Interface CfnRuleGroup.RuleActionProperty
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnRuleGroup.RuleActionProperty.Jsii$Proxy
- Enclosing class:
CfnRuleGroup
@Stability(Stable)
public static interface CfnRuleGroup.RuleActionProperty
extends software.amazon.jsii.JsiiSerializable
The action that AWS WAF should take on a web request when it matches a rule's statement.
Settings at the web ACL level can override the rule action setting.
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.services.wafv2.*;
Object allow;
Object block;
Object captcha;
Object challenge;
Object count;
RuleActionProperty ruleActionProperty = RuleActionProperty.builder()
.allow(allow)
.block(block)
.captcha(captcha)
.challenge(challenge)
.count(count)
.build();
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeInterfaceDescriptionstatic final classA builder forCfnRuleGroup.RuleActionPropertystatic final classAn implementation forCfnRuleGroup.RuleActionProperty -
Method Summary
Modifier and TypeMethodDescriptionbuilder()default ObjectgetAllow()Instructs AWS WAF to allow the web request.default ObjectgetBlock()Instructs AWS WAF to block the web request.default ObjectSpecifies that AWS WAF should run aCAPTCHAcheck against the request:.default ObjectInstructs AWS WAF to run aChallengecheck against the web request.default ObjectgetCount()Instructs AWS WAF to count the web request and then continue evaluating the request using the remaining rules in the web ACL.Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getAllow
Instructs AWS WAF to allow the web request.- See Also:
-
getBlock
Instructs AWS WAF to block the web request.- See Also:
-
getCaptcha
Specifies that AWS WAF should run aCAPTCHAcheck against the request:.- If the request includes a valid, unexpired
CAPTCHAtoken, AWS WAF allows the web request inspection to proceed to the next rule, similar to aCountAction. - If the request doesn't include a valid, unexpired
CAPTCHAtoken, AWS WAF discontinues the web ACL evaluation of the request and blocks it from going to its intended destination.
AWS WAF generates a response that it sends back to the client, which includes the following:
- The header
x-amzn-waf-actionwith a value ofcaptcha. - The HTTP status code
405 Method Not Allowed. - If the request contains an
Acceptheader with a value oftext/html, the response includes aCAPTCHAchallenge.
You can configure the expiration time in the
CaptchaConfigImmunityTimePropertysetting at the rule and web ACL level. The rule setting overrides the web ACL setting.This action option is available for rules. It isn't available for web ACL default actions.
- See Also:
- If the request includes a valid, unexpired
-
getChallenge
Instructs AWS WAF to run aChallengecheck against the web request.- See Also:
-
getCount
Instructs AWS WAF to count the web request and then continue evaluating the request using the remaining rules in the web ACL.- See Also:
-
builder
-