty

Available for use with Amazon CloudFront distributions and Application Load Balancers.
CfnWebACL.IJsonBodyProperty

Inspect the body of the web request as JSON. The body immediately follows the request headers.
CfnWebACL.IJsonMatchPatternProperty

The patterns to look for in the JSON body.
CfnWebACL.ILabelMatchStatementProperty

A rule statement to match against labels that have been added to the web request by rules that have already run in the web ACL.
CfnWebACL.ILabelProperty

A single label container.
CfnWebACL.IManagedRuleGroupConfigProperty

Additional information that's used by a managed rule group. Many managed rule groups don't require this.
CfnWebACL.IManagedRuleGroupStatementProperty

A rule statement used to run the rules that are defined in a managed rule group.
CfnWebACL.INotStatementProperty

A logical rule statement used to negate the results of another rule statement.
CfnWebACL.IOnSourceDDoSProtectionConfigProperty

Configures the level of DDoS protection that applies to web ACLs associated with Application Load Balancers.
CfnWebACL.IOrStatementProperty

A logical rule statement used to combine other rule statements with OR logic.
CfnWebACL.IOverrideActionProperty

The action to use in the place of the action that results from the rule group evaluation.
CfnWebACL.IRateBasedStatementCustomKeyProperty

Specifies a single custom aggregate key for a rate-base rule.
CfnWebACL.IRateBasedStatementProperty

A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate.
CfnWebACL.IRateLimitCookieProperty

Specifies a cookie as an aggregate key for a rate-based rule.
CfnWebACL.IRateLimitHeaderProperty

Specifies a header as an aggregate key for a rate-based rule.
CfnWebACL.IRateLimitJA3FingerprintProperty

Use the request's JA3 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnWebACL.IRateLimitJA4FingerprintProperty

Use the request's JA4 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key.
CfnWebACL.IRateLimitLabelNamespaceProperty

Specifies a label namespace to use as an aggregate key for a rate-based rule.
CfnWebACL.IRateLimitQueryArgumentProperty

Specifies a query argument in the request as an aggregate key for a rate-based rule.
CfnWebACL.IRateLimitQueryStringProperty

Specifies the request's query string as an aggregate key for a rate-based rule.
CfnWebACL.IRateLimitUriPathProperty

Specifies the request's URI path as an aggregate key for a rate-based rule.
CfnWebACL.IRegexMatchStatementProperty

A rule statement used to search web request components for a match against a single regular expression.
CfnWebACL.IRegexPatternSetReferenceStatementProperty

A rule statement used to search web request components for matches with regular expressions.
CfnWebACL.IRegexProperty

A single regular expression.
CfnWebACL.IRequestBodyAssociatedResourceTypeConfigProperty

Customizes the maximum size of the request body that your protected CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified Access resources forward to AWS WAF for inspection.
CfnWebACL.IRequestInspectionACFPProperty

The criteria for inspecting account creation requests, used by the ACFP rule group to validate and track account creation attempts.
CfnWebACL.IRequestInspectionProperty

The criteria for inspecting login requests, used by the ATP rule group to validate credentials usage.
CfnWebACL.IResponseInspectionBodyContainsProperty

Configures inspection of the response body.
CfnWebACL.IResponseInspectionHeaderProperty

Configures inspection of the response header. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet and AWSManagedRulesACFPRuleSet .
CfnWebACL.IResponseInspectionJsonProperty

Configures inspection of the response JSON.
CfnWebACL.IResponseInspectionProperty

The criteria for inspecting responses to login requests and account creation requests, used by the ATP and ACFP rule groups to track login and account creation success and failure rates.
CfnWebACL.IResponseInspectionStatusCodeProperty

Configures inspection of the response status code. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet and AWSManagedRulesACFPRuleSet .
CfnWebACL.IRuleActionOverrideProperty

Action setting to use in the place of a rule action that is configured inside the rule group.
CfnWebACL.IRuleActionProperty

The action that AWS WAF should take on a web request when it matches a rule's statement.
CfnWebACL.IRuleGroupReferenceStatementProperty

A rule statement used to run the rules that are defined in a RuleGroup .
CfnWebACL.IRuleProperty

A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to manage in some way.
CfnWebACL.ISingleHeaderProperty

Inspect one of the headers in the web request, identified by name, for example, User-Agent or Referer .
CfnWebACL.ISingleQueryArgumentProperty

Inspect one query argument in the web request, identified by name, for example UserName or SalesRegion .
CfnWebACL.ISizeConstraintStatementProperty

A rule statement that compares a number of bytes against the size of a request component, using a comparison operator, such as greater than (>) or less than (<).
CfnWebACL.ISqliMatchStatementProperty

A rule statement that inspects for malicious SQL code.
CfnWebACL.IStatementProperty

The processing guidance for a rule, used by AWS WAF to determine whether a web request matches the rule.
CfnWebACL.ITextTransformationProperty

Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.
CfnWebACL.IUriFragmentProperty

Inspect fragments of the request URI.
CfnWebACL.IVisibilityConfigProperty

Defines and enables Amazon CloudWatch metrics and web request sample collection.
CfnWebACL.IXssMatchStatementProperty

A rule statement that inspects for cross-site scripting (XSS) attacks.
ICfnIPSetProps

Properties for defining a CfnIPSet.
ICfnLoggingConfigurationProps

Properties for defining a CfnLoggingConfiguration.
ICfnRegexPatternSetProps

Properties for defining a CfnRegexPatternSet.
ICfnRuleGroupProps

Properties for defining a CfnRuleGroup.
ICfnWebACLAssociationProps

Properties for defining a CfnWebACLAssociation.
ICfnWebACLProps

Properties for defining a CfnWebACL.