aws-sdk-wafv2 1.66.0 → 1.68.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +10 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-wafv2/client.rb +52 -3
- data/lib/aws-sdk-wafv2/client_api.rb +6 -0
- data/lib/aws-sdk-wafv2/types.rb +101 -39
- data/lib/aws-sdk-wafv2.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 55bfda004eba480991c75c6b64ae9e27a276f5634a2a642a5fb5250b1b528c75
|
4
|
+
data.tar.gz: 6be1ea7c0b782202a5eeb080fc572df75da8fb2c56cb16d886ce65fa6ed2aaad
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 0ede4328b57c11dfdc743583e0ebff19b960a04426ffaf0b8b35d975e68b4e53eff3272e3e979583eaa286ad09adec2a69b5c78f8ea981b66683d80687789403
|
7
|
+
data.tar.gz: ae1f655544dd8bb38e75cde4079ff7bc9bb75abb57abdd6b81e3377e7ad68dd31dd46a6c2650b508872672c07dfaf087369e89dc4f874620c4fdafa578195c8d
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,16 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.68.0 (2023-09-06)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - The targeted protection level of the Bot Control managed rule group now provides optional, machine-learning analysis of traffic statistics to detect some bot-related activity. You can enable or disable the machine learning functionality through the API.
|
8
|
+
|
9
|
+
1.67.0 (2023-07-19)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Added the URI path to the custom aggregation keys that you can specify for a rate-based rule.
|
13
|
+
|
4
14
|
1.66.0 (2023-07-11)
|
5
15
|
------------------
|
6
16
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.68.0
|
data/lib/aws-sdk-wafv2/client.rb
CHANGED
@@ -971,6 +971,14 @@ module Aws::WAFV2
|
|
971
971
|
# label_namespace: {
|
972
972
|
# namespace: "LabelNamespace", # required
|
973
973
|
# },
|
974
|
+
# uri_path: {
|
975
|
+
# text_transformations: [ # required
|
976
|
+
# {
|
977
|
+
# priority: 1, # required
|
978
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
979
|
+
# },
|
980
|
+
# ],
|
981
|
+
# },
|
974
982
|
# },
|
975
983
|
# ],
|
976
984
|
# },
|
@@ -1017,6 +1025,7 @@ module Aws::WAFV2
|
|
1017
1025
|
# },
|
1018
1026
|
# aws_managed_rules_bot_control_rule_set: {
|
1019
1027
|
# inspection_level: "COMMON", # required, accepts COMMON, TARGETED
|
1028
|
+
# enable_machine_learning: false,
|
1020
1029
|
# },
|
1021
1030
|
# aws_managed_rules_atp_rule_set: {
|
1022
1031
|
# login_path: "String", # required
|
@@ -2122,6 +2131,14 @@ module Aws::WAFV2
|
|
2122
2131
|
# label_namespace: {
|
2123
2132
|
# namespace: "LabelNamespace", # required
|
2124
2133
|
# },
|
2134
|
+
# uri_path: {
|
2135
|
+
# text_transformations: [ # required
|
2136
|
+
# {
|
2137
|
+
# priority: 1, # required
|
2138
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
2139
|
+
# },
|
2140
|
+
# ],
|
2141
|
+
# },
|
2125
2142
|
# },
|
2126
2143
|
# ],
|
2127
2144
|
# },
|
@@ -2168,6 +2185,7 @@ module Aws::WAFV2
|
|
2168
2185
|
# },
|
2169
2186
|
# aws_managed_rules_bot_control_rule_set: {
|
2170
2187
|
# inspection_level: "COMMON", # required, accepts COMMON, TARGETED
|
2188
|
+
# enable_machine_learning: false,
|
2171
2189
|
# },
|
2172
2190
|
# aws_managed_rules_atp_rule_set: {
|
2173
2191
|
# login_path: "String", # required
|
@@ -2607,7 +2625,7 @@ module Aws::WAFV2
|
|
2607
2625
|
#
|
2608
2626
|
# Use this to customize the maximum size of the request body that your
|
2609
2627
|
# protected CloudFront distributions forward to WAF for inspection. The
|
2610
|
-
# default is 16 KB (16,384
|
2628
|
+
# default is 16 KB (16,384 bytes).
|
2611
2629
|
#
|
2612
2630
|
# <note markdown="1"> You are charged additional fees when your protected resources forward
|
2613
2631
|
# body sizes that are larger than the default. For more information, see
|
@@ -3102,6 +3120,14 @@ module Aws::WAFV2
|
|
3102
3120
|
# label_namespace: {
|
3103
3121
|
# namespace: "LabelNamespace", # required
|
3104
3122
|
# },
|
3123
|
+
# uri_path: {
|
3124
|
+
# text_transformations: [ # required
|
3125
|
+
# {
|
3126
|
+
# priority: 1, # required
|
3127
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
3128
|
+
# },
|
3129
|
+
# ],
|
3130
|
+
# },
|
3105
3131
|
# },
|
3106
3132
|
# ],
|
3107
3133
|
# },
|
@@ -3148,6 +3174,7 @@ module Aws::WAFV2
|
|
3148
3174
|
# },
|
3149
3175
|
# aws_managed_rules_bot_control_rule_set: {
|
3150
3176
|
# inspection_level: "COMMON", # required, accepts COMMON, TARGETED
|
3177
|
+
# enable_machine_learning: false,
|
3151
3178
|
# },
|
3152
3179
|
# aws_managed_rules_atp_rule_set: {
|
3153
3180
|
# login_path: "String", # required
|
@@ -4865,6 +4892,9 @@ module Aws::WAFV2
|
|
4865
4892
|
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].query_string.text_transformations[0].priority #=> Integer
|
4866
4893
|
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].query_string.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
4867
4894
|
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].label_namespace.namespace #=> String
|
4895
|
+
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations #=> Array
|
4896
|
+
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations[0].priority #=> Integer
|
4897
|
+
# resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
|
4868
4898
|
# resp.rule_group.rules[0].statement.and_statement.statements #=> Array
|
4869
4899
|
# resp.rule_group.rules[0].statement.and_statement.statements[0] #=> Types::Statement
|
4870
4900
|
# resp.rule_group.rules[0].statement.or_statement.statements #=> Array
|
@@ -4882,6 +4912,7 @@ module Aws::WAFV2
|
|
4882
4912
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].username_field.identifier #=> String
|
4883
4913
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].password_field.identifier #=> String
|
4884
4914
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_bot_control_rule_set.inspection_level #=> String, one of "COMMON", "TARGETED"
|
4915
|
+
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_bot_control_rule_set.enable_machine_learning #=> Boolean
|
4885
4916
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.login_path #=> String
|
4886
4917
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.request_inspection.payload_type #=> String, one of "JSON", "FORM_ENCODED"
|
4887
4918
|
# resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.request_inspection.username_field.identifier #=> String
|
@@ -7352,6 +7383,14 @@ module Aws::WAFV2
|
|
7352
7383
|
# label_namespace: {
|
7353
7384
|
# namespace: "LabelNamespace", # required
|
7354
7385
|
# },
|
7386
|
+
# uri_path: {
|
7387
|
+
# text_transformations: [ # required
|
7388
|
+
# {
|
7389
|
+
# priority: 1, # required
|
7390
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
7391
|
+
# },
|
7392
|
+
# ],
|
7393
|
+
# },
|
7355
7394
|
# },
|
7356
7395
|
# ],
|
7357
7396
|
# },
|
@@ -7398,6 +7437,7 @@ module Aws::WAFV2
|
|
7398
7437
|
# },
|
7399
7438
|
# aws_managed_rules_bot_control_rule_set: {
|
7400
7439
|
# inspection_level: "COMMON", # required, accepts COMMON, TARGETED
|
7440
|
+
# enable_machine_learning: false,
|
7401
7441
|
# },
|
7402
7442
|
# aws_managed_rules_atp_rule_set: {
|
7403
7443
|
# login_path: "String", # required
|
@@ -7870,7 +7910,7 @@ module Aws::WAFV2
|
|
7870
7910
|
#
|
7871
7911
|
# Use this to customize the maximum size of the request body that your
|
7872
7912
|
# protected CloudFront distributions forward to WAF for inspection. The
|
7873
|
-
# default is 16 KB (16,384
|
7913
|
+
# default is 16 KB (16,384 bytes).
|
7874
7914
|
#
|
7875
7915
|
# <note markdown="1"> You are charged additional fees when your protected resources forward
|
7876
7916
|
# body sizes that are larger than the default. For more information, see
|
@@ -8366,6 +8406,14 @@ module Aws::WAFV2
|
|
8366
8406
|
# label_namespace: {
|
8367
8407
|
# namespace: "LabelNamespace", # required
|
8368
8408
|
# },
|
8409
|
+
# uri_path: {
|
8410
|
+
# text_transformations: [ # required
|
8411
|
+
# {
|
8412
|
+
# priority: 1, # required
|
8413
|
+
# type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
|
8414
|
+
# },
|
8415
|
+
# ],
|
8416
|
+
# },
|
8369
8417
|
# },
|
8370
8418
|
# ],
|
8371
8419
|
# },
|
@@ -8412,6 +8460,7 @@ module Aws::WAFV2
|
|
8412
8460
|
# },
|
8413
8461
|
# aws_managed_rules_bot_control_rule_set: {
|
8414
8462
|
# inspection_level: "COMMON", # required, accepts COMMON, TARGETED
|
8463
|
+
# enable_machine_learning: false,
|
8415
8464
|
# },
|
8416
8465
|
# aws_managed_rules_atp_rule_set: {
|
8417
8466
|
# login_path: "String", # required
|
@@ -8769,7 +8818,7 @@ module Aws::WAFV2
|
|
8769
8818
|
params: params,
|
8770
8819
|
config: config)
|
8771
8820
|
context[:gem_name] = 'aws-sdk-wafv2'
|
8772
|
-
context[:gem_version] = '1.
|
8821
|
+
context[:gem_version] = '1.68.0'
|
8773
8822
|
Seahorse::Client::Request.new(handlers, context)
|
8774
8823
|
end
|
8775
8824
|
|
@@ -283,6 +283,7 @@ module Aws::WAFV2
|
|
283
283
|
RateLimitLabelNamespace = Shapes::StructureShape.new(name: 'RateLimitLabelNamespace')
|
284
284
|
RateLimitQueryArgument = Shapes::StructureShape.new(name: 'RateLimitQueryArgument')
|
285
285
|
RateLimitQueryString = Shapes::StructureShape.new(name: 'RateLimitQueryString')
|
286
|
+
RateLimitUriPath = Shapes::StructureShape.new(name: 'RateLimitUriPath')
|
286
287
|
RedactedFields = Shapes::ListShape.new(name: 'RedactedFields')
|
287
288
|
Regex = Shapes::StructureShape.new(name: 'Regex')
|
288
289
|
RegexMatchStatement = Shapes::StructureShape.new(name: 'RegexMatchStatement')
|
@@ -438,6 +439,7 @@ module Aws::WAFV2
|
|
438
439
|
AWSManagedRulesATPRuleSet.struct_class = Types::AWSManagedRulesATPRuleSet
|
439
440
|
|
440
441
|
AWSManagedRulesBotControlRuleSet.add_member(:inspection_level, Shapes::ShapeRef.new(shape: InspectionLevel, required: true, location_name: "InspectionLevel"))
|
442
|
+
AWSManagedRulesBotControlRuleSet.add_member(:enable_machine_learning, Shapes::ShapeRef.new(shape: Boolean, location_name: "EnableMachineLearning"))
|
441
443
|
AWSManagedRulesBotControlRuleSet.struct_class = Types::AWSManagedRulesBotControlRuleSet
|
442
444
|
|
443
445
|
ActionCondition.add_member(:action, Shapes::ShapeRef.new(shape: ActionValue, required: true, location_name: "Action"))
|
@@ -1214,6 +1216,7 @@ module Aws::WAFV2
|
|
1214
1216
|
RateBasedStatementCustomKey.add_member(:forwarded_ip, Shapes::ShapeRef.new(shape: RateLimitForwardedIP, location_name: "ForwardedIP"))
|
1215
1217
|
RateBasedStatementCustomKey.add_member(:ip, Shapes::ShapeRef.new(shape: RateLimitIP, location_name: "IP"))
|
1216
1218
|
RateBasedStatementCustomKey.add_member(:label_namespace, Shapes::ShapeRef.new(shape: RateLimitLabelNamespace, location_name: "LabelNamespace"))
|
1219
|
+
RateBasedStatementCustomKey.add_member(:uri_path, Shapes::ShapeRef.new(shape: RateLimitUriPath, location_name: "UriPath"))
|
1217
1220
|
RateBasedStatementCustomKey.struct_class = Types::RateBasedStatementCustomKey
|
1218
1221
|
|
1219
1222
|
RateBasedStatementCustomKeys.member = Shapes::ShapeRef.new(shape: RateBasedStatementCustomKey)
|
@@ -1246,6 +1249,9 @@ module Aws::WAFV2
|
|
1246
1249
|
RateLimitQueryString.add_member(:text_transformations, Shapes::ShapeRef.new(shape: TextTransformations, required: true, location_name: "TextTransformations"))
|
1247
1250
|
RateLimitQueryString.struct_class = Types::RateLimitQueryString
|
1248
1251
|
|
1252
|
+
RateLimitUriPath.add_member(:text_transformations, Shapes::ShapeRef.new(shape: TextTransformations, required: true, location_name: "TextTransformations"))
|
1253
|
+
RateLimitUriPath.struct_class = Types::RateLimitUriPath
|
1254
|
+
|
1249
1255
|
RedactedFields.member = Shapes::ShapeRef.new(shape: FieldToMatch)
|
1250
1256
|
|
1251
1257
|
Regex.add_member(:regex_string, Shapes::ShapeRef.new(shape: RegexPatternString, location_name: "RegexString"))
|
data/lib/aws-sdk-wafv2/types.rb
CHANGED
@@ -183,10 +183,31 @@ module Aws::WAFV2
|
|
183
183
|
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html
|
184
184
|
# @return [String]
|
185
185
|
#
|
186
|
+
# @!attribute [rw] enable_machine_learning
|
187
|
+
# Applies only to the targeted inspection level.
|
188
|
+
#
|
189
|
+
# Determines whether to use machine learning (ML) to analyze your web
|
190
|
+
# traffic for bot-related activity. Machine learning is required for
|
191
|
+
# the Bot Control rules `TGT_ML_CoordinatedActivityLow` and
|
192
|
+
# `TGT_ML_CoordinatedActivityMedium`, which inspect for anomalous
|
193
|
+
# behavior that might indicate distributed, coordinated bot activity.
|
194
|
+
#
|
195
|
+
# For more information about this choice, see the listing for these
|
196
|
+
# rules in the table at [Bot Control rules listing][1] in the *WAF
|
197
|
+
# Developer Guide*.
|
198
|
+
#
|
199
|
+
# Default: `TRUE`
|
200
|
+
#
|
201
|
+
#
|
202
|
+
#
|
203
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html#aws-managed-rule-groups-bot-rules
|
204
|
+
# @return [Boolean]
|
205
|
+
#
|
186
206
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/AWSManagedRulesBotControlRuleSet AWS API Documentation
|
187
207
|
#
|
188
208
|
class AWSManagedRulesBotControlRuleSet < Struct.new(
|
189
|
-
:inspection_level
|
209
|
+
:inspection_level,
|
210
|
+
:enable_machine_learning)
|
190
211
|
SENSITIVE = []
|
191
212
|
include Aws::Structure
|
192
213
|
end
|
@@ -379,7 +400,7 @@ module Aws::WAFV2
|
|
379
400
|
#
|
380
401
|
# Use this to customize the maximum size of the request body that your
|
381
402
|
# protected CloudFront distributions forward to WAF for inspection. The
|
382
|
-
# default is 16 KB (16,384
|
403
|
+
# default is 16 KB (16,384 bytes).
|
383
404
|
#
|
384
405
|
# <note markdown="1"> You are charged additional fees when your protected resources forward
|
385
406
|
# body sizes that are larger than the default. For more information, see
|
@@ -394,7 +415,7 @@ module Aws::WAFV2
|
|
394
415
|
# @!attribute [rw] request_body
|
395
416
|
# Customizes the maximum size of the request body that your protected
|
396
417
|
# CloudFront distributions forward to WAF for inspection. The default
|
397
|
-
# size is 16 KB (16,384
|
418
|
+
# size is 16 KB (16,384 bytes).
|
398
419
|
#
|
399
420
|
# <note markdown="1"> You are charged additional fees when your protected resources
|
400
421
|
# forward body sizes that are larger than the default. For more
|
@@ -455,9 +476,9 @@ module Aws::WAFV2
|
|
455
476
|
# forwards the contents that are below the limit to WAF for
|
456
477
|
# inspection.
|
457
478
|
#
|
458
|
-
# The default limit is 8 KB (8,192
|
459
|
-
#
|
460
|
-
#
|
479
|
+
# The default limit is 8 KB (8,192 bytes) for regional resources and
|
480
|
+
# 16 KB (16,384 bytes) for CloudFront distributions. For CloudFront
|
481
|
+
# distributions, you can increase the limit in the web ACL
|
461
482
|
# `AssociationConfig`, for additional processing fees.
|
462
483
|
#
|
463
484
|
# The options for oversize handling are the following:
|
@@ -877,8 +898,8 @@ module Aws::WAFV2
|
|
877
898
|
# You must specify exactly one setting: either `All`, `IncludedCookies`,
|
878
899
|
# or `ExcludedCookies`.
|
879
900
|
#
|
880
|
-
# Example JSON: `"MatchPattern": \{ "IncludedCookies":
|
881
|
-
#
|
901
|
+
# Example JSON: `"MatchPattern": \{ "IncludedCookies": [
|
902
|
+
# "session-id-time", "session-id" ] \}`
|
882
903
|
#
|
883
904
|
# @!attribute [rw] all
|
884
905
|
# Inspect all cookies.
|
@@ -921,8 +942,8 @@ module Aws::WAFV2
|
|
921
942
|
# You must specify exactly one setting: either `All`,
|
922
943
|
# `IncludedCookies`, or `ExcludedCookies`.
|
923
944
|
#
|
924
|
-
# Example JSON: `"MatchPattern": \{ "IncludedCookies":
|
925
|
-
#
|
945
|
+
# Example JSON: `"MatchPattern": \{ "IncludedCookies": [
|
946
|
+
# "session-id-time", "session-id" ] \}`
|
926
947
|
# @return [Types::CookieMatchPattern]
|
927
948
|
#
|
928
949
|
# @!attribute [rw] match_scope
|
@@ -1417,7 +1438,7 @@ module Aws::WAFV2
|
|
1417
1438
|
#
|
1418
1439
|
# Use this to customize the maximum size of the request body that your
|
1419
1440
|
# protected CloudFront distributions forward to WAF for inspection.
|
1420
|
-
# The default is 16 KB (16,384
|
1441
|
+
# The default is 16 KB (16,384 bytes).
|
1421
1442
|
#
|
1422
1443
|
# <note markdown="1"> You are charged additional fees when your protected resources
|
1423
1444
|
# forward body sizes that are larger than the default. For more
|
@@ -2293,10 +2314,10 @@ module Aws::WAFV2
|
|
2293
2314
|
#
|
2294
2315
|
# A limited amount of the request body is forwarded to WAF for
|
2295
2316
|
# inspection by the underlying host service. For regional resources,
|
2296
|
-
# the limit is 8 KB (8,192
|
2297
|
-
#
|
2298
|
-
#
|
2299
|
-
#
|
2317
|
+
# the limit is 8 KB (8,192 bytes) and for CloudFront distributions,
|
2318
|
+
# the limit is 16 KB (16,384 bytes). For CloudFront distributions, you
|
2319
|
+
# can increase the limit in the web ACL's `AssociationConfig`, for
|
2320
|
+
# additional processing fees.
|
2300
2321
|
#
|
2301
2322
|
# For information about how to handle oversized request bodies, see
|
2302
2323
|
# the `Body` object configuration.
|
@@ -2315,10 +2336,10 @@ module Aws::WAFV2
|
|
2315
2336
|
#
|
2316
2337
|
# A limited amount of the request body is forwarded to WAF for
|
2317
2338
|
# inspection by the underlying host service. For regional resources,
|
2318
|
-
# the limit is 8 KB (8,192
|
2319
|
-
#
|
2320
|
-
#
|
2321
|
-
#
|
2339
|
+
# the limit is 8 KB (8,192 bytes) and for CloudFront distributions,
|
2340
|
+
# the limit is 16 KB (16,384 bytes). For CloudFront distributions, you
|
2341
|
+
# can increase the limit in the web ACL's `AssociationConfig`, for
|
2342
|
+
# additional processing fees.
|
2322
2343
|
#
|
2323
2344
|
# For information about how to handle oversized request bodies, see
|
2324
2345
|
# the `JsonBody` object configuration.
|
@@ -3395,8 +3416,8 @@ module Aws::WAFV2
|
|
3395
3416
|
# You must specify exactly one setting: either `All`, `IncludedHeaders`,
|
3396
3417
|
# or `ExcludedHeaders`.
|
3397
3418
|
#
|
3398
|
-
# Example JSON: `"MatchPattern": \{ "ExcludedHeaders":
|
3399
|
-
#
|
3419
|
+
# Example JSON: `"MatchPattern": \{ "ExcludedHeaders": [
|
3420
|
+
# "KeyToExclude1", "KeyToExclude2" ] \}`
|
3400
3421
|
#
|
3401
3422
|
# @!attribute [rw] all
|
3402
3423
|
# Inspect all headers.
|
@@ -3476,8 +3497,8 @@ module Aws::WAFV2
|
|
3476
3497
|
# You must specify exactly one setting: either `All`,
|
3477
3498
|
# `IncludedHeaders`, or `ExcludedHeaders`.
|
3478
3499
|
#
|
3479
|
-
# Example JSON: `"MatchPattern": \{ "ExcludedHeaders":
|
3480
|
-
#
|
3500
|
+
# Example JSON: `"MatchPattern": \{ "ExcludedHeaders": [
|
3501
|
+
# "KeyToExclude1", "KeyToExclude2" ] \}`
|
3481
3502
|
# @return [Types::HeaderMatchPattern]
|
3482
3503
|
#
|
3483
3504
|
# @!attribute [rw] match_scope
|
@@ -3849,9 +3870,9 @@ module Aws::WAFV2
|
|
3849
3870
|
# forwards the contents that are below the limit to WAF for
|
3850
3871
|
# inspection.
|
3851
3872
|
#
|
3852
|
-
# The default limit is 8 KB (8,192
|
3853
|
-
#
|
3854
|
-
#
|
3873
|
+
# The default limit is 8 KB (8,192 bytes) for regional resources and
|
3874
|
+
# 16 KB (16,384 bytes) for CloudFront distributions. For CloudFront
|
3875
|
+
# distributions, you can increase the limit in the web ACL
|
3855
3876
|
# `AssociationConfig`, for additional processing fees.
|
3856
3877
|
#
|
3857
3878
|
# The options for oversize handling are the following:
|
@@ -6156,6 +6177,13 @@ module Aws::WAFV2
|
|
6156
6177
|
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-label-requirements.html
|
6157
6178
|
# @return [Types::RateLimitLabelNamespace]
|
6158
6179
|
#
|
6180
|
+
# @!attribute [rw] uri_path
|
6181
|
+
# Use the request's URI path as an aggregate key. Each distinct URI
|
6182
|
+
# path contributes to the aggregation instance. If you use just the
|
6183
|
+
# URI path as your custom key, then each URI path fully defines an
|
6184
|
+
# aggregation instance.
|
6185
|
+
# @return [Types::RateLimitUriPath]
|
6186
|
+
#
|
6159
6187
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RateBasedStatementCustomKey AWS API Documentation
|
6160
6188
|
#
|
6161
6189
|
class RateBasedStatementCustomKey < Struct.new(
|
@@ -6166,7 +6194,8 @@ module Aws::WAFV2
|
|
6166
6194
|
:http_method,
|
6167
6195
|
:forwarded_ip,
|
6168
6196
|
:ip,
|
6169
|
-
:label_namespace
|
6197
|
+
:label_namespace,
|
6198
|
+
:uri_path)
|
6170
6199
|
SENSITIVE = []
|
6171
6200
|
include Aws::Structure
|
6172
6201
|
end
|
@@ -6408,6 +6437,31 @@ module Aws::WAFV2
|
|
6408
6437
|
include Aws::Structure
|
6409
6438
|
end
|
6410
6439
|
|
6440
|
+
# Specifies the request's URI path as an aggregate key for a rate-based
|
6441
|
+
# rule. Each distinct URI path contributes to the aggregation instance.
|
6442
|
+
# If you use just the URI path as your custom key, then each URI path
|
6443
|
+
# fully defines an aggregation instance.
|
6444
|
+
#
|
6445
|
+
# @!attribute [rw] text_transformations
|
6446
|
+
# Text transformations eliminate some of the unusual formatting that
|
6447
|
+
# attackers use in web requests in an effort to bypass detection. Text
|
6448
|
+
# transformations are used in rule match statements, to transform the
|
6449
|
+
# `FieldToMatch` request component before inspecting it, and they're
|
6450
|
+
# used in rate-based rule statements, to transform request components
|
6451
|
+
# before using them as custom aggregation keys. If you specify one or
|
6452
|
+
# more transformations to apply, WAF performs all transformations on
|
6453
|
+
# the specified content, starting from the lowest priority setting,
|
6454
|
+
# and then uses the component contents.
|
6455
|
+
# @return [Array<Types::TextTransformation>]
|
6456
|
+
#
|
6457
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RateLimitUriPath AWS API Documentation
|
6458
|
+
#
|
6459
|
+
class RateLimitUriPath < Struct.new(
|
6460
|
+
:text_transformations)
|
6461
|
+
SENSITIVE = []
|
6462
|
+
include Aws::Structure
|
6463
|
+
end
|
6464
|
+
|
6411
6465
|
# A single regular expression. This is used in a RegexPatternSet.
|
6412
6466
|
#
|
6413
6467
|
# @!attribute [rw] regex_string
|
@@ -6609,7 +6663,7 @@ module Aws::WAFV2
|
|
6609
6663
|
|
6610
6664
|
# Customizes the maximum size of the request body that your protected
|
6611
6665
|
# CloudFront distributions forward to WAF for inspection. The default
|
6612
|
-
# size is 16 KB (16,384
|
6666
|
+
# size is 16 KB (16,384 bytes).
|
6613
6667
|
#
|
6614
6668
|
# <note markdown="1"> You are charged additional fees when your protected resources forward
|
6615
6669
|
# body sizes that are larger than the default. For more information, see
|
@@ -6629,7 +6683,7 @@ module Aws::WAFV2
|
|
6629
6683
|
# inspection. This applies to statements in the web ACL that inspect
|
6630
6684
|
# the body or JSON body.
|
6631
6685
|
#
|
6632
|
-
# Default: `16 KB (16,384
|
6686
|
+
# Default: `16 KB (16,384 bytes)`
|
6633
6687
|
# @return [String]
|
6634
6688
|
#
|
6635
6689
|
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RequestBodyAssociatedResourceTypeConfig AWS API Documentation
|
@@ -7122,8 +7176,12 @@ module Aws::WAFV2
|
|
7122
7176
|
# web requests, and parameters that govern how WAF handles them.
|
7123
7177
|
#
|
7124
7178
|
# @!attribute [rw] name
|
7125
|
-
# The name of the rule.
|
7126
|
-
#
|
7179
|
+
# The name of the rule.
|
7180
|
+
#
|
7181
|
+
# If you change the name of a `Rule` after you create it and you want
|
7182
|
+
# the rule's metric name to reflect the change, update the metric
|
7183
|
+
# name in the rule's `VisibilityConfig` settings. WAF doesn't
|
7184
|
+
# automatically update the metric name when you update the rule name.
|
7127
7185
|
# @return [String]
|
7128
7186
|
#
|
7129
7187
|
# @!attribute [rw] priority
|
@@ -7206,6 +7264,10 @@ module Aws::WAFV2
|
|
7206
7264
|
# @!attribute [rw] visibility_config
|
7207
7265
|
# Defines and enables Amazon CloudWatch metrics and web request sample
|
7208
7266
|
# collection.
|
7267
|
+
#
|
7268
|
+
# If you change the name of a `Rule` after you create it and you want
|
7269
|
+
# the rule's metric name to reflect the change, update the metric
|
7270
|
+
# name as well. WAF doesn't automatically update the metric name.
|
7209
7271
|
# @return [Types::VisibilityConfig]
|
7210
7272
|
#
|
7211
7273
|
# @!attribute [rw] captcha_config
|
@@ -7683,9 +7745,9 @@ module Aws::WAFV2
|
|
7683
7745
|
#
|
7684
7746
|
# If you configure WAF to inspect the request body, WAF inspects only
|
7685
7747
|
# the number of bytes of the body up to the limit for the web ACL. By
|
7686
|
-
# default, for regional web ACLs, this limit is 8 KB (8,192
|
7687
|
-
#
|
7688
|
-
#
|
7748
|
+
# default, for regional web ACLs, this limit is 8 KB (8,192 bytes) and
|
7749
|
+
# for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For
|
7750
|
+
# CloudFront web ACLs, you can increase the limit in the web ACL
|
7689
7751
|
# `AssociationConfig`, for additional fees. If you know that the request
|
7690
7752
|
# body for your web requests should never exceed the inspection limit,
|
7691
7753
|
# you could use a size constraint statement to block requests that have
|
@@ -7818,9 +7880,9 @@ module Aws::WAFV2
|
|
7818
7880
|
#
|
7819
7881
|
# If you configure WAF to inspect the request body, WAF inspects only
|
7820
7882
|
# the number of bytes of the body up to the limit for the web ACL. By
|
7821
|
-
# default, for regional web ACLs, this limit is 8 KB (8,192
|
7822
|
-
#
|
7823
|
-
#
|
7883
|
+
# default, for regional web ACLs, this limit is 8 KB (8,192 bytes) and
|
7884
|
+
# for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For
|
7885
|
+
# CloudFront web ACLs, you can increase the limit in the web ACL
|
7824
7886
|
# `AssociationConfig`, for additional fees. If you know that the
|
7825
7887
|
# request body for your web requests should never exceed the
|
7826
7888
|
# inspection limit, you could use a size constraint statement to block
|
@@ -8894,7 +8956,7 @@ module Aws::WAFV2
|
|
8894
8956
|
#
|
8895
8957
|
# Use this to customize the maximum size of the request body that your
|
8896
8958
|
# protected CloudFront distributions forward to WAF for inspection.
|
8897
|
-
# The default is 16 KB (16,384
|
8959
|
+
# The default is 16 KB (16,384 bytes).
|
8898
8960
|
#
|
8899
8961
|
# <note markdown="1"> You are charged additional fees when your protected resources
|
8900
8962
|
# forward body sizes that are larger than the default. For more
|
@@ -9590,7 +9652,7 @@ module Aws::WAFV2
|
|
9590
9652
|
#
|
9591
9653
|
# Use this to customize the maximum size of the request body that your
|
9592
9654
|
# protected CloudFront distributions forward to WAF for inspection.
|
9593
|
-
# The default is 16 KB (16,384
|
9655
|
+
# The default is 16 KB (16,384 bytes).
|
9594
9656
|
#
|
9595
9657
|
# <note markdown="1"> You are charged additional fees when your protected resources
|
9596
9658
|
# forward body sizes that are larger than the default. For more
|
data/lib/aws-sdk-wafv2.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-wafv2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.68.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-09-06 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|