Proto: waf_policy.proto

Package: security.policy.gloo.solo.io

Types:

WAFPolicyReport

FieldDescription
workspaces(repeated WAFPolicyReport.WorkspacesEntry)

The status of the resource in each workspace that it exists in.
selectedRoutes(repeated common.gloo.solo.io.RouteReference)

A list of references to all routes selected by the policy.

WAFPolicyReport.WorkspacesEntry

FieldDescription
key(string)

value(common.gloo.solo.io.Report)

WAFPolicySpec

WAFPolicy is used to set safeguard your services with the functionality of Web ApplicationFirewall WAFPolicies are applied at the Route level.

FieldDescription
applyToRoutes(repeated common.gloo.solo.io.RouteSelector)

select the routes where the policy will be applied if left empty, will apply to all routes in the workspace.
config(WAFPolicySpec.Config)

The details of the WAF policy to apply to the selected routes.

WAFPolicySpec.Config

FieldDescription
disableCoreRuleSet(bool)

Disable the OWASP core rule set from being applied
coreRuleSetSettingsString(string)

An inline string of the core rule set settings
coreRuleSetSettingsPath(string)

The path to the core rule set settings to use
customRuleSets(repeated envoy.config.filter.http.modsecurity.v2.RuleSet)

Overwrite the global rules on this route
customInterventionMessage(string)

Custom message to display when an intervention occurs
auditLogging(envoy.config.filter.http.modsecurity.v2.AuditLogging)

This instructs the filter what to do with the transaction’s audit log.
requestHeadersOnly(bool)

If set, the body will not be buffered and fed to ModSecurity. Only the headers will. This can help improve performance.
responseHeadersOnly(bool)

priority(google.protobuf.UInt32Value)

Optional field that is used to determine the order in which rule sets between policies are applied. Modsec rulesets for each policy is applied from the lowest numerical priority to the highest numerical priority if it is provided. Use this field for all WAF policies applicable to a route or not at all. Defaults to nil if not provided, and WAF policies will be applied in order of ascending creation time. For information about the value format, see the Google protocol buffer documentation.

WAFPolicyStatus

FieldDescription
common(common.gloo.solo.io.Status)

numSelectedRoutes(uint32)

The number of routes selected by the policy.