Proto: waf_policy.proto

Package: security.policy.gloo.solo.io



Field Description
workspaces (repeated WAFPolicyReport.WorkspacesEntry)

The status of the resource in each workspace that it exists in.
selectedRoutes (repeated common.gloo.solo.io.RouteReference)

A list of references to all routes selected by the policy.


Field Description
key (string)

value (common.gloo.solo.io.Report)


WAFPolicy is used to set safeguard your services with the functionality of Web ApplicationFirewall WAFPolicies are applied at the Route level.

Field Description
applyToRoutes (repeated common.gloo.solo.io.RouteSelector)

Routes to apply the policy to. If empty, the policy applies to all workloads in the workspace.
config (WAFPolicySpec.Config)

The details of the WAF policy to apply to the selected routes.


Field Description
disableCoreRuleSet (bool)

Disable the OWASP core rule set from being applied
coreRuleSetSettingsString (string)

An inline string of the core rule set settings
coreRuleSetSettingsPath (string)

The path to the core rule set settings to use
customRuleSets (repeated envoy.config.filter.http.modsecurity.v2.RuleSet)

Overwrite the global rules on this route
customInterventionMessage (string)

Custom message to display when an intervention occurs
auditLogging (envoy.config.filter.http.modsecurity.v2.AuditLogging)

This instructs the filter what to do with the transaction's audit log.
requestHeadersOnly (bool)

If set, the body will not be buffered and fed to ModSecurity. Only the headers will. This can help improve performance.
responseHeadersOnly (bool)

priority (google.protobuf.UInt32Value)

Optional field that is used to determine the order in which rule sets between policies are applied. Modsec rulesets for each policy is applied from the lowest numerical priority to the highest numerical priority if it is provided. Use this field for all WAF policies applicable to a route or not at all. Defaults to nil if not provided, and WAF policies will be applied in order of ascending creation time. For information about the value format, see the Google protocol buffer documentation.


Field Description
common (common.gloo.solo.io.Status)

The state and workspace conditions of the applied resource.
numSelectedRoutes (uint32)

The number of routes selected by the policy.