pulumi-gcp-kotlin/com.pulumi.gcp.compute.kotlin.outputs/SecurityPolicyRuleRateLimitOptions

SecurityPolicyRuleRateLimitOptions

data class SecurityPolicyRuleRateLimitOptions(val banDurationSec: Int? = null, val banThreshold: SecurityPolicyRuleRateLimitOptionsBanThreshold? = null, val conformAction: String, val enforceOnKey: String? = null, val enforceOnKeyName: String? = null, val exceedAction: String, val exceedRedirectOptions: SecurityPolicyRuleRateLimitOptionsExceedRedirectOptions? = null, val rateLimitThreshold: SecurityPolicyRuleRateLimitOptionsRateLimitThreshold)

Constructors

Link copied to clipboard
fun SecurityPolicyRuleRateLimitOptions(banDurationSec: Int? = null, banThreshold: SecurityPolicyRuleRateLimitOptionsBanThreshold? = null, conformAction: String, enforceOnKey: String? = null, enforceOnKeyName: String? = null, exceedAction: String, exceedRedirectOptions: SecurityPolicyRuleRateLimitOptionsExceedRedirectOptions? = null, rateLimitThreshold: SecurityPolicyRuleRateLimitOptionsRateLimitThreshold)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
val banDurationSec: Int? = null

Can only be specified if the action for the rule is "rate_based_ban". If specified, determines the time (in seconds) the traffic will continue to be banned by the rate limit after the rate falls below the threshold.

Link copied to clipboard
val banThreshold: SecurityPolicyRuleRateLimitOptionsBanThreshold? = null

Can only be specified if the action for the rule is "rate_based_ban". If specified, the key will be banned for the configured 'ban_duration_sec' when the number of requests that exceed the 'rate_limit_threshold' also exceed this 'ban_threshold'. Structure is documented below.

Link copied to clipboard
val conformAction: String

Action to take for requests that are under the configured rate limit threshold. Valid option is "allow" only.

Link copied to clipboard
val enforceOnKey: String? = null

Determines the key to enforce the rate_limit_threshold on. If not specified, defaults to "ALL".

Link copied to clipboard
val enforceOnKeyName: String? = null

Rate limit key name applicable only for the following key types: HTTP_HEADER -- Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE -- Name of the HTTP cookie whose value is taken as the key value.

Link copied to clipboard
val exceedAction: String

When a request is denied, returns the HTTP response code specified. Valid options are "deny()" where valid values for status are 403, 404, 429, and 502.

Link copied to clipboard
val exceedRedirectOptions: SecurityPolicyRuleRateLimitOptionsExceedRedirectOptions? = null

Parameters defining the redirect action that is used as the exceed action. Cannot be specified if the exceed action is not redirect. Structure is documented below.

Link copied to clipboard
val rateLimitThreshold: SecurityPolicyRuleRateLimitOptionsRateLimitThreshold

Threshold at which to begin ratelimiting. Structure is documented below.