npm - @jaypie/constructs - Versions diffs - 1.2.39 → 1.2.40 - Mend

@jaypie/constructs 1.2.39 → 1.2.40

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/cjs/JaypieDistribution.d.ts +11 -0
package/dist/cjs/index.cjs +3 -1
package/dist/cjs/index.cjs.map +1 -1
package/dist/esm/JaypieDistribution.d.ts +11 -0
package/dist/esm/index.js +3 -1
package/dist/esm/index.js.map +1 -1
package/package.json +1 -1

package/dist/cjs/JaypieDistribution.d.ts CHANGED Viewed

@@ -22,6 +22,17 @@ export interface JaypieWafConfig {
      * @default true
      */
     logBucket?: boolean | s3.IBucket;
+    /**
+     * Override actions for specific rules within managed rule groups.
+     * Key is the managed rule group name; value is an array of rule action overrides.
+     * @example
+     * managedRuleOverrides: {
+     *   AWSManagedRulesCommonRuleSet: [
+     *     { name: "SizeRestrictions_BODY", actionToUse: { count: {} } },
+     *   ],
+     * }
+     */
+    managedRuleOverrides?: Record<string, wafv2.CfnWebACL.RuleActionOverrideProperty[]>;
     /**
      * Managed rule group names to apply
      * @default ["AWSManagedRulesCommonRuleSet", "AWSManagedRulesKnownBadInputsRuleSet"]

package/dist/cjs/index.cjs CHANGED Viewed

@@ -2648,11 +2648,12 @@ class JaypieDistribution extends constructs.Construct {
             }
             else {
                 // Create new WebACL
-                const { managedRules = DEFAULT_MANAGED_RULES, rateLimitPerIp = DEFAULT_RATE_LIMIT, } = wafConfig;
+                const { managedRuleOverrides, managedRules = DEFAULT_MANAGED_RULES, rateLimitPerIp = DEFAULT_RATE_LIMIT, } = wafConfig;
                 let priority = 0;
                 const rules = [];
                 // Add managed rule groups
                 for (const ruleName of managedRules) {
+                    const ruleActionOverrides = managedRuleOverrides?.[ruleName];
                     rules.push({
                         name: ruleName,
                         priority: priority++,
@@ -2661,6 +2662,7 @@ class JaypieDistribution extends constructs.Construct {
                             managedRuleGroupStatement: {
                                 name: ruleName,
                                 vendorName: "AWS",
+                                ...(ruleActionOverrides && { ruleActionOverrides }),
                             },
                         },
                         visibilityConfig: {