aws-sdk-wafv2 1.35.0 → 1.38.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +15 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-wafv2/client.rb +63 -13
- data/lib/aws-sdk-wafv2/client_api.rb +3 -0
- data/lib/aws-sdk-wafv2/types.rb +124 -26
- data/lib/aws-sdk-wafv2.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7047edd549f138d29c3f1609dadeaf654dd99b9b0271528356f29a57a50e9de4
|
4
|
+
data.tar.gz: 5682de748288abbc251273469e8f41f6a8d57ba82e643fb87a9c6dba207b93bb
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9602e69dfebe0b7244ecf86375aaa1755f8dae41ac5101050c77a13d10792dd8e53510dc2a020996e59cd737c463f53d1173eff0e615630e51b23ad368572368
|
7
|
+
data.tar.gz: b726a539aab0046ba8598d6e3469b1fa35433e310c77f0bc7d9b9a9b4edd4dad35150fef1b9ad51f228c8148032286accdc393c82722d0a5ab722546ccc8e9e7
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,21 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.38.0 (2022-04-08)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Add a new CurrentDefaultVersion field to ListAvailableManagedRuleGroupVersions API response; add a new VersioningSupported boolean to each ManagedRuleGroup returned from ListAvailableManagedRuleGroups API response.
|
8
|
+
|
9
|
+
1.37.0 (2022-02-24)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
13
|
+
|
14
|
+
1.36.0 (2022-02-22)
|
15
|
+
------------------
|
16
|
+
|
17
|
+
* Feature - Updated descriptions for logging configuration.
|
18
|
+
|
4
19
|
1.35.0 (2022-02-10)
|
5
20
|
------------------
|
6
21
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.38.0
|
data/lib/aws-sdk-wafv2/client.rb
CHANGED
@@ -27,6 +27,7 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
30
|
+
require 'aws-sdk-core/plugins/checksum_algorithm.rb'
|
30
31
|
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
31
32
|
require 'aws-sdk-core/plugins/recursion_detection.rb'
|
32
33
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
@@ -75,6 +76,7 @@ module Aws::WAFV2
|
|
75
76
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
76
77
|
add_plugin(Aws::Plugins::TransferEncoding)
|
77
78
|
add_plugin(Aws::Plugins::HttpChecksum)
|
79
|
+
add_plugin(Aws::Plugins::ChecksumAlgorithm)
|
78
80
|
add_plugin(Aws::Plugins::DefaultsMode)
|
79
81
|
add_plugin(Aws::Plugins::RecursionDetection)
|
80
82
|
add_plugin(Aws::Plugins::SignatureV4)
|
@@ -875,11 +877,11 @@ module Aws::WAFV2
|
|
875
877
|
# The version of the IP addresses, either `IPV4` or `IPV6`.
|
876
878
|
#
|
877
879
|
# @option params [required, Array<String>] :addresses
|
878
|
-
# Contains an array of strings that
|
879
|
-
# blocks of IP addresses in Classless Inter-Domain Routing (CIDR)
|
880
|
+
# Contains an array of strings that specifies zero or more IP addresses
|
881
|
+
# or blocks of IP addresses in Classless Inter-Domain Routing (CIDR)
|
880
882
|
# notation. WAF supports all IPv4 and IPv6 CIDR ranges except for /0.
|
881
883
|
#
|
882
|
-
#
|
884
|
+
# Example address strings:
|
883
885
|
#
|
884
886
|
# * To configure WAF to allow, block, or count requests that originated
|
885
887
|
# from the IP address 192.0.2.44, specify `192.0.2.44/32`.
|
@@ -900,6 +902,17 @@ module Aws::WAFV2
|
|
900
902
|
# For more information about CIDR notation, see the Wikipedia entry
|
901
903
|
# [Classless Inter-Domain Routing][1].
|
902
904
|
#
|
905
|
+
# Example JSON `Addresses` specifications:
|
906
|
+
#
|
907
|
+
# * Empty array: `"Addresses": []`
|
908
|
+
#
|
909
|
+
# * Array with one address: `"Addresses": ["192.0.2.44/32"]`
|
910
|
+
#
|
911
|
+
# * Array with three addresses: `"Addresses": ["192.0.2.44/32",
|
912
|
+
# "192.0.2.0/24", "192.0.0.0/16"]`
|
913
|
+
#
|
914
|
+
# * INVALID specification: `"Addresses": [""]` INVALID
|
915
|
+
#
|
903
916
|
#
|
904
917
|
#
|
905
918
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
@@ -2502,7 +2515,12 @@ module Aws::WAFV2
|
|
2502
2515
|
# The mobile SDK is not generally available. Customers who have access
|
2503
2516
|
# to the mobile SDK can use it to establish and manage Security Token
|
2504
2517
|
# Service (STS) security tokens for use in HTTP(S) requests from a
|
2505
|
-
# mobile device to WAF.
|
2518
|
+
# mobile device to WAF. For more information, see [WAF client
|
2519
|
+
# application integration][1] in the *WAF Developer Guide*.
|
2520
|
+
#
|
2521
|
+
#
|
2522
|
+
#
|
2523
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-application-integration.html
|
2506
2524
|
#
|
2507
2525
|
# @option params [required, String] :platform
|
2508
2526
|
# The device platform.
|
@@ -2723,7 +2741,12 @@ module Aws::WAFV2
|
|
2723
2741
|
# The mobile SDK is not generally available. Customers who have access
|
2724
2742
|
# to the mobile SDK can use it to establish and manage Security Token
|
2725
2743
|
# Service (STS) security tokens for use in HTTP(S) requests from a
|
2726
|
-
# mobile device to WAF.
|
2744
|
+
# mobile device to WAF. For more information, see [WAF client
|
2745
|
+
# application integration][1] in the *WAF Developer Guide*.
|
2746
|
+
#
|
2747
|
+
#
|
2748
|
+
#
|
2749
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-application-integration.html
|
2727
2750
|
#
|
2728
2751
|
# @option params [required, String] :platform
|
2729
2752
|
# The device platform.
|
@@ -4063,6 +4086,7 @@ module Aws::WAFV2
|
|
4063
4086
|
#
|
4064
4087
|
# * {Types::ListAvailableManagedRuleGroupVersionsResponse#next_marker #next_marker} => String
|
4065
4088
|
# * {Types::ListAvailableManagedRuleGroupVersionsResponse#versions #versions} => Array<Types::ManagedRuleGroupVersion>
|
4089
|
+
# * {Types::ListAvailableManagedRuleGroupVersionsResponse#current_default_version #current_default_version} => String
|
4066
4090
|
#
|
4067
4091
|
# @example Request syntax with placeholder values
|
4068
4092
|
#
|
@@ -4080,6 +4104,7 @@ module Aws::WAFV2
|
|
4080
4104
|
# resp.versions #=> Array
|
4081
4105
|
# resp.versions[0].name #=> String
|
4082
4106
|
# resp.versions[0].last_update_timestamp #=> Time
|
4107
|
+
# resp.current_default_version #=> String
|
4083
4108
|
#
|
4084
4109
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ListAvailableManagedRuleGroupVersions AWS API Documentation
|
4085
4110
|
#
|
@@ -4141,6 +4166,7 @@ module Aws::WAFV2
|
|
4141
4166
|
# resp.managed_rule_groups #=> Array
|
4142
4167
|
# resp.managed_rule_groups[0].vendor_name #=> String
|
4143
4168
|
# resp.managed_rule_groups[0].name #=> String
|
4169
|
+
# resp.managed_rule_groups[0].versioning_supported #=> Boolean
|
4144
4170
|
# resp.managed_rule_groups[0].description #=> String
|
4145
4171
|
#
|
4146
4172
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ListAvailableManagedRuleGroups AWS API Documentation
|
@@ -4367,7 +4393,12 @@ module Aws::WAFV2
|
|
4367
4393
|
# The mobile SDK is not generally available. Customers who have access
|
4368
4394
|
# to the mobile SDK can use it to establish and manage Security Token
|
4369
4395
|
# Service (STS) security tokens for use in HTTP(S) requests from a
|
4370
|
-
# mobile device to WAF.
|
4396
|
+
# mobile device to WAF. For more information, see [WAF client
|
4397
|
+
# application integration][1] in the *WAF Developer Guide*.
|
4398
|
+
#
|
4399
|
+
#
|
4400
|
+
#
|
4401
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-application-integration.html
|
4371
4402
|
#
|
4372
4403
|
# @option params [required, String] :platform
|
4373
4404
|
# The device platform to retrieve the list for.
|
@@ -4698,7 +4729,11 @@ module Aws::WAFV2
|
|
4698
4729
|
# Enables the specified LoggingConfiguration, to start logging from a
|
4699
4730
|
# web ACL, according to the configuration provided.
|
4700
4731
|
#
|
4701
|
-
# You can
|
4732
|
+
# <note markdown="1"> You can define one logging destination per web ACL.
|
4733
|
+
#
|
4734
|
+
# </note>
|
4735
|
+
#
|
4736
|
+
# You can access information about the traffic that WAF inspects using
|
4702
4737
|
# the following steps:
|
4703
4738
|
#
|
4704
4739
|
# 1. Create your logging destination. You can use an Amazon CloudWatch
|
@@ -4718,6 +4753,9 @@ module Aws::WAFV2
|
|
4718
4753
|
# Amazon S3 bucket, WAF creates a bucket policy. For an Amazon Kinesis
|
4719
4754
|
# Data Firehose, WAF creates a service-linked role.
|
4720
4755
|
#
|
4756
|
+
# For additional information about web ACL logging, see [Logging web ACL
|
4757
|
+
# traffic information][1] in the *WAF Developer Guide*.
|
4758
|
+
#
|
4721
4759
|
# <note markdown="1"> This operation completely replaces the mutable specifications that you
|
4722
4760
|
# already have for the logging configuration with the ones that you
|
4723
4761
|
# provide to this call. To modify the logging configuration, retrieve it
|
@@ -4962,8 +5000,9 @@ module Aws::WAFV2
|
|
4962
5000
|
# * `Effect` must specify `Allow`.
|
4963
5001
|
#
|
4964
5002
|
# * `Action` must specify `wafv2:CreateWebACL`, `wafv2:UpdateWebACL`,
|
4965
|
-
# and `wafv2:PutFirewallManagerRuleGroups
|
4966
|
-
#
|
5003
|
+
# and `wafv2:PutFirewallManagerRuleGroups` and may optionally specify
|
5004
|
+
# `wafv2:GetRuleGroup`. WAF rejects any extra actions or wildcard
|
5005
|
+
# actions in the policy.
|
4967
5006
|
#
|
4968
5007
|
# * The policy must not include a `Resource` parameter.
|
4969
5008
|
#
|
@@ -5100,11 +5139,11 @@ module Aws::WAFV2
|
|
5100
5139
|
# A description of the IP set that helps with identification.
|
5101
5140
|
#
|
5102
5141
|
# @option params [required, Array<String>] :addresses
|
5103
|
-
# Contains an array of strings that
|
5104
|
-
# blocks of IP addresses in Classless Inter-Domain Routing (CIDR)
|
5142
|
+
# Contains an array of strings that specifies zero or more IP addresses
|
5143
|
+
# or blocks of IP addresses in Classless Inter-Domain Routing (CIDR)
|
5105
5144
|
# notation. WAF supports all IPv4 and IPv6 CIDR ranges except for /0.
|
5106
5145
|
#
|
5107
|
-
#
|
5146
|
+
# Example address strings:
|
5108
5147
|
#
|
5109
5148
|
# * To configure WAF to allow, block, or count requests that originated
|
5110
5149
|
# from the IP address 192.0.2.44, specify `192.0.2.44/32`.
|
@@ -5125,6 +5164,17 @@ module Aws::WAFV2
|
|
5125
5164
|
# For more information about CIDR notation, see the Wikipedia entry
|
5126
5165
|
# [Classless Inter-Domain Routing][1].
|
5127
5166
|
#
|
5167
|
+
# Example JSON `Addresses` specifications:
|
5168
|
+
#
|
5169
|
+
# * Empty array: `"Addresses": []`
|
5170
|
+
#
|
5171
|
+
# * Array with one address: `"Addresses": ["192.0.2.44/32"]`
|
5172
|
+
#
|
5173
|
+
# * Array with three addresses: `"Addresses": ["192.0.2.44/32",
|
5174
|
+
# "192.0.2.0/24", "192.0.0.0/16"]`
|
5175
|
+
#
|
5176
|
+
# * INVALID specification: `"Addresses": [""]` INVALID
|
5177
|
+
#
|
5128
5178
|
#
|
5129
5179
|
#
|
5130
5180
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
@@ -6396,7 +6446,7 @@ module Aws::WAFV2
|
|
6396
6446
|
params: params,
|
6397
6447
|
config: config)
|
6398
6448
|
context[:gem_name] = 'aws-sdk-wafv2'
|
6399
|
-
context[:gem_version] = '1.
|
6449
|
+
context[:gem_version] = '1.38.0'
|
6400
6450
|
Seahorse::Client::Request.new(handlers, context)
|
6401
6451
|
end
|
6402
6452
|
|
@@ -753,6 +753,7 @@ module Aws::WAFV2
|
|
753
753
|
|
754
754
|
ListAvailableManagedRuleGroupVersionsResponse.add_member(:next_marker, Shapes::ShapeRef.new(shape: NextMarker, location_name: "NextMarker"))
|
755
755
|
ListAvailableManagedRuleGroupVersionsResponse.add_member(:versions, Shapes::ShapeRef.new(shape: ManagedRuleGroupVersions, location_name: "Versions"))
|
756
|
+
ListAvailableManagedRuleGroupVersionsResponse.add_member(:current_default_version, Shapes::ShapeRef.new(shape: VersionKeyString, location_name: "CurrentDefaultVersion"))
|
756
757
|
ListAvailableManagedRuleGroupVersionsResponse.struct_class = Types::ListAvailableManagedRuleGroupVersionsResponse
|
757
758
|
|
758
759
|
ListAvailableManagedRuleGroupsRequest.add_member(:scope, Shapes::ShapeRef.new(shape: Scope, required: true, location_name: "Scope"))
|
@@ -878,6 +879,7 @@ module Aws::WAFV2
|
|
878
879
|
|
879
880
|
ManagedRuleGroupSummary.add_member(:vendor_name, Shapes::ShapeRef.new(shape: VendorName, location_name: "VendorName"))
|
880
881
|
ManagedRuleGroupSummary.add_member(:name, Shapes::ShapeRef.new(shape: EntityName, location_name: "Name"))
|
882
|
+
ManagedRuleGroupSummary.add_member(:versioning_supported, Shapes::ShapeRef.new(shape: Boolean, location_name: "VersioningSupported"))
|
881
883
|
ManagedRuleGroupSummary.add_member(:description, Shapes::ShapeRef.new(shape: EntityDescription, location_name: "Description"))
|
882
884
|
ManagedRuleGroupSummary.struct_class = Types::ManagedRuleGroupSummary
|
883
885
|
|
@@ -1708,6 +1710,7 @@ module Aws::WAFV2
|
|
1708
1710
|
o.output = Shapes::ShapeRef.new(shape: ListAvailableManagedRuleGroupVersionsResponse)
|
1709
1711
|
o.errors << Shapes::ShapeRef.new(shape: WAFInternalErrorException)
|
1710
1712
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidParameterException)
|
1713
|
+
o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
|
1711
1714
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidOperationException)
|
1712
1715
|
end)
|
1713
1716
|
|
data/lib/aws-sdk-wafv2/types.rb
CHANGED
@@ -1336,11 +1336,12 @@ module Aws::WAFV2
|
|
1336
1336
|
# @return [String]
|
1337
1337
|
#
|
1338
1338
|
# @!attribute [rw] addresses
|
1339
|
-
# Contains an array of strings that
|
1340
|
-
# or blocks of IP addresses in Classless Inter-Domain
|
1341
|
-
# notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
1339
|
+
# Contains an array of strings that specifies zero or more IP
|
1340
|
+
# addresses or blocks of IP addresses in Classless Inter-Domain
|
1341
|
+
# Routing (CIDR) notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
1342
|
+
# except for /0.
|
1342
1343
|
#
|
1343
|
-
#
|
1344
|
+
# Example address strings:
|
1344
1345
|
#
|
1345
1346
|
# * To configure WAF to allow, block, or count requests that
|
1346
1347
|
# originated from the IP address 192.0.2.44, specify
|
@@ -1364,6 +1365,17 @@ module Aws::WAFV2
|
|
1364
1365
|
# For more information about CIDR notation, see the Wikipedia entry
|
1365
1366
|
# [Classless Inter-Domain Routing][1].
|
1366
1367
|
#
|
1368
|
+
# Example JSON `Addresses` specifications:
|
1369
|
+
#
|
1370
|
+
# * Empty array: `"Addresses": []`
|
1371
|
+
#
|
1372
|
+
# * Array with one address: `"Addresses": ["192.0.2.44/32"]`
|
1373
|
+
#
|
1374
|
+
# * Array with three addresses: `"Addresses": ["192.0.2.44/32",
|
1375
|
+
# "192.0.2.0/24", "192.0.0.0/16"]`
|
1376
|
+
#
|
1377
|
+
# * INVALID specification: `"Addresses": [""]` INVALID
|
1378
|
+
#
|
1367
1379
|
#
|
1368
1380
|
#
|
1369
1381
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
@@ -4400,7 +4412,7 @@ module Aws::WAFV2
|
|
4400
4412
|
# account takeover prevention managed rule group
|
4401
4413
|
# `AWSManagedRulesATPRuleSet`. This is only populated if you are using
|
4402
4414
|
# a rule group in your web ACL that integrates with your applications
|
4403
|
-
# in this way. For more information, see [WAF application
|
4415
|
+
# in this way. For more information, see [WAF client application
|
4404
4416
|
# integration][1] in the *WAF Developer Guide*.
|
4405
4417
|
#
|
4406
4418
|
#
|
@@ -4498,7 +4510,7 @@ module Aws::WAFV2
|
|
4498
4510
|
include Aws::Structure
|
4499
4511
|
end
|
4500
4512
|
|
4501
|
-
# Contains
|
4513
|
+
# Contains zero or more IP addresses or blocks of IP addresses specified
|
4502
4514
|
# in Classless Inter-Domain Routing (CIDR) notation. WAF supports all
|
4503
4515
|
# IPv4 and IPv6 CIDR ranges except for /0. For information about CIDR
|
4504
4516
|
# notation, see the Wikipedia entry [Classless Inter-Domain Routing][1].
|
@@ -4535,11 +4547,12 @@ module Aws::WAFV2
|
|
4535
4547
|
# @return [String]
|
4536
4548
|
#
|
4537
4549
|
# @!attribute [rw] addresses
|
4538
|
-
# Contains an array of strings that
|
4539
|
-
# or blocks of IP addresses in Classless Inter-Domain
|
4540
|
-
# notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
4550
|
+
# Contains an array of strings that specifies zero or more IP
|
4551
|
+
# addresses or blocks of IP addresses in Classless Inter-Domain
|
4552
|
+
# Routing (CIDR) notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
4553
|
+
# except for /0.
|
4541
4554
|
#
|
4542
|
-
#
|
4555
|
+
# Example address strings:
|
4543
4556
|
#
|
4544
4557
|
# * To configure WAF to allow, block, or count requests that
|
4545
4558
|
# originated from the IP address 192.0.2.44, specify
|
@@ -4563,6 +4576,17 @@ module Aws::WAFV2
|
|
4563
4576
|
# For more information about CIDR notation, see the Wikipedia entry
|
4564
4577
|
# [Classless Inter-Domain Routing][1].
|
4565
4578
|
#
|
4579
|
+
# Example JSON `Addresses` specifications:
|
4580
|
+
#
|
4581
|
+
# * Empty array: `"Addresses": []`
|
4582
|
+
#
|
4583
|
+
# * Array with one address: `"Addresses": ["192.0.2.44/32"]`
|
4584
|
+
#
|
4585
|
+
# * Array with three addresses: `"Addresses": ["192.0.2.44/32",
|
4586
|
+
# "192.0.2.0/24", "192.0.0.0/16"]`
|
4587
|
+
#
|
4588
|
+
# * INVALID specification: `"Addresses": [""]` INVALID
|
4589
|
+
#
|
4566
4590
|
#
|
4567
4591
|
#
|
4568
4592
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
@@ -5109,11 +5133,16 @@ module Aws::WAFV2
|
|
5109
5133
|
# rule group.
|
5110
5134
|
# @return [Array<Types::ManagedRuleGroupVersion>]
|
5111
5135
|
#
|
5136
|
+
# @!attribute [rw] current_default_version
|
5137
|
+
# The name of the version that's currently set as the default.
|
5138
|
+
# @return [String]
|
5139
|
+
#
|
5112
5140
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ListAvailableManagedRuleGroupVersionsResponse AWS API Documentation
|
5113
5141
|
#
|
5114
5142
|
class ListAvailableManagedRuleGroupVersionsResponse < Struct.new(
|
5115
5143
|
:next_marker,
|
5116
|
-
:versions
|
5144
|
+
:versions,
|
5145
|
+
:current_default_version)
|
5117
5146
|
SENSITIVE = []
|
5118
5147
|
include Aws::Structure
|
5119
5148
|
end
|
@@ -5768,8 +5797,32 @@ module Aws::WAFV2
|
|
5768
5797
|
# and you can specify filters so that you log only a subset of the
|
5769
5798
|
# logging records.
|
5770
5799
|
#
|
5771
|
-
#
|
5772
|
-
#
|
5800
|
+
# <note markdown="1"> You can define one logging destination per web ACL.
|
5801
|
+
#
|
5802
|
+
# </note>
|
5803
|
+
#
|
5804
|
+
# You can access information about the traffic that WAF inspects using
|
5805
|
+
# the following steps:
|
5806
|
+
#
|
5807
|
+
# 1. Create your logging destination. You can use an Amazon CloudWatch
|
5808
|
+
# Logs log group, an Amazon Simple Storage Service (Amazon S3)
|
5809
|
+
# bucket, or an Amazon Kinesis Data Firehose. For information about
|
5810
|
+
# configuring logging destinations and the permissions that are
|
5811
|
+
# required for each, see [Logging web ACL traffic information][1] in
|
5812
|
+
# the *WAF Developer Guide*.
|
5813
|
+
#
|
5814
|
+
# 2. Associate your logging destination to your web ACL using a
|
5815
|
+
# `PutLoggingConfiguration` request.
|
5816
|
+
#
|
5817
|
+
# When you successfully enable logging using a `PutLoggingConfiguration`
|
5818
|
+
# request, WAF creates an additional role or policy that is required to
|
5819
|
+
# write logs to the logging destination. For an Amazon CloudWatch Logs
|
5820
|
+
# log group, WAF creates a resource policy on the log group. For an
|
5821
|
+
# Amazon S3 bucket, WAF creates a bucket policy. For an Amazon Kinesis
|
5822
|
+
# Data Firehose, WAF creates a service-linked role.
|
5823
|
+
#
|
5824
|
+
# For additional information about web ACL logging, see [Logging web ACL
|
5825
|
+
# traffic information][1] in the *WAF Developer Guide*.
|
5773
5826
|
#
|
5774
5827
|
#
|
5775
5828
|
#
|
@@ -5838,8 +5891,12 @@ module Aws::WAFV2
|
|
5838
5891
|
# @return [String]
|
5839
5892
|
#
|
5840
5893
|
# @!attribute [rw] log_destination_configs
|
5841
|
-
# The
|
5842
|
-
#
|
5894
|
+
# The logging destination configuration that you want to associate
|
5895
|
+
# with the web ACL.
|
5896
|
+
#
|
5897
|
+
# <note markdown="1"> You can associate one logging destination to a web ACL.
|
5898
|
+
#
|
5899
|
+
# </note>
|
5843
5900
|
# @return [Array<String>]
|
5844
5901
|
#
|
5845
5902
|
# @!attribute [rw] redacted_fields
|
@@ -5932,6 +5989,13 @@ module Aws::WAFV2
|
|
5932
5989
|
# `AWSManagedRulesATPRuleSet`, to provide information about the sign-in
|
5933
5990
|
# page of your application.
|
5934
5991
|
#
|
5992
|
+
# You can provide multiple individual `ManagedRuleGroupConfig` objects
|
5993
|
+
# for any rule group configuration, for example `UsernameField` and
|
5994
|
+
# `PasswordField`. The configuration that you provide depends on the
|
5995
|
+
# needs of the managed rule group. For the ATP managed rule group, you
|
5996
|
+
# provide the following individual configuration objects: `LoginPath`,
|
5997
|
+
# `PasswordField`, `PayloadType` and `UsernameField`.
|
5998
|
+
#
|
5935
5999
|
# @note When making an API call, you may pass ManagedRuleGroupConfig
|
5936
6000
|
# data as a hash:
|
5937
6001
|
#
|
@@ -5947,8 +6011,9 @@ module Aws::WAFV2
|
|
5947
6011
|
# }
|
5948
6012
|
#
|
5949
6013
|
# @!attribute [rw] login_path
|
5950
|
-
# The login endpoint for your application. For example
|
5951
|
-
# `https://example.com/web/login
|
6014
|
+
# The path of the login endpoint for your application. For example,
|
6015
|
+
# for the URL `https://example.com/web/login`, you would provide the
|
6016
|
+
# path `/web/login`.
|
5952
6017
|
# @return [String]
|
5953
6018
|
#
|
5954
6019
|
# @!attribute [rw] payload_type
|
@@ -6352,6 +6417,13 @@ module Aws::WAFV2
|
|
6352
6417
|
# Use this for the account takeover prevention managed rule group
|
6353
6418
|
# `AWSManagedRulesATPRuleSet`, to provide information about the
|
6354
6419
|
# sign-in page of your application.
|
6420
|
+
#
|
6421
|
+
# You can provide multiple individual `ManagedRuleGroupConfig` objects
|
6422
|
+
# for any rule group configuration, for example `UsernameField` and
|
6423
|
+
# `PasswordField`. The configuration that you provide depends on the
|
6424
|
+
# needs of the managed rule group. For the ATP managed rule group, you
|
6425
|
+
# provide the following individual configuration objects: `LoginPath`,
|
6426
|
+
# `PasswordField`, `PayloadType` and `UsernameField`.
|
6355
6427
|
# @return [Array<Types::ManagedRuleGroupConfig>]
|
6356
6428
|
#
|
6357
6429
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/ManagedRuleGroupStatement AWS API Documentation
|
@@ -6386,6 +6458,12 @@ module Aws::WAFV2
|
|
6386
6458
|
# vendor name, to identify the rule group.
|
6387
6459
|
# @return [String]
|
6388
6460
|
#
|
6461
|
+
# @!attribute [rw] versioning_supported
|
6462
|
+
# Indicates whether the managed rule group is versioned. If it is, you
|
6463
|
+
# can retrieve the versions list by calling
|
6464
|
+
# ListAvailableManagedRuleGroupVersions.
|
6465
|
+
# @return [Boolean]
|
6466
|
+
#
|
6389
6467
|
# @!attribute [rw] description
|
6390
6468
|
# The description of the managed rule group, provided by Amazon Web
|
6391
6469
|
# Services Managed Rules or the Amazon Web Services Marketplace seller
|
@@ -6397,6 +6475,7 @@ module Aws::WAFV2
|
|
6397
6475
|
class ManagedRuleGroupSummary < Struct.new(
|
6398
6476
|
:vendor_name,
|
6399
6477
|
:name,
|
6478
|
+
:versioning_supported,
|
6400
6479
|
:description)
|
6401
6480
|
SENSITIVE = []
|
6402
6481
|
include Aws::Structure
|
@@ -6671,7 +6750,12 @@ module Aws::WAFV2
|
|
6671
6750
|
# The mobile SDK is not generally available. Customers who have access
|
6672
6751
|
# to the mobile SDK can use it to establish and manage Security Token
|
6673
6752
|
# Service (STS) security tokens for use in HTTP(S) requests from a
|
6674
|
-
# mobile device to WAF.
|
6753
|
+
# mobile device to WAF. For more information, see [WAF client
|
6754
|
+
# application integration][1] in the *WAF Developer Guide*.
|
6755
|
+
#
|
6756
|
+
#
|
6757
|
+
#
|
6758
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-application-integration.html
|
6675
6759
|
#
|
6676
6760
|
# @!attribute [rw] release_version
|
6677
6761
|
# The release version.
|
@@ -7646,8 +7730,9 @@ module Aws::WAFV2
|
|
7646
7730
|
# * `Effect` must specify `Allow`.
|
7647
7731
|
#
|
7648
7732
|
# * `Action` must specify `wafv2:CreateWebACL`, `wafv2:UpdateWebACL`,
|
7649
|
-
# and `wafv2:PutFirewallManagerRuleGroups
|
7650
|
-
#
|
7733
|
+
# and `wafv2:PutFirewallManagerRuleGroups` and may optionally
|
7734
|
+
# specify `wafv2:GetRuleGroup`. WAF rejects any extra actions or
|
7735
|
+
# wildcard actions in the policy.
|
7651
7736
|
#
|
7652
7737
|
# * The policy must not include a `Resource` parameter.
|
7653
7738
|
#
|
@@ -11830,11 +11915,12 @@ module Aws::WAFV2
|
|
11830
11915
|
# @return [String]
|
11831
11916
|
#
|
11832
11917
|
# @!attribute [rw] addresses
|
11833
|
-
# Contains an array of strings that
|
11834
|
-
# or blocks of IP addresses in Classless Inter-Domain
|
11835
|
-
# notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
11918
|
+
# Contains an array of strings that specifies zero or more IP
|
11919
|
+
# addresses or blocks of IP addresses in Classless Inter-Domain
|
11920
|
+
# Routing (CIDR) notation. WAF supports all IPv4 and IPv6 CIDR ranges
|
11921
|
+
# except for /0.
|
11836
11922
|
#
|
11837
|
-
#
|
11923
|
+
# Example address strings:
|
11838
11924
|
#
|
11839
11925
|
# * To configure WAF to allow, block, or count requests that
|
11840
11926
|
# originated from the IP address 192.0.2.44, specify
|
@@ -11858,6 +11944,17 @@ module Aws::WAFV2
|
|
11858
11944
|
# For more information about CIDR notation, see the Wikipedia entry
|
11859
11945
|
# [Classless Inter-Domain Routing][1].
|
11860
11946
|
#
|
11947
|
+
# Example JSON `Addresses` specifications:
|
11948
|
+
#
|
11949
|
+
# * Empty array: `"Addresses": []`
|
11950
|
+
#
|
11951
|
+
# * Array with one address: `"Addresses": ["192.0.2.44/32"]`
|
11952
|
+
#
|
11953
|
+
# * Array with three addresses: `"Addresses": ["192.0.2.44/32",
|
11954
|
+
# "192.0.2.0/24", "192.0.0.0/16"]`
|
11955
|
+
#
|
11956
|
+
# * INVALID specification: `"Addresses": [""]` INVALID
|
11957
|
+
#
|
11861
11958
|
#
|
11862
11959
|
#
|
11863
11960
|
# [1]: https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing
|
@@ -13404,8 +13501,9 @@ module Aws::WAFV2
|
|
13404
13501
|
# * `Effect` must specify `Allow`.
|
13405
13502
|
#
|
13406
13503
|
# * `Action` must specify `wafv2:CreateWebACL`, `wafv2:UpdateWebACL`,
|
13407
|
-
# and `wafv2:PutFirewallManagerRuleGroups
|
13408
|
-
#
|
13504
|
+
# and `wafv2:PutFirewallManagerRuleGroups` and may optionally specify
|
13505
|
+
# `wafv2:GetRuleGroup`. WAF rejects any extra actions or wildcard
|
13506
|
+
# actions in the policy.
|
13409
13507
|
#
|
13410
13508
|
# * The policy must not include a `Resource` parameter.
|
13411
13509
|
#
|
data/lib/aws-sdk-wafv2.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-wafv2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.38.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-04-08 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.127.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.127.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|