AWS::WAFv2::WebACL ResponseInspectionBodyContains

Configures inspection of the response body. AWS WAF can inspect the first 65,536 bytes (64 KB) of the response body. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet and AWSManagedRulesACFPRuleSet.

Note

Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "FailureStrings" : [ String, ... ],
  "SuccessStrings" : [ String, ... ]
}

YAML


  FailureStrings: 
    - String
  SuccessStrings: 
    - String

Properties

FailureStrings

Strings in the body of the response that indicate a failed login or account creation attempt. To be counted as a failure, the string can be anywhere in the body and must be an exact match, including case. Each string must be unique among the success and failure strings.

JSON example: "FailureStrings": [ "Request failed" ]

Required: Yes

Type: Array of String

Minimum: 1 | 1

Maximum: 100 | 5

Update requires: No interruption

SuccessStrings

Strings in the body of the response that indicate a successful login or account creation attempt. To be counted as a success, the string can be anywhere in the body and must be an exact match, including case. Each string must be unique among the success and failure strings.

JSON examples: "SuccessStrings": [ "Login successful" ] and "SuccessStrings": [ "Account creation successful", "Welcome to our site!" ]

Required: Yes

Type: Array of String

Minimum: 1 | 1

Maximum: 100 | 5

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

ResponseInspection

ResponseInspectionHeader