Inspecting HTTP/2 pseudo headers in AWS WAF

This section explains how you can use AWS WAF to inspect HTTP/2 pseudo headers.

Protected AWS resources that support HTTP/2 traffic do not forward HTTP/2 pseudo headers to AWS WAF for inspection, but they provide contents of pseudo headers in web request components that AWS WAF inspects.

You can use AWS WAF to inspect only the pseudo headers that are listed in the following table.

HTTP/2 pseudo header contents mapped to web request components
HTTP/2 pseudo header	Web request component to inspect	Documentation
`:method`	HTTP method	HTTP method
`:authority`	`Host` header	Single header All headers
`:path` URI path	URI path	URI path
`:path` query	Query string	Query string Single query parameter All query parameters

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Using forwarded IP addresses

Using text transformations