Cloudflare v5.43.0 published on Wednesday, Nov 13, 2024 by Pulumi
cloudflare.getRulesets
Explore with Pulumi AI
Use this datasource to lookup Rulesets in an account or zone.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const example = cloudflare.getRulesets({
zoneId: "0da42c8d2132a9ddaf714f9e7c920711",
filter: {
name: ".*OWASP.*",
},
});
import pulumi
import pulumi_cloudflare as cloudflare
example = cloudflare.get_rulesets(zone_id="0da42c8d2132a9ddaf714f9e7c920711",
filter={
"name": ".*OWASP.*",
})
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v5/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.GetRulesets(ctx, &cloudflare.GetRulesetsArgs{
ZoneId: pulumi.StringRef("0da42c8d2132a9ddaf714f9e7c920711"),
Filter: cloudflare.GetRulesetsFilter{
Name: pulumi.StringRef(".*OWASP.*"),
},
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var example = Cloudflare.GetRulesets.Invoke(new()
{
ZoneId = "0da42c8d2132a9ddaf714f9e7c920711",
Filter = new Cloudflare.Inputs.GetRulesetsFilterInputArgs
{
Name = ".*OWASP.*",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetRulesetsArgs;
import com.pulumi.cloudflare.inputs.GetRulesetsFilterArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example = CloudflareFunctions.getRulesets(GetRulesetsArgs.builder()
.zoneId("0da42c8d2132a9ddaf714f9e7c920711")
.filter(GetRulesetsFilterArgs.builder()
.name(".*OWASP.*")
.build())
.build());
}
}
variables:
example:
fn::invoke:
Function: cloudflare:getRulesets
Arguments:
zoneId: 0da42c8d2132a9ddaf714f9e7c920711
filter:
name: .*OWASP.*
Using getRulesets
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getRulesets(args: GetRulesetsArgs, opts?: InvokeOptions): Promise<GetRulesetsResult>
function getRulesetsOutput(args: GetRulesetsOutputArgs, opts?: InvokeOptions): Output<GetRulesetsResult>
def get_rulesets(account_id: Optional[str] = None,
filter: Optional[GetRulesetsFilter] = None,
include_rules: Optional[bool] = None,
zone_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetRulesetsResult
def get_rulesets_output(account_id: Optional[pulumi.Input[str]] = None,
filter: Optional[pulumi.Input[GetRulesetsFilterArgs]] = None,
include_rules: Optional[pulumi.Input[bool]] = None,
zone_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetRulesetsResult]
func GetRulesets(ctx *Context, args *GetRulesetsArgs, opts ...InvokeOption) (*GetRulesetsResult, error)
func GetRulesetsOutput(ctx *Context, args *GetRulesetsOutputArgs, opts ...InvokeOption) GetRulesetsResultOutput
> Note: This function is named GetRulesets
in the Go SDK.
public static class GetRulesets
{
public static Task<GetRulesetsResult> InvokeAsync(GetRulesetsArgs args, InvokeOptions? opts = null)
public static Output<GetRulesetsResult> Invoke(GetRulesetsInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetRulesetsResult> getRulesets(GetRulesetsArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: cloudflare:index/getRulesets:getRulesets
arguments:
# arguments dictionary
The following arguments are supported:
- Account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - Filter
Get
Rulesets Filter - Include
Rules bool - Include rule data in response.
- Zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- Account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - Filter
Get
Rulesets Filter - Include
Rules bool - Include rule data in response.
- Zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- account
Id String - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include
Rules Boolean - Include rule data in response.
- zone
Id String - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include
Rules boolean - Include rule data in response.
- zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- account_
id str - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include_
rules bool - Include rule data in response.
- zone_
id str - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- account
Id String - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter Property Map
- include
Rules Boolean - Include rule data in response.
- zone
Id String - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
getRulesets Result
The following output properties are available:
- Id string
- The provider-assigned unique ID for this managed resource.
- Rulesets
List<Get
Rulesets Ruleset> - Account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - Filter
Get
Rulesets Filter - Include
Rules bool - Include rule data in response.
- Zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- Id string
- The provider-assigned unique ID for this managed resource.
- Rulesets
[]Get
Rulesets Ruleset - Account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - Filter
Get
Rulesets Filter - Include
Rules bool - Include rule data in response.
- Zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- id String
- The provider-assigned unique ID for this managed resource.
- rulesets
List<Get
Rulesets Ruleset> - account
Id String - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include
Rules Boolean - Include rule data in response.
- zone
Id String - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- id string
- The provider-assigned unique ID for this managed resource.
- rulesets
Get
Rulesets Ruleset[] - account
Id string - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include
Rules boolean - Include rule data in response.
- zone
Id string - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- id str
- The provider-assigned unique ID for this managed resource.
- rulesets
Sequence[Get
Rulesets Ruleset] - account_
id str - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter
Get
Rulesets Filter - include_
rules bool - Include rule data in response.
- zone_
id str - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
- id String
- The provider-assigned unique ID for this managed resource.
- rulesets List<Property Map>
- account
Id String - The account identifier to target for the resource. Must provide only one of
zone_id
,account_id
. - filter Property Map
- include
Rules Boolean - Include rule data in response.
- zone
Id String - The zone identifier to target for the resource. Must provide only one of
zone_id
,account_id
.
Supporting Types
GetRulesetsFilter
- Id string
- The ID of the Ruleset to target.
- Kind string
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - Name string
- Name of the ruleset.
- Phase string
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - Version string
- Version of the ruleset to filter on.
- Id string
- The ID of the Ruleset to target.
- Kind string
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - Name string
- Name of the ruleset.
- Phase string
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - Version string
- Version of the ruleset to filter on.
- id String
- The ID of the Ruleset to target.
- kind String
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - name String
- Name of the ruleset.
- phase String
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - version String
- Version of the ruleset to filter on.
- id string
- The ID of the Ruleset to target.
- kind string
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - name string
- Name of the ruleset.
- phase string
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - version string
- Version of the ruleset to filter on.
- id str
- The ID of the Ruleset to target.
- kind str
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - name str
- Name of the ruleset.
- phase str
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - version str
- Version of the ruleset to filter on.
- id String
- The ID of the Ruleset to target.
- kind String
- Type of Ruleset to create. Available values:
custom
,managed
,root
,zone
. - name String
- Name of the ruleset.
- phase String
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
. - version String
- Version of the ruleset to filter on.
GetRulesetsRuleset
- Id string
- ID of the ruleset.
- Kind string
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- Name string
- Name of the ruleset.
- Phase string
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- Version string
- Version of the ruleset.
- Description string
- Brief summary of the ruleset and its intended use.
- Rules
List<Get
Rulesets Ruleset Rule> - List of rules to apply to the ruleset.
- Id string
- ID of the ruleset.
- Kind string
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- Name string
- Name of the ruleset.
- Phase string
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- Version string
- Version of the ruleset.
- Description string
- Brief summary of the ruleset and its intended use.
- Rules
[]Get
Rulesets Ruleset Rule - List of rules to apply to the ruleset.
- id String
- ID of the ruleset.
- kind String
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- name String
- Name of the ruleset.
- phase String
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- version String
- Version of the ruleset.
- description String
- Brief summary of the ruleset and its intended use.
- rules
List<Get
Rulesets Ruleset Rule> - List of rules to apply to the ruleset.
- id string
- ID of the ruleset.
- kind string
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- name string
- Name of the ruleset.
- phase string
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- version string
- Version of the ruleset.
- description string
- Brief summary of the ruleset and its intended use.
- rules
Get
Rulesets Ruleset Rule[] - List of rules to apply to the ruleset.
- id str
- ID of the ruleset.
- kind str
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- name str
- Name of the ruleset.
- phase str
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- version str
- Version of the ruleset.
- description str
- Brief summary of the ruleset and its intended use.
- rules
Sequence[Get
Rulesets Ruleset Rule] - List of rules to apply to the ruleset.
- id String
- ID of the ruleset.
- kind String
- Type of Ruleset. Available values:
custom
,managed
,root
,zone
- name String
- Name of the ruleset.
- phase String
- Point in the request/response lifecycle where the ruleset executes. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- version String
- Version of the ruleset.
- description String
- Brief summary of the ruleset and its intended use.
- rules List<Property Map>
- List of rules to apply to the ruleset.
GetRulesetsRulesetRule
- Expression string
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Id string
- Unique rule identifier.
- Ref string
- Rule reference.
- Version string
- Version of the ruleset to deploy.
- Action string
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Action
Parameters GetRulesets Ruleset Rule Action Parameters - List of parameters that configure the behavior of the ruleset rule action.
- Description string
- Brief summary of the ruleset rule and its intended use.
- Enabled bool
- Whether the rule is active.
- Exposed
Credential GetCheck Rulesets Ruleset Rule Exposed Credential Check - List of parameters that configure exposed credential checks.
- Last
Updated string - The most recent update to this rule.
- Logging
Get
Rulesets Ruleset Rule Logging - List parameters to configure how the rule generates logs.
- Ratelimit
Get
Rulesets Ruleset Rule Ratelimit - List of parameters that configure HTTP rate limiting behaviour.
- Expression string
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Id string
- Unique rule identifier.
- Ref string
- Rule reference.
- Version string
- Version of the ruleset to deploy.
- Action string
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Action
Parameters GetRulesets Ruleset Rule Action Parameters - List of parameters that configure the behavior of the ruleset rule action.
- Description string
- Brief summary of the ruleset rule and its intended use.
- Enabled bool
- Whether the rule is active.
- Exposed
Credential GetCheck Rulesets Ruleset Rule Exposed Credential Check - List of parameters that configure exposed credential checks.
- Last
Updated string - The most recent update to this rule.
- Logging
Get
Rulesets Ruleset Rule Logging - List parameters to configure how the rule generates logs.
- Ratelimit
Get
Rulesets Ruleset Rule Ratelimit - List of parameters that configure HTTP rate limiting behaviour.
- expression String
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- id String
- Unique rule identifier.
- ref String
- Rule reference.
- version String
- Version of the ruleset to deploy.
- action String
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- action
Parameters GetRulesets Ruleset Rule Action Parameters - List of parameters that configure the behavior of the ruleset rule action.
- description String
- Brief summary of the ruleset rule and its intended use.
- enabled Boolean
- Whether the rule is active.
- exposed
Credential GetCheck Rulesets Ruleset Rule Exposed Credential Check - List of parameters that configure exposed credential checks.
- last
Updated String - The most recent update to this rule.
- logging
Get
Rulesets Ruleset Rule Logging - List parameters to configure how the rule generates logs.
- ratelimit
Get
Rulesets Ruleset Rule Ratelimit - List of parameters that configure HTTP rate limiting behaviour.
- expression string
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- id string
- Unique rule identifier.
- ref string
- Rule reference.
- version string
- Version of the ruleset to deploy.
- action string
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- action
Parameters GetRulesets Ruleset Rule Action Parameters - List of parameters that configure the behavior of the ruleset rule action.
- description string
- Brief summary of the ruleset rule and its intended use.
- enabled boolean
- Whether the rule is active.
- exposed
Credential GetCheck Rulesets Ruleset Rule Exposed Credential Check - List of parameters that configure exposed credential checks.
- last
Updated string - The most recent update to this rule.
- logging
Get
Rulesets Ruleset Rule Logging - List parameters to configure how the rule generates logs.
- ratelimit
Get
Rulesets Ruleset Rule Ratelimit - List of parameters that configure HTTP rate limiting behaviour.
- expression str
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- id str
- Unique rule identifier.
- ref str
- Rule reference.
- version str
- Version of the ruleset to deploy.
- action str
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- action_
parameters GetRulesets Ruleset Rule Action Parameters - List of parameters that configure the behavior of the ruleset rule action.
- description str
- Brief summary of the ruleset rule and its intended use.
- enabled bool
- Whether the rule is active.
- exposed_
credential_ Getcheck Rulesets Ruleset Rule Exposed Credential Check - List of parameters that configure exposed credential checks.
- last_
updated str - The most recent update to this rule.
- logging
Get
Rulesets Ruleset Rule Logging - List parameters to configure how the rule generates logs.
- ratelimit
Get
Rulesets Ruleset Rule Ratelimit - List of parameters that configure HTTP rate limiting behaviour.
- expression String
- Criteria for an HTTP request to trigger the ruleset rule action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- id String
- Unique rule identifier.
- ref String
- Rule reference.
- version String
- Version of the ruleset to deploy.
- action String
- Action to perform in the ruleset rule. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- action
Parameters Property Map - List of parameters that configure the behavior of the ruleset rule action.
- description String
- Brief summary of the ruleset rule and its intended use.
- enabled Boolean
- Whether the rule is active.
- exposed
Credential Property MapCheck - List of parameters that configure exposed credential checks.
- last
Updated String - The most recent update to this rule.
- logging Property Map
- List parameters to configure how the rule generates logs.
- ratelimit Property Map
- List of parameters that configure HTTP rate limiting behaviour.
GetRulesetsRulesetRuleActionParameters
- Version string
- Version of the ruleset to deploy.
- Additional
Cacheable List<int>Ports - Allows for the ability to support caching on non-standard ports.
- Automatic
Https boolRewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- Autominifies
List<Get
Rulesets Ruleset Rule Action Parameters Autominify> - Indicate which file extensions to minify automatically.
- Bic bool
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- Browser
Ttl GetRulesets Ruleset Rule Action Parameters Browser Ttl - List of browser TTL parameters to apply to the request.
- Cache bool
- Whether to cache if expression matches.
- Cache
Key GetRulesets Ruleset Rule Action Parameters Cache Key - List of cache key parameters to apply to the request.
- Cache
Reserve GetRulesets Ruleset Rule Action Parameters Cache Reserve - List of cache reserve parameters to apply to the request.
- Content string
- Content of the custom error response
- Content
Type string - Content-Type of the custom error response
- List<string>
- List of cookie values to include as part of custom fields logging.
- Disable
Apps bool - Turn off all active Cloudflare Apps.
- Disable
Railgun bool - Turn off railgun feature of the Cloudflare Speed app.
- Disable
Zaraz bool - Turn off zaraz feature.
- Edge
Ttl GetRulesets Ruleset Rule Action Parameters Edge Ttl - List of edge TTL parameters to apply to the request.
- Email
Obfuscation bool - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- From
List GetRulesets Ruleset Rule Action Parameters From List - Use a list to lookup information for the action.
- From
Value GetRulesets Ruleset Rule Action Parameters From Value - Use a value to lookup information for the action.
- Headers
List<Get
Rulesets Ruleset Rule Action Parameters Header> - List of HTTP header modifications to perform in the ruleset rule.
- Host
Header string - Host Header that request origin receives.
- Hotlink
Protection bool - Turn on or off the hotlink protection feature.
- Id string
- Identifier of the action parameter to modify.
- Increment int
- Matched
Data GetRulesets Ruleset Rule Action Parameters Matched Data - List of properties to configure WAF payload logging.
- Mirage bool
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- Opportunistic
Encryption bool - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- Origin
Get
Rulesets Ruleset Rule Action Parameters Origin - List of properties to change request origin.
- Origin
Cache boolControl - Sets a more compliant mode for parsing Cache Control headers
- Origin
Error boolPage Passthru - Pass-through error page for origin.
- Overrides
Get
Rulesets Ruleset Rule Action Parameters Overrides - List of override configurations to apply to the ruleset.
- Phases List<string>
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- Polish string
- Apply options from the Polish feature of the Cloudflare Speed app.
- Products List<string>
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- Read
Timeout int - Sets the timeout value for reading content from an origin server.
- Request
Fields List<string> - List of request headers to include as part of custom fields logging, in lowercase.
- bool
- Respect strong ETags.
- Response
Fields List<string> - List of response headers to include as part of custom fields logging, in lowercase.
- Responses
List<Get
Rulesets Ruleset Rule Action Parameters Response> - List of parameters that configure the response given to end users
- Rocket
Loader bool - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- Rules Dictionary<string, string>
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- Ruleset string
- Which ruleset ID to target.
- Rulesets List<string>
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - Security
Level string - Control options for the Security Level feature from the Security app.
- Serve
Stale GetRulesets Ruleset Rule Action Parameters Serve Stale - List of serve stale parameters to apply to the request.
- Server
Side boolExcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- Sni
Get
Rulesets Ruleset Rule Action Parameters Sni - List of properties to manange Server Name Indication.
- Ssl string
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- Status
Code int - HTTP status code of the custom error response
- Sxg bool
- Turn on or off the SXG feature.
- Uri
Get
Rulesets Ruleset Rule Action Parameters Uri - List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
- Version string
- Version of the ruleset to deploy.
- Additional
Cacheable []intPorts - Allows for the ability to support caching on non-standard ports.
- Automatic
Https boolRewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- Autominifies
[]Get
Rulesets Ruleset Rule Action Parameters Autominify - Indicate which file extensions to minify automatically.
- Bic bool
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- Browser
Ttl GetRulesets Ruleset Rule Action Parameters Browser Ttl - List of browser TTL parameters to apply to the request.
- Cache bool
- Whether to cache if expression matches.
- Cache
Key GetRulesets Ruleset Rule Action Parameters Cache Key - List of cache key parameters to apply to the request.
- Cache
Reserve GetRulesets Ruleset Rule Action Parameters Cache Reserve - List of cache reserve parameters to apply to the request.
- Content string
- Content of the custom error response
- Content
Type string - Content-Type of the custom error response
- []string
- List of cookie values to include as part of custom fields logging.
- Disable
Apps bool - Turn off all active Cloudflare Apps.
- Disable
Railgun bool - Turn off railgun feature of the Cloudflare Speed app.
- Disable
Zaraz bool - Turn off zaraz feature.
- Edge
Ttl GetRulesets Ruleset Rule Action Parameters Edge Ttl - List of edge TTL parameters to apply to the request.
- Email
Obfuscation bool - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- From
List GetRulesets Ruleset Rule Action Parameters From List - Use a list to lookup information for the action.
- From
Value GetRulesets Ruleset Rule Action Parameters From Value - Use a value to lookup information for the action.
- Headers
[]Get
Rulesets Ruleset Rule Action Parameters Header - List of HTTP header modifications to perform in the ruleset rule.
- Host
Header string - Host Header that request origin receives.
- Hotlink
Protection bool - Turn on or off the hotlink protection feature.
- Id string
- Identifier of the action parameter to modify.
- Increment int
- Matched
Data GetRulesets Ruleset Rule Action Parameters Matched Data - List of properties to configure WAF payload logging.
- Mirage bool
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- Opportunistic
Encryption bool - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- Origin
Get
Rulesets Ruleset Rule Action Parameters Origin - List of properties to change request origin.
- Origin
Cache boolControl - Sets a more compliant mode for parsing Cache Control headers
- Origin
Error boolPage Passthru - Pass-through error page for origin.
- Overrides
Get
Rulesets Ruleset Rule Action Parameters Overrides - List of override configurations to apply to the ruleset.
- Phases []string
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- Polish string
- Apply options from the Polish feature of the Cloudflare Speed app.
- Products []string
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- Read
Timeout int - Sets the timeout value for reading content from an origin server.
- Request
Fields []string - List of request headers to include as part of custom fields logging, in lowercase.
- bool
- Respect strong ETags.
- Response
Fields []string - List of response headers to include as part of custom fields logging, in lowercase.
- Responses
[]Get
Rulesets Ruleset Rule Action Parameters Response - List of parameters that configure the response given to end users
- Rocket
Loader bool - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- Rules map[string]string
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- Ruleset string
- Which ruleset ID to target.
- Rulesets []string
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - Security
Level string - Control options for the Security Level feature from the Security app.
- Serve
Stale GetRulesets Ruleset Rule Action Parameters Serve Stale - List of serve stale parameters to apply to the request.
- Server
Side boolExcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- Sni
Get
Rulesets Ruleset Rule Action Parameters Sni - List of properties to manange Server Name Indication.
- Ssl string
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- Status
Code int - HTTP status code of the custom error response
- Sxg bool
- Turn on or off the SXG feature.
- Uri
Get
Rulesets Ruleset Rule Action Parameters Uri - List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
- version String
- Version of the ruleset to deploy.
- additional
Cacheable List<Integer>Ports - Allows for the ability to support caching on non-standard ports.
- automatic
Https BooleanRewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- autominifies
List<Get
Rulesets Ruleset Rule Action Parameters Autominify> - Indicate which file extensions to minify automatically.
- bic Boolean
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- browser
Ttl GetRulesets Ruleset Rule Action Parameters Browser Ttl - List of browser TTL parameters to apply to the request.
- cache Boolean
- Whether to cache if expression matches.
- cache
Key GetRulesets Ruleset Rule Action Parameters Cache Key - List of cache key parameters to apply to the request.
- cache
Reserve GetRulesets Ruleset Rule Action Parameters Cache Reserve - List of cache reserve parameters to apply to the request.
- content String
- Content of the custom error response
- content
Type String - Content-Type of the custom error response
- List<String>
- List of cookie values to include as part of custom fields logging.
- disable
Apps Boolean - Turn off all active Cloudflare Apps.
- disable
Railgun Boolean - Turn off railgun feature of the Cloudflare Speed app.
- disable
Zaraz Boolean - Turn off zaraz feature.
- edge
Ttl GetRulesets Ruleset Rule Action Parameters Edge Ttl - List of edge TTL parameters to apply to the request.
- email
Obfuscation Boolean - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- from
List GetRulesets Ruleset Rule Action Parameters From List - Use a list to lookup information for the action.
- from
Value GetRulesets Ruleset Rule Action Parameters From Value - Use a value to lookup information for the action.
- headers
List<Get
Rulesets Ruleset Rule Action Parameters Header> - List of HTTP header modifications to perform in the ruleset rule.
- host
Header String - Host Header that request origin receives.
- hotlink
Protection Boolean - Turn on or off the hotlink protection feature.
- id String
- Identifier of the action parameter to modify.
- increment Integer
- matched
Data GetRulesets Ruleset Rule Action Parameters Matched Data - List of properties to configure WAF payload logging.
- mirage Boolean
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- opportunistic
Encryption Boolean - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- origin
Get
Rulesets Ruleset Rule Action Parameters Origin - List of properties to change request origin.
- origin
Cache BooleanControl - Sets a more compliant mode for parsing Cache Control headers
- origin
Error BooleanPage Passthru - Pass-through error page for origin.
- overrides
Get
Rulesets Ruleset Rule Action Parameters Overrides - List of override configurations to apply to the ruleset.
- phases List<String>
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- polish String
- Apply options from the Polish feature of the Cloudflare Speed app.
- products List<String>
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- read
Timeout Integer - Sets the timeout value for reading content from an origin server.
- request
Fields List<String> - List of request headers to include as part of custom fields logging, in lowercase.
- Boolean
- Respect strong ETags.
- response
Fields List<String> - List of response headers to include as part of custom fields logging, in lowercase.
- responses
List<Get
Rulesets Ruleset Rule Action Parameters Response> - List of parameters that configure the response given to end users
- rocket
Loader Boolean - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- rules Map<String,String>
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- ruleset String
- Which ruleset ID to target.
- rulesets List<String>
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - security
Level String - Control options for the Security Level feature from the Security app.
- serve
Stale GetRulesets Ruleset Rule Action Parameters Serve Stale - List of serve stale parameters to apply to the request.
- server
Side BooleanExcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- sni
Get
Rulesets Ruleset Rule Action Parameters Sni - List of properties to manange Server Name Indication.
- ssl String
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- status
Code Integer - HTTP status code of the custom error response
- sxg Boolean
- Turn on or off the SXG feature.
- uri
Get
Rulesets Ruleset Rule Action Parameters Uri - List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
- version string
- Version of the ruleset to deploy.
- additional
Cacheable number[]Ports - Allows for the ability to support caching on non-standard ports.
- automatic
Https booleanRewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- autominifies
Get
Rulesets Ruleset Rule Action Parameters Autominify[] - Indicate which file extensions to minify automatically.
- bic boolean
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- browser
Ttl GetRulesets Ruleset Rule Action Parameters Browser Ttl - List of browser TTL parameters to apply to the request.
- cache boolean
- Whether to cache if expression matches.
- cache
Key GetRulesets Ruleset Rule Action Parameters Cache Key - List of cache key parameters to apply to the request.
- cache
Reserve GetRulesets Ruleset Rule Action Parameters Cache Reserve - List of cache reserve parameters to apply to the request.
- content string
- Content of the custom error response
- content
Type string - Content-Type of the custom error response
- string[]
- List of cookie values to include as part of custom fields logging.
- disable
Apps boolean - Turn off all active Cloudflare Apps.
- disable
Railgun boolean - Turn off railgun feature of the Cloudflare Speed app.
- disable
Zaraz boolean - Turn off zaraz feature.
- edge
Ttl GetRulesets Ruleset Rule Action Parameters Edge Ttl - List of edge TTL parameters to apply to the request.
- email
Obfuscation boolean - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- from
List GetRulesets Ruleset Rule Action Parameters From List - Use a list to lookup information for the action.
- from
Value GetRulesets Ruleset Rule Action Parameters From Value - Use a value to lookup information for the action.
- headers
Get
Rulesets Ruleset Rule Action Parameters Header[] - List of HTTP header modifications to perform in the ruleset rule.
- host
Header string - Host Header that request origin receives.
- hotlink
Protection boolean - Turn on or off the hotlink protection feature.
- id string
- Identifier of the action parameter to modify.
- increment number
- matched
Data GetRulesets Ruleset Rule Action Parameters Matched Data - List of properties to configure WAF payload logging.
- mirage boolean
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- opportunistic
Encryption boolean - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- origin
Get
Rulesets Ruleset Rule Action Parameters Origin - List of properties to change request origin.
- origin
Cache booleanControl - Sets a more compliant mode for parsing Cache Control headers
- origin
Error booleanPage Passthru - Pass-through error page for origin.
- overrides
Get
Rulesets Ruleset Rule Action Parameters Overrides - List of override configurations to apply to the ruleset.
- phases string[]
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- polish string
- Apply options from the Polish feature of the Cloudflare Speed app.
- products string[]
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- read
Timeout number - Sets the timeout value for reading content from an origin server.
- request
Fields string[] - List of request headers to include as part of custom fields logging, in lowercase.
- boolean
- Respect strong ETags.
- response
Fields string[] - List of response headers to include as part of custom fields logging, in lowercase.
- responses
Get
Rulesets Ruleset Rule Action Parameters Response[] - List of parameters that configure the response given to end users
- rocket
Loader boolean - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- rules {[key: string]: string}
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- ruleset string
- Which ruleset ID to target.
- rulesets string[]
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - security
Level string - Control options for the Security Level feature from the Security app.
- serve
Stale GetRulesets Ruleset Rule Action Parameters Serve Stale - List of serve stale parameters to apply to the request.
- server
Side booleanExcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- sni
Get
Rulesets Ruleset Rule Action Parameters Sni - List of properties to manange Server Name Indication.
- ssl string
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- status
Code number - HTTP status code of the custom error response
- sxg boolean
- Turn on or off the SXG feature.
- uri
Get
Rulesets Ruleset Rule Action Parameters Uri - List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
- version str
- Version of the ruleset to deploy.
- additional_
cacheable_ Sequence[int]ports - Allows for the ability to support caching on non-standard ports.
- automatic_
https_ boolrewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- autominifies
Sequence[Get
Rulesets Ruleset Rule Action Parameters Autominify] - Indicate which file extensions to minify automatically.
- bic bool
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- browser_
ttl GetRulesets Ruleset Rule Action Parameters Browser Ttl - List of browser TTL parameters to apply to the request.
- cache bool
- Whether to cache if expression matches.
- cache_
key GetRulesets Ruleset Rule Action Parameters Cache Key - List of cache key parameters to apply to the request.
- cache_
reserve GetRulesets Ruleset Rule Action Parameters Cache Reserve - List of cache reserve parameters to apply to the request.
- content str
- Content of the custom error response
- content_
type str - Content-Type of the custom error response
- Sequence[str]
- List of cookie values to include as part of custom fields logging.
- disable_
apps bool - Turn off all active Cloudflare Apps.
- disable_
railgun bool - Turn off railgun feature of the Cloudflare Speed app.
- disable_
zaraz bool - Turn off zaraz feature.
- edge_
ttl GetRulesets Ruleset Rule Action Parameters Edge Ttl - List of edge TTL parameters to apply to the request.
- email_
obfuscation bool - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- from_
list GetRulesets Ruleset Rule Action Parameters From List - Use a list to lookup information for the action.
- from_
value GetRulesets Ruleset Rule Action Parameters From Value - Use a value to lookup information for the action.
- headers
Sequence[Get
Rulesets Ruleset Rule Action Parameters Header] - List of HTTP header modifications to perform in the ruleset rule.
- host_
header str - Host Header that request origin receives.
- hotlink_
protection bool - Turn on or off the hotlink protection feature.
- id str
- Identifier of the action parameter to modify.
- increment int
- matched_
data GetRulesets Ruleset Rule Action Parameters Matched Data - List of properties to configure WAF payload logging.
- mirage bool
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- opportunistic_
encryption bool - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- origin
Get
Rulesets Ruleset Rule Action Parameters Origin - List of properties to change request origin.
- origin_
cache_ boolcontrol - Sets a more compliant mode for parsing Cache Control headers
- origin_
error_ boolpage_ passthru - Pass-through error page for origin.
- overrides
Get
Rulesets Ruleset Rule Action Parameters Overrides - List of override configurations to apply to the ruleset.
- phases Sequence[str]
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- polish str
- Apply options from the Polish feature of the Cloudflare Speed app.
- products Sequence[str]
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- read_
timeout int - Sets the timeout value for reading content from an origin server.
- request_
fields Sequence[str] - List of request headers to include as part of custom fields logging, in lowercase.
- bool
- Respect strong ETags.
- response_
fields Sequence[str] - List of response headers to include as part of custom fields logging, in lowercase.
- responses
Sequence[Get
Rulesets Ruleset Rule Action Parameters Response] - List of parameters that configure the response given to end users
- rocket_
loader bool - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- rules Mapping[str, str]
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- ruleset str
- Which ruleset ID to target.
- rulesets Sequence[str]
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - security_
level str - Control options for the Security Level feature from the Security app.
- serve_
stale GetRulesets Ruleset Rule Action Parameters Serve Stale - List of serve stale parameters to apply to the request.
- server_
side_ boolexcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- sni
Get
Rulesets Ruleset Rule Action Parameters Sni - List of properties to manange Server Name Indication.
- ssl str
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- status_
code int - HTTP status code of the custom error response
- sxg bool
- Turn on or off the SXG feature.
- uri
Get
Rulesets Ruleset Rule Action Parameters Uri - List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
- version String
- Version of the ruleset to deploy.
- additional
Cacheable List<Number>Ports - Allows for the ability to support caching on non-standard ports.
- automatic
Https BooleanRewrites - Turn on or off Cloudflare Automatic HTTPS rewrites.
- autominifies List<Property Map>
- Indicate which file extensions to minify automatically.
- bic Boolean
- Inspect the visitor's browser for headers commonly associated with spammers and certain bots.
- browser
Ttl Property Map - List of browser TTL parameters to apply to the request.
- cache Boolean
- Whether to cache if expression matches.
- cache
Key Property Map - List of cache key parameters to apply to the request.
- cache
Reserve Property Map - List of cache reserve parameters to apply to the request.
- content String
- Content of the custom error response
- content
Type String - Content-Type of the custom error response
- List<String>
- List of cookie values to include as part of custom fields logging.
- disable
Apps Boolean - Turn off all active Cloudflare Apps.
- disable
Railgun Boolean - Turn off railgun feature of the Cloudflare Speed app.
- disable
Zaraz Boolean - Turn off zaraz feature.
- edge
Ttl Property Map - List of edge TTL parameters to apply to the request.
- email
Obfuscation Boolean - Turn on or off the Cloudflare Email Obfuscation feature of the Cloudflare Scrape Shield app.
- from
List Property Map - Use a list to lookup information for the action.
- from
Value Property Map - Use a value to lookup information for the action.
- headers List<Property Map>
- List of HTTP header modifications to perform in the ruleset rule.
- host
Header String - Host Header that request origin receives.
- hotlink
Protection Boolean - Turn on or off the hotlink protection feature.
- id String
- Identifier of the action parameter to modify.
- increment Number
- matched
Data Property Map - List of properties to configure WAF payload logging.
- mirage Boolean
- Turn on or off Cloudflare Mirage of the Cloudflare Speed app.
- opportunistic
Encryption Boolean - Turn on or off the Cloudflare Opportunistic Encryption feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- origin Property Map
- List of properties to change request origin.
- origin
Cache BooleanControl - Sets a more compliant mode for parsing Cache Control headers
- origin
Error BooleanPage Passthru - Pass-through error page for origin.
- overrides Property Map
- List of override configurations to apply to the ruleset.
- phases List<String>
- Point in the request/response lifecycle where the ruleset will be created. Available values:
ddos_l4
,ddos_l7
,http_config_settings
,http_custom_errors
,http_log_custom_fields
,http_ratelimit
,http_request_cache_settings
,http_request_dynamic_redirect
,http_request_firewall_custom
,http_request_firewall_managed
,http_request_late_transform
,http_request_origin
,http_request_redirect
,http_request_sanitize
,http_request_sbfm
,http_request_transform
,http_response_compression
,http_response_firewall_managed
,http_response_headers_transform
,magic_transit
- polish String
- Apply options from the Polish feature of the Cloudflare Speed app.
- products List<String>
- Products to target with the actions. Available values:
bic
,hot
,ratelimit
,securityLevel
,uablock
,waf
,zonelockdown
- read
Timeout Number - Sets the timeout value for reading content from an origin server.
- request
Fields List<String> - List of request headers to include as part of custom fields logging, in lowercase.
- Boolean
- Respect strong ETags.
- response
Fields List<String> - List of response headers to include as part of custom fields logging, in lowercase.
- responses List<Property Map>
- List of parameters that configure the response given to end users
- rocket
Loader Boolean - Turn on or off Cloudflare Rocket Loader in the Cloudflare Speed app.
- rules Map<String>
- Map of managed WAF rule ID to comma-delimited string of ruleset rule IDs. Example:
rules = { "efb7b8c949ac4650a09736fc376e9aee" = "5de7edfa648c4d6891dc3e7f84534ffa,e3a567afc347477d9702d9047e97d760" }
- ruleset String
- Which ruleset ID to target.
- rulesets List<String>
- List of managed WAF rule IDs to target. Only valid when the
"action"
is set to skip - security
Level String - Control options for the Security Level feature from the Security app.
- serve
Stale Property Map - List of serve stale parameters to apply to the request.
- server
Side BooleanExcludes - Turn on or off the Server Side Excludes feature of the Cloudflare Scrape Shield app.
- sni Property Map
- List of properties to manange Server Name Indication.
- ssl String
- Control options for the SSL feature of the Edge Certificates tab in the Cloudflare SSL/TLS app.
- status
Code Number - HTTP status code of the custom error response
- sxg Boolean
- Turn on or off the SXG feature.
- uri Property Map
- List of URI properties to configure for the ruleset rule when performing URL rewrite transformations.
GetRulesetsRulesetRuleActionParametersAutominify
GetRulesetsRulesetRuleActionParametersBrowserTtl
GetRulesetsRulesetRuleActionParametersCacheKey
- Cache
By boolDevice Type - Cache by device type. Conflicts with "custom_key.user.device_type".
- Cache
Deception boolArmor - Cache deception armor.
- Custom
Key GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key - Custom key parameters for the request.
- Ignore
Query boolStrings Order - Ignore query strings order.
- Cache
By boolDevice Type - Cache by device type. Conflicts with "custom_key.user.device_type".
- Cache
Deception boolArmor - Cache deception armor.
- Custom
Key GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key - Custom key parameters for the request.
- Ignore
Query boolStrings Order - Ignore query strings order.
- cache
By BooleanDevice Type - Cache by device type. Conflicts with "custom_key.user.device_type".
- cache
Deception BooleanArmor - Cache deception armor.
- custom
Key GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key - Custom key parameters for the request.
- ignore
Query BooleanStrings Order - Ignore query strings order.
- cache
By booleanDevice Type - Cache by device type. Conflicts with "custom_key.user.device_type".
- cache
Deception booleanArmor - Cache deception armor.
- custom
Key GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key - Custom key parameters for the request.
- ignore
Query booleanStrings Order - Ignore query strings order.
- cache_
by_ booldevice_ type - Cache by device type. Conflicts with "custom_key.user.device_type".
- cache_
deception_ boolarmor - Cache deception armor.
- custom_
key GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key - Custom key parameters for the request.
- ignore_
query_ boolstrings_ order - Ignore query strings order.
- cache
By BooleanDevice Type - Cache by device type. Conflicts with "custom_key.user.device_type".
- cache
Deception BooleanArmor - Cache deception armor.
- custom
Key Property Map - Custom key parameters for the request.
- ignore
Query BooleanStrings Order - Ignore query strings order.
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKey
- Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Cookie - Cookie parameters for the custom key.
- Header
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Header - Header parameters for the custom key.
- Host
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Host - Host parameters for the custom key.
- Query
String GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key Query String - Query string parameters for the custom key.
- User
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key User - User parameters for the custom key.
- Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Cookie - Cookie parameters for the custom key.
- Header
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Header - Header parameters for the custom key.
- Host
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Host - Host parameters for the custom key.
- Query
String GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key Query String - Query string parameters for the custom key.
- User
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key User - User parameters for the custom key.
- Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Cookie - Cookie parameters for the custom key.
- header
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Header - Header parameters for the custom key.
- host
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Host - Host parameters for the custom key.
- query
String GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key Query String - Query string parameters for the custom key.
- user
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key User - User parameters for the custom key.
- Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Cookie - Cookie parameters for the custom key.
- header
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Header - Header parameters for the custom key.
- host
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Host - Host parameters for the custom key.
- query
String GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key Query String - Query string parameters for the custom key.
- user
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key User - User parameters for the custom key.
- Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Cookie - Cookie parameters for the custom key.
- header
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Header - Header parameters for the custom key.
- host
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key Host - Host parameters for the custom key.
- query_
string GetRulesets Ruleset Rule Action Parameters Cache Key Custom Key Query String - Query string parameters for the custom key.
- user
Get
Rulesets Ruleset Rule Action Parameters Cache Key Custom Key User - User parameters for the custom key.
- Property Map
- Cookie parameters for the custom key.
- header Property Map
- Header parameters for the custom key.
- host Property Map
- Host parameters for the custom key.
- query
String Property Map - Query string parameters for the custom key.
- user Property Map
- User parameters for the custom key.
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKeyCookie
- Check
Presences List<string> - List of cookies to check for presence in the custom key.
- Includes List<string>
- List of cookies to include in the custom key.
- Check
Presences []string - List of cookies to check for presence in the custom key.
- Includes []string
- List of cookies to include in the custom key.
- check
Presences List<String> - List of cookies to check for presence in the custom key.
- includes List<String>
- List of cookies to include in the custom key.
- check
Presences string[] - List of cookies to check for presence in the custom key.
- includes string[]
- List of cookies to include in the custom key.
- check_
presences Sequence[str] - List of cookies to check for presence in the custom key.
- includes Sequence[str]
- List of cookies to include in the custom key.
- check
Presences List<String> - List of cookies to check for presence in the custom key.
- includes List<String>
- List of cookies to include in the custom key.
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKeyHeader
- Check
Presences List<string> - List of headers to check for presence in the custom key.
- Contains
Dictionary<string, Immutable
Array<string>> - Dictionary of headers mapping to lists of values to check for presence in the custom key.
- Exclude
Origin bool - Exclude the origin header from the custom key.
- Includes List<string>
- List of headers to include in the custom key.
- Check
Presences []string - List of headers to check for presence in the custom key.
- Contains map[string][]string
- Dictionary of headers mapping to lists of values to check for presence in the custom key.
- Exclude
Origin bool - Exclude the origin header from the custom key.
- Includes []string
- List of headers to include in the custom key.
- check
Presences List<String> - List of headers to check for presence in the custom key.
- contains Map<String,List<String>>
- Dictionary of headers mapping to lists of values to check for presence in the custom key.
- exclude
Origin Boolean - Exclude the origin header from the custom key.
- includes List<String>
- List of headers to include in the custom key.
- check
Presences string[] - List of headers to check for presence in the custom key.
- contains {[key: string]: string[]}
- Dictionary of headers mapping to lists of values to check for presence in the custom key.
- exclude
Origin boolean - Exclude the origin header from the custom key.
- includes string[]
- List of headers to include in the custom key.
- check_
presences Sequence[str] - List of headers to check for presence in the custom key.
- contains Mapping[str, Sequence[str]]
- Dictionary of headers mapping to lists of values to check for presence in the custom key.
- exclude_
origin bool - Exclude the origin header from the custom key.
- includes Sequence[str]
- List of headers to include in the custom key.
- check
Presences List<String> - List of headers to check for presence in the custom key.
- contains Map<List<String>>
- Dictionary of headers mapping to lists of values to check for presence in the custom key.
- exclude
Origin Boolean - Exclude the origin header from the custom key.
- includes List<String>
- List of headers to include in the custom key.
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKeyHost
- Resolved bool
- Resolve hostname to IP address.
- Resolved bool
- Resolve hostname to IP address.
- resolved Boolean
- Resolve hostname to IP address.
- resolved boolean
- Resolve hostname to IP address.
- resolved bool
- Resolve hostname to IP address.
- resolved Boolean
- Resolve hostname to IP address.
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKeyQueryString
GetRulesetsRulesetRuleActionParametersCacheKeyCustomKeyUser
- Device
Type bool - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- Geo bool
- Add geo data to the custom key.
- Lang bool
- Add language data to the custom key.
- Device
Type bool - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- Geo bool
- Add geo data to the custom key.
- Lang bool
- Add language data to the custom key.
- device
Type Boolean - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- geo Boolean
- Add geo data to the custom key.
- lang Boolean
- Add language data to the custom key.
- device
Type boolean - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- geo boolean
- Add geo data to the custom key.
- lang boolean
- Add language data to the custom key.
- device_
type bool - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- geo bool
- Add geo data to the custom key.
- lang bool
- Add language data to the custom key.
- device
Type Boolean - Add device type to the custom key. Conflicts with "cache_key.cache_by_device_type".
- geo Boolean
- Add geo data to the custom key.
- lang Boolean
- Add language data to the custom key.
GetRulesetsRulesetRuleActionParametersCacheReserve
- Eligible bool
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- Minimum
File intSize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
- Eligible bool
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- Minimum
File intSize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
- eligible Boolean
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- minimum
File IntegerSize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
- eligible boolean
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- minimum
File numberSize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
- eligible bool
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- minimum_
file_ intsize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
- eligible Boolean
- Determines whether Cloudflare will write the eligible resource to cache reserve.
- minimum
File NumberSize - The minimum file size, in bytes, eligible for storage in cache reserve. If omitted and "eligible" is true, Cloudflare will use 0 bytes by default.
GetRulesetsRulesetRuleActionParametersEdgeTtl
- Mode string
- Mode of the edge TTL.
- Default int
- Default edge TTL
- Status
Code List<GetTtls Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl> - Edge TTL for the status codes.
- Mode string
- Mode of the edge TTL.
- Default int
- Default edge TTL
- Status
Code []GetTtls Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl - Edge TTL for the status codes.
- mode String
- Mode of the edge TTL.
- default_ Integer
- Default edge TTL
- status
Code List<GetTtls Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl> - Edge TTL for the status codes.
- mode string
- Mode of the edge TTL.
- default number
- Default edge TTL
- status
Code GetTtls Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl[] - Edge TTL for the status codes.
- mode str
- Mode of the edge TTL.
- default int
- Default edge TTL
- status_
code_ Sequence[Getttls Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl] - Edge TTL for the status codes.
- mode String
- Mode of the edge TTL.
- default Number
- Default edge TTL
- status
Code List<Property Map>Ttls - Edge TTL for the status codes.
GetRulesetsRulesetRuleActionParametersEdgeTtlStatusCodeTtl
- Value int
- Status code edge TTL value.
- Status
Code int - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- Status
Code List<GetRanges Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl Status Code Range> - Status code range for which the edge TTL is applied. Conflicts with "status_code".
- Value int
- Status code edge TTL value.
- Status
Code int - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- Status
Code []GetRanges Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl Status Code Range - Status code range for which the edge TTL is applied. Conflicts with "status_code".
- value Integer
- Status code edge TTL value.
- status
Code Integer - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- status
Code List<GetRanges Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl Status Code Range> - Status code range for which the edge TTL is applied. Conflicts with "status_code".
- value number
- Status code edge TTL value.
- status
Code number - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- status
Code GetRanges Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl Status Code Range[] - Status code range for which the edge TTL is applied. Conflicts with "status_code".
- value int
- Status code edge TTL value.
- status_
code int - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- status_
code_ Sequence[Getranges Rulesets Ruleset Rule Action Parameters Edge Ttl Status Code Ttl Status Code Range] - Status code range for which the edge TTL is applied. Conflicts with "status_code".
- value Number
- Status code edge TTL value.
- status
Code Number - Status code for which the edge TTL is applied. Conflicts with "status_code_range".
- status
Code List<Property Map>Ranges - Status code range for which the edge TTL is applied. Conflicts with "status_code".
GetRulesetsRulesetRuleActionParametersEdgeTtlStatusCodeTtlStatusCodeRange
GetRulesetsRulesetRuleActionParametersFromList
GetRulesetsRulesetRuleActionParametersFromValue
- Preserve
Query boolString - Preserve query string for redirect URL.
- Status
Code int - Status code for redirect.
- Target
Url GetRulesets Ruleset Rule Action Parameters From Value Target Url - Target URL for redirect.
- Preserve
Query boolString - Preserve query string for redirect URL.
- Status
Code int - Status code for redirect.
- Target
Url GetRulesets Ruleset Rule Action Parameters From Value Target Url - Target URL for redirect.
- preserve
Query BooleanString - Preserve query string for redirect URL.
- status
Code Integer - Status code for redirect.
- target
Url GetRulesets Ruleset Rule Action Parameters From Value Target Url - Target URL for redirect.
- preserve
Query booleanString - Preserve query string for redirect URL.
- status
Code number - Status code for redirect.
- target
Url GetRulesets Ruleset Rule Action Parameters From Value Target Url - Target URL for redirect.
- preserve_
query_ boolstring - Preserve query string for redirect URL.
- status_
code int - Status code for redirect.
- target_
url GetRulesets Ruleset Rule Action Parameters From Value Target Url - Target URL for redirect.
- preserve
Query BooleanString - Preserve query string for redirect URL.
- status
Code Number - Status code for redirect.
- target
Url Property Map - Target URL for redirect.
GetRulesetsRulesetRuleActionParametersFromValueTargetUrl
- Expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - Value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- Expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - Value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression String
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - value String
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression str
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - value str
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression String
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - value String
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
GetRulesetsRulesetRuleActionParametersHeader
- Expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - Name string
- Name of the HTTP request header to target.
- Operation string
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- Value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- Expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - Name string
- Name of the HTTP request header to target.
- Operation string
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- Value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression String
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - name String
- Name of the HTTP request header to target.
- operation String
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- value String
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression string
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - name string
- Name of the HTTP request header to target.
- operation string
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- value string
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression str
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - name str
- Name of the HTTP request header to target.
- operation str
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- value str
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
- expression String
- Use a value dynamically determined by the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions. Conflicts with
"value"
. - name String
- Name of the HTTP request header to target.
- operation String
- Action to perform on the HTTP request header. Available values:
remove
,set
,add
- value String
- Static value to provide as the HTTP request header value. Conflicts with
"expression"
.
GetRulesetsRulesetRuleActionParametersMatchedData
- Public
Key string - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
- Public
Key string - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
- public
Key String - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
- public
Key string - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
- public_
key str - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
- public
Key String - Public key to use within WAF Ruleset payload logging to view the HTTP request parameters. You can generate a public key using the
matched-data-cli
command-line tool or in the Cloudflare dashboard
GetRulesetsRulesetRuleActionParametersOrigin
GetRulesetsRulesetRuleActionParametersOverrides
- Action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Categories
List<Get
Rulesets Ruleset Rule Action Parameters Overrides Category> - List of tag-based overrides.
- Enabled bool
- Defines if the current ruleset-level override enables or disables the ruleset.
- Rules
List<Get
Rulesets Ruleset Rule Action Parameters Overrides Rule> - List of rule-based overrides.
- Sensitivity
Level string - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- Status string
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
- Action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Categories
[]Get
Rulesets Ruleset Rule Action Parameters Overrides Category - List of tag-based overrides.
- Enabled bool
- Defines if the current ruleset-level override enables or disables the ruleset.
- Rules
[]Get
Rulesets Ruleset Rule Action Parameters Overrides Rule - List of rule-based overrides.
- Sensitivity
Level string - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- Status string
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
- action String
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- categories
List<Get
Rulesets Ruleset Rule Action Parameters Overrides Category> - List of tag-based overrides.
- enabled Boolean
- Defines if the current ruleset-level override enables or disables the ruleset.
- rules
List<Get
Rulesets Ruleset Rule Action Parameters Overrides Rule> - List of rule-based overrides.
- sensitivity
Level String - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- status String
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
- action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- categories
Get
Rulesets Ruleset Rule Action Parameters Overrides Category[] - List of tag-based overrides.
- enabled boolean
- Defines if the current ruleset-level override enables or disables the ruleset.
- rules
Get
Rulesets Ruleset Rule Action Parameters Overrides Rule[] - List of rule-based overrides.
- sensitivity
Level string - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- status string
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
- action str
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- categories
Sequence[Get
Rulesets Ruleset Rule Action Parameters Overrides Category] - List of tag-based overrides.
- enabled bool
- Defines if the current ruleset-level override enables or disables the ruleset.
- rules
Sequence[Get
Rulesets Ruleset Rule Action Parameters Overrides Rule] - List of rule-based overrides.
- sensitivity_
level str - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- status str
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
- action String
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- categories List<Property Map>
- List of tag-based overrides.
- enabled Boolean
- Defines if the current ruleset-level override enables or disables the ruleset.
- rules List<Property Map>
- List of rule-based overrides.
- sensitivity
Level String - Sensitivity level to override for all ruleset rules. Available values:
default
,medium
,low
,eoff
- status String
- Defines if the current ruleset-level override enables or disables the ruleset. Available values:
enabled
,disabled
GetRulesetsRulesetRuleActionParametersOverridesCategory
- Action string
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Category string
- Tag name to apply the ruleset rule override to.
- Enabled bool
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- Status string
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
- Action string
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Category string
- Tag name to apply the ruleset rule override to.
- Enabled bool
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- Status string
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
- action String
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- category String
- Tag name to apply the ruleset rule override to.
- enabled Boolean
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- status String
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
- action string
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- category string
- Tag name to apply the ruleset rule override to.
- enabled boolean
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- status string
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
- action str
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- category str
- Tag name to apply the ruleset rule override to.
- enabled bool
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- status str
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
- action String
- Action to perform in the tag-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- category String
- Tag name to apply the ruleset rule override to.
- enabled Boolean
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag.
- status String
- Defines if the current tag-level override enables or disables the ruleset rules with the specified tag. Available values:
enabled
,disabled
GetRulesetsRulesetRuleActionParametersOverridesRule
- Action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Enabled bool
- Defines if the current rule-level override enables or disables the rule.
- Id string
- The ID of this resource.
- Score
Threshold int - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- Sensitivity
Level string - Sensitivity level for a ruleset rule override.
- Status string
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
- Action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- Enabled bool
- Defines if the current rule-level override enables or disables the rule.
- Id string
- The ID of this resource.
- Score
Threshold int - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- Sensitivity
Level string - Sensitivity level for a ruleset rule override.
- Status string
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
- action String
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- enabled Boolean
- Defines if the current rule-level override enables or disables the rule.
- id String
- The ID of this resource.
- score
Threshold Integer - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- sensitivity
Level String - Sensitivity level for a ruleset rule override.
- status String
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
- action string
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- enabled boolean
- Defines if the current rule-level override enables or disables the rule.
- id string
- The ID of this resource.
- score
Threshold number - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- sensitivity
Level string - Sensitivity level for a ruleset rule override.
- status string
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
- action str
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- enabled bool
- Defines if the current rule-level override enables or disables the rule.
- id str
- The ID of this resource.
- score_
threshold int - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- sensitivity_
level str - Sensitivity level for a ruleset rule override.
- status str
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
- action String
- Action to perform in the rule-level override. Available values:
block
,challenge
,compress_response
,ddos_dynamic
,ddos_mitigation
,execute
,force_connection_close
,js_challenge
,log
,log_custom_field
,managed_challenge
,redirect
,rewrite
,route
,score
,serve_error
,set_cache_settings
,set_config
,skip
- enabled Boolean
- Defines if the current rule-level override enables or disables the rule.
- id String
- The ID of this resource.
- score
Threshold Number - Anomaly score threshold to apply in the ruleset rule override. Only applicable to modsecurity-based rulesets.
- sensitivity
Level String - Sensitivity level for a ruleset rule override.
- status String
- Defines if the current rule-level override enables or disables the rule. Available values:
enabled
,disabled
GetRulesetsRulesetRuleActionParametersResponse
- Content string
- Body content to include in the response.
- Content
Type string - HTTP content type to send in the response.
- Status
Code int - HTTP status code to send in the response.
- Content string
- Body content to include in the response.
- Content
Type string - HTTP content type to send in the response.
- Status
Code int - HTTP status code to send in the response.
- content String
- Body content to include in the response.
- content
Type String - HTTP content type to send in the response.
- status
Code Integer - HTTP status code to send in the response.
- content string
- Body content to include in the response.
- content
Type string - HTTP content type to send in the response.
- status
Code number - HTTP status code to send in the response.
- content str
- Body content to include in the response.
- content_
type str - HTTP content type to send in the response.
- status_
code int - HTTP status code to send in the response.
- content String
- Body content to include in the response.
- content
Type String - HTTP content type to send in the response.
- status
Code Number - HTTP status code to send in the response.
GetRulesetsRulesetRuleActionParametersServeStale
- Disable
Stale boolWhile Updating - Disable stale while updating.
- Disable
Stale boolWhile Updating - Disable stale while updating.
- disable
Stale BooleanWhile Updating - Disable stale while updating.
- disable
Stale booleanWhile Updating - Disable stale while updating.
- disable_
stale_ boolwhile_ updating - Disable stale while updating.
- disable
Stale BooleanWhile Updating - Disable stale while updating.
GetRulesetsRulesetRuleActionParametersSni
- Value string
- Value to define for SNI.
- Value string
- Value to define for SNI.
- value String
- Value to define for SNI.
- value string
- Value to define for SNI.
- value str
- Value to define for SNI.
- value String
- Value to define for SNI.
GetRulesetsRulesetRuleActionParametersUri
- Origin bool
- Path
Get
Rulesets Ruleset Rule Action Parameters Uri Path - URI path configuration when performing a URL rewrite.
- Query
Get
Rulesets Ruleset Rule Action Parameters Uri Query - Query string configuration when performing a URL rewrite.
- Origin bool
- Path
Get
Rulesets Ruleset Rule Action Parameters Uri Path - URI path configuration when performing a URL rewrite.
- Query
Get
Rulesets Ruleset Rule Action Parameters Uri Query - Query string configuration when performing a URL rewrite.
- origin Boolean
- path
Get
Rulesets Ruleset Rule Action Parameters Uri Path - URI path configuration when performing a URL rewrite.
- query
Get
Rulesets Ruleset Rule Action Parameters Uri Query - Query string configuration when performing a URL rewrite.
- origin boolean
- path
Get
Rulesets Ruleset Rule Action Parameters Uri Path - URI path configuration when performing a URL rewrite.
- query
Get
Rulesets Ruleset Rule Action Parameters Uri Query - Query string configuration when performing a URL rewrite.
- origin bool
- path
Get
Rulesets Ruleset Rule Action Parameters Uri Path - URI path configuration when performing a URL rewrite.
- query
Get
Rulesets Ruleset Rule Action Parameters Uri Query - Query string configuration when performing a URL rewrite.
- origin Boolean
- path Property Map
- URI path configuration when performing a URL rewrite.
- query Property Map
- Query string configuration when performing a URL rewrite.
GetRulesetsRulesetRuleActionParametersUriPath
- Expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Value string
- Static string value of the updated URI path or query string component.
- Expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Value string
- Static string value of the updated URI path or query string component.
- expression String
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value String
- Static string value of the updated URI path or query string component.
- expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value string
- Static string value of the updated URI path or query string component.
- expression str
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value str
- Static string value of the updated URI path or query string component.
- expression String
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value String
- Static string value of the updated URI path or query string component.
GetRulesetsRulesetRuleActionParametersUriQuery
- Expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Value string
- Static string value of the updated URI path or query string component.
- Expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- Value string
- Static string value of the updated URI path or query string component.
- expression String
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value String
- Static string value of the updated URI path or query string component.
- expression string
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value string
- Static string value of the updated URI path or query string component.
- expression str
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value str
- Static string value of the updated URI path or query string component.
- expression String
- Expression that defines the updated (dynamic) value of the URI path or query string component. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions
- value String
- Static string value of the updated URI path or query string component.
GetRulesetsRulesetRuleExposedCredentialCheck
- Password
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- Username
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
- Password
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- Username
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
- password
Expression String - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- username
Expression String - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
- password
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- username
Expression string - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
- password_
expression str - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- username_
expression str - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
- password
Expression String - Firewall Rules expression language based on Wireshark display filters for where to check for the "password" value. Refer to the Firewall Rules language.
- username
Expression String - Firewall Rules expression language based on Wireshark display filters for where to check for the "username" value. Refer to the Firewall Rules language.
GetRulesetsRulesetRuleLogging
GetRulesetsRulesetRuleRatelimit
- Characteristics List<string>
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- Counting
Expression string - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- Mitigation
Timeout int - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- Period int
- The period of time to consider (in seconds) when evaluating the request rate.
- Requests
Per intPeriod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- Requests
To boolOrigin - Whether to include requests to origin within the Rate Limiting count.
- Score
Per intPeriod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- Score
Response stringHeader Name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
- Characteristics []string
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- Counting
Expression string - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- Mitigation
Timeout int - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- Period int
- The period of time to consider (in seconds) when evaluating the request rate.
- Requests
Per intPeriod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- Requests
To boolOrigin - Whether to include requests to origin within the Rate Limiting count.
- Score
Per intPeriod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- Score
Response stringHeader Name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
- characteristics List<String>
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- counting
Expression String - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- mitigation
Timeout Integer - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- period Integer
- The period of time to consider (in seconds) when evaluating the request rate.
- requests
Per IntegerPeriod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- requests
To BooleanOrigin - Whether to include requests to origin within the Rate Limiting count.
- score
Per IntegerPeriod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- score
Response StringHeader Name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
- characteristics string[]
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- counting
Expression string - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- mitigation
Timeout number - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- period number
- The period of time to consider (in seconds) when evaluating the request rate.
- requests
Per numberPeriod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- requests
To booleanOrigin - Whether to include requests to origin within the Rate Limiting count.
- score
Per numberPeriod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- score
Response stringHeader Name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
- characteristics Sequence[str]
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- counting_
expression str - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- mitigation_
timeout int - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- period int
- The period of time to consider (in seconds) when evaluating the request rate.
- requests_
per_ intperiod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- requests_
to_ boolorigin - Whether to include requests to origin within the Rate Limiting count.
- score_
per_ intperiod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- score_
response_ strheader_ name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
- characteristics List<String>
- List of parameters that define how Cloudflare tracks the request rate for this rule.
- counting
Expression String - Criteria for counting HTTP requests to trigger the Rate Limiting action. Uses the Firewall Rules expression language based on Wireshark display filters. Refer to the Firewall Rules language documentation for all available fields, operators, and functions.
- mitigation
Timeout Number - Once the request rate is reached, the Rate Limiting rule blocks further requests for the period of time defined in this field.
- period Number
- The period of time to consider (in seconds) when evaluating the request rate.
- requests
Per NumberPeriod - The number of requests over the period of time that will trigger the Rate Limiting rule.
- requests
To BooleanOrigin - Whether to include requests to origin within the Rate Limiting count.
- score
Per NumberPeriod - The maximum aggregate score over the period of time that will trigger Rate Limiting rule.
- score
Response StringHeader Name - Name of HTTP header in the response, set by the origin server, with the score for the current request.
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflare
Terraform Provider.