On this page
WafPolicy
WafPolicy API reference.
Proto: waf_policy.proto
Package: security.policy.gloo.solo.io
Types:
WAFPolicyReport
Field | Description |
---|---|
workspaces | (repeated WAFPolicyReport.WorkspacesEntry )The status of the resource in each workspace that it exists in. |
selectedRoutes | (repeated common.gloo.solo.io.RouteReference )A list of references to all routes selected by the policy. |
WAFPolicyReport.WorkspacesEntry
Field | Description |
---|---|
key | (string ) |
value | (common.gloo.solo.io.Report ) |
WAFPolicySpec
WAFPolicy is used to set safeguard your services with the functionality of Web ApplicationFirewall WAFPolicies are applied at the Route level.
Field | Description |
---|---|
applyToRoutes | (repeated common.gloo.solo.io.RouteSelector )select the routes where the policy will be applied if left empty, will apply to all routes in the workspace. |
config | (WAFPolicySpec.Config )The details of the WAF policy to apply to the selected routes. |
WAFPolicySpec.Config
Field | Description |
---|---|
disableCoreRuleSet | (bool )Disable the OWASP core rule set from being applied |
coreRuleSetSettingsString | (string )An inline string of the core rule set settings |
coreRuleSetSettingsPath | (string )The path to the core rule set settings to use |
customRuleSets | (repeated envoy.config.filter.http.modsecurity.v2.RuleSet )Overwrite the global rules on this route |
customInterventionMessage | (string )Custom message to display when an intervention occurs |
auditLogging | (envoy.config.filter.http.modsecurity.v2.AuditLogging )This instructs the filter what to do with the transaction’s audit log. |
requestHeadersOnly | (bool )If set, the body will not be buffered and fed to ModSecurity. Only the headers will. This can help improve performance. |
responseHeadersOnly | (bool ) |
priority | (google.protobuf.UInt32Value )Optional field that is used to determine the order in which rule sets between policies are applied. Modsec rulesets for each policy is applied from the lowest numerical priority to the highest numerical priority if it is provided. Use this field for all WAF policies applicable to a route or not at all. Defaults to nil if not provided, and WAF policies will be applied in order of ascending creation time. For information about the value format, see the Google protocol buffer documentation. |
WAFPolicyStatus
Field | Description |
---|---|
common | (common.gloo.solo.io.Status ) |
numSelectedRoutes | (uint32 )The number of routes selected by the policy. |