package awswafv2
// A rule statement that inspects for cross-site scripting (XSS) attacks.
//
// In XSS attacks, the attacker uses vulnerabilities in a benign website as a vehicle to inject malicious client-site scripts into other legitimate web browsers.
//
// Example:
// // The code below shows an example of how to instantiate this type.
// // The values are placeholders you should change.
// import "github.com/aws/aws-cdk-go/awscdk"
//
// var all interface{}
// var allQueryArguments interface{}
// var method interface{}
// var queryString interface{}
// var singleHeader interface{}
// var singleQueryArgument interface{}
// var uriPath interface{}
//
// xssMatchStatementProperty := &XssMatchStatementProperty{
// FieldToMatch: &FieldToMatchProperty{
// AllQueryArguments: allQueryArguments,
// Body: &BodyProperty{
// OversizeHandling: jsii.String("oversizeHandling"),
// },
// Cookies: &CookiesProperty{
// MatchPattern: &CookieMatchPatternProperty{
// All: all,
// ExcludedCookies: []*string{
// jsii.String("excludedCookies"),
// },
// IncludedCookies: []*string{
// jsii.String("includedCookies"),
// },
// },
// MatchScope: jsii.String("matchScope"),
// OversizeHandling: jsii.String("oversizeHandling"),
// },
// Headers: &HeadersProperty{
// MatchPattern: &HeaderMatchPatternProperty{
// All: all,
// ExcludedHeaders: []*string{
// jsii.String("excludedHeaders"),
// },
// IncludedHeaders: []*string{
// jsii.String("includedHeaders"),
// },
// },
// MatchScope: jsii.String("matchScope"),
// OversizeHandling: jsii.String("oversizeHandling"),
// },
// JsonBody: &JsonBodyProperty{
// MatchPattern: &JsonMatchPatternProperty{
// All: all,
// IncludedPaths: []*string{
// jsii.String("includedPaths"),
// },
// },
// MatchScope: jsii.String("matchScope"),
//
// // the properties below are optional
// InvalidFallbackBehavior: jsii.String("invalidFallbackBehavior"),
// OversizeHandling: jsii.String("oversizeHandling"),
// },
// Method: method,
// QueryString: queryString,
// SingleHeader: singleHeader,
// SingleQueryArgument: singleQueryArgument,
// UriPath: uriPath,
// },
// TextTransformations: []interface{}{
// &TextTransformationProperty{
// Priority: jsii.Number(123),
// Type: jsii.String("type"),
// },
// },
// }
//
// See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-xssmatchstatement.html
//
type CfnWebACL_XssMatchStatementProperty struct {
// The part of the web request that you want AWS WAF to inspect.
// See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-xssmatchstatement.html#cfn-wafv2-webacl-xssmatchstatement-fieldtomatch
//
FieldToMatch interface{} `field:"required" json:"fieldToMatch" yaml:"fieldToMatch"`
// Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.
//
// If you specify one or more transformations in a rule statement, AWS WAF performs all transformations on the content of the request component identified by `FieldToMatch` , starting from the lowest priority setting, before inspecting the content for a match.
// See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-xssmatchstatement.html#cfn-wafv2-webacl-xssmatchstatement-texttransformations
//
TextTransformations interface{} `field:"required" json:"textTransformations" yaml:"textTransformations"`
}