SecurityPolicyRuleMatcherArgs

data class SecurityPolicyRuleMatcherArgs(val config: Output<SecurityPolicyRuleMatcherConfigArgs>? = null, val expr: Output<ExprArgs>? = null, val versionedExpr: Output<SecurityPolicyRuleMatcherVersionedExpr>? = null) : ConvertibleToJava<SecurityPolicyRuleMatcherArgs>

Represents a match condition that incoming traffic is evaluated against. Exactly one field must be specified.

Constructors

Link copied to clipboard
fun SecurityPolicyRuleMatcherArgs(config: Output<SecurityPolicyRuleMatcherConfigArgs>? = null, expr: Output<ExprArgs>? = null, versionedExpr: Output<SecurityPolicyRuleMatcherVersionedExpr>? = null)

Functions

Link copied to clipboard
open override fun toJava(): SecurityPolicyRuleMatcherArgs

Properties

Link copied to clipboard

The configuration options available when specifying versioned_expr. This field must be specified if versioned_expr is specified and cannot be specified if versioned_expr is not specified.

Link copied to clipboard
val expr: Output<ExprArgs>? = null

User defined CEVAL expression. A CEVAL expression is used to specify match criteria such as origin.ip, source.region_code and contents in the request header. Expressions containing evaluateThreatIntelligence require Cloud Armor Managed Protection Plus tier and are not supported in Edge Policies nor in Regional Policies. Expressions containing evaluatePreconfiguredExpr('sourceiplist-*') require Cloud Armor Managed Protection Plus tier and are only supported in Global Security Policies.

Link copied to clipboard

Preconfigured versioned expression. If this field is specified, config must also be specified. Available preconfigured expressions along with their requirements are: SRC_IPS_V1 - must specify the corresponding src_ip_range field in config.