aws-sdk-wafv2 1.66.0 → 1.68.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c621adb2fb9043024cd4b060e81111e25716703ab497fe4489a6a060de0e51ab
-  data.tar.gz: a960e705110e88ee11117904c40a2effb6b09d004e0e7727cf3294de1cdd547b
+  metadata.gz: 55bfda004eba480991c75c6b64ae9e27a276f5634a2a642a5fb5250b1b528c75
+  data.tar.gz: 6be1ea7c0b782202a5eeb080fc572df75da8fb2c56cb16d886ce65fa6ed2aaad
 SHA512:
-  metadata.gz: 0c2245ddd32968281bdf844c5b609b81b916e73f85ba942b9fe1f9f7fc5198a4db4307470831b73e5d48f1ec96abd50889dc670b7a4941aaf31fc03c563c9614
-  data.tar.gz: 153bf0e50c47be3fdd9b9e76d847bf69f0beb286d8e60b037954c1b29489ef59787f6523223bb594715ef92246cfa1ff1834899215506a8d0ec1b1bb5d45f4ab
+  metadata.gz: 0ede4328b57c11dfdc743583e0ebff19b960a04426ffaf0b8b35d975e68b4e53eff3272e3e979583eaa286ad09adec2a69b5c78f8ea981b66683d80687789403
+  data.tar.gz: ae1f655544dd8bb38e75cde4079ff7bc9bb75abb57abdd6b81e3377e7ad68dd31dd46a6c2650b508872672c07dfaf087369e89dc4f874620c4fdafa578195c8d

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.68.0 (2023-09-06)
+------------------
+
+* Feature - The targeted protection level of the Bot Control managed rule group now provides optional, machine-learning analysis of traffic statistics to detect some bot-related activity. You can enable or disable the machine learning functionality through the API.
+
+1.67.0 (2023-07-19)
+------------------
+
+* Feature - Added the URI path to the custom aggregation keys that you can specify for a rate-based rule.
+
 1.66.0 (2023-07-11)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.66.0
+1.68.0

data/lib/aws-sdk-wafv2/client.rb

@@ -971,6 +971,14 @@ module Aws::WAFV2
     #                 label_namespace: {
     #                   namespace: "LabelNamespace", # required
     #                 },
+    #                 uri_path: {
+    #                   text_transformations: [ # required
+    #                     {
+    #                       priority: 1, # required
+    #                       type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
+    #                     },
+    #                   ],
+    #                 },
     #               },
     #             ],
     #           },
@@ -1017,6 +1025,7 @@ module Aws::WAFV2
     #                 },
     #                 aws_managed_rules_bot_control_rule_set: {
     #                   inspection_level: "COMMON", # required, accepts COMMON, TARGETED
+    #                   enable_machine_learning: false,
     #                 },
     #                 aws_managed_rules_atp_rule_set: {
     #                   login_path: "String", # required
@@ -2122,6 +2131,14 @@ module Aws::WAFV2
     #                 label_namespace: {
     #                   namespace: "LabelNamespace", # required
     #                 },
+    #                 uri_path: {
+    #                   text_transformations: [ # required
+    #                     {
+    #                       priority: 1, # required
+    #                       type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
+    #                     },
+    #                   ],
+    #                 },
     #               },
     #             ],
     #           },
@@ -2168,6 +2185,7 @@ module Aws::WAFV2
     #                 },
     #                 aws_managed_rules_bot_control_rule_set: {
     #                   inspection_level: "COMMON", # required, accepts COMMON, TARGETED
+    #                   enable_machine_learning: false,
     #                 },
     #                 aws_managed_rules_atp_rule_set: {
     #                   login_path: "String", # required
@@ -2607,7 +2625,7 @@ module Aws::WAFV2
     #
     #   Use this to customize the maximum size of the request body that your
     #   protected CloudFront distributions forward to WAF for inspection. The
-    #   default is 16 KB (16,384 kilobytes).
+    #   default is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources forward
     #   body sizes that are larger than the default. For more information, see
@@ -3102,6 +3120,14 @@ module Aws::WAFV2
     #                 label_namespace: {
     #                   namespace: "LabelNamespace", # required
     #                 },
+    #                 uri_path: {
+    #                   text_transformations: [ # required
+    #                     {
+    #                       priority: 1, # required
+    #                       type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
+    #                     },
+    #                   ],
+    #                 },
     #               },
     #             ],
     #           },
@@ -3148,6 +3174,7 @@ module Aws::WAFV2
     #                 },
     #                 aws_managed_rules_bot_control_rule_set: {
     #                   inspection_level: "COMMON", # required, accepts COMMON, TARGETED
+    #                   enable_machine_learning: false,
     #                 },
     #                 aws_managed_rules_atp_rule_set: {
     #                   login_path: "String", # required
@@ -4865,6 +4892,9 @@ module Aws::WAFV2
     #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].query_string.text_transformations[0].priority #=> Integer
     #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].query_string.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
     #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].label_namespace.namespace #=> String
+    #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations #=> Array
+    #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations[0].priority #=> Integer
+    #   resp.rule_group.rules[0].statement.rate_based_statement.custom_keys[0].uri_path.text_transformations[0].type #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE", "BASE64_DECODE", "HEX_DECODE", "MD5", "REPLACE_COMMENTS", "ESCAPE_SEQ_DECODE", "SQL_HEX_DECODE", "CSS_DECODE", "JS_DECODE", "NORMALIZE_PATH", "NORMALIZE_PATH_WIN", "REMOVE_NULLS", "REPLACE_NULLS", "BASE64_DECODE_EXT", "URL_DECODE_UNI", "UTF8_TO_UNICODE"
     #   resp.rule_group.rules[0].statement.and_statement.statements #=> Array
     #   resp.rule_group.rules[0].statement.and_statement.statements[0] #=> Types::Statement
     #   resp.rule_group.rules[0].statement.or_statement.statements #=> Array
@@ -4882,6 +4912,7 @@ module Aws::WAFV2
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].username_field.identifier #=> String
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].password_field.identifier #=> String
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_bot_control_rule_set.inspection_level #=> String, one of "COMMON", "TARGETED"
+    #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_bot_control_rule_set.enable_machine_learning #=> Boolean
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.login_path #=> String
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.request_inspection.payload_type #=> String, one of "JSON", "FORM_ENCODED"
     #   resp.rule_group.rules[0].statement.managed_rule_group_statement.managed_rule_group_configs[0].aws_managed_rules_atp_rule_set.request_inspection.username_field.identifier #=> String
@@ -7352,6 +7383,14 @@ module Aws::WAFV2
     #                 label_namespace: {
     #                   namespace: "LabelNamespace", # required
     #                 },
+    #                 uri_path: {
+    #                   text_transformations: [ # required
+    #                     {
+    #                       priority: 1, # required
+    #                       type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
+    #                     },
+    #                   ],
+    #                 },
     #               },
     #             ],
     #           },
@@ -7398,6 +7437,7 @@ module Aws::WAFV2
     #                 },
     #                 aws_managed_rules_bot_control_rule_set: {
     #                   inspection_level: "COMMON", # required, accepts COMMON, TARGETED
+    #                   enable_machine_learning: false,
     #                 },
     #                 aws_managed_rules_atp_rule_set: {
     #                   login_path: "String", # required
@@ -7870,7 +7910,7 @@ module Aws::WAFV2
     #
     #   Use this to customize the maximum size of the request body that your
     #   protected CloudFront distributions forward to WAF for inspection. The
-    #   default is 16 KB (16,384 kilobytes).
+    #   default is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources forward
     #   body sizes that are larger than the default. For more information, see
@@ -8366,6 +8406,14 @@ module Aws::WAFV2
     #                 label_namespace: {
     #                   namespace: "LabelNamespace", # required
     #                 },
+    #                 uri_path: {
+    #                   text_transformations: [ # required
+    #                     {
+    #                       priority: 1, # required
+    #                       type: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE, BASE64_DECODE, HEX_DECODE, MD5, REPLACE_COMMENTS, ESCAPE_SEQ_DECODE, SQL_HEX_DECODE, CSS_DECODE, JS_DECODE, NORMALIZE_PATH, NORMALIZE_PATH_WIN, REMOVE_NULLS, REPLACE_NULLS, BASE64_DECODE_EXT, URL_DECODE_UNI, UTF8_TO_UNICODE
+    #                     },
+    #                   ],
+    #                 },
     #               },
     #             ],
     #           },
@@ -8412,6 +8460,7 @@ module Aws::WAFV2
     #                 },
     #                 aws_managed_rules_bot_control_rule_set: {
     #                   inspection_level: "COMMON", # required, accepts COMMON, TARGETED
+    #                   enable_machine_learning: false,
     #                 },
     #                 aws_managed_rules_atp_rule_set: {
     #                   login_path: "String", # required
@@ -8769,7 +8818,7 @@ module Aws::WAFV2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-wafv2'
-      context[:gem_version] = '1.66.0'
+      context[:gem_version] = '1.68.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-wafv2/client_api.rb

@@ -283,6 +283,7 @@ module Aws::WAFV2
     RateLimitLabelNamespace = Shapes::StructureShape.new(name: 'RateLimitLabelNamespace')
     RateLimitQueryArgument = Shapes::StructureShape.new(name: 'RateLimitQueryArgument')
     RateLimitQueryString = Shapes::StructureShape.new(name: 'RateLimitQueryString')
+    RateLimitUriPath = Shapes::StructureShape.new(name: 'RateLimitUriPath')
     RedactedFields = Shapes::ListShape.new(name: 'RedactedFields')
     Regex = Shapes::StructureShape.new(name: 'Regex')
     RegexMatchStatement = Shapes::StructureShape.new(name: 'RegexMatchStatement')
@@ -438,6 +439,7 @@ module Aws::WAFV2
     AWSManagedRulesATPRuleSet.struct_class = Types::AWSManagedRulesATPRuleSet
 
     AWSManagedRulesBotControlRuleSet.add_member(:inspection_level, Shapes::ShapeRef.new(shape: InspectionLevel, required: true, location_name: "InspectionLevel"))
+    AWSManagedRulesBotControlRuleSet.add_member(:enable_machine_learning, Shapes::ShapeRef.new(shape: Boolean, location_name: "EnableMachineLearning"))
     AWSManagedRulesBotControlRuleSet.struct_class = Types::AWSManagedRulesBotControlRuleSet
 
     ActionCondition.add_member(:action, Shapes::ShapeRef.new(shape: ActionValue, required: true, location_name: "Action"))
@@ -1214,6 +1216,7 @@ module Aws::WAFV2
     RateBasedStatementCustomKey.add_member(:forwarded_ip, Shapes::ShapeRef.new(shape: RateLimitForwardedIP, location_name: "ForwardedIP"))
     RateBasedStatementCustomKey.add_member(:ip, Shapes::ShapeRef.new(shape: RateLimitIP, location_name: "IP"))
     RateBasedStatementCustomKey.add_member(:label_namespace, Shapes::ShapeRef.new(shape: RateLimitLabelNamespace, location_name: "LabelNamespace"))
+    RateBasedStatementCustomKey.add_member(:uri_path, Shapes::ShapeRef.new(shape: RateLimitUriPath, location_name: "UriPath"))
     RateBasedStatementCustomKey.struct_class = Types::RateBasedStatementCustomKey
 
     RateBasedStatementCustomKeys.member = Shapes::ShapeRef.new(shape: RateBasedStatementCustomKey)
@@ -1246,6 +1249,9 @@ module Aws::WAFV2
     RateLimitQueryString.add_member(:text_transformations, Shapes::ShapeRef.new(shape: TextTransformations, required: true, location_name: "TextTransformations"))
     RateLimitQueryString.struct_class = Types::RateLimitQueryString
 
+    RateLimitUriPath.add_member(:text_transformations, Shapes::ShapeRef.new(shape: TextTransformations, required: true, location_name: "TextTransformations"))
+    RateLimitUriPath.struct_class = Types::RateLimitUriPath
+
     RedactedFields.member = Shapes::ShapeRef.new(shape: FieldToMatch)
 
     Regex.add_member(:regex_string, Shapes::ShapeRef.new(shape: RegexPatternString, location_name: "RegexString"))

data/lib/aws-sdk-wafv2/types.rb

@@ -183,10 +183,31 @@ module Aws::WAFV2
     #   [1]: https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html
     #   @return [String]
     #
+    # @!attribute [rw] enable_machine_learning
+    #   Applies only to the targeted inspection level.
+    #
+    #   Determines whether to use machine learning (ML) to analyze your web
+    #   traffic for bot-related activity. Machine learning is required for
+    #   the Bot Control rules `TGT_ML_CoordinatedActivityLow` and
+    #   `TGT_ML_CoordinatedActivityMedium`, which inspect for anomalous
+    #   behavior that might indicate distributed, coordinated bot activity.
+    #
+    #   For more information about this choice, see the listing for these
+    #   rules in the table at [Bot Control rules listing][1] in the *WAF
+    #   Developer Guide*.
+    #
+    #   Default: `TRUE`
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html#aws-managed-rule-groups-bot-rules
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/AWSManagedRulesBotControlRuleSet AWS API Documentation
     #
     class AWSManagedRulesBotControlRuleSet < Struct.new(
-      :inspection_level)
+      :inspection_level,
+      :enable_machine_learning)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -379,7 +400,7 @@ module Aws::WAFV2
     #
     # Use this to customize the maximum size of the request body that your
     # protected CloudFront distributions forward to WAF for inspection. The
-    # default is 16 KB (16,384 kilobytes).
+    # default is 16 KB (16,384 bytes).
     #
     # <note markdown="1"> You are charged additional fees when your protected resources forward
     # body sizes that are larger than the default. For more information, see
@@ -394,7 +415,7 @@ module Aws::WAFV2
     # @!attribute [rw] request_body
     #   Customizes the maximum size of the request body that your protected
     #   CloudFront distributions forward to WAF for inspection. The default
-    #   size is 16 KB (16,384 kilobytes).
+    #   size is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources
     #   forward body sizes that are larger than the default. For more
@@ -455,9 +476,9 @@ module Aws::WAFV2
     #   forwards the contents that are below the limit to WAF for
     #   inspection.
     #
-    #   The default limit is 8 KB (8,192 kilobytes) for regional resources
-    #   and 16 KB (16,384 kilobytes) for CloudFront distributions. For
-    #   CloudFront distributions, you can increase the limit in the web ACL
+    #   The default limit is 8 KB (8,192 bytes) for regional resources and
+    #   16 KB (16,384 bytes) for CloudFront distributions. For CloudFront
+    #   distributions, you can increase the limit in the web ACL
     #   `AssociationConfig`, for additional processing fees.
     #
     #   The options for oversize handling are the following:
@@ -877,8 +898,8 @@ module Aws::WAFV2
     # You must specify exactly one setting: either `All`, `IncludedCookies`,
     # or `ExcludedCookies`.
     #
-    # Example JSON: `"MatchPattern": \{ "IncludedCookies":
-    # \{"KeyToInclude1", "KeyToInclude2", "KeyToInclude3"\} \}`
+    # Example JSON: `"MatchPattern": \{ "IncludedCookies": [
+    # "session-id-time", "session-id" ] \}`
     #
     # @!attribute [rw] all
     #   Inspect all cookies.
@@ -921,8 +942,8 @@ module Aws::WAFV2
     #   You must specify exactly one setting: either `All`,
     #   `IncludedCookies`, or `ExcludedCookies`.
     #
-    #   Example JSON: `"MatchPattern": \{ "IncludedCookies":
-    #   \{"KeyToInclude1", "KeyToInclude2", "KeyToInclude3"\} \}`
+    #   Example JSON: `"MatchPattern": \{ "IncludedCookies": [
+    #   "session-id-time", "session-id" ] \}`
     #   @return [Types::CookieMatchPattern]
     #
     # @!attribute [rw] match_scope
@@ -1417,7 +1438,7 @@ module Aws::WAFV2
     #
     #   Use this to customize the maximum size of the request body that your
     #   protected CloudFront distributions forward to WAF for inspection.
-    #   The default is 16 KB (16,384 kilobytes).
+    #   The default is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources
     #   forward body sizes that are larger than the default. For more
@@ -2293,10 +2314,10 @@ module Aws::WAFV2
     #
     #   A limited amount of the request body is forwarded to WAF for
     #   inspection by the underlying host service. For regional resources,
-    #   the limit is 8 KB (8,192 kilobytes) and for CloudFront
-    #   distributions, the limit is 16 KB (16,384 kilobytes). For CloudFront
-    #   distributions, you can increase the limit in the web ACL's
-    #   `AssociationConfig`, for additional processing fees.
+    #   the limit is 8 KB (8,192 bytes) and for CloudFront distributions,
+    #   the limit is 16 KB (16,384 bytes). For CloudFront distributions, you
+    #   can increase the limit in the web ACL's `AssociationConfig`, for
+    #   additional processing fees.
     #
     #   For information about how to handle oversized request bodies, see
     #   the `Body` object configuration.
@@ -2315,10 +2336,10 @@ module Aws::WAFV2
     #
     #   A limited amount of the request body is forwarded to WAF for
     #   inspection by the underlying host service. For regional resources,
-    #   the limit is 8 KB (8,192 kilobytes) and for CloudFront
-    #   distributions, the limit is 16 KB (16,384 kilobytes). For CloudFront
-    #   distributions, you can increase the limit in the web ACL's
-    #   `AssociationConfig`, for additional processing fees.
+    #   the limit is 8 KB (8,192 bytes) and for CloudFront distributions,
+    #   the limit is 16 KB (16,384 bytes). For CloudFront distributions, you
+    #   can increase the limit in the web ACL's `AssociationConfig`, for
+    #   additional processing fees.
     #
     #   For information about how to handle oversized request bodies, see
     #   the `JsonBody` object configuration.
@@ -3395,8 +3416,8 @@ module Aws::WAFV2
     # You must specify exactly one setting: either `All`, `IncludedHeaders`,
     # or `ExcludedHeaders`.
     #
-    # Example JSON: `"MatchPattern": \{ "ExcludedHeaders":
-    # \{"KeyToExclude1", "KeyToExclude2"\} \}`
+    # Example JSON: `"MatchPattern": \{ "ExcludedHeaders": [
+    # "KeyToExclude1", "KeyToExclude2" ] \}`
     #
     # @!attribute [rw] all
     #   Inspect all headers.
@@ -3476,8 +3497,8 @@ module Aws::WAFV2
     #   You must specify exactly one setting: either `All`,
     #   `IncludedHeaders`, or `ExcludedHeaders`.
     #
-    #   Example JSON: `"MatchPattern": \{ "ExcludedHeaders":
-    #   \{"KeyToExclude1", "KeyToExclude2"\} \}`
+    #   Example JSON: `"MatchPattern": \{ "ExcludedHeaders": [
+    #   "KeyToExclude1", "KeyToExclude2" ] \}`
     #   @return [Types::HeaderMatchPattern]
     #
     # @!attribute [rw] match_scope
@@ -3849,9 +3870,9 @@ module Aws::WAFV2
     #   forwards the contents that are below the limit to WAF for
     #   inspection.
     #
-    #   The default limit is 8 KB (8,192 kilobytes) for regional resources
-    #   and 16 KB (16,384 kilobytes) for CloudFront distributions. For
-    #   CloudFront distributions, you can increase the limit in the web ACL
+    #   The default limit is 8 KB (8,192 bytes) for regional resources and
+    #   16 KB (16,384 bytes) for CloudFront distributions. For CloudFront
+    #   distributions, you can increase the limit in the web ACL
     #   `AssociationConfig`, for additional processing fees.
     #
     #   The options for oversize handling are the following:
@@ -6156,6 +6177,13 @@ module Aws::WAFV2
     #   [1]: https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-label-requirements.html
     #   @return [Types::RateLimitLabelNamespace]
     #
+    # @!attribute [rw] uri_path
+    #   Use the request's URI path as an aggregate key. Each distinct URI
+    #   path contributes to the aggregation instance. If you use just the
+    #   URI path as your custom key, then each URI path fully defines an
+    #   aggregation instance.
+    #   @return [Types::RateLimitUriPath]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RateBasedStatementCustomKey AWS API Documentation
     #
     class RateBasedStatementCustomKey < Struct.new(
@@ -6166,7 +6194,8 @@ module Aws::WAFV2
       :http_method,
       :forwarded_ip,
       :ip,
-      :label_namespace)
+      :label_namespace,
+      :uri_path)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -6408,6 +6437,31 @@ module Aws::WAFV2
       include Aws::Structure
     end
 
+    # Specifies the request's URI path as an aggregate key for a rate-based
+    # rule. Each distinct URI path contributes to the aggregation instance.
+    # If you use just the URI path as your custom key, then each URI path
+    # fully defines an aggregation instance.
+    #
+    # @!attribute [rw] text_transformations
+    #   Text transformations eliminate some of the unusual formatting that
+    #   attackers use in web requests in an effort to bypass detection. Text
+    #   transformations are used in rule match statements, to transform the
+    #   `FieldToMatch` request component before inspecting it, and they're
+    #   used in rate-based rule statements, to transform request components
+    #   before using them as custom aggregation keys. If you specify one or
+    #   more transformations to apply, WAF performs all transformations on
+    #   the specified content, starting from the lowest priority setting,
+    #   and then uses the component contents.
+    #   @return [Array<Types::TextTransformation>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RateLimitUriPath AWS API Documentation
+    #
+    class RateLimitUriPath < Struct.new(
+      :text_transformations)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A single regular expression. This is used in a RegexPatternSet.
     #
     # @!attribute [rw] regex_string
@@ -6609,7 +6663,7 @@ module Aws::WAFV2
 
     # Customizes the maximum size of the request body that your protected
     # CloudFront distributions forward to WAF for inspection. The default
-    # size is 16 KB (16,384 kilobytes).
+    # size is 16 KB (16,384 bytes).
     #
     # <note markdown="1"> You are charged additional fees when your protected resources forward
     # body sizes that are larger than the default. For more information, see
@@ -6629,7 +6683,7 @@ module Aws::WAFV2
     #   inspection. This applies to statements in the web ACL that inspect
     #   the body or JSON body.
     #
-    #   Default: `16 KB (16,384 kilobytes)`
+    #   Default: `16 KB (16,384 bytes)`
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/RequestBodyAssociatedResourceTypeConfig AWS API Documentation
@@ -7122,8 +7176,12 @@ module Aws::WAFV2
     # web requests, and parameters that govern how WAF handles them.
     #
     # @!attribute [rw] name
-    #   The name of the rule. You can't change the name of a `Rule` after
-    #   you create it.
+    #   The name of the rule.
+    #
+    #   If you change the name of a `Rule` after you create it and you want
+    #   the rule's metric name to reflect the change, update the metric
+    #   name in the rule's `VisibilityConfig` settings. WAF doesn't
+    #   automatically update the metric name when you update the rule name.
     #   @return [String]
     #
     # @!attribute [rw] priority
@@ -7206,6 +7264,10 @@ module Aws::WAFV2
     # @!attribute [rw] visibility_config
     #   Defines and enables Amazon CloudWatch metrics and web request sample
     #   collection.
+    #
+    #   If you change the name of a `Rule` after you create it and you want
+    #   the rule's metric name to reflect the change, update the metric
+    #   name as well. WAF doesn't automatically update the metric name.
     #   @return [Types::VisibilityConfig]
     #
     # @!attribute [rw] captcha_config
@@ -7683,9 +7745,9 @@ module Aws::WAFV2
     #
     # If you configure WAF to inspect the request body, WAF inspects only
     # the number of bytes of the body up to the limit for the web ACL. By
-    # default, for regional web ACLs, this limit is 8 KB (8,192 kilobytes)
-    # and for CloudFront web ACLs, this limit is 16 KB (16,384 kilobytes).
-    # For CloudFront web ACLs, you can increase the limit in the web ACL
+    # default, for regional web ACLs, this limit is 8 KB (8,192 bytes) and
+    # for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For
+    # CloudFront web ACLs, you can increase the limit in the web ACL
     # `AssociationConfig`, for additional fees. If you know that the request
     # body for your web requests should never exceed the inspection limit,
     # you could use a size constraint statement to block requests that have
@@ -7818,9 +7880,9 @@ module Aws::WAFV2
     #
     #   If you configure WAF to inspect the request body, WAF inspects only
     #   the number of bytes of the body up to the limit for the web ACL. By
-    #   default, for regional web ACLs, this limit is 8 KB (8,192 kilobytes)
-    #   and for CloudFront web ACLs, this limit is 16 KB (16,384 kilobytes).
-    #   For CloudFront web ACLs, you can increase the limit in the web ACL
+    #   default, for regional web ACLs, this limit is 8 KB (8,192 bytes) and
+    #   for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For
+    #   CloudFront web ACLs, you can increase the limit in the web ACL
     #   `AssociationConfig`, for additional fees. If you know that the
     #   request body for your web requests should never exceed the
     #   inspection limit, you could use a size constraint statement to block
@@ -8894,7 +8956,7 @@ module Aws::WAFV2
     #
     #   Use this to customize the maximum size of the request body that your
     #   protected CloudFront distributions forward to WAF for inspection.
-    #   The default is 16 KB (16,384 kilobytes).
+    #   The default is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources
     #   forward body sizes that are larger than the default. For more
@@ -9590,7 +9652,7 @@ module Aws::WAFV2
     #
     #   Use this to customize the maximum size of the request body that your
     #   protected CloudFront distributions forward to WAF for inspection.
-    #   The default is 16 KB (16,384 kilobytes).
+    #   The default is 16 KB (16,384 bytes).
     #
     #   <note markdown="1"> You are charged additional fees when your protected resources
     #   forward body sizes that are larger than the default. For more

data/lib/aws-sdk-wafv2.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-wafv2/customizations'
 # @!group service
 module Aws::WAFV2
 
-  GEM_VERSION = '1.66.0'
+  GEM_VERSION = '1.68.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-wafv2
 version: !ruby/object:Gem::Version
-  version: 1.66.0
+  version: 1.68.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-07-11 00:00:00.000000000 Z
+date: 2023-09-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core