aws-sdk-wafv2 1.23.0 → 1.27.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-wafv2/client.rb +795 -81
- data/lib/aws-sdk-wafv2/client_api.rb +196 -0
- data/lib/aws-sdk-wafv2/errors.rb +16 -0
- data/lib/aws-sdk-wafv2/types.rb +1802 -250
- data/lib/aws-sdk-wafv2.rb +1 -1
- metadata +5 -5
data/lib/aws-sdk-wafv2/client.rb
CHANGED
@@ -669,6 +669,7 @@ module Aws::WAFV2
|
|
669
669
|
# managed_rule_group_statement: {
|
670
670
|
# vendor_name: "VendorName", # required
|
671
671
|
# name: "EntityName", # required
|
672
|
+
# version: "VersionKeyString",
|
672
673
|
# excluded_rules: [
|
673
674
|
# {
|
674
675
|
# name: "EntityName", # required
|
@@ -682,6 +683,42 @@ module Aws::WAFV2
|
|
682
683
|
# scope: "LABEL", # required, accepts LABEL, NAMESPACE
|
683
684
|
# key: "LabelMatchKey", # required
|
684
685
|
# },
|
686
|
+
# regex_match_statement: {
|
687
|
+
# regex_string: "RegexPatternString", # required
|
688
|
+
# field_to_match: { # required
|
689
|
+
# single_header: {
|
690
|
+
# name: "FieldToMatchData", # required
|
691
|
+
# },
|
692
|
+
# single_query_argument: {
|
693
|
+
# name: "FieldToMatchData", # required
|
694
|
+
# },
|
695
|
+
# all_query_arguments: {
|
696
|
+
# },
|
697
|
+
# uri_path: {
|
698
|
+
# },
|
699
|
+
# query_string: {
|
700
|
+
# },
|
701
|
+
# body: {
|
702
|
+
# },
|
703
|
+
# method: {
|
704
|
+
# },
|
705
|
+
# json_body: {
|
706
|
+
# match_pattern: { # required
|
707
|
+
# all: {
|
708
|
+
# },
|
709
|
+
# included_paths: ["JsonPointerPath"],
|
710
|
+
# },
|
711
|
+
# match_scope: "ALL", # required, accepts ALL, KEY, VALUE
|
712
|
+
# invalid_fallback_behavior: "MATCH", # accepts MATCH, NO_MATCH, EVALUATE_AS_STRING
|
713
|
+
# },
|
714
|
+
# },
|
715
|
+
# text_transformations: [ # required
|
716
|
+
# {
|
717
|
+
# priority: 1, # required
|
718
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
719
|
+
# },
|
720
|
+
# ],
|
721
|
+
# },
|
685
722
|
# },
|
686
723
|
# action: {
|
687
724
|
# block: {
|
@@ -786,7 +823,7 @@ module Aws::WAFV2
|
|
786
823
|
# A description of the IP set that helps with identification.
|
787
824
|
#
|
788
825
|
# @option params [required, String] :ip_address_version
|
789
|
-
#
|
826
|
+
# The version of the IP addresses, either `IPV4` or `IPV6`.
|
790
827
|
#
|
791
828
|
# @option params [required, Array<String>] :addresses
|
792
829
|
# Contains an array of strings that specify one or more IP addresses or
|
@@ -1259,6 +1296,7 @@ module Aws::WAFV2
|
|
1259
1296
|
# managed_rule_group_statement: {
|
1260
1297
|
# vendor_name: "VendorName", # required
|
1261
1298
|
# name: "EntityName", # required
|
1299
|
+
# version: "VersionKeyString",
|
1262
1300
|
# excluded_rules: [
|
1263
1301
|
# {
|
1264
1302
|
# name: "EntityName", # required
|
@@ -1272,6 +1310,42 @@ module Aws::WAFV2
|
|
1272
1310
|
# scope: "LABEL", # required, accepts LABEL, NAMESPACE
|
1273
1311
|
# key: "LabelMatchKey", # required
|
1274
1312
|
# },
|
1313
|
+
# regex_match_statement: {
|
1314
|
+
# regex_string: "RegexPatternString", # required
|
1315
|
+
# field_to_match: { # required
|
1316
|
+
# single_header: {
|
1317
|
+
# name: "FieldToMatchData", # required
|
1318
|
+
# },
|
1319
|
+
# single_query_argument: {
|
1320
|
+
# name: "FieldToMatchData", # required
|
1321
|
+
# },
|
1322
|
+
# all_query_arguments: {
|
1323
|
+
# },
|
1324
|
+
# uri_path: {
|
1325
|
+
# },
|
1326
|
+
# query_string: {
|
1327
|
+
# },
|
1328
|
+
# body: {
|
1329
|
+
# },
|
1330
|
+
# method: {
|
1331
|
+
# },
|
1332
|
+
# json_body: {
|
1333
|
+
# match_pattern: { # required
|
1334
|
+
# all: {
|
1335
|
+
# },
|
1336
|
+
# included_paths: ["JsonPointerPath"],
|
1337
|
+
# },
|
1338
|
+
# match_scope: "ALL", # required, accepts ALL, KEY, VALUE
|
1339
|
+
# invalid_fallback_behavior: "MATCH", # accepts MATCH, NO_MATCH, EVALUATE_AS_STRING
|
1340
|
+
# },
|
1341
|
+
# },
|
1342
|
+
# text_transformations: [ # required
|
1343
|
+
# {
|
1344
|
+
# priority: 1, # required
|
1345
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
1346
|
+
# },
|
1347
|
+
# ],
|
1348
|
+
# },
|
1275
1349
|
# },
|
1276
1350
|
# action: {
|
1277
1351
|
# block: {
|
@@ -1715,6 +1789,7 @@ module Aws::WAFV2
|
|
1715
1789
|
# managed_rule_group_statement: {
|
1716
1790
|
# vendor_name: "VendorName", # required
|
1717
1791
|
# name: "EntityName", # required
|
1792
|
+
# version: "VersionKeyString",
|
1718
1793
|
# excluded_rules: [
|
1719
1794
|
# {
|
1720
1795
|
# name: "EntityName", # required
|
@@ -1728,6 +1803,42 @@ module Aws::WAFV2
|
|
1728
1803
|
# scope: "LABEL", # required, accepts LABEL, NAMESPACE
|
1729
1804
|
# key: "LabelMatchKey", # required
|
1730
1805
|
# },
|
1806
|
+
# regex_match_statement: {
|
1807
|
+
# regex_string: "RegexPatternString", # required
|
1808
|
+
# field_to_match: { # required
|
1809
|
+
# single_header: {
|
1810
|
+
# name: "FieldToMatchData", # required
|
1811
|
+
# },
|
1812
|
+
# single_query_argument: {
|
1813
|
+
# name: "FieldToMatchData", # required
|
1814
|
+
# },
|
1815
|
+
# all_query_arguments: {
|
1816
|
+
# },
|
1817
|
+
# uri_path: {
|
1818
|
+
# },
|
1819
|
+
# query_string: {
|
1820
|
+
# },
|
1821
|
+
# body: {
|
1822
|
+
# },
|
1823
|
+
# method: {
|
1824
|
+
# },
|
1825
|
+
# json_body: {
|
1826
|
+
# match_pattern: { # required
|
1827
|
+
# all: {
|
1828
|
+
# },
|
1829
|
+
# included_paths: ["JsonPointerPath"],
|
1830
|
+
# },
|
1831
|
+
# match_scope: "ALL", # required, accepts ALL, KEY, VALUE
|
1832
|
+
# invalid_fallback_behavior: "MATCH", # accepts MATCH, NO_MATCH, EVALUATE_AS_STRING
|
1833
|
+
# },
|
1834
|
+
# },
|
1835
|
+
# text_transformations: [ # required
|
1836
|
+
# {
|
1837
|
+
# priority: 1, # required
|
1838
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
1839
|
+
# },
|
1840
|
+
# ],
|
1841
|
+
# },
|
1731
1842
|
# },
|
1732
1843
|
# action: {
|
1733
1844
|
# block: {
|
@@ -1835,14 +1946,14 @@ module Aws::WAFV2
|
|
1835
1946
|
# The Amazon Resource Name (ARN) of the web ACL.
|
1836
1947
|
#
|
1837
1948
|
# @option params [required, String] :web_acl_lock_token
|
1838
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
1839
|
-
# and list requests, to mark the state of the entity at the time of
|
1840
|
-
# request. To make changes to the entity associated with the token,
|
1841
|
-
# provide the token to operations like update and delete
|
1842
|
-
# token to ensure that no changes have been made to the entity
|
1843
|
-
# last retrieved it. If a change has been made, the update
|
1844
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
1845
|
-
# and use the new token returned by that operation.
|
1949
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
1950
|
+
# and `list` requests, to mark the state of the entity at the time of
|
1951
|
+
# the request. To make changes to the entity associated with the token,
|
1952
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
1953
|
+
# uses the token to ensure that no changes have been made to the entity
|
1954
|
+
# since you last retrieved it. If a change has been made, the update
|
1955
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
1956
|
+
# another `get`, and use the new token returned by that operation.
|
1846
1957
|
#
|
1847
1958
|
# @return [Types::DeleteFirewallManagerRuleGroupsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1848
1959
|
#
|
@@ -1894,14 +2005,14 @@ module Aws::WAFV2
|
|
1894
2005
|
# and delete.
|
1895
2006
|
#
|
1896
2007
|
# @option params [required, String] :lock_token
|
1897
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
1898
|
-
# and list requests, to mark the state of the entity at the time of
|
1899
|
-
# request. To make changes to the entity associated with the token,
|
1900
|
-
# provide the token to operations like update and delete
|
1901
|
-
# token to ensure that no changes have been made to the entity
|
1902
|
-
# last retrieved it. If a change has been made, the update
|
1903
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
1904
|
-
# and use the new token returned by that operation.
|
2008
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
2009
|
+
# and `list` requests, to mark the state of the entity at the time of
|
2010
|
+
# the request. To make changes to the entity associated with the token,
|
2011
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
2012
|
+
# uses the token to ensure that no changes have been made to the entity
|
2013
|
+
# since you last retrieved it. If a change has been made, the update
|
2014
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
2015
|
+
# another `get`, and use the new token returned by that operation.
|
1905
2016
|
#
|
1906
2017
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
1907
2018
|
#
|
@@ -1999,14 +2110,14 @@ module Aws::WAFV2
|
|
1999
2110
|
# and delete.
|
2000
2111
|
#
|
2001
2112
|
# @option params [required, String] :lock_token
|
2002
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
2003
|
-
# and list requests, to mark the state of the entity at the time of
|
2004
|
-
# request. To make changes to the entity associated with the token,
|
2005
|
-
# provide the token to operations like update and delete
|
2006
|
-
# token to ensure that no changes have been made to the entity
|
2007
|
-
# last retrieved it. If a change has been made, the update
|
2008
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
2009
|
-
# and use the new token returned by that operation.
|
2113
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
2114
|
+
# and `list` requests, to mark the state of the entity at the time of
|
2115
|
+
# the request. To make changes to the entity associated with the token,
|
2116
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
2117
|
+
# uses the token to ensure that no changes have been made to the entity
|
2118
|
+
# since you last retrieved it. If a change has been made, the update
|
2119
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
2120
|
+
# another `get`, and use the new token returned by that operation.
|
2010
2121
|
#
|
2011
2122
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
2012
2123
|
#
|
@@ -2054,14 +2165,14 @@ module Aws::WAFV2
|
|
2054
2165
|
# like update and delete.
|
2055
2166
|
#
|
2056
2167
|
# @option params [required, String] :lock_token
|
2057
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
2058
|
-
# and list requests, to mark the state of the entity at the time of
|
2059
|
-
# request. To make changes to the entity associated with the token,
|
2060
|
-
# provide the token to operations like update and delete
|
2061
|
-
# token to ensure that no changes have been made to the entity
|
2062
|
-
# last retrieved it. If a change has been made, the update
|
2063
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
2064
|
-
# and use the new token returned by that operation.
|
2168
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
2169
|
+
# and `list` requests, to mark the state of the entity at the time of
|
2170
|
+
# the request. To make changes to the entity associated with the token,
|
2171
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
2172
|
+
# uses the token to ensure that no changes have been made to the entity
|
2173
|
+
# since you last retrieved it. If a change has been made, the update
|
2174
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
2175
|
+
# another `get`, and use the new token returned by that operation.
|
2065
2176
|
#
|
2066
2177
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
2067
2178
|
#
|
@@ -2112,14 +2223,14 @@ module Aws::WAFV2
|
|
2112
2223
|
# like update and delete.
|
2113
2224
|
#
|
2114
2225
|
# @option params [required, String] :lock_token
|
2115
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
2116
|
-
# and list requests, to mark the state of the entity at the time of
|
2117
|
-
# request. To make changes to the entity associated with the token,
|
2118
|
-
# provide the token to operations like update and delete
|
2119
|
-
# token to ensure that no changes have been made to the entity
|
2120
|
-
# last retrieved it. If a change has been made, the update
|
2121
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
2122
|
-
# and use the new token returned by that operation.
|
2226
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
2227
|
+
# and `list` requests, to mark the state of the entity at the time of
|
2228
|
+
# the request. To make changes to the entity associated with the token,
|
2229
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
2230
|
+
# uses the token to ensure that no changes have been made to the entity
|
2231
|
+
# since you last retrieved it. If a change has been made, the update
|
2232
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
2233
|
+
# another `get`, and use the new token returned by that operation.
|
2123
2234
|
#
|
2124
2235
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
2125
2236
|
#
|
@@ -2166,8 +2277,15 @@ module Aws::WAFV2
|
|
2166
2277
|
#
|
2167
2278
|
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
2168
2279
|
#
|
2280
|
+
# @option params [String] :version_name
|
2281
|
+
# The version of the rule group. You can only use a version that is not
|
2282
|
+
# scheduled for expiration. If you don't provide this, WAF uses the
|
2283
|
+
# vendor's default version.
|
2284
|
+
#
|
2169
2285
|
# @return [Types::DescribeManagedRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2170
2286
|
#
|
2287
|
+
# * {Types::DescribeManagedRuleGroupResponse#version_name #version_name} => String
|
2288
|
+
# * {Types::DescribeManagedRuleGroupResponse#sns_topic_arn #sns_topic_arn} => String
|
2171
2289
|
# * {Types::DescribeManagedRuleGroupResponse#capacity #capacity} => Integer
|
2172
2290
|
# * {Types::DescribeManagedRuleGroupResponse#rules #rules} => Array<Types::RuleSummary>
|
2173
2291
|
# * {Types::DescribeManagedRuleGroupResponse#label_namespace #label_namespace} => String
|
@@ -2180,10 +2298,13 @@ module Aws::WAFV2
|
|
2180
2298
|
# vendor_name: "VendorName", # required
|
2181
2299
|
# name: "EntityName", # required
|
2182
2300
|
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
2301
|
+
# version_name: "VersionKeyString",
|
2183
2302
|
# })
|
2184
2303
|
#
|
2185
2304
|
# @example Response structure
|
2186
2305
|
#
|
2306
|
+
# resp.version_name #=> String
|
2307
|
+
# resp.sns_topic_arn #=> String
|
2187
2308
|
# resp.capacity #=> Integer
|
2188
2309
|
# resp.rules #=> Array
|
2189
2310
|
# resp.rules[0].name #=> String
|
@@ -2363,6 +2484,84 @@ module Aws::WAFV2
|
|
2363
2484
|
req.send_request(options)
|
2364
2485
|
end
|
2365
2486
|
|
2487
|
+
# Retrieves the specified managed rule set.
|
2488
|
+
#
|
2489
|
+
# <note markdown="1"> This is intended for use only by vendors of managed rule sets. Vendors
|
2490
|
+
# are Amazon Web Services and Amazon Web Services Marketplace sellers.
|
2491
|
+
#
|
2492
|
+
# Vendors, you can use the managed rule set APIs to provide controlled
|
2493
|
+
# rollout of your versioned managed rule group offerings for your
|
2494
|
+
# customers. The APIs are `ListManagedRuleSets`, `GetManagedRuleSet`,
|
2495
|
+
# `PutManagedRuleSetVersions`, and
|
2496
|
+
# `UpdateManagedRuleSetVersionExpiryDate`.
|
2497
|
+
#
|
2498
|
+
# </note>
|
2499
|
+
#
|
2500
|
+
# @option params [required, String] :name
|
2501
|
+
# The name of the managed rule set. You use this, along with the rule
|
2502
|
+
# set ID, to identify the rule set.
|
2503
|
+
#
|
2504
|
+
# This name is assigned to the corresponding managed rule group, which
|
2505
|
+
# your customers can access and use.
|
2506
|
+
#
|
2507
|
+
# @option params [required, String] :scope
|
2508
|
+
# Specifies whether this is for an Amazon CloudFront distribution or for
|
2509
|
+
# a regional application. A regional application can be an Application
|
2510
|
+
# Load Balancer (ALB), an Amazon API Gateway REST API, or an AppSync
|
2511
|
+
# GraphQL API.
|
2512
|
+
#
|
2513
|
+
# To work with CloudFront, you must also specify the Region US East (N.
|
2514
|
+
# Virginia) as follows:
|
2515
|
+
#
|
2516
|
+
# * CLI - Specify the Region when you use the CloudFront scope:
|
2517
|
+
# `--scope=CLOUDFRONT --region=us-east-1`.
|
2518
|
+
#
|
2519
|
+
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
2520
|
+
#
|
2521
|
+
# @option params [required, String] :id
|
2522
|
+
# A unique identifier for the managed rule set. The ID is returned in
|
2523
|
+
# the responses to commands like `list`. You provide it to operations
|
2524
|
+
# like `get` and `update`.
|
2525
|
+
#
|
2526
|
+
# @return [Types::GetManagedRuleSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2527
|
+
#
|
2528
|
+
# * {Types::GetManagedRuleSetResponse#managed_rule_set #managed_rule_set} => Types::ManagedRuleSet
|
2529
|
+
# * {Types::GetManagedRuleSetResponse#lock_token #lock_token} => String
|
2530
|
+
#
|
2531
|
+
# @example Request syntax with placeholder values
|
2532
|
+
#
|
2533
|
+
# resp = client.get_managed_rule_set({
|
2534
|
+
# name: "EntityName", # required
|
2535
|
+
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
2536
|
+
# id: "EntityId", # required
|
2537
|
+
# })
|
2538
|
+
#
|
2539
|
+
# @example Response structure
|
2540
|
+
#
|
2541
|
+
# resp.managed_rule_set.name #=> String
|
2542
|
+
# resp.managed_rule_set.id #=> String
|
2543
|
+
# resp.managed_rule_set.arn #=> String
|
2544
|
+
# resp.managed_rule_set.description #=> String
|
2545
|
+
# resp.managed_rule_set.published_versions #=> Hash
|
2546
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].associated_rule_group_arn #=> String
|
2547
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].capacity #=> Integer
|
2548
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].forecasted_lifetime #=> Integer
|
2549
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].publish_timestamp #=> Time
|
2550
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].last_update_timestamp #=> Time
|
2551
|
+
# resp.managed_rule_set.published_versions["VersionKeyString"].expiry_timestamp #=> Time
|
2552
|
+
# resp.managed_rule_set.recommended_version #=> String
|
2553
|
+
# resp.managed_rule_set.label_namespace #=> String
|
2554
|
+
# resp.lock_token #=> String
|
2555
|
+
#
|
2556
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/GetManagedRuleSet AWS API Documentation
|
2557
|
+
#
|
2558
|
+
# @overload get_managed_rule_set(params = {})
|
2559
|
+
# @param [Hash] params ({})
|
2560
|
+
def get_managed_rule_set(params = {}, options = {})
|
2561
|
+
req = build_request(:get_managed_rule_set, params)
|
2562
|
+
req.send_request(options)
|
2563
|
+
end
|
2564
|
+
|
2366
2565
|
# Returns the IAM policy that is attached to the specified rule group.
|
2367
2566
|
#
|
2368
2567
|
# You must be the owner of the rule group to perform this operation.
|
@@ -2394,10 +2593,24 @@ module Aws::WAFV2
|
|
2394
2593
|
req.send_request(options)
|
2395
2594
|
end
|
2396
2595
|
|
2397
|
-
# Retrieves the keys that are currently blocked by a rate-based rule
|
2398
|
-
# The maximum number of managed keys that can be blocked for a
|
2399
|
-
# rate-based rule is 10,000. If more than 10,000
|
2400
|
-
# rate limit, those with the highest rates are
|
2596
|
+
# Retrieves the keys that are currently blocked by a rate-based rule
|
2597
|
+
# instance. The maximum number of managed keys that can be blocked for a
|
2598
|
+
# single rate-based rule instance is 10,000. If more than 10,000
|
2599
|
+
# addresses exceed the rate limit, those with the highest rates are
|
2600
|
+
# blocked.
|
2601
|
+
#
|
2602
|
+
# For a rate-based rule that you've defined inside a rule group,
|
2603
|
+
# provide the name of the rule group reference statement in your
|
2604
|
+
# request, in addition to the rate-based rule name and the web ACL name.
|
2605
|
+
#
|
2606
|
+
# WAF monitors web requests and manages keys independently for each
|
2607
|
+
# unique combination of web ACL, optional rule group, and rate-based
|
2608
|
+
# rule. For example, if you define a rate-based rule inside a rule
|
2609
|
+
# group, and then use the rule group in a web ACL, WAF monitors web
|
2610
|
+
# requests and manages keys for that web ACL, rule group reference
|
2611
|
+
# statement, and rate-based rule instance. If you use the same rule
|
2612
|
+
# group in a second web ACL, WAF monitors web requests and manages keys
|
2613
|
+
# for this second usage completely independent of your first.
|
2401
2614
|
#
|
2402
2615
|
# @option params [required, String] :scope
|
2403
2616
|
# Specifies whether this is for an Amazon CloudFront distribution or for
|
@@ -2422,8 +2635,16 @@ module Aws::WAFV2
|
|
2422
2635
|
# responses to create and list commands. You provide it to operations
|
2423
2636
|
# like update and delete.
|
2424
2637
|
#
|
2638
|
+
# @option params [String] :rule_group_rule_name
|
2639
|
+
# The name of the rule group reference statement in your web ACL. This
|
2640
|
+
# is required only when you have the rate-based rule nested inside a
|
2641
|
+
# rule group.
|
2642
|
+
#
|
2425
2643
|
# @option params [required, String] :rule_name
|
2426
|
-
# The name of the rate-based rule to get the keys for.
|
2644
|
+
# The name of the rate-based rule to get the keys for. If you have the
|
2645
|
+
# rule defined inside a rule group that you're using in your web ACL,
|
2646
|
+
# also provide the name of the rule group reference statement in the
|
2647
|
+
# request parameter `RuleGroupRuleName`.
|
2427
2648
|
#
|
2428
2649
|
# @return [Types::GetRateBasedStatementManagedKeysResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2429
2650
|
#
|
@@ -2436,6 +2657,7 @@ module Aws::WAFV2
|
|
2436
2657
|
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
2437
2658
|
# web_acl_name: "EntityName", # required
|
2438
2659
|
# web_acl_id: "EntityId", # required
|
2660
|
+
# rule_group_rule_name: "EntityName",
|
2439
2661
|
# rule_name: "EntityName", # required
|
2440
2662
|
# })
|
2441
2663
|
#
|
@@ -2639,11 +2861,22 @@ module Aws::WAFV2
|
|
2639
2861
|
# resp.rule_group.rules[0].statement.not_statement.statement #=> Types::Statement
|
2640
2862
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.vendor_name #=> String
|
2641
2863
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.name #=> String
|
2864
|
+
# resp.rule_group.rules[0].statement.managed_rule_group_statement.version #=> String
|
2642
2865
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.excluded_rules #=> Array
|
2643
2866
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
2644
2867
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.scope_down_statement #=> Types::Statement
|
2645
2868
|
# resp.rule_group.rules[0].statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
2646
2869
|
# resp.rule_group.rules[0].statement.label_match_statement.key #=> String
|
2870
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.regex_string #=> String
|
2871
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.single_header.name #=> String
|
2872
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
2873
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
2874
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
2875
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
2876
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
2877
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.text_transformations #=> Array
|
2878
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
2879
|
+
# resp.rule_group.rules[0].statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
2647
2880
|
# resp.rule_group.rules[0].action.block.custom_response.response_code #=> Integer
|
2648
2881
|
# resp.rule_group.rules[0].action.block.custom_response.custom_response_body_key #=> String
|
2649
2882
|
# resp.rule_group.rules[0].action.block.custom_response.response_headers #=> Array
|
@@ -2917,11 +3150,22 @@ module Aws::WAFV2
|
|
2917
3150
|
# resp.web_acl.rules[0].statement.not_statement.statement #=> Types::Statement
|
2918
3151
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.vendor_name #=> String
|
2919
3152
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.name #=> String
|
3153
|
+
# resp.web_acl.rules[0].statement.managed_rule_group_statement.version #=> String
|
2920
3154
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.excluded_rules #=> Array
|
2921
3155
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
2922
3156
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.scope_down_statement #=> Types::Statement
|
2923
3157
|
# resp.web_acl.rules[0].statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
2924
3158
|
# resp.web_acl.rules[0].statement.label_match_statement.key #=> String
|
3159
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.regex_string #=> String
|
3160
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3161
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3162
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3163
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3164
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3165
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3166
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations #=> Array
|
3167
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3168
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
2925
3169
|
# resp.web_acl.rules[0].action.block.custom_response.response_code #=> Integer
|
2926
3170
|
# resp.web_acl.rules[0].action.block.custom_response.custom_response_body_key #=> String
|
2927
3171
|
# resp.web_acl.rules[0].action.block.custom_response.response_headers #=> Array
|
@@ -2950,6 +3194,7 @@ module Aws::WAFV2
|
|
2950
3194
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].priority #=> Integer
|
2951
3195
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.vendor_name #=> String
|
2952
3196
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.name #=> String
|
3197
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.version #=> String
|
2953
3198
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules #=> Array
|
2954
3199
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
2955
3200
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.byte_match_statement.search_string #=> String
|
@@ -3026,6 +3271,16 @@ module Aws::WAFV2
|
|
3026
3271
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.managed_rule_group_statement #=> Types::ManagedRuleGroupStatement
|
3027
3272
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
3028
3273
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.key #=> String
|
3274
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.regex_string #=> String
|
3275
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3276
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3277
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3278
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3279
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3280
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3281
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations #=> Array
|
3282
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3283
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
3029
3284
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.arn #=> String
|
3030
3285
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules #=> Array
|
3031
3286
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules[0].name #=> String
|
@@ -3040,6 +3295,7 @@ module Aws::WAFV2
|
|
3040
3295
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].priority #=> Integer
|
3041
3296
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.vendor_name #=> String
|
3042
3297
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.name #=> String
|
3298
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.version #=> String
|
3043
3299
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules #=> Array
|
3044
3300
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
3045
3301
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.byte_match_statement.search_string #=> String
|
@@ -3116,6 +3372,16 @@ module Aws::WAFV2
|
|
3116
3372
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.managed_rule_group_statement #=> Types::ManagedRuleGroupStatement
|
3117
3373
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
3118
3374
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.key #=> String
|
3375
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.regex_string #=> String
|
3376
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3377
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3378
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3379
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3380
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3381
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3382
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations #=> Array
|
3383
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3384
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
3119
3385
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.arn #=> String
|
3120
3386
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules #=> Array
|
3121
3387
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules[0].name #=> String
|
@@ -3246,11 +3512,22 @@ module Aws::WAFV2
|
|
3246
3512
|
# resp.web_acl.rules[0].statement.not_statement.statement #=> Types::Statement
|
3247
3513
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.vendor_name #=> String
|
3248
3514
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.name #=> String
|
3515
|
+
# resp.web_acl.rules[0].statement.managed_rule_group_statement.version #=> String
|
3249
3516
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.excluded_rules #=> Array
|
3250
3517
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
3251
3518
|
# resp.web_acl.rules[0].statement.managed_rule_group_statement.scope_down_statement #=> Types::Statement
|
3252
3519
|
# resp.web_acl.rules[0].statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
3253
3520
|
# resp.web_acl.rules[0].statement.label_match_statement.key #=> String
|
3521
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.regex_string #=> String
|
3522
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3523
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3524
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3525
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3526
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3527
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3528
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations #=> Array
|
3529
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3530
|
+
# resp.web_acl.rules[0].statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
3254
3531
|
# resp.web_acl.rules[0].action.block.custom_response.response_code #=> Integer
|
3255
3532
|
# resp.web_acl.rules[0].action.block.custom_response.custom_response_body_key #=> String
|
3256
3533
|
# resp.web_acl.rules[0].action.block.custom_response.response_headers #=> Array
|
@@ -3279,6 +3556,7 @@ module Aws::WAFV2
|
|
3279
3556
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].priority #=> Integer
|
3280
3557
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.vendor_name #=> String
|
3281
3558
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.name #=> String
|
3559
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.version #=> String
|
3282
3560
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules #=> Array
|
3283
3561
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
3284
3562
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.byte_match_statement.search_string #=> String
|
@@ -3355,6 +3633,16 @@ module Aws::WAFV2
|
|
3355
3633
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.managed_rule_group_statement #=> Types::ManagedRuleGroupStatement
|
3356
3634
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
3357
3635
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.key #=> String
|
3636
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.regex_string #=> String
|
3637
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3638
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3639
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3640
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3641
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3642
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3643
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations #=> Array
|
3644
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3645
|
+
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
3358
3646
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.arn #=> String
|
3359
3647
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules #=> Array
|
3360
3648
|
# resp.web_acl.pre_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules[0].name #=> String
|
@@ -3369,6 +3657,7 @@ module Aws::WAFV2
|
|
3369
3657
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].priority #=> Integer
|
3370
3658
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.vendor_name #=> String
|
3371
3659
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.name #=> String
|
3660
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.version #=> String
|
3372
3661
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules #=> Array
|
3373
3662
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.excluded_rules[0].name #=> String
|
3374
3663
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.byte_match_statement.search_string #=> String
|
@@ -3445,6 +3734,16 @@ module Aws::WAFV2
|
|
3445
3734
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.managed_rule_group_statement #=> Types::ManagedRuleGroupStatement
|
3446
3735
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.scope #=> String, one of "LABEL", "NAMESPACE"
|
3447
3736
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.label_match_statement.key #=> String
|
3737
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.regex_string #=> String
|
3738
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_header.name #=> String
|
3739
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.single_query_argument.name #=> String
|
3740
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths #=> Array
|
3741
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_pattern.included_paths[0] #=> String
|
3742
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.match_scope #=> String, one of "ALL", "KEY", "VALUE"
|
3743
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.field_to_match.json_body.invalid_fallback_behavior #=> String, one of "MATCH", "NO_MATCH", "EVALUATE_AS_STRING"
|
3744
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations #=> Array
|
3745
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].priority #=> Integer
|
3746
|
+
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.managed_rule_group_statement.scope_down_statement.regex_match_statement.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
3448
3747
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.arn #=> String
|
3449
3748
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules #=> Array
|
3450
3749
|
# resp.web_acl.post_process_firewall_manager_rule_groups[0].firewall_manager_statement.rule_group_reference_statement.excluded_rules[0].name #=> String
|
@@ -3469,10 +3768,79 @@ module Aws::WAFV2
|
|
3469
3768
|
req.send_request(options)
|
3470
3769
|
end
|
3471
3770
|
|
3771
|
+
# Returns a list of the available versions for the specified managed
|
3772
|
+
# rule group.
|
3773
|
+
#
|
3774
|
+
# @option params [required, String] :vendor_name
|
3775
|
+
# The name of the managed rule group vendor. You use this, along with
|
3776
|
+
# the rule group name, to identify the rule group.
|
3777
|
+
#
|
3778
|
+
# @option params [required, String] :name
|
3779
|
+
# The name of the managed rule group. You use this, along with the
|
3780
|
+
# vendor name, to identify the rule group.
|
3781
|
+
#
|
3782
|
+
# @option params [required, String] :scope
|
3783
|
+
# Specifies whether this is for an Amazon CloudFront distribution or for
|
3784
|
+
# a regional application. A regional application can be an Application
|
3785
|
+
# Load Balancer (ALB), an Amazon API Gateway REST API, or an AppSync
|
3786
|
+
# GraphQL API.
|
3787
|
+
#
|
3788
|
+
# To work with CloudFront, you must also specify the Region US East (N.
|
3789
|
+
# Virginia) as follows:
|
3790
|
+
#
|
3791
|
+
# * CLI - Specify the Region when you use the CloudFront scope:
|
3792
|
+
# `--scope=CLOUDFRONT --region=us-east-1`.
|
3793
|
+
#
|
3794
|
+
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
3795
|
+
#
|
3796
|
+
# @option params [String] :next_marker
|
3797
|
+
# When you request a list of objects with a `Limit` setting, if the
|
3798
|
+
# number of objects that are still available for retrieval exceeds the
|
3799
|
+
# limit, WAF returns a `NextMarker` value in the response. To retrieve
|
3800
|
+
# the next batch of objects, provide the marker from the prior call in
|
3801
|
+
# your next request.
|
3802
|
+
#
|
3803
|
+
# @option params [Integer] :limit
|
3804
|
+
# The maximum number of objects that you want WAF to return for this
|
3805
|
+
# request. If more objects are available, in the response, WAF provides
|
3806
|
+
# a `NextMarker` value that you can use in a subsequent call to get the
|
3807
|
+
# next batch of objects.
|
3808
|
+
#
|
3809
|
+
# @return [Types::ListAvailableManagedRuleGroupVersionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
3810
|
+
#
|
3811
|
+
# * {Types::ListAvailableManagedRuleGroupVersionsResponse#next_marker #next_marker} => String
|
3812
|
+
# * {Types::ListAvailableManagedRuleGroupVersionsResponse#versions #versions} => Array<Types::ManagedRuleGroupVersion>
|
3813
|
+
#
|
3814
|
+
# @example Request syntax with placeholder values
|
3815
|
+
#
|
3816
|
+
# resp = client.list_available_managed_rule_group_versions({
|
3817
|
+
# vendor_name: "VendorName", # required
|
3818
|
+
# name: "EntityName", # required
|
3819
|
+
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
3820
|
+
# next_marker: "NextMarker",
|
3821
|
+
# limit: 1,
|
3822
|
+
# })
|
3823
|
+
#
|
3824
|
+
# @example Response structure
|
3825
|
+
#
|
3826
|
+
# resp.next_marker #=> String
|
3827
|
+
# resp.versions #=> Array
|
3828
|
+
# resp.versions[0].name #=> String
|
3829
|
+
# resp.versions[0].last_update_timestamp #=> Time
|
3830
|
+
#
|
3831
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ListAvailableManagedRuleGroupVersions AWS API Documentation
|
3832
|
+
#
|
3833
|
+
# @overload list_available_managed_rule_group_versions(params = {})
|
3834
|
+
# @param [Hash] params ({})
|
3835
|
+
def list_available_managed_rule_group_versions(params = {}, options = {})
|
3836
|
+
req = build_request(:list_available_managed_rule_group_versions, params)
|
3837
|
+
req.send_request(options)
|
3838
|
+
end
|
3839
|
+
|
3472
3840
|
# Retrieves an array of managed rule groups that are available for you
|
3473
3841
|
# to use. This list includes all Amazon Web Services Managed Rules rule
|
3474
|
-
# groups and the Marketplace managed rule
|
3475
|
-
# to.
|
3842
|
+
# groups and all of the Amazon Web Services Marketplace managed rule
|
3843
|
+
# groups that you're subscribed to.
|
3476
3844
|
#
|
3477
3845
|
# @option params [required, String] :scope
|
3478
3846
|
# Specifies whether this is for an Amazon CloudFront distribution or for
|
@@ -3667,6 +4035,79 @@ module Aws::WAFV2
|
|
3667
4035
|
req.send_request(options)
|
3668
4036
|
end
|
3669
4037
|
|
4038
|
+
# Retrieves the managed rule sets that you own.
|
4039
|
+
#
|
4040
|
+
# <note markdown="1"> This is intended for use only by vendors of managed rule sets. Vendors
|
4041
|
+
# are Amazon Web Services and Amazon Web Services Marketplace sellers.
|
4042
|
+
#
|
4043
|
+
# Vendors, you can use the managed rule set APIs to provide controlled
|
4044
|
+
# rollout of your versioned managed rule group offerings for your
|
4045
|
+
# customers. The APIs are `ListManagedRuleSets`, `GetManagedRuleSet`,
|
4046
|
+
# `PutManagedRuleSetVersions`, and
|
4047
|
+
# `UpdateManagedRuleSetVersionExpiryDate`.
|
4048
|
+
#
|
4049
|
+
# </note>
|
4050
|
+
#
|
4051
|
+
# @option params [required, String] :scope
|
4052
|
+
# Specifies whether this is for an Amazon CloudFront distribution or for
|
4053
|
+
# a regional application. A regional application can be an Application
|
4054
|
+
# Load Balancer (ALB), an Amazon API Gateway REST API, or an AppSync
|
4055
|
+
# GraphQL API.
|
4056
|
+
#
|
4057
|
+
# To work with CloudFront, you must also specify the Region US East (N.
|
4058
|
+
# Virginia) as follows:
|
4059
|
+
#
|
4060
|
+
# * CLI - Specify the Region when you use the CloudFront scope:
|
4061
|
+
# `--scope=CLOUDFRONT --region=us-east-1`.
|
4062
|
+
#
|
4063
|
+
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
4064
|
+
#
|
4065
|
+
# @option params [String] :next_marker
|
4066
|
+
# When you request a list of objects with a `Limit` setting, if the
|
4067
|
+
# number of objects that are still available for retrieval exceeds the
|
4068
|
+
# limit, WAF returns a `NextMarker` value in the response. To retrieve
|
4069
|
+
# the next batch of objects, provide the marker from the prior call in
|
4070
|
+
# your next request.
|
4071
|
+
#
|
4072
|
+
# @option params [Integer] :limit
|
4073
|
+
# The maximum number of objects that you want WAF to return for this
|
4074
|
+
# request. If more objects are available, in the response, WAF provides
|
4075
|
+
# a `NextMarker` value that you can use in a subsequent call to get the
|
4076
|
+
# next batch of objects.
|
4077
|
+
#
|
4078
|
+
# @return [Types::ListManagedRuleSetsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4079
|
+
#
|
4080
|
+
# * {Types::ListManagedRuleSetsResponse#next_marker #next_marker} => String
|
4081
|
+
# * {Types::ListManagedRuleSetsResponse#managed_rule_sets #managed_rule_sets} => Array<Types::ManagedRuleSetSummary>
|
4082
|
+
#
|
4083
|
+
# @example Request syntax with placeholder values
|
4084
|
+
#
|
4085
|
+
# resp = client.list_managed_rule_sets({
|
4086
|
+
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
4087
|
+
# next_marker: "NextMarker",
|
4088
|
+
# limit: 1,
|
4089
|
+
# })
|
4090
|
+
#
|
4091
|
+
# @example Response structure
|
4092
|
+
#
|
4093
|
+
# resp.next_marker #=> String
|
4094
|
+
# resp.managed_rule_sets #=> Array
|
4095
|
+
# resp.managed_rule_sets[0].name #=> String
|
4096
|
+
# resp.managed_rule_sets[0].id #=> String
|
4097
|
+
# resp.managed_rule_sets[0].description #=> String
|
4098
|
+
# resp.managed_rule_sets[0].lock_token #=> String
|
4099
|
+
# resp.managed_rule_sets[0].arn #=> String
|
4100
|
+
# resp.managed_rule_sets[0].label_namespace #=> String
|
4101
|
+
#
|
4102
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ListManagedRuleSets AWS API Documentation
|
4103
|
+
#
|
4104
|
+
# @overload list_managed_rule_sets(params = {})
|
4105
|
+
# @param [Hash] params ({})
|
4106
|
+
def list_managed_rule_sets(params = {}, options = {})
|
4107
|
+
req = build_request(:list_managed_rule_sets, params)
|
4108
|
+
req.send_request(options)
|
4109
|
+
end
|
4110
|
+
|
3670
4111
|
# Retrieves an array of RegexPatternSetSummary objects for the regex
|
3671
4112
|
# pattern sets that you manage.
|
3672
4113
|
#
|
@@ -4084,6 +4525,110 @@ module Aws::WAFV2
|
|
4084
4525
|
req.send_request(options)
|
4085
4526
|
end
|
4086
4527
|
|
4528
|
+
# Defines the versions of your managed rule set that you are offering to
|
4529
|
+
# the customers. Customers see your offerings as managed rule groups
|
4530
|
+
# with versioning.
|
4531
|
+
#
|
4532
|
+
# <note markdown="1"> This is intended for use only by vendors of managed rule sets. Vendors
|
4533
|
+
# are Amazon Web Services and Amazon Web Services Marketplace sellers.
|
4534
|
+
#
|
4535
|
+
# Vendors, you can use the managed rule set APIs to provide controlled
|
4536
|
+
# rollout of your versioned managed rule group offerings for your
|
4537
|
+
# customers. The APIs are `ListManagedRuleSets`, `GetManagedRuleSet`,
|
4538
|
+
# `PutManagedRuleSetVersions`, and
|
4539
|
+
# `UpdateManagedRuleSetVersionExpiryDate`.
|
4540
|
+
#
|
4541
|
+
# </note>
|
4542
|
+
#
|
4543
|
+
# Customers retrieve their managed rule group list by calling
|
4544
|
+
# ListAvailableManagedRuleGroups. The name that you provide here for
|
4545
|
+
# your managed rule set is the name the customer sees for the
|
4546
|
+
# corresponding managed rule group. Customers can retrieve the available
|
4547
|
+
# versions for a managed rule group by calling
|
4548
|
+
# ListAvailableManagedRuleGroupVersions. You provide a rule group
|
4549
|
+
# specification for each version. For each managed rule set, you must
|
4550
|
+
# specify a version that you recommend using.
|
4551
|
+
#
|
4552
|
+
# To initiate the expiration of a managed rule group version, use
|
4553
|
+
# UpdateManagedRuleSetVersionExpiryDate.
|
4554
|
+
#
|
4555
|
+
# @option params [required, String] :name
|
4556
|
+
# The name of the managed rule set. You use this, along with the rule
|
4557
|
+
# set ID, to identify the rule set.
|
4558
|
+
#
|
4559
|
+
# This name is assigned to the corresponding managed rule group, which
|
4560
|
+
# your customers can access and use.
|
4561
|
+
#
|
4562
|
+
# @option params [required, String] :scope
|
4563
|
+
# Specifies whether this is for an Amazon CloudFront distribution or for
|
4564
|
+
# a regional application. A regional application can be an Application
|
4565
|
+
# Load Balancer (ALB), an Amazon API Gateway REST API, or an AppSync
|
4566
|
+
# GraphQL API.
|
4567
|
+
#
|
4568
|
+
# To work with CloudFront, you must also specify the Region US East (N.
|
4569
|
+
# Virginia) as follows:
|
4570
|
+
#
|
4571
|
+
# * CLI - Specify the Region when you use the CloudFront scope:
|
4572
|
+
# `--scope=CLOUDFRONT --region=us-east-1`.
|
4573
|
+
#
|
4574
|
+
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
4575
|
+
#
|
4576
|
+
# @option params [required, String] :id
|
4577
|
+
# A unique identifier for the managed rule set. The ID is returned in
|
4578
|
+
# the responses to commands like `list`. You provide it to operations
|
4579
|
+
# like `get` and `update`.
|
4580
|
+
#
|
4581
|
+
# @option params [required, String] :lock_token
|
4582
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
4583
|
+
# and `list` requests, to mark the state of the entity at the time of
|
4584
|
+
# the request. To make changes to the entity associated with the token,
|
4585
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
4586
|
+
# uses the token to ensure that no changes have been made to the entity
|
4587
|
+
# since you last retrieved it. If a change has been made, the update
|
4588
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
4589
|
+
# another `get`, and use the new token returned by that operation.
|
4590
|
+
#
|
4591
|
+
# @option params [String] :recommended_version
|
4592
|
+
# The version of the named managed rule group that you'd like your
|
4593
|
+
# customers to choose, from among your version offerings.
|
4594
|
+
#
|
4595
|
+
# @option params [Hash<String,Types::VersionToPublish>] :versions_to_publish
|
4596
|
+
# The versions of the named managed rule group that you want to offer to
|
4597
|
+
# your customers.
|
4598
|
+
#
|
4599
|
+
# @return [Types::PutManagedRuleSetVersionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4600
|
+
#
|
4601
|
+
# * {Types::PutManagedRuleSetVersionsResponse#next_lock_token #next_lock_token} => String
|
4602
|
+
#
|
4603
|
+
# @example Request syntax with placeholder values
|
4604
|
+
#
|
4605
|
+
# resp = client.put_managed_rule_set_versions({
|
4606
|
+
# name: "EntityName", # required
|
4607
|
+
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
4608
|
+
# id: "EntityId", # required
|
4609
|
+
# lock_token: "LockToken", # required
|
4610
|
+
# recommended_version: "VersionKeyString",
|
4611
|
+
# versions_to_publish: {
|
4612
|
+
# "VersionKeyString" => {
|
4613
|
+
# associated_rule_group_arn: "ResourceArn",
|
4614
|
+
# forecasted_lifetime: 1,
|
4615
|
+
# },
|
4616
|
+
# },
|
4617
|
+
# })
|
4618
|
+
#
|
4619
|
+
# @example Response structure
|
4620
|
+
#
|
4621
|
+
# resp.next_lock_token #=> String
|
4622
|
+
#
|
4623
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/PutManagedRuleSetVersions AWS API Documentation
|
4624
|
+
#
|
4625
|
+
# @overload put_managed_rule_set_versions(params = {})
|
4626
|
+
# @param [Hash] params ({})
|
4627
|
+
def put_managed_rule_set_versions(params = {}, options = {})
|
4628
|
+
req = build_request(:put_managed_rule_set_versions, params)
|
4629
|
+
req.send_request(options)
|
4630
|
+
end
|
4631
|
+
|
4087
4632
|
# Attaches an IAM policy to the specified resource. Use this to share a
|
4088
4633
|
# rule group across accounts.
|
4089
4634
|
#
|
@@ -4285,14 +4830,14 @@ module Aws::WAFV2
|
|
4285
4830
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
4286
4831
|
#
|
4287
4832
|
# @option params [required, String] :lock_token
|
4288
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
4289
|
-
# and list requests, to mark the state of the entity at the time of
|
4290
|
-
# request. To make changes to the entity associated with the token,
|
4291
|
-
# provide the token to operations like update and delete
|
4292
|
-
# token to ensure that no changes have been made to the entity
|
4293
|
-
# last retrieved it. If a change has been made, the update
|
4294
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
4295
|
-
# and use the new token returned by that operation.
|
4833
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
4834
|
+
# and `list` requests, to mark the state of the entity at the time of
|
4835
|
+
# the request. To make changes to the entity associated with the token,
|
4836
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
4837
|
+
# uses the token to ensure that no changes have been made to the entity
|
4838
|
+
# since you last retrieved it. If a change has been made, the update
|
4839
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
4840
|
+
# another `get`, and use the new token returned by that operation.
|
4296
4841
|
#
|
4297
4842
|
# @return [Types::UpdateIPSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4298
4843
|
#
|
@@ -4322,6 +4867,101 @@ module Aws::WAFV2
|
|
4322
4867
|
req.send_request(options)
|
4323
4868
|
end
|
4324
4869
|
|
4870
|
+
# Updates the expiration information for your managed rule set. Use this
|
4871
|
+
# to initiate the expiration of a managed rule group version. After you
|
4872
|
+
# initiate expiration for a version, WAF excludes it from the reponse to
|
4873
|
+
# ListAvailableManagedRuleGroupVersions for the managed rule group.
|
4874
|
+
#
|
4875
|
+
# <note markdown="1"> This is intended for use only by vendors of managed rule sets. Vendors
|
4876
|
+
# are Amazon Web Services and Amazon Web Services Marketplace sellers.
|
4877
|
+
#
|
4878
|
+
# Vendors, you can use the managed rule set APIs to provide controlled
|
4879
|
+
# rollout of your versioned managed rule group offerings for your
|
4880
|
+
# customers. The APIs are `ListManagedRuleSets`, `GetManagedRuleSet`,
|
4881
|
+
# `PutManagedRuleSetVersions`, and
|
4882
|
+
# `UpdateManagedRuleSetVersionExpiryDate`.
|
4883
|
+
#
|
4884
|
+
# </note>
|
4885
|
+
#
|
4886
|
+
# @option params [required, String] :name
|
4887
|
+
# The name of the managed rule set. You use this, along with the rule
|
4888
|
+
# set ID, to identify the rule set.
|
4889
|
+
#
|
4890
|
+
# This name is assigned to the corresponding managed rule group, which
|
4891
|
+
# your customers can access and use.
|
4892
|
+
#
|
4893
|
+
# @option params [required, String] :scope
|
4894
|
+
# Specifies whether this is for an Amazon CloudFront distribution or for
|
4895
|
+
# a regional application. A regional application can be an Application
|
4896
|
+
# Load Balancer (ALB), an Amazon API Gateway REST API, or an AppSync
|
4897
|
+
# GraphQL API.
|
4898
|
+
#
|
4899
|
+
# To work with CloudFront, you must also specify the Region US East (N.
|
4900
|
+
# Virginia) as follows:
|
4901
|
+
#
|
4902
|
+
# * CLI - Specify the Region when you use the CloudFront scope:
|
4903
|
+
# `--scope=CLOUDFRONT --region=us-east-1`.
|
4904
|
+
#
|
4905
|
+
# * API and SDKs - For all calls, use the Region endpoint us-east-1.
|
4906
|
+
#
|
4907
|
+
# @option params [required, String] :id
|
4908
|
+
# A unique identifier for the managed rule set. The ID is returned in
|
4909
|
+
# the responses to commands like `list`. You provide it to operations
|
4910
|
+
# like `get` and `update`.
|
4911
|
+
#
|
4912
|
+
# @option params [required, String] :lock_token
|
4913
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
4914
|
+
# and `list` requests, to mark the state of the entity at the time of
|
4915
|
+
# the request. To make changes to the entity associated with the token,
|
4916
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
4917
|
+
# uses the token to ensure that no changes have been made to the entity
|
4918
|
+
# since you last retrieved it. If a change has been made, the update
|
4919
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
4920
|
+
# another `get`, and use the new token returned by that operation.
|
4921
|
+
#
|
4922
|
+
# @option params [required, String] :version_to_expire
|
4923
|
+
# The version that you want to remove from your list of offerings for
|
4924
|
+
# the named managed rule group.
|
4925
|
+
#
|
4926
|
+
# @option params [required, Time,DateTime,Date,Integer,String] :expiry_timestamp
|
4927
|
+
# The time that you want the version to expire.
|
4928
|
+
#
|
4929
|
+
# Times are in Coordinated Universal Time (UTC) format. UTC format
|
4930
|
+
# includes the special designator, Z. For example,
|
4931
|
+
# "2016-09-27T14:50Z".
|
4932
|
+
#
|
4933
|
+
# @return [Types::UpdateManagedRuleSetVersionExpiryDateResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4934
|
+
#
|
4935
|
+
# * {Types::UpdateManagedRuleSetVersionExpiryDateResponse#expiring_version #expiring_version} => String
|
4936
|
+
# * {Types::UpdateManagedRuleSetVersionExpiryDateResponse#expiry_timestamp #expiry_timestamp} => Time
|
4937
|
+
# * {Types::UpdateManagedRuleSetVersionExpiryDateResponse#next_lock_token #next_lock_token} => String
|
4938
|
+
#
|
4939
|
+
# @example Request syntax with placeholder values
|
4940
|
+
#
|
4941
|
+
# resp = client.update_managed_rule_set_version_expiry_date({
|
4942
|
+
# name: "EntityName", # required
|
4943
|
+
# scope: "CLOUDFRONT", # required, accepts CLOUDFRONT, REGIONAL
|
4944
|
+
# id: "EntityId", # required
|
4945
|
+
# lock_token: "LockToken", # required
|
4946
|
+
# version_to_expire: "VersionKeyString", # required
|
4947
|
+
# expiry_timestamp: Time.now, # required
|
4948
|
+
# })
|
4949
|
+
#
|
4950
|
+
# @example Response structure
|
4951
|
+
#
|
4952
|
+
# resp.expiring_version #=> String
|
4953
|
+
# resp.expiry_timestamp #=> Time
|
4954
|
+
# resp.next_lock_token #=> String
|
4955
|
+
#
|
4956
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/UpdateManagedRuleSetVersionExpiryDate AWS API Documentation
|
4957
|
+
#
|
4958
|
+
# @overload update_managed_rule_set_version_expiry_date(params = {})
|
4959
|
+
# @param [Hash] params ({})
|
4960
|
+
def update_managed_rule_set_version_expiry_date(params = {}, options = {})
|
4961
|
+
req = build_request(:update_managed_rule_set_version_expiry_date, params)
|
4962
|
+
req.send_request(options)
|
4963
|
+
end
|
4964
|
+
|
4325
4965
|
# Updates the specified RegexPatternSet.
|
4326
4966
|
#
|
4327
4967
|
# <note markdown="1"> This operation completely replaces the mutable specifications that you
|
@@ -4361,14 +5001,14 @@ module Aws::WAFV2
|
|
4361
5001
|
# @option params [required, Array<Types::Regex>] :regular_expression_list
|
4362
5002
|
#
|
4363
5003
|
# @option params [required, String] :lock_token
|
4364
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
4365
|
-
# and list requests, to mark the state of the entity at the time of
|
4366
|
-
# request. To make changes to the entity associated with the token,
|
4367
|
-
# provide the token to operations like update and delete
|
4368
|
-
# token to ensure that no changes have been made to the entity
|
4369
|
-
# last retrieved it. If a change has been made, the update
|
4370
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
4371
|
-
# and use the new token returned by that operation.
|
5004
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
5005
|
+
# and `list` requests, to mark the state of the entity at the time of
|
5006
|
+
# the request. To make changes to the entity associated with the token,
|
5007
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
5008
|
+
# uses the token to ensure that no changes have been made to the entity
|
5009
|
+
# since you last retrieved it. If a change has been made, the update
|
5010
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
5011
|
+
# another `get`, and use the new token returned by that operation.
|
4372
5012
|
#
|
4373
5013
|
# @return [Types::UpdateRegexPatternSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4374
5014
|
#
|
@@ -4455,14 +5095,14 @@ module Aws::WAFV2
|
|
4455
5095
|
# collection.
|
4456
5096
|
#
|
4457
5097
|
# @option params [required, String] :lock_token
|
4458
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
4459
|
-
# and list requests, to mark the state of the entity at the time of
|
4460
|
-
# request. To make changes to the entity associated with the token,
|
4461
|
-
# provide the token to operations like update and delete
|
4462
|
-
# token to ensure that no changes have been made to the entity
|
4463
|
-
# last retrieved it. If a change has been made, the update
|
4464
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
4465
|
-
# and use the new token returned by that operation.
|
5098
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
5099
|
+
# and `list` requests, to mark the state of the entity at the time of
|
5100
|
+
# the request. To make changes to the entity associated with the token,
|
5101
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
5102
|
+
# uses the token to ensure that no changes have been made to the entity
|
5103
|
+
# since you last retrieved it. If a change has been made, the update
|
5104
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
5105
|
+
# another `get`, and use the new token returned by that operation.
|
4466
5106
|
#
|
4467
5107
|
# @option params [Hash<String,Types::CustomResponseBody>] :custom_response_bodies
|
4468
5108
|
# A map of custom response keys and content bodies. When you create a
|
@@ -4736,6 +5376,7 @@ module Aws::WAFV2
|
|
4736
5376
|
# managed_rule_group_statement: {
|
4737
5377
|
# vendor_name: "VendorName", # required
|
4738
5378
|
# name: "EntityName", # required
|
5379
|
+
# version: "VersionKeyString",
|
4739
5380
|
# excluded_rules: [
|
4740
5381
|
# {
|
4741
5382
|
# name: "EntityName", # required
|
@@ -4749,6 +5390,42 @@ module Aws::WAFV2
|
|
4749
5390
|
# scope: "LABEL", # required, accepts LABEL, NAMESPACE
|
4750
5391
|
# key: "LabelMatchKey", # required
|
4751
5392
|
# },
|
5393
|
+
# regex_match_statement: {
|
5394
|
+
# regex_string: "RegexPatternString", # required
|
5395
|
+
# field_to_match: { # required
|
5396
|
+
# single_header: {
|
5397
|
+
# name: "FieldToMatchData", # required
|
5398
|
+
# },
|
5399
|
+
# single_query_argument: {
|
5400
|
+
# name: "FieldToMatchData", # required
|
5401
|
+
# },
|
5402
|
+
# all_query_arguments: {
|
5403
|
+
# },
|
5404
|
+
# uri_path: {
|
5405
|
+
# },
|
5406
|
+
# query_string: {
|
5407
|
+
# },
|
5408
|
+
# body: {
|
5409
|
+
# },
|
5410
|
+
# method: {
|
5411
|
+
# },
|
5412
|
+
# json_body: {
|
5413
|
+
# match_pattern: { # required
|
5414
|
+
# all: {
|
5415
|
+
# },
|
5416
|
+
# included_paths: ["JsonPointerPath"],
|
5417
|
+
# },
|
5418
|
+
# match_scope: "ALL", # required, accepts ALL, KEY, VALUE
|
5419
|
+
# invalid_fallback_behavior: "MATCH", # accepts MATCH, NO_MATCH, EVALUATE_AS_STRING
|
5420
|
+
# },
|
5421
|
+
# },
|
5422
|
+
# text_transformations: [ # required
|
5423
|
+
# {
|
5424
|
+
# priority: 1, # required
|
5425
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
5426
|
+
# },
|
5427
|
+
# ],
|
5428
|
+
# },
|
4752
5429
|
# },
|
4753
5430
|
# action: {
|
4754
5431
|
# block: {
|
@@ -4899,14 +5576,14 @@ module Aws::WAFV2
|
|
4899
5576
|
# collection.
|
4900
5577
|
#
|
4901
5578
|
# @option params [required, String] :lock_token
|
4902
|
-
# A token used for optimistic locking. WAF returns a token to your get
|
4903
|
-
# and list requests, to mark the state of the entity at the time of
|
4904
|
-
# request. To make changes to the entity associated with the token,
|
4905
|
-
# provide the token to operations like update and delete
|
4906
|
-
# token to ensure that no changes have been made to the entity
|
4907
|
-
# last retrieved it. If a change has been made, the update
|
4908
|
-
# `WAFOptimisticLockException`. If this happens, perform
|
4909
|
-
# and use the new token returned by that operation.
|
5579
|
+
# A token used for optimistic locking. WAF returns a token to your `get`
|
5580
|
+
# and `list` requests, to mark the state of the entity at the time of
|
5581
|
+
# the request. To make changes to the entity associated with the token,
|
5582
|
+
# you provide the token to operations like `update` and `delete`. WAF
|
5583
|
+
# uses the token to ensure that no changes have been made to the entity
|
5584
|
+
# since you last retrieved it. If a change has been made, the update
|
5585
|
+
# fails with a `WAFOptimisticLockException`. If this happens, perform
|
5586
|
+
# another `get`, and use the new token returned by that operation.
|
4910
5587
|
#
|
4911
5588
|
# @option params [Hash<String,Types::CustomResponseBody>] :custom_response_bodies
|
4912
5589
|
# A map of custom response keys and content bodies. When you create a
|
@@ -5204,6 +5881,7 @@ module Aws::WAFV2
|
|
5204
5881
|
# managed_rule_group_statement: {
|
5205
5882
|
# vendor_name: "VendorName", # required
|
5206
5883
|
# name: "EntityName", # required
|
5884
|
+
# version: "VersionKeyString",
|
5207
5885
|
# excluded_rules: [
|
5208
5886
|
# {
|
5209
5887
|
# name: "EntityName", # required
|
@@ -5217,6 +5895,42 @@ module Aws::WAFV2
|
|
5217
5895
|
# scope: "LABEL", # required, accepts LABEL, NAMESPACE
|
5218
5896
|
# key: "LabelMatchKey", # required
|
5219
5897
|
# },
|
5898
|
+
# regex_match_statement: {
|
5899
|
+
# regex_string: "RegexPatternString", # required
|
5900
|
+
# field_to_match: { # required
|
5901
|
+
# single_header: {
|
5902
|
+
# name: "FieldToMatchData", # required
|
5903
|
+
# },
|
5904
|
+
# single_query_argument: {
|
5905
|
+
# name: "FieldToMatchData", # required
|
5906
|
+
# },
|
5907
|
+
# all_query_arguments: {
|
5908
|
+
# },
|
5909
|
+
# uri_path: {
|
5910
|
+
# },
|
5911
|
+
# query_string: {
|
5912
|
+
# },
|
5913
|
+
# body: {
|
5914
|
+
# },
|
5915
|
+
# method: {
|
5916
|
+
# },
|
5917
|
+
# json_body: {
|
5918
|
+
# match_pattern: { # required
|
5919
|
+
# all: {
|
5920
|
+
# },
|
5921
|
+
# included_paths: ["JsonPointerPath"],
|
5922
|
+
# },
|
5923
|
+
# match_scope: "ALL", # required, accepts ALL, KEY, VALUE
|
5924
|
+
# invalid_fallback_behavior: "MATCH", # accepts MATCH, NO_MATCH, EVALUATE_AS_STRING
|
5925
|
+
# },
|
5926
|
+
# },
|
5927
|
+
# text_transformations: [ # required
|
5928
|
+
# {
|
5929
|
+
# priority: 1, # required
|
5930
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
5931
|
+
# },
|
5932
|
+
# ],
|
5933
|
+
# },
|
5220
5934
|
# },
|
5221
5935
|
# action: {
|
5222
5936
|
# block: {
|
@@ -5318,7 +6032,7 @@ module Aws::WAFV2
|
|
5318
6032
|
params: params,
|
5319
6033
|
config: config)
|
5320
6034
|
context[:gem_name] = 'aws-sdk-wafv2'
|
5321
|
-
context[:gem_version] = '1.
|
6035
|
+
context[:gem_version] = '1.27.0'
|
5322
6036
|
Seahorse::Client::Request.new(handlers, context)
|
5323
6037
|
end
|
5324
6038
|
|