pulumi-oci 1.37.0a1715927489__py3-none-any.whl → 1.38.0__py3-none-any.whl

pulumi_oci/waas/policy.py

@@ -29,7 +29,7 @@ class PolicyArgs:
         """
         The set of arguments for constructing a Policy resource.
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment in which to create the WAAS policy.
-        :param pulumi.Input[str] domain: (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        :param pulumi.Input[str] domain: The web application domain that the WAAS policy protects.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] additional_domains: (Updatable) An array of additional domains for the specified web application.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Operations.CostCenter": "42"}`
         :param pulumi.Input[str] display_name: (Updatable) A user-friendly name for the WAAS policy. The name can be changed and does not need to be unique.
@@ -74,7 +74,7 @@ class PolicyArgs:
     @pulumi.getter
     def domain(self) -> pulumi.Input[str]:
         """
-        (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        The web application domain that the WAAS policy protects.
         """
         return pulumi.get(self, "domain")
 
@@ -202,7 +202,7 @@ class _PolicyState:
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment in which to create the WAAS policy.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Operations.CostCenter": "42"}`
         :param pulumi.Input[str] display_name: (Updatable) A user-friendly name for the WAAS policy. The name can be changed and does not need to be unique.
-        :param pulumi.Input[str] domain: (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        :param pulumi.Input[str] domain: The web application domain that the WAAS policy protects.
         :param pulumi.Input[Mapping[str, Any]] freeform_tags: (Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Department": "Finance"}`
         :param pulumi.Input[Sequence[pulumi.Input['PolicyOriginGroupArgs']]] origin_groups: (Updatable) The map of origin groups and their keys used to associate origins to the `wafConfig`. Origin groups allow you to apply weights to groups of origins for load balancing purposes. Origins with higher weights will receive larger proportions of client requests. To add additional origins to your WAAS policy, update the `origins` field of a `UpdateWaasPolicy` request.
         :param pulumi.Input[Sequence[pulumi.Input['PolicyOriginArgs']]] origins: (Updatable) A map of host to origin for the web application. The key should be a customer friendly name for the host, ex. primary, secondary, etc.
@@ -302,7 +302,7 @@ class _PolicyState:
     @pulumi.getter
     def domain(self) -> Optional[pulumi.Input[str]]:
         """
-        (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        The web application domain that the WAAS policy protects.
         """
         return pulumi.get(self, "domain")
 
@@ -442,7 +442,7 @@ class Policy(pulumi.CustomResource):
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment in which to create the WAAS policy.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Operations.CostCenter": "42"}`
         :param pulumi.Input[str] display_name: (Updatable) A user-friendly name for the WAAS policy. The name can be changed and does not need to be unique.
-        :param pulumi.Input[str] domain: (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        :param pulumi.Input[str] domain: The web application domain that the WAAS policy protects.
         :param pulumi.Input[Mapping[str, Any]] freeform_tags: (Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Department": "Finance"}`
         :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['PolicyOriginGroupArgs']]]] origin_groups: (Updatable) The map of origin groups and their keys used to associate origins to the `wafConfig`. Origin groups allow you to apply weights to groups of origins for load balancing purposes. Origins with higher weights will receive larger proportions of client requests. To add additional origins to your WAAS policy, update the `origins` field of a `UpdateWaasPolicy` request.
         :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['PolicyOriginArgs']]]] origins: (Updatable) A map of host to origin for the web application. The key should be a customer friendly name for the host, ex. primary, secondary, etc.
@@ -566,7 +566,7 @@ class Policy(pulumi.CustomResource):
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment in which to create the WAAS policy.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Operations.CostCenter": "42"}`
         :param pulumi.Input[str] display_name: (Updatable) A user-friendly name for the WAAS policy. The name can be changed and does not need to be unique.
-        :param pulumi.Input[str] domain: (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        :param pulumi.Input[str] domain: The web application domain that the WAAS policy protects.
         :param pulumi.Input[Mapping[str, Any]] freeform_tags: (Updatable) Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see [Resource Tags](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcetags.htm).  Example: `{"Department": "Finance"}`
         :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['PolicyOriginGroupArgs']]]] origin_groups: (Updatable) The map of origin groups and their keys used to associate origins to the `wafConfig`. Origin groups allow you to apply weights to groups of origins for load balancing purposes. Origins with higher weights will receive larger proportions of client requests. To add additional origins to your WAAS policy, update the `origins` field of a `UpdateWaasPolicy` request.
         :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['PolicyOriginArgs']]]] origins: (Updatable) A map of host to origin for the web application. The key should be a customer friendly name for the host, ex. primary, secondary, etc.
@@ -638,7 +638,7 @@ class Policy(pulumi.CustomResource):
     @pulumi.getter
     def domain(self) -> pulumi.Output[str]:
         """
-        (Updatable) The domain for which the cookie is set, defaults to WAAS policy domain.
+        The web application domain that the WAAS policy protects.
         """
         return pulumi.get(self, "domain")
 

pulumi_oci/waas/protection_rule.py

@@ -25,7 +25,7 @@ class ProtectionRuleArgs:
         :param pulumi.Input[str] key: (Updatable) The unique key of the protection rule.
         :param pulumi.Input[str] waas_policy_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the WAAS policy.
         :param pulumi.Input[str] action: (Updatable) The action to take when the traffic is detected as malicious. If unspecified, defaults to `OFF`.
-        :param pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]] exclusions: An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        :param pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]] exclusions: (Updatable)
         """
         pulumi.set(__self__, "key", key)
         pulumi.set(__self__, "waas_policy_id", waas_policy_id)
@@ -74,7 +74,7 @@ class ProtectionRuleArgs:
     @pulumi.getter
     def exclusions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]]]:
         """
-        An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        (Updatable)
         """
         return pulumi.get(self, "exclusions")
 
@@ -98,7 +98,7 @@ class _ProtectionRuleState:
         Input properties used for looking up and filtering ProtectionRule resources.
         :param pulumi.Input[str] action: (Updatable) The action to take when the traffic is detected as malicious. If unspecified, defaults to `OFF`.
         :param pulumi.Input[str] description: The description of the protection rule.
-        :param pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]] exclusions: An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        :param pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]] exclusions: (Updatable)
         :param pulumi.Input[str] key: (Updatable) The unique key of the protection rule.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] labels: The list of labels for the protection rule.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] mod_security_rule_ids: The list of the ModSecurity rule IDs that apply to this protection rule. For more information about ModSecurity's open source WAF rules, see [Mod Security's documentation](https://www.modsecurity.org/CRS/Documentation/index.html).
@@ -150,7 +150,7 @@ class _ProtectionRuleState:
     @pulumi.getter
     def exclusions(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['ProtectionRuleExclusionArgs']]]]:
         """
-        An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        (Updatable)
         """
         return pulumi.get(self, "exclusions")
 
@@ -247,7 +247,7 @@ class ProtectionRule(pulumi.CustomResource):
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] action: (Updatable) The action to take when the traffic is detected as malicious. If unspecified, defaults to `OFF`.
-        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['ProtectionRuleExclusionArgs']]]] exclusions: An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['ProtectionRuleExclusionArgs']]]] exclusions: (Updatable)
         :param pulumi.Input[str] key: (Updatable) The unique key of the protection rule.
         :param pulumi.Input[str] waas_policy_id: The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the WAAS policy.
         """
@@ -339,7 +339,7 @@ class ProtectionRule(pulumi.CustomResource):
         :param pulumi.ResourceOptions opts: Options for the resource.
         :param pulumi.Input[str] action: (Updatable) The action to take when the traffic is detected as malicious. If unspecified, defaults to `OFF`.
         :param pulumi.Input[str] description: The description of the protection rule.
-        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['ProtectionRuleExclusionArgs']]]] exclusions: An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        :param pulumi.Input[Sequence[pulumi.Input[pulumi.InputType['ProtectionRuleExclusionArgs']]]] exclusions: (Updatable)
         :param pulumi.Input[str] key: (Updatable) The unique key of the protection rule.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] labels: The list of labels for the protection rule.
         :param pulumi.Input[Sequence[pulumi.Input[str]]] mod_security_rule_ids: The list of the ModSecurity rule IDs that apply to this protection rule. For more information about ModSecurity's open source WAF rules, see [Mod Security's documentation](https://www.modsecurity.org/CRS/Documentation/index.html).
@@ -380,7 +380,7 @@ class ProtectionRule(pulumi.CustomResource):
     @pulumi.getter
     def exclusions(self) -> pulumi.Output[Sequence['outputs.ProtectionRuleExclusion']]:
         """
-        An array of The target property of a request that would allow it to bypass the protection rule. For example, when `target` is `REQUEST_COOKIE_NAMES`, the list may include names of cookies to exclude from the protection rule. When the target is `ARGS`, the list may include strings of URL query parameters and values from form-urlencoded XML, JSON, AMP, or POST payloads to exclude from the protection rule. `Exclusions` properties must not contain whitespace, comma or |. **Note:** If protection rules have been enabled that utilize the `maxArgumentCount` or `maxTotalNameLengthOfArguments` properties, and the `target` property has been set to `ARGS`, it is important that the `exclusions` properties be defined to honor those protection rule settings in a consistent manner.
+        (Updatable)
         """
         return pulumi.get(self, "exclusions")
 

pulumi_oci/waf/_inputs.py

@@ -49,8 +49,11 @@ class AppFirewallPolicyActionArgs:
                  code: Optional[pulumi.Input[int]] = None,
                  headers: Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyActionHeaderArgs']]]] = None):
         """
-        :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
-        :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
+        :param pulumi.Input[str] name: (Updatable) Action name. Can be used to reference the action.
+        :param pulumi.Input[str] type: (Updatable) 
+               * **CHECK** is a non-terminating action that does not stop the execution of rules in current module, just emits a log message documenting result of rule execution.
+               * **ALLOW** is a non-terminating action which upon matching rule skips all remaining rules in the current module.
+               * **RETURN_HTTP_RESPONSE** is a terminating action which is executed immediately, returns a defined HTTP response.
         :param pulumi.Input['AppFirewallPolicyActionBodyArgs'] body: (Updatable) Type of returned HTTP response body.
         :param pulumi.Input[int] code: (Updatable) Response code.
                
@@ -94,7 +97,7 @@ class AppFirewallPolicyActionArgs:
     @pulumi.getter
     def name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Rule name. Must be unique within the module.
+        (Updatable) Action name. Can be used to reference the action.
         """
         return pulumi.get(self, "name")
 
@@ -106,7 +109,10 @@ class AppFirewallPolicyActionArgs:
     @pulumi.getter
     def type(self) -> pulumi.Input[str]:
         """
-        (Updatable) Type of WebAppFirewallPolicyRule.
+        (Updatable) 
+        * **CHECK** is a non-terminating action that does not stop the execution of rules in current module, just emits a log message documenting result of rule execution.
+        * **ALLOW** is a non-terminating action which upon matching rule skips all remaining rules in the current module.
+        * **RETURN_HTTP_RESPONSE** is a terminating action which is executed immediately, returns a defined HTTP response.
         """
         return pulumi.get(self, "type")
 
@@ -184,7 +190,7 @@ class AppFirewallPolicyActionBodyArgs:
                  type: pulumi.Input[str]):
         """
         :param pulumi.Input[str] text: (Updatable) Static response body text.
-        :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
+        :param pulumi.Input[str] type: (Updatable) Type of HttpResponseBody.
         """
         pulumi.set(__self__, "text", text)
         pulumi.set(__self__, "type", type)
@@ -205,7 +211,7 @@ class AppFirewallPolicyActionBodyArgs:
     @pulumi.getter
     def type(self) -> pulumi.Input[str]:
         """
-        (Updatable) Type of WebAppFirewallPolicyRule.
+        (Updatable) Type of HttpResponseBody.
         """
         return pulumi.get(self, "type")
 
@@ -220,7 +226,7 @@ class AppFirewallPolicyActionHeaderArgs:
                  name: Optional[pulumi.Input[str]] = None,
                  value: Optional[pulumi.Input[str]] = None):
         """
-        :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
+        :param pulumi.Input[str] name: (Updatable) The name of the header field.
         :param pulumi.Input[str] value: (Updatable) The value of the header field.
         """
         if name is not None:
@@ -232,7 +238,7 @@ class AppFirewallPolicyActionHeaderArgs:
     @pulumi.getter
     def name(self) -> Optional[pulumi.Input[str]]:
         """
-        (Updatable) Rule name. Must be unique within the module.
+        (Updatable) The name of the header field.
         """
         return pulumi.get(self, "name")
 
@@ -262,7 +268,7 @@ class AppFirewallPolicyRequestAccessControlArgs:
         :param pulumi.Input[str] default_action_name: (Updatable) References an default Action to take if no AccessControlRule was matched. Allowed action types:
                * **ALLOW** continues execution of other modules and their rules.
                * **RETURN_HTTP_RESPONSE** terminates further execution of modules and rules and returns defined HTTP response.
-        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestAccessControlRuleArgs']]] rules: (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestAccessControlRuleArgs']]] rules: (Updatable) Ordered list of AccessControlRules. Rules are executed in order of appearance in this array.
         """
         pulumi.set(__self__, "default_action_name", default_action_name)
         if rules is not None:
@@ -286,7 +292,7 @@ class AppFirewallPolicyRequestAccessControlArgs:
     @pulumi.getter
     def rules(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestAccessControlRuleArgs']]]]:
         """
-        (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        (Updatable) Ordered list of AccessControlRules. Rules are executed in order of appearance in this array.
         """
         return pulumi.get(self, "rules")
 
@@ -304,7 +310,7 @@ class AppFirewallPolicyRequestAccessControlRuleArgs:
                  condition: Optional[pulumi.Input[str]] = None,
                  condition_language: Optional[pulumi.Input[str]] = None):
         """
-        :param pulumi.Input[str] action_name: (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        :param pulumi.Input[str] action_name: (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
         :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
         :param pulumi.Input[str] condition: (Updatable) An expression that determines whether or not the rule action should be executed.
@@ -323,7 +329,7 @@ class AppFirewallPolicyRequestAccessControlRuleArgs:
     @pulumi.getter(name="actionName")
     def action_name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         """
         return pulumi.get(self, "action_name")
 
@@ -399,7 +405,7 @@ class AppFirewallPolicyRequestProtectionArgs:
                Body inspection maximum size allowed is defined with per-tenancy limit: 8192 bytes.
                
                For steps to request a limit increase, see [Requesting a Service Limit Increase](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/servicelimits.htm).
-        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestProtectionRuleArgs']]] rules: (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestProtectionRuleArgs']]] rules: (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection Capabilities of REQUEST_PROTECTION_CAPABILITY type.
         """
         if body_inspection_size_limit_exceeded_action_name is not None:
             pulumi.set(__self__, "body_inspection_size_limit_exceeded_action_name", body_inspection_size_limit_exceeded_action_name)
@@ -445,7 +451,7 @@ class AppFirewallPolicyRequestProtectionArgs:
     @pulumi.getter
     def rules(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestProtectionRuleArgs']]]]:
         """
-        (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection Capabilities of REQUEST_PROTECTION_CAPABILITY type.
         """
         return pulumi.get(self, "rules")
 
@@ -466,7 +472,7 @@ class AppFirewallPolicyRequestProtectionRuleArgs:
                  is_body_inspection_enabled: Optional[pulumi.Input[bool]] = None,
                  protection_capability_settings: Optional[pulumi.Input['AppFirewallPolicyRequestProtectionRuleProtectionCapabilitySettingsArgs']] = None):
         """
-        :param pulumi.Input[str] action_name: (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        :param pulumi.Input[str] action_name: (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
         :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestProtectionRuleProtectionCapabilityArgs']]] protection_capabilities: (Updatable) An ordered list that references OCI-managed protection capabilities. Referenced protection capabilities are not necessarily executed in order of appearance. Their execution order is decided at runtime for improved performance. The array cannot contain entries with the same pair of capability key and version more than once.
         :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
@@ -493,7 +499,7 @@ class AppFirewallPolicyRequestProtectionRuleArgs:
     @pulumi.getter(name="actionName")
     def action_name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         """
         return pulumi.get(self, "action_name")
 
@@ -694,7 +700,7 @@ class AppFirewallPolicyRequestProtectionRuleProtectionCapabilityCollaborativeWei
                  key: pulumi.Input[str],
                  weight: pulumi.Input[int]):
         """
-        :param pulumi.Input[str] key: (Updatable) Unique key of referenced protection capability.
+        :param pulumi.Input[str] key: (Updatable) Unique key of collaborative capability for which weight will be overridden.
         :param pulumi.Input[int] weight: (Updatable) The value of weight to set.
         """
         pulumi.set(__self__, "key", key)
@@ -704,7 +710,7 @@ class AppFirewallPolicyRequestProtectionRuleProtectionCapabilityCollaborativeWei
     @pulumi.getter
     def key(self) -> pulumi.Input[str]:
         """
-        (Updatable) Unique key of referenced protection capability.
+        (Updatable) Unique key of collaborative capability for which weight will be overridden.
         """
         return pulumi.get(self, "key")
 
@@ -872,7 +878,7 @@ class AppFirewallPolicyRequestRateLimitingArgs:
     def __init__(__self__, *,
                  rules: Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestRateLimitingRuleArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestRateLimitingRuleArgs']]] rules: (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestRateLimitingRuleArgs']]] rules: (Updatable) Ordered list of RequestRateLimitingRules. Rules are executed in order of appearance in this array.
         """
         if rules is not None:
             pulumi.set(__self__, "rules", rules)
@@ -881,7 +887,7 @@ class AppFirewallPolicyRequestRateLimitingArgs:
     @pulumi.getter
     def rules(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestRateLimitingRuleArgs']]]]:
         """
-        (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        (Updatable) Ordered list of RequestRateLimitingRules. Rules are executed in order of appearance in this array.
         """
         return pulumi.get(self, "rules")
 
@@ -900,7 +906,7 @@ class AppFirewallPolicyRequestRateLimitingRuleArgs:
                  condition: Optional[pulumi.Input[str]] = None,
                  condition_language: Optional[pulumi.Input[str]] = None):
         """
-        :param pulumi.Input[str] action_name: (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        :param pulumi.Input[str] action_name: (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyRequestRateLimitingRuleConfigurationArgs']]] configurations: (Updatable) Rate Limiting Configurations. Each configuration counts requests towards its own `requestsLimit`.
         :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
         :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
@@ -921,7 +927,7 @@ class AppFirewallPolicyRequestRateLimitingRuleArgs:
     @pulumi.getter(name="actionName")
     def action_name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         """
         return pulumi.get(self, "action_name")
 
@@ -1049,7 +1055,7 @@ class AppFirewallPolicyResponseAccessControlArgs:
     def __init__(__self__, *,
                  rules: Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyResponseAccessControlRuleArgs']]]] = None):
         """
-        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyResponseAccessControlRuleArgs']]] rules: (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyResponseAccessControlRuleArgs']]] rules: (Updatable) Ordered list of AccessControlRules. Rules are executed in order of appearance in this array.
         """
         if rules is not None:
             pulumi.set(__self__, "rules", rules)
@@ -1058,7 +1064,7 @@ class AppFirewallPolicyResponseAccessControlArgs:
     @pulumi.getter
     def rules(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyResponseAccessControlRuleArgs']]]]:
         """
-        (Updatable) Ordered list of ProtectionRules. Rules are executed in order of appearance in this array. ProtectionRules in this array can only use protection capabilities of RESPONSE_PROTECTION_CAPABILITY type.
+        (Updatable) Ordered list of AccessControlRules. Rules are executed in order of appearance in this array.
         """
         return pulumi.get(self, "rules")
 
@@ -1076,7 +1082,7 @@ class AppFirewallPolicyResponseAccessControlRuleArgs:
                  condition: Optional[pulumi.Input[str]] = None,
                  condition_language: Optional[pulumi.Input[str]] = None):
         """
-        :param pulumi.Input[str] action_name: (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        :param pulumi.Input[str] action_name: (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
         :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
         :param pulumi.Input[str] condition: (Updatable) An expression that determines whether or not the rule action should be executed.
@@ -1095,7 +1101,7 @@ class AppFirewallPolicyResponseAccessControlRuleArgs:
     @pulumi.getter(name="actionName")
     def action_name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         """
         return pulumi.get(self, "action_name")
 
@@ -1188,7 +1194,7 @@ class AppFirewallPolicyResponseProtectionRuleArgs:
                  is_body_inspection_enabled: Optional[pulumi.Input[bool]] = None,
                  protection_capability_settings: Optional[pulumi.Input['AppFirewallPolicyResponseProtectionRuleProtectionCapabilitySettingsArgs']] = None):
         """
-        :param pulumi.Input[str] action_name: (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        :param pulumi.Input[str] action_name: (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         :param pulumi.Input[str] name: (Updatable) Rule name. Must be unique within the module.
         :param pulumi.Input[Sequence[pulumi.Input['AppFirewallPolicyResponseProtectionRuleProtectionCapabilityArgs']]] protection_capabilities: (Updatable) An ordered list that references OCI-managed protection capabilities. Referenced protection capabilities are not necessarily executed in order of appearance. Their execution order is decided at runtime for improved performance. The array cannot contain entries with the same pair of capability key and version more than once.
         :param pulumi.Input[str] type: (Updatable) Type of WebAppFirewallPolicyRule.
@@ -1215,7 +1221,7 @@ class AppFirewallPolicyResponseProtectionRuleArgs:
     @pulumi.getter(name="actionName")
     def action_name(self) -> pulumi.Input[str]:
         """
-        (Updatable) Override action to take if capability was triggered, defined in Protection Rule for this capability. Only actions of type CHECK are allowed.
+        (Updatable) References action by name from actions defined in WebAppFirewallPolicy.
         """
         return pulumi.get(self, "action_name")
 
@@ -1416,7 +1422,7 @@ class AppFirewallPolicyResponseProtectionRuleProtectionCapabilityCollaborativeWe
                  key: pulumi.Input[str],
                  weight: pulumi.Input[int]):
         """
-        :param pulumi.Input[str] key: (Updatable) Unique key of referenced protection capability.
+        :param pulumi.Input[str] key: (Updatable) Unique key of collaborative capability for which weight will be overridden.
         :param pulumi.Input[int] weight: (Updatable) The value of weight to set.
         """
         pulumi.set(__self__, "key", key)
@@ -1426,7 +1432,7 @@ class AppFirewallPolicyResponseProtectionRuleProtectionCapabilityCollaborativeWe
     @pulumi.getter
     def key(self) -> pulumi.Input[str]:
         """
-        (Updatable) Unique key of referenced protection capability.
+        (Updatable) Unique key of collaborative capability for which weight will be overridden.
         """
         return pulumi.get(self, "key")
 

pulumi_oci/waf/network_address_list.py

@@ -28,7 +28,7 @@ class NetworkAddressListArgs:
         The set of arguments for constructing a NetworkAddressList resource.
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment.
         :param pulumi.Input[str] type: (Updatable) Type of NetworkAddressList.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A private IP address or CIDR IP address range.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"foo-namespace.bar-key": "value"}`
         :param pulumi.Input[str] display_name: (Updatable) NetworkAddressList display name, can be renamed.
         :param pulumi.Input[Mapping[str, Any]] freeform_tags: (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: `{"bar-key": "value"}`
@@ -78,7 +78,7 @@ class NetworkAddressListArgs:
     @pulumi.getter
     def addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        (Updatable) A private IP address or CIDR IP address range.
+        (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         """
         return pulumi.get(self, "addresses")
 
@@ -164,7 +164,7 @@ class _NetworkAddressListState:
                  vcn_addresses: Optional[pulumi.Input[Sequence[pulumi.Input['NetworkAddressListVcnAddressArgs']]]] = None):
         """
         Input properties used for looking up and filtering NetworkAddressList resources.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A private IP address or CIDR IP address range.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"foo-namespace.bar-key": "value"}`
         :param pulumi.Input[str] display_name: (Updatable) NetworkAddressList display name, can be renamed.
@@ -206,7 +206,7 @@ class _NetworkAddressListState:
     @pulumi.getter
     def addresses(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[str]]]]:
         """
-        (Updatable) A private IP address or CIDR IP address range.
+        (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         """
         return pulumi.get(self, "addresses")
 
@@ -400,7 +400,7 @@ class NetworkAddressList(pulumi.CustomResource):
 
         :param str resource_name: The name of the resource.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A private IP address or CIDR IP address range.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"foo-namespace.bar-key": "value"}`
         :param pulumi.Input[str] display_name: (Updatable) NetworkAddressList display name, can be renamed.
@@ -529,7 +529,7 @@ class NetworkAddressList(pulumi.CustomResource):
         :param str resource_name: The unique name of the resulting resource.
         :param pulumi.Input[str] id: The unique provider ID of the resource to lookup.
         :param pulumi.ResourceOptions opts: Options for the resource.
-        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A private IP address or CIDR IP address range.
+        :param pulumi.Input[Sequence[pulumi.Input[str]]] addresses: (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         :param pulumi.Input[str] compartment_id: (Updatable) The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of the compartment.
         :param pulumi.Input[Mapping[str, Any]] defined_tags: (Updatable) Defined tags for this resource. Each key is predefined and scoped to a namespace. Example: `{"foo-namespace.bar-key": "value"}`
         :param pulumi.Input[str] display_name: (Updatable) NetworkAddressList display name, can be renamed.
@@ -564,7 +564,7 @@ class NetworkAddressList(pulumi.CustomResource):
     @pulumi.getter
     def addresses(self) -> pulumi.Output[Optional[Sequence[str]]]:
         """
-        (Updatable) A private IP address or CIDR IP address range.
+        (Updatable) A list of IP address prefixes in CIDR notation. To specify all addresses, use "0.0.0.0/0" for IPv4 and "::/0" for IPv6.
         """
         return pulumi.get(self, "addresses")