| ActionCondition |
A single action condition for a Condition in a logging filter. |
| AddressField |
The name of a field in the request payload that contains part or all of your customer's primary physical address.
|
| All |
Inspect all of the elements that WAF has parsed and extracted from the web request component that you've identified
in your FieldToMatch specifications. |
| AllowAction |
Specifies that WAF should allow the request and optionally defines additional custom handling for the request.
|
| AllQueryArguments |
Inspect all query arguments of the web request.
|
| AndStatement |
A logical rule statement used to combine other rule statements with AND logic.
|
| APIKeySummary |
Information for a single API key.
|
| AssociateWebAclRequest |
|
| AssociateWebAclResponse |
|
| AssociationConfig |
Specifies custom configurations for the associations between the web ACL and protected resources.
|
| AWSManagedRulesACFPRuleSet |
Details for your use of the account creation fraud prevention managed rule group,
AWSManagedRulesACFPRuleSet.
|
| AWSManagedRulesATPRuleSet |
Details for your use of the account takeover prevention managed rule group, AWSManagedRulesATPRuleSet.
|
| AWSManagedRulesBotControlRuleSet |
Details for your use of the Bot Control managed rule group, AWSManagedRulesBotControlRuleSet.
|
| BlockAction |
Specifies that WAF should block the request and optionally defines additional custom handling for the response to the
web request.
|
| Body |
Inspect the body of the web request.
|
| ByteMatchStatement |
A rule statement that defines a string match search for WAF to apply to web requests.
|
| CaptchaAction |
Specifies that WAF should run a CAPTCHA check against the request:
|
| CaptchaConfig |
Specifies how WAF should handle CAPTCHA evaluations.
|
| CaptchaResponse |
The result from the inspection of the web request for a valid CAPTCHA token.
|
| ChallengeAction |
Specifies that WAF should run a Challenge check against the request to verify that the request is coming
from a legitimate client session:
|
| ChallengeConfig |
Specifies how WAF should handle Challenge evaluations.
|
| ChallengeResponse |
The result from the inspection of the web request for a valid challenge token.
|
| CheckCapacityRequest |
|
| CheckCapacityResponse |
|
| Condition |
A single match condition for a Filter. |
| CookieMatchPattern |
The filter to use to identify the subset of cookies to inspect in a web request.
|
| Cookies |
Inspect the cookies in the web request.
|
| CountAction |
Specifies that WAF should count the request.
|
| CreateApiKeyRequest |
|
| CreateApiKeyResponse |
|
| CreateIpSetRequest |
|
| CreateIpSetResponse |
|
| CreateRegexPatternSetRequest |
|
| CreateRegexPatternSetResponse |
|
| CreateRuleGroupRequest |
|
| CreateRuleGroupResponse |
|
| CreateWebAclRequest |
|
| CreateWebAclResponse |
|
| CustomHTTPHeader |
A custom header for custom request and response handling.
|
| CustomRequestHandling |
Custom request handling behavior that inserts custom headers into a web request.
|
| CustomResponse |
A custom response to send to the client.
|
| CustomResponseBody |
The response body to use in a custom response to a web request.
|
| DefaultAction |
In a WebACL, this is the action that you want WAF to perform when a web request doesn't match any of the rules
in the WebACL. |
| DeleteApiKeyRequest |
|
| DeleteApiKeyResponse |
|
| DeleteFirewallManagerRuleGroupsRequest |
|
| DeleteFirewallManagerRuleGroupsResponse |
|
| DeleteIpSetRequest |
|
| DeleteIpSetResponse |
|
| DeleteLoggingConfigurationRequest |
|
| DeleteLoggingConfigurationResponse |
|
| DeletePermissionPolicyRequest |
|
| DeletePermissionPolicyResponse |
|
| DeleteRegexPatternSetRequest |
|
| DeleteRegexPatternSetResponse |
|
| DeleteRuleGroupRequest |
|
| DeleteRuleGroupResponse |
|
| DeleteWebAclRequest |
|
| DeleteWebAclResponse |
|
| DescribeAllManagedProductsRequest |
|
| DescribeAllManagedProductsResponse |
|
| DescribeManagedProductsByVendorRequest |
|
| DescribeManagedProductsByVendorResponse |
|
| DescribeManagedRuleGroupRequest |
|
| DescribeManagedRuleGroupResponse |
|
| DisassociateWebAclRequest |
|
| DisassociateWebAclResponse |
|
| EmailField |
The name of the field in the request payload that contains your customer's email.
|
| ExcludedRule |
Specifies a single rule in a rule group whose action you want to override to Count.
|
| FieldToMatch |
Specifies a web request component to be used in a rule match statement or in a logging configuration.
|
| Filter |
|
| FirewallManagerRuleGroup |
A rule group that's defined for an Firewall Manager WAF policy.
|
| FirewallManagerStatement |
The processing guidance for an Firewall Manager rule.
|
| ForwardedIPConfig |
The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address
that's reported by the web request origin.
|
| GenerateMobileSdkReleaseUrlRequest |
|
| GenerateMobileSdkReleaseUrlResponse |
|
| GeoMatchStatement |
A rule statement that labels web requests by country and region and that matches against web requests based on
country code.
|
| GetDecryptedApiKeyRequest |
|
| GetDecryptedApiKeyResponse |
|
| GetIpSetRequest |
|
| GetIpSetResponse |
|
| GetLoggingConfigurationRequest |
|
| GetLoggingConfigurationResponse |
|
| GetManagedRuleSetRequest |
|
| GetManagedRuleSetResponse |
|
| GetMobileSdkReleaseRequest |
|
| GetMobileSdkReleaseResponse |
|
| GetPermissionPolicyRequest |
|
| GetPermissionPolicyResponse |
|
| GetRateBasedStatementManagedKeysRequest |
|
| GetRateBasedStatementManagedKeysResponse |
|
| GetRegexPatternSetRequest |
|
| GetRegexPatternSetResponse |
|
| GetRuleGroupRequest |
|
| GetRuleGroupResponse |
|
| GetSampledRequestsRequest |
|
| GetSampledRequestsResponse |
|
| GetWebAclForResourceRequest |
|
| GetWebAclForResourceResponse |
|
| GetWebAclRequest |
|
| GetWebAclResponse |
|
| HeaderMatchPattern |
The filter to use to identify the subset of headers to inspect in a web request.
|
| HeaderOrder |
Inspect a string containing the list of the request's header names, ordered as they appear in the web request that
WAF receives for inspection.
|
| Headers |
Inspect all headers in the web request.
|
| HTTPHeader |
|
| HTTPRequest |
|
| ImmunityTimeProperty |
Used for CAPTCHA and challenge token settings.
|
| IPSet |
Contains zero or more IP addresses or blocks of IP addresses specified in Classless Inter-Domain Routing (CIDR)
notation.
|
| IPSetForwardedIPConfig |
The configuration for inspecting IP addresses in an HTTP header that you specify, instead of using the IP address
that's reported by the web request origin.
|
| IPSetReferenceStatement |
A rule statement used to detect web requests coming from particular IP addresses or address ranges.
|
| IPSetSummary |
High-level information about an IPSet, returned by operations like create and list. |
| JA3Fingerprint |
Available for use with Amazon CloudFront distributions and Application Load Balancers.
|
| JsonBody |
Inspect the body of the web request as JSON.
|
| JsonMatchPattern |
The patterns to look for in the JSON body.
|
| Label |
A single label container.
|
| LabelMatchStatement |
A rule statement to match against labels that have been added to the web request by rules that have already run in
the web ACL.
|
| LabelNameCondition |
A single label name condition for a Condition in a logging filter. |
| LabelSummary |
List of labels used by one or more of the rules of a RuleGroup. |
| ListApiKeysRequest |
|
| ListApiKeysResponse |
|
| ListAvailableManagedRuleGroupsRequest |
|
| ListAvailableManagedRuleGroupsResponse |
|
| ListAvailableManagedRuleGroupVersionsRequest |
|
| ListAvailableManagedRuleGroupVersionsResponse |
|
| ListIpSetsRequest |
|
| ListIpSetsResponse |
|
| ListLoggingConfigurationsRequest |
|
| ListLoggingConfigurationsResponse |
|
| ListManagedRuleSetsRequest |
|
| ListManagedRuleSetsResponse |
|
| ListMobileSdkReleasesRequest |
|
| ListMobileSdkReleasesResponse |
|
| ListRegexPatternSetsRequest |
|
| ListRegexPatternSetsResponse |
|
| ListResourcesForWebAclRequest |
|
| ListResourcesForWebAclResponse |
|
| ListRuleGroupsRequest |
|
| ListRuleGroupsResponse |
|
| ListTagsForResourceRequest |
|
| ListTagsForResourceResponse |
|
| ListWebAcLsRequest |
|
| ListWebAcLsResponse |
|
| LoggingConfiguration |
Defines an association between logging destinations and a web ACL resource, for logging from WAF.
|
| LoggingFilter |
Filtering that specifies which web requests are kept in the logs and which are dropped, defined for a web ACL's
LoggingConfiguration. |
| ManagedProductDescriptor |
The properties of a managed product, such as an Amazon Web Services Managed Rules rule group or an Amazon Web
Services Marketplace managed rule group.
|
| ManagedRuleGroupConfig |
Additional information that's used by a managed rule group.
|
| ManagedRuleGroupStatement |
A rule statement used to run the rules that are defined in a managed rule group.
|
| ManagedRuleGroupSummary |
|
| ManagedRuleGroupVersion |
Describes a single version of a managed rule group.
|
| ManagedRuleSet |
A set of rules that is managed by Amazon Web Services and Amazon Web Services Marketplace sellers to provide
versioned managed rule groups for customers of WAF.
|
| ManagedRuleSetSummary |
High-level information for a managed rule set.
|
| ManagedRuleSetVersion |
Information for a single version of a managed rule set.
|
| Method |
Inspect the HTTP method of the web request.
|
| MobileSdkRelease |
Information for a release of the mobile SDK, including release notes and tags.
|
| NoneAction |
Specifies that WAF should do nothing.
|
| NotStatement |
A logical rule statement used to negate the results of another rule statement.
|
| OrStatement |
A logical rule statement used to combine other rule statements with OR logic.
|
| OverrideAction |
The action to use in the place of the action that results from the rule group evaluation.
|
| PasswordField |
The name of the field in the request payload that contains your customer's password.
|
| PhoneNumberField |
The name of a field in the request payload that contains part or all of your customer's primary phone number.
|
| PutLoggingConfigurationRequest |
|
| PutLoggingConfigurationResponse |
|
| PutManagedRuleSetVersionsRequest |
|
| PutManagedRuleSetVersionsResponse |
|
| PutPermissionPolicyRequest |
|
| PutPermissionPolicyResponse |
|
| QueryString |
Inspect the query string of the web request.
|
| RateBasedStatement |
A rate-based rule counts incoming requests and rate limits requests when they are coming at too fast a rate.
|
| RateBasedStatementCustomKey |
Specifies a single custom aggregate key for a rate-base rule.
|
| RateBasedStatementManagedKeysIPSet |
|
| RateLimitCookie |
Specifies a cookie as an aggregate key for a rate-based rule.
|
| RateLimitForwardedIP |
Specifies the first IP address in an HTTP header as an aggregate key for a rate-based rule.
|
| RateLimitHeader |
Specifies a header as an aggregate key for a rate-based rule.
|
| RateLimitHTTPMethod |
Specifies the request's HTTP method as an aggregate key for a rate-based rule.
|
| RateLimitIP |
Specifies the IP address in the web request as an aggregate key for a rate-based rule.
|
| RateLimitLabelNamespace |
Specifies a label namespace to use as an aggregate key for a rate-based rule.
|
| RateLimitQueryArgument |
Specifies a query argument in the request as an aggregate key for a rate-based rule.
|
| RateLimitQueryString |
Specifies the request's query string as an aggregate key for a rate-based rule.
|
| RateLimitUriPath |
Specifies the request's URI path as an aggregate key for a rate-based rule.
|
| Regex |
A single regular expression.
|
| RegexMatchStatement |
A rule statement used to search web request components for a match against a single regular expression.
|
| RegexPatternSet |
Contains one or more regular expressions.
|
| RegexPatternSetReferenceStatement |
A rule statement used to search web request components for matches with regular expressions.
|
| RegexPatternSetSummary |
High-level information about a RegexPatternSet, returned by operations like create and list. |
| ReleaseSummary |
High level information for an SDK release.
|
| RequestBodyAssociatedResourceTypeConfig |
Customizes the maximum size of the request body that your protected CloudFront, API Gateway, Amazon Cognito, App
Runner, and Verified Access resources forward to WAF for inspection.
|
| RequestInspection |
The criteria for inspecting login requests, used by the ATP rule group to validate credentials usage.
|
| RequestInspectionACFP |
The criteria for inspecting account creation requests, used by the ACFP rule group to validate and track account
creation attempts.
|
| ResponseInspection |
The criteria for inspecting responses to login requests and account creation requests, used by the ATP and ACFP rule
groups to track login and account creation success and failure rates.
|
| ResponseInspectionBodyContains |
Configures inspection of the response body.
|
| ResponseInspectionHeader |
Configures inspection of the response header.
|
| ResponseInspectionJson |
Configures inspection of the response JSON.
|
| ResponseInspectionStatusCode |
Configures inspection of the response status code.
|
| Rule |
A single rule, which you can use in a WebACL or RuleGroup to identify web requests that you want to
manage in some way. |
| RuleAction |
The action that WAF should take on a web request when it matches a rule's statement.
|
| RuleActionOverride |
Action setting to use in the place of a rule action that is configured inside the rule group.
|
| RuleGroup |
A rule group defines a collection of rules to inspect and control web requests that you can use in a WebACL. |
| RuleGroupReferenceStatement |
A rule statement used to run the rules that are defined in a RuleGroup. |
| RuleGroupSummary |
High-level information about a RuleGroup, returned by operations like create and list. |
| RuleSummary |
|
| SampledHTTPRequest |
Represents a single sampled web request.
|
| SingleHeader |
Inspect one of the headers in the web request, identified by name, for example, User-Agent or
Referer.
|
| SingleQueryArgument |
Inspect one query argument in the web request, identified by name, for example UserName or SalesRegion.
|
| SizeConstraintStatement |
A rule statement that compares a number of bytes against the size of a request component, using a comparison
operator, such as greater than (>) or less than (<).
|
| SqliMatchStatement |
A rule statement that inspects for malicious SQL code.
|
| Statement |
The processing guidance for a Rule, used by WAF to determine whether a web request matches the rule. |
| Tag |
A tag associated with an Amazon Web Services resource.
|
| TagInfoForResource |
The collection of tagging definitions for an Amazon Web Services resource.
|
| TagResourceRequest |
|
| TagResourceResponse |
|
| TextTransformation |
Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to
bypass detection.
|
| TimeWindow |
In a GetSampledRequests request, the StartTime and EndTime objects specify the time
range for which you want WAF to return a sample of web requests. |
| UntagResourceRequest |
|
| UntagResourceResponse |
|
| UpdateIpSetRequest |
|
| UpdateIpSetResponse |
|
| UpdateManagedRuleSetVersionExpiryDateRequest |
|
| UpdateManagedRuleSetVersionExpiryDateResponse |
|
| UpdateRegexPatternSetRequest |
|
| UpdateRegexPatternSetResponse |
|
| UpdateRuleGroupRequest |
|
| UpdateRuleGroupResponse |
|
| UpdateWebAclRequest |
|
| UpdateWebAclResponse |
|
| UriPath |
Inspect the path component of the URI of the web request.
|
| UsernameField |
The name of the field in the request payload that contains your customer's username.
|
| VersionToPublish |
A version of the named managed rule group, that the rule group's vendor publishes for use by customers.
|
| VisibilityConfig |
Defines and enables Amazon CloudWatch metrics and web request sample collection.
|
| Wafv2Exception.BuilderImpl |
|
| Wafv2Request |
|
| Wafv2Request.BuilderImpl |
|
| Wafv2Response |
|
| Wafv2Response.BuilderImpl |
|
| Wafv2ResponseMetadata |
|
| WebACL |
A web ACL defines a collection of rules to use to inspect and control web requests.
|
| WebACLSummary |
High-level information about a WebACL, returned by operations like create and list. |
| XssMatchStatement |
A rule statement that inspects for cross-site scripting (XSS) attacks.
|