@robinmordasiewicz/f5xc-terraform-mcp 2.4.8 → 2.6.2

package/dist/docs/resources/ip_prefix_set.md

@@ -2,12 +2,12 @@
 page_title: "f5xc_ip_prefix_set Resource - terraform-provider-f5xc"
 subcategory: "Networking"
 description: |-
-  [Category: Networking] [Namespace: required] Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
+  Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
 ---
 
 # f5xc_ip_prefix_set (Resource)
 
-[Category: Networking] [Namespace: required] Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
+Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
 
 ~> **Note** Please refer to [IP Prefix Set API docs](https://docs.cloud.f5.com/docs-v2/api/ip-prefix-set) to learn more.
 
@@ -15,7 +15,7 @@ description: |-
 
 ```terraform
 # IP Prefix Set Resource Example
-# [Category: Networking] [Namespace: required] Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
+# Manages ip_prefix_set creates a new object in the storage backend for metadata.namespace. in F5 Distributed Cloud.
 
 # Basic IP Prefix Set configuration
 resource "f5xc_ip_prefix_set" "example" {
@@ -87,6 +87,89 @@ A [`timeouts`](#timeouts) block supports the following:
 
 <a id="timeouts-update"></a>&#x2022; [`update`](#timeouts-update) - Optional String (Defaults to `10 minutes`)<br>Used when updating the resource
 
+---
+
+## Common Types
+
+The following type definitions are used throughout this resource. See the full definition here rather than repeated inline.
+
+### Object Reference {#common-object-reference}
+
+Object references establish a direct reference from one configuration object to another in F5 Distributed Cloud. References use the format `tenant/namespace/name`.
+
+| Field | Type | Description |
+| ----- | ---- | ----------- |
+| `name` | String | Name of the referenced object |
+| `namespace` | String | Namespace containing the referenced object |
+| `tenant` | String | Tenant of the referenced object (system-managed) |
+
+### Transformers {#common-transformers}
+
+Transformers apply transformations to input values before matching. Multiple transformers can be applied in order.
+
+| Value | Description |
+| ----- | ----------- |
+| `LOWER_CASE` | Convert to lowercase |
+| `UPPER_CASE` | Convert to uppercase |
+| `BASE64_DECODE` | Decode base64 content |
+| `NORMALIZE_PATH` | Normalize URL path |
+| `REMOVE_WHITESPACE` | Remove whitespace characters |
+| `URL_DECODE` | Decode URL-encoded characters |
+| `TRIM_LEFT` | Trim leading whitespace |
+| `TRIM_RIGHT` | Trim trailing whitespace |
+| `TRIM` | Trim both leading and trailing whitespace |
+
+### HTTP Methods {#common-http-methods}
+
+HTTP methods used for request matching.
+
+| Value | Description |
+| ----- | ----------- |
+| `ANY` | Match any HTTP method |
+| `GET` | HTTP GET request |
+| `HEAD` | HTTP HEAD request |
+| `POST` | HTTP POST request |
+| `PUT` | HTTP PUT request |
+| `DELETE` | HTTP DELETE request |
+| `CONNECT` | HTTP CONNECT request |
+| `OPTIONS` | HTTP OPTIONS request |
+| `TRACE` | HTTP TRACE request |
+| `PATCH` | HTTP PATCH request |
+| `COPY` | HTTP COPY request (WebDAV) |
+
+### TLS Fingerprints {#common-tls-fingerprints}
+
+TLS fingerprint categories for malicious client detection.
+
+| Value | Description |
+| ----- | ----------- |
+| `TLS_FINGERPRINT_NONE` | No fingerprint matching |
+| `ANY_MALICIOUS_FINGERPRINT` | Match any known malicious fingerprint |
+| `ADWARE` | Adware-associated fingerprints |
+| `DRIDEX` | Dridex malware fingerprints |
+| `GOOTKIT` | Gootkit malware fingerprints |
+| `RANSOMWARE` | Ransomware-associated fingerprints |
+| `TRICKBOT` | Trickbot malware fingerprints |
+
+### IP Threat Categories {#common-ip-threat-categories}
+
+IP address threat categories for security filtering.
+
+| Value | Description |
+| ----- | ----------- |
+| `SPAM_SOURCES` | Known spam sources |
+| `WINDOWS_EXPLOITS` | Windows exploit sources |
+| `WEB_ATTACKS` | Web attack sources |
+| `BOTNETS` | Known botnet IPs |
+| `SCANNERS` | Network scanner IPs |
+| `REPUTATION` | Poor reputation IPs |
+| `PHISHING` | Phishing-related IPs |
+| `PROXY` | Anonymous proxy IPs |
+| `MOBILE_THREATS` | Mobile threat sources |
+| `TOR_PROXY` | Tor exit nodes |
+| `DENIAL_OF_SERVICE` | DoS attack sources |
+| `NETWORK` | Known bad network ranges |
+
 ## Import
 
 Import is supported using the following syntax:

package/dist/docs/resources/irule.md

@@ -2,12 +2,12 @@
 page_title: "f5xc_irule Resource - terraform-provider-f5xc"
 subcategory: "BIG-IP Integration"
 description: |-
-  [Namespace: required] Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
+  Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
 ---
 
 # f5xc_irule (Resource)
 
-[Namespace: required] Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
+Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
 
 ~> **Note** Please refer to [Irule API docs](https://docs.cloud.f5.com/docs-v2/api/bigcne-irule) to learn more.
 
@@ -15,7 +15,7 @@ description: |-
 
 ```terraform
 # Irule Resource Example
-# [Namespace: required] Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
+# Manages iRule in a given namespace. If one already exists it will give an error. in F5 Distributed Cloud.
 
 # Basic Irule configuration
 resource "f5xc_irule" "example" {
@@ -78,6 +78,89 @@ A [`timeouts`](#timeouts) block supports the following:
 
 <a id="timeouts-update"></a>&#x2022; [`update`](#timeouts-update) - Optional String (Defaults to `10 minutes`)<br>Used when updating the resource
 
+---
+
+## Common Types
+
+The following type definitions are used throughout this resource. See the full definition here rather than repeated inline.
+
+### Object Reference {#common-object-reference}
+
+Object references establish a direct reference from one configuration object to another in F5 Distributed Cloud. References use the format `tenant/namespace/name`.
+
+| Field | Type | Description |
+| ----- | ---- | ----------- |
+| `name` | String | Name of the referenced object |
+| `namespace` | String | Namespace containing the referenced object |
+| `tenant` | String | Tenant of the referenced object (system-managed) |
+
+### Transformers {#common-transformers}
+
+Transformers apply transformations to input values before matching. Multiple transformers can be applied in order.
+
+| Value | Description |
+| ----- | ----------- |
+| `LOWER_CASE` | Convert to lowercase |
+| `UPPER_CASE` | Convert to uppercase |
+| `BASE64_DECODE` | Decode base64 content |
+| `NORMALIZE_PATH` | Normalize URL path |
+| `REMOVE_WHITESPACE` | Remove whitespace characters |
+| `URL_DECODE` | Decode URL-encoded characters |
+| `TRIM_LEFT` | Trim leading whitespace |
+| `TRIM_RIGHT` | Trim trailing whitespace |
+| `TRIM` | Trim both leading and trailing whitespace |
+
+### HTTP Methods {#common-http-methods}
+
+HTTP methods used for request matching.
+
+| Value | Description |
+| ----- | ----------- |
+| `ANY` | Match any HTTP method |
+| `GET` | HTTP GET request |
+| `HEAD` | HTTP HEAD request |
+| `POST` | HTTP POST request |
+| `PUT` | HTTP PUT request |
+| `DELETE` | HTTP DELETE request |
+| `CONNECT` | HTTP CONNECT request |
+| `OPTIONS` | HTTP OPTIONS request |
+| `TRACE` | HTTP TRACE request |
+| `PATCH` | HTTP PATCH request |
+| `COPY` | HTTP COPY request (WebDAV) |
+
+### TLS Fingerprints {#common-tls-fingerprints}
+
+TLS fingerprint categories for malicious client detection.
+
+| Value | Description |
+| ----- | ----------- |
+| `TLS_FINGERPRINT_NONE` | No fingerprint matching |
+| `ANY_MALICIOUS_FINGERPRINT` | Match any known malicious fingerprint |
+| `ADWARE` | Adware-associated fingerprints |
+| `DRIDEX` | Dridex malware fingerprints |
+| `GOOTKIT` | Gootkit malware fingerprints |
+| `RANSOMWARE` | Ransomware-associated fingerprints |
+| `TRICKBOT` | Trickbot malware fingerprints |
+
+### IP Threat Categories {#common-ip-threat-categories}
+
+IP address threat categories for security filtering.
+
+| Value | Description |
+| ----- | ----------- |
+| `SPAM_SOURCES` | Known spam sources |
+| `WINDOWS_EXPLOITS` | Windows exploit sources |
+| `WEB_ATTACKS` | Web attack sources |
+| `BOTNETS` | Known botnet IPs |
+| `SCANNERS` | Network scanner IPs |
+| `REPUTATION` | Poor reputation IPs |
+| `PHISHING` | Phishing-related IPs |
+| `PROXY` | Anonymous proxy IPs |
+| `MOBILE_THREATS` | Mobile threat sources |
+| `TOR_PROXY` | Tor exit nodes |
+| `DENIAL_OF_SERVICE` | DoS attack sources |
+| `NETWORK` | Known bad network ranges |
+
 ## Import
 
 Import is supported using the following syntax:

package/dist/docs/resources/k8s_cluster.md

@@ -2,12 +2,12 @@
 page_title: "f5xc_k8s_cluster Resource - terraform-provider-f5xc"
 subcategory: "Kubernetes"
 description: |-
-  [Category: Kubernetes] [Namespace: required] Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+  Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 ---
 
 # f5xc_k8s_cluster (Resource)
 
-[Category: Kubernetes] [Namespace: required] Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 
 ~> **Note** Please refer to [K8S Cluster API docs](https://docs.cloud.f5.com/docs-v2/api/k8s-cluster) to learn more.
 
@@ -15,7 +15,7 @@ description: |-
 
 ```terraform
 # K8S Cluster Resource Example
-# [Category: Kubernetes] [Namespace: required] Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+# Manages k8s_cluster will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 
 # Basic K8S Cluster configuration
 resource "f5xc_k8s_cluster" "example" {
@@ -153,47 +153,23 @@ A [`cluster_wide_apps`](#cluster-wide-app-list-cluster-wide-apps) block (within
 
 #### Cluster Wide App List Cluster Wide Apps Argo Cd
 
-An [`argo_cd`](#argo-cd-64d0ab) block (within [`cluster_wide_app_list.cluster_wide_apps`](#cluster-wide-app-list-cluster-wide-apps)) supports the following:
-
-<a id="domain-a232c5"></a>&#x2022; [`local_domain`](#domain-a232c5) - Optional Block<br>Local Access Configuration. Parameters required to enable local access<br>See [Local Domain](#domain-a232c5) below.
+<a id="deep-22132e"></a>Deeply nested **Cd** block collapsed for readability.
 
 #### Cluster Wide App List Cluster Wide Apps Argo Cd Local Domain
 
-A [`local_domain`](#domain-a232c5) block (within [`cluster_wide_app_list.cluster_wide_apps.argo_cd`](#argo-cd-64d0ab)) supports the following:
-
-<a id="port-44b8d0"></a>&#x2022; [`default_port`](#port-44b8d0) - Optional Block<br>Enable this option
-
-<a id="domain-eb4958"></a>&#x2022; [`local_domain`](#domain-eb4958) - Optional String<br>Local Domain. ArgoCD will be accessible at `<site name>`.`<local domain>`
-
-<a id="password-332d17"></a>&#x2022; [`password`](#password-332d17) - Optional Block<br>Secret. SecretType is used in an object to indicate a sensitive/confidential field<br>See [Password](#password-332d17) below.
-
-<a id="port-5bbc5c"></a>&#x2022; [`port`](#port-5bbc5c) - Optional Number<br>Custom ArgoCD Port. Use custom ArgoCD port. Available port range is less than 65000 except reserved ports
+<a id="deep-6f320e"></a>Deeply nested **Domain** block collapsed for readability.
 
 #### Cluster Wide App List Cluster Wide Apps Argo Cd Local Domain Password
 
-A [`password`](#password-332d17) block (within [`cluster_wide_app_list.cluster_wide_apps.argo_cd.local_domain`](#domain-a232c5)) supports the following:
-
-<a id="info-586e53"></a>&#x2022; [`blindfold_secret_info`](#info-586e53) - Optional Block<br>Blindfold Secret. BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management<br>See [Blindfold Secret Info](#info-586e53) below.
-
-<a id="info-29e9ad"></a>&#x2022; [`clear_secret_info`](#info-29e9ad) - Optional Block<br>In-Clear Secret. ClearSecretInfoType specifies information about the Secret that is not encrypted<br>See [Clear Secret Info](#info-29e9ad) below.
+<a id="deep-94b623"></a>Deeply nested **Password** block collapsed for readability.
 
 #### Cluster Wide App List Cluster Wide Apps Argo Cd Local Domain Password Blindfold Secret Info
 
-A [`blindfold_secret_info`](#info-586e53) block (within [`cluster_wide_app_list.cluster_wide_apps.argo_cd.local_domain.password`](#password-332d17)) supports the following:
-
-<a id="provider-e0dc71"></a>&#x2022; [`decryption_provider`](#provider-e0dc71) - Optional String<br>Decryption Provider. Name of the Secret Management Access object that contains information about the backend Secret Management service
-
-<a id="location-0e412c"></a>&#x2022; [`location`](#location-0e412c) - Optional String<br>Location. Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location
-
-<a id="provider-889cbb"></a>&#x2022; [`store_provider`](#provider-889cbb) - Optional String<br>Store Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
+<a id="deep-1b02f5"></a>Deeply nested **Info** block collapsed for readability.
 
 #### Cluster Wide App List Cluster Wide Apps Argo Cd Local Domain Password Clear Secret Info
 
-A [`clear_secret_info`](#info-29e9ad) block (within [`cluster_wide_app_list.cluster_wide_apps.argo_cd.local_domain.password`](#password-332d17)) supports the following:
-
-<a id="ref-f24530"></a>&#x2022; [`provider_ref`](#ref-f24530) - Optional String<br>Provider. Name of the Secret Management Access object that contains information about the store to get encrypted bytes This field needs to be provided only if the URL scheme is not string:///
-
-<a id="url-c25af6"></a>&#x2022; [`url`](#url-c25af6) - Optional String<br>URL. URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded Base64 format. When asked for this secret, caller will get Secret bytes after Base64 decoding
+<a id="deep-5d2d98"></a>Deeply nested **Info** block collapsed for readability.
 
 #### Insecure Registry List
 
@@ -231,13 +207,7 @@ An [`use_custom_cluster_role_bindings`](#use-custom-cluster-role-bindings) block
 
 #### Use Custom Cluster Role Bindings Cluster Role Bindings
 
-A [`cluster_role_bindings`](#bindings-6adfa9) block (within [`use_custom_cluster_role_bindings`](#use-custom-cluster-role-bindings)) supports the following:
-
-<a id="name-83c4b7"></a>&#x2022; [`name`](#name-83c4b7) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
-
-<a id="namespace-0206bd"></a>&#x2022; [`namespace`](#namespace-0206bd) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
-
-<a id="tenant-bdd834"></a>&#x2022; [`tenant`](#tenant-bdd834) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+<a id="deep-ed02bf"></a>Deeply nested **Bindings** block collapsed for readability.
 
 #### Use Custom Cluster Role List
 
@@ -247,23 +217,11 @@ An [`use_custom_cluster_role_list`](#use-custom-cluster-role-list) block support
 
 #### Use Custom Cluster Role List Cluster Roles
 
-A [`cluster_roles`](#roles-cf2cf4) block (within [`use_custom_cluster_role_list`](#use-custom-cluster-role-list)) supports the following:
-
-<a id="name-af02fa"></a>&#x2022; [`name`](#name-af02fa) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
-
-<a id="namespace-441b4d"></a>&#x2022; [`namespace`](#namespace-441b4d) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
-
-<a id="tenant-ef8ebd"></a>&#x2022; [`tenant`](#tenant-ef8ebd) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+<a id="objref-cf2cf4"></a>Uses standard [Object Reference](#common-object-reference) fields (name, namespace, tenant).
 
 #### Use Custom Pod Security Admission
 
-An [`use_custom_pod_security_admission`](#use-custom-pod-security-admission) block supports the following:
-
-<a id="use-custom-pod-security-admission-name"></a>&#x2022; [`name`](#use-custom-pod-security-admission-name) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
-
-<a id="namespace-ea84bb"></a>&#x2022; [`namespace`](#namespace-ea84bb) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
-
-<a id="tenant-3b27e9"></a>&#x2022; [`tenant`](#tenant-3b27e9) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+<a id="objref-946f92"></a>Uses standard [Object Reference](#common-object-reference) fields (name, namespace, tenant).
 
 #### Use Custom Psp List
 
@@ -273,13 +231,90 @@ An [`use_custom_psp_list`](#use-custom-psp-list) block supports the following:
 
 #### Use Custom Psp List Pod Security Policies
 
-A [`pod_security_policies`](#policies-4f6709) block (within [`use_custom_psp_list`](#use-custom-psp-list)) supports the following:
+<a id="objref-4f6709"></a>Uses standard [Object Reference](#common-object-reference) fields (name, namespace, tenant).
 
-<a id="name-651eda"></a>&#x2022; [`name`](#name-651eda) - Optional String<br>Name. When a configuration object(e.g. virtual_host) refers to another(e.g route) then name will hold the referred object's(e.g. route's) name
-
-<a id="namespace-c1705c"></a>&#x2022; [`namespace`](#namespace-c1705c) - Optional String<br>Namespace. When a configuration object(e.g. virtual_host) refers to another(e.g route) then namespace will hold the referred object's(e.g. route's) namespace
+---
 
-<a id="tenant-de8ae0"></a>&#x2022; [`tenant`](#tenant-de8ae0) - Optional String<br>Tenant. When a configuration object(e.g. virtual_host) refers to another(e.g route) then tenant will hold the referred object's(e.g. route's) tenant
+## Common Types
+
+The following type definitions are used throughout this resource. See the full definition here rather than repeated inline.
+
+### Object Reference {#common-object-reference}
+
+Object references establish a direct reference from one configuration object to another in F5 Distributed Cloud. References use the format `tenant/namespace/name`.
+
+| Field | Type | Description |
+| ----- | ---- | ----------- |
+| `name` | String | Name of the referenced object |
+| `namespace` | String | Namespace containing the referenced object |
+| `tenant` | String | Tenant of the referenced object (system-managed) |
+
+### Transformers {#common-transformers}
+
+Transformers apply transformations to input values before matching. Multiple transformers can be applied in order.
+
+| Value | Description |
+| ----- | ----------- |
+| `LOWER_CASE` | Convert to lowercase |
+| `UPPER_CASE` | Convert to uppercase |
+| `BASE64_DECODE` | Decode base64 content |
+| `NORMALIZE_PATH` | Normalize URL path |
+| `REMOVE_WHITESPACE` | Remove whitespace characters |
+| `URL_DECODE` | Decode URL-encoded characters |
+| `TRIM_LEFT` | Trim leading whitespace |
+| `TRIM_RIGHT` | Trim trailing whitespace |
+| `TRIM` | Trim both leading and trailing whitespace |
+
+### HTTP Methods {#common-http-methods}
+
+HTTP methods used for request matching.
+
+| Value | Description |
+| ----- | ----------- |
+| `ANY` | Match any HTTP method |
+| `GET` | HTTP GET request |
+| `HEAD` | HTTP HEAD request |
+| `POST` | HTTP POST request |
+| `PUT` | HTTP PUT request |
+| `DELETE` | HTTP DELETE request |
+| `CONNECT` | HTTP CONNECT request |
+| `OPTIONS` | HTTP OPTIONS request |
+| `TRACE` | HTTP TRACE request |
+| `PATCH` | HTTP PATCH request |
+| `COPY` | HTTP COPY request (WebDAV) |
+
+### TLS Fingerprints {#common-tls-fingerprints}
+
+TLS fingerprint categories for malicious client detection.
+
+| Value | Description |
+| ----- | ----------- |
+| `TLS_FINGERPRINT_NONE` | No fingerprint matching |
+| `ANY_MALICIOUS_FINGERPRINT` | Match any known malicious fingerprint |
+| `ADWARE` | Adware-associated fingerprints |
+| `DRIDEX` | Dridex malware fingerprints |
+| `GOOTKIT` | Gootkit malware fingerprints |
+| `RANSOMWARE` | Ransomware-associated fingerprints |
+| `TRICKBOT` | Trickbot malware fingerprints |
+
+### IP Threat Categories {#common-ip-threat-categories}
+
+IP address threat categories for security filtering.
+
+| Value | Description |
+| ----- | ----------- |
+| `SPAM_SOURCES` | Known spam sources |
+| `WINDOWS_EXPLOITS` | Windows exploit sources |
+| `WEB_ATTACKS` | Web attack sources |
+| `BOTNETS` | Known botnet IPs |
+| `SCANNERS` | Network scanner IPs |
+| `REPUTATION` | Poor reputation IPs |
+| `PHISHING` | Phishing-related IPs |
+| `PROXY` | Anonymous proxy IPs |
+| `MOBILE_THREATS` | Mobile threat sources |
+| `TOR_PROXY` | Tor exit nodes |
+| `DENIAL_OF_SERVICE` | DoS attack sources |
+| `NETWORK` | Known bad network ranges |
 
 ## Import
 

package/dist/docs/resources/k8s_cluster_role.md

@@ -2,12 +2,12 @@
 page_title: "f5xc_k8s_cluster_role Resource - terraform-provider-f5xc"
 subcategory: "Kubernetes"
 description: |-
-  [Category: Kubernetes] [Namespace: required] Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+  Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 ---
 
 # f5xc_k8s_cluster_role (Resource)
 
-[Category: Kubernetes] [Namespace: required] Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 
 ~> **Note** Please refer to [K8S Cluster Role API docs](https://docs.cloud.f5.com/docs-v2/api/k8s-cluster-role) to learn more.
 
@@ -15,7 +15,7 @@ description: |-
 
 ```terraform
 # K8S Cluster Role Resource Example
-# [Category: Kubernetes] [Namespace: required] Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
+# Manages k8s_cluster_role will create the object in the storage backend for namespace metadata.namespace in F5 Distributed Cloud.
 
 # Basic K8S Cluster Role configuration
 resource "f5xc_k8s_cluster_role" "example" {
@@ -103,11 +103,7 @@ A [`policy_rule`](#policy-rule-list-policy-rule) block (within [`policy_rule_lis
 
 #### Policy Rule List Policy Rule Non Resource URL List
 
-A [`non_resource_url_list`](#list-d430d1) block (within [`policy_rule_list.policy_rule`](#policy-rule-list-policy-rule)) supports the following:
-
-<a id="urls-eb1439"></a>&#x2022; [`urls`](#urls-eb1439) - Optional List<br>Non Resource URL(s). allowed URL(s) that do not represent any K8S resource. URL can be suffix or regex
-
-<a id="verbs-c79bf5"></a>&#x2022; [`verbs`](#verbs-c79bf5) - Optional List<br>Allowed Verbs. Allowed list of verbs(operations) on resources. Use VerbAll for all operations
+<a id="deep-7657a2"></a>Deeply nested **List** block collapsed for readability.
 
 #### Policy Rule List Policy Rule Resource List
 
@@ -133,6 +129,89 @@ A [`timeouts`](#timeouts) block supports the following:
 
 <a id="timeouts-update"></a>&#x2022; [`update`](#timeouts-update) - Optional String (Defaults to `10 minutes`)<br>Used when updating the resource
 
+---
+
+## Common Types
+
+The following type definitions are used throughout this resource. See the full definition here rather than repeated inline.
+
+### Object Reference {#common-object-reference}
+
+Object references establish a direct reference from one configuration object to another in F5 Distributed Cloud. References use the format `tenant/namespace/name`.
+
+| Field | Type | Description |
+| ----- | ---- | ----------- |
+| `name` | String | Name of the referenced object |
+| `namespace` | String | Namespace containing the referenced object |
+| `tenant` | String | Tenant of the referenced object (system-managed) |
+
+### Transformers {#common-transformers}
+
+Transformers apply transformations to input values before matching. Multiple transformers can be applied in order.
+
+| Value | Description |
+| ----- | ----------- |
+| `LOWER_CASE` | Convert to lowercase |
+| `UPPER_CASE` | Convert to uppercase |
+| `BASE64_DECODE` | Decode base64 content |
+| `NORMALIZE_PATH` | Normalize URL path |
+| `REMOVE_WHITESPACE` | Remove whitespace characters |
+| `URL_DECODE` | Decode URL-encoded characters |
+| `TRIM_LEFT` | Trim leading whitespace |
+| `TRIM_RIGHT` | Trim trailing whitespace |
+| `TRIM` | Trim both leading and trailing whitespace |
+
+### HTTP Methods {#common-http-methods}
+
+HTTP methods used for request matching.
+
+| Value | Description |
+| ----- | ----------- |
+| `ANY` | Match any HTTP method |
+| `GET` | HTTP GET request |
+| `HEAD` | HTTP HEAD request |
+| `POST` | HTTP POST request |
+| `PUT` | HTTP PUT request |
+| `DELETE` | HTTP DELETE request |
+| `CONNECT` | HTTP CONNECT request |
+| `OPTIONS` | HTTP OPTIONS request |
+| `TRACE` | HTTP TRACE request |
+| `PATCH` | HTTP PATCH request |
+| `COPY` | HTTP COPY request (WebDAV) |
+
+### TLS Fingerprints {#common-tls-fingerprints}
+
+TLS fingerprint categories for malicious client detection.
+
+| Value | Description |
+| ----- | ----------- |
+| `TLS_FINGERPRINT_NONE` | No fingerprint matching |
+| `ANY_MALICIOUS_FINGERPRINT` | Match any known malicious fingerprint |
+| `ADWARE` | Adware-associated fingerprints |
+| `DRIDEX` | Dridex malware fingerprints |
+| `GOOTKIT` | Gootkit malware fingerprints |
+| `RANSOMWARE` | Ransomware-associated fingerprints |
+| `TRICKBOT` | Trickbot malware fingerprints |
+
+### IP Threat Categories {#common-ip-threat-categories}
+
+IP address threat categories for security filtering.
+
+| Value | Description |
+| ----- | ----------- |
+| `SPAM_SOURCES` | Known spam sources |
+| `WINDOWS_EXPLOITS` | Windows exploit sources |
+| `WEB_ATTACKS` | Web attack sources |
+| `BOTNETS` | Known botnet IPs |
+| `SCANNERS` | Network scanner IPs |
+| `REPUTATION` | Poor reputation IPs |
+| `PHISHING` | Phishing-related IPs |
+| `PROXY` | Anonymous proxy IPs |
+| `MOBILE_THREATS` | Mobile threat sources |
+| `TOR_PROXY` | Tor exit nodes |
+| `DENIAL_OF_SERVICE` | DoS attack sources |
+| `NETWORK` | Known bad network ranges |
+
 ## Import
 
 Import is supported using the following syntax: