pulumi-aws-kotlin/com.pulumi.aws.wafv2.kotlin/WebAclArgs

WebAclArgs

data class WebAclArgs(val associationConfig: Output<WebAclAssociationConfigArgs>? = null, val captchaConfig: Output<WebAclCaptchaConfigArgs>? = null, val challengeConfig: Output<WebAclChallengeConfigArgs>? = null, val customResponseBodies: Output<List<WebAclCustomResponseBodyArgs>>? = null, val dataProtectionConfig: Output<WebAclDataProtectionConfigArgs>? = null, val defaultAction: Output<WebAclDefaultActionArgs>? = null, val description: Output<String>? = null, val name: Output<String>? = null, val namePrefix: Output<String>? = null, val ruleJson: Output<String>? = null, val rules: Output<List<WebAclRuleArgs>>? = null, val scope: Output<String>? = null, val tags: Output<Map<String, String>>? = null, val tokenDomains: Output<List<String>>? = null, val visibilityConfig: Output<WebAclVisibilityConfigArgs>? = null) : ConvertibleToJava<WebAclArgs>

Constructors

Link copied to clipboard
constructor(associationConfig: Output<WebAclAssociationConfigArgs>? = null, captchaConfig: Output<WebAclCaptchaConfigArgs>? = null, challengeConfig: Output<WebAclChallengeConfigArgs>? = null, customResponseBodies: Output<List<WebAclCustomResponseBodyArgs>>? = null, dataProtectionConfig: Output<WebAclDataProtectionConfigArgs>? = null, defaultAction: Output<WebAclDefaultActionArgs>? = null, description: Output<String>? = null, name: Output<String>? = null, namePrefix: Output<String>? = null, ruleJson: Output<String>? = null, rules: Output<List<WebAclRuleArgs>>? = null, scope: Output<String>? = null, tags: Output<Map<String, String>>? = null, tokenDomains: Output<List<String>>? = null, visibilityConfig: Output<WebAclVisibilityConfigArgs>? = null)

Properties

Link copied to clipboard
val associationConfig: Output<WebAclAssociationConfigArgs>? = null

Specifies custom configurations for the associations between the web ACL and protected resources. See association_config below for details.

Link copied to clipboard
val captchaConfig: Output<WebAclCaptchaConfigArgs>? = null

Specifies how AWS WAF should handle CAPTCHA evaluations on the ACL level (used by AWS Bot Control). See captcha_config below for details.

Link copied to clipboard
val challengeConfig: Output<WebAclChallengeConfigArgs>? = null

Specifies how AWS WAF should handle Challenge evaluations on the ACL level (used by AWS Bot Control). See challenge_config below for details.

Link copied to clipboard
val customResponseBodies: Output<List<WebAclCustomResponseBodyArgs>>? = null

Defines custom response bodies that can be referenced by custom_response actions. See custom_response_body below for details.

Link copied to clipboard
val dataProtectionConfig: Output<WebAclDataProtectionConfigArgs>? = null

Specifies data protection to apply to the web request data for the web ACL. This is a web ACL level data protection option. See data_protection_config below for details.

Link copied to clipboard
val defaultAction: Output<WebAclDefaultActionArgs>? = null

Action to perform if none of the rules contained in the WebACL match. See default_action below for details.

Link copied to clipboard
val description: Output<String>? = null

Friendly description of the WebACL.

Link copied to clipboard
val name: Output<String>? = null

Friendly name of the WebACL. If omitted, the provider will assign a random, unique name. Conflicts with name_prefix.

Link copied to clipboard
val namePrefix: Output<String>? = null

Creates a unique name beginning with the specified prefix. Conflicts with name.

Link copied to clipboard
val ruleJson: Output<String>? = null

Raw JSON string to allow more than three nested statements. Conflicts with rule attribute. This is for advanced use cases where more than 3 levels of nested statements are required. There is no drift detection at this time. If you use this attribute instead of rule, you will be foregoing drift detection. Additionally, importing an existing web ACL into a configuration with rule_json set will result in a one time in-place update as the remote rule configuration is initially written to the rule attribute. See the AWS documentation for the JSON structure.

Link copied to clipboard
val rules: Output<List<WebAclRuleArgs>>? = null

Rule blocks used to identify the web requests that you want to allow, block, or count. See rule below for details.

Link copied to clipboard
val scope: Output<String>? = null

Specifies whether this is for an AWS CloudFront distribution or for a regional application. Valid values are CLOUDFRONT or REGIONAL. To work with CloudFront, you must also specify the region us-east-1 (N. Virginia) on the AWS provider.

Link copied to clipboard
val tags: Output<Map<String, String>>? = null

Map of key-value pairs to associate with the resource. If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Link copied to clipboard
val tokenDomains: Output<List<String>>? = null

Specifies the domains that AWS WAF should accept in a web request token. This enables the use of tokens across multiple protected websites. When AWS WAF provides a token, it uses the domain of the AWS resource that the web ACL is protecting. If you don't specify a list of token domains, AWS WAF accepts tokens only for the domain of the protected resource. With a token domain list, AWS WAF accepts the resource's host domain plus all domains in the token domain list, including their prefixed subdomains.

Link copied to clipboard
val visibilityConfig: Output<WebAclVisibilityConfigArgs>? = null

Defines and enables Amazon CloudWatch metrics and web request sample collection. See visibility_config below for details.

Functions

Link copied to clipboard
open override fun toJava(): WebAclArgs