AWS::WAF::WebACL ActivatedRule
The ActivatedRule object in an UpdateWebACL request specifies a Rule that you want to insert or delete,
the priority of the Rule in the WebACL, and the action that you want AWS WAF to take when a web request matches the Rule
(ALLOW, BLOCK, or COUNT).
To specify whether to insert or delete a Rule, use the Action parameter in the WebACLUpdate data type.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
Properties
Action-
Specifies the action that Amazon CloudFront or AWS WAF takes when a web request matches the conditions in the
Rule. Valid values forActioninclude the following:-
ALLOW: CloudFront responds with the requested object. -
BLOCK: CloudFront responds with an HTTP 403 (Forbidden) status code. -
COUNT: AWS WAF increments a counter of requests that match the conditions in the rule and then continues to inspect the web request based on the remaining rules in the web ACL.
ActivatedRule|OverrideActionapplies only when updating or adding aRuleGroupto aWebACL. In this case, you do not useActivatedRule|Action. For all other update requests,ActivatedRule|Actionis used instead ofActivatedRule|OverrideAction.Required: No
Type: WafAction
Update requires: No interruption
-
Priority-
Specifies the order in which the
Rulesin aWebACLare evaluated. Rules with a lower value forPriorityare evaluated beforeRuleswith a higher value. The value must be a unique integer. If you add multipleRulesto aWebACL, the values don't need to be consecutive.Required: Yes
Type: Integer
Update requires: No interruption
RuleId-
The
RuleIdfor aRule. You useRuleIdto get more information about aRule, update aRule, insert aRuleinto aWebACLor delete a one from aWebACL, or delete aRulefrom AWS WAF.RuleIdis returned byCreateRuleand byListRules.Required: Yes
Type: String
Pattern:
.*\S.*Minimum:
1Maximum:
128Update requires: No interruption
