* A web ACL defines a collection of rules to use to inspect and control web requests. Each rule has an action defined * (allow, block, or count) for requests that match the statement of the rule. In the web ACL, you assign a default * action to take (allow, block) for any request that does not match any of the rules. The rules in a web ACL can be a * combination of the types Rule, RuleGroup, and managed rule group. You can associate a web ACL with one * or more Amazon Web Services resources to protect. The resources can be an Amazon CloudFront distribution, an Amazon * API Gateway REST API, an Application Load Balancer, an AppSync GraphQL API, an Amazon Cognito user pool, an App * Runner service, or an Amazon Web Services Verified Access instance. *
* * @see AWS API Documentation */ @Generated("com.amazonaws:aws-java-sdk-code-generator") public class WebACL implements Serializable, Cloneable, StructuredPojo { /** ** The name of the web ACL. You cannot change the name of a web ACL after you create it. *
*/ private String name; /** *
* A unique identifier for the WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*
* The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. *
*/ private String aRN; /** *
* The action to perform if none of the Rules contained in the WebACL match.
*
* A description of the web ACL that helps with identification. *
*/ private String description; /** ** The Rule statements used to identify the web requests that you want to allow, block, or count. Each rule * includes one top-level statement that WAF uses to identify matching web requests, and parameters that govern how * WAF handles them. *
*/ private java.util.List* Defines and enables Amazon CloudWatch metrics and web request sample collection. *
*/ private VisibilityConfig visibilityConfig; /** ** The web ACL capacity units (WCUs) currently being used by this web ACL. *
** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule groups, and * web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost of each rule. * Simple rules that cost little to run use fewer WCUs than more complex rules that use more processing power. Rule * group capacity is fixed at creation, which helps users plan their web ACL WCU usage when they use a rule group. * For more information, see WAF web ACL capacity * units (WCU) in the WAF Developer Guide. *
*/ private Long capacity; /** ** The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and * contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web * ACL are prioritized after these. *
** In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run * first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the * rule groups, to determine their relative processing order. *
*/ private java.util.List* The last set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and * contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web * ACL are prioritized before these. *
** In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run * first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the * rule groups, to determine their relative processing order. *
*/ private java.util.List* Indicates whether this web ACL is managed by Firewall Manager. If true, then only Firewall Manager can delete the * web ACL or any Firewall Manager rule groups in the web ACL. *
*/ private Boolean managedByFirewallManager; /** ** The label namespace prefix for this web ACL. All labels added by rules in this web ACL have this prefix. *
** The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully * qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined and * the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* A map of custom response keys and content bodies. When you create a rule with a block action, you can send a * custom response to the web request. You define these for the web ACL, and then use them in the rules and default * actions that you define in the web ACL. *
** For information about customizing web requests and responses, see Customizing web * requests and responses in WAF in the WAF Developer Guide. *
** For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF Developer * Guide. *
*/ private java.util.Map
* Specifies how WAF should handle CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
*
* Specifies how WAF should handle challenge evaluations for rules that don't have their own
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
*
* Specifies the domains that WAF should accept in a web request token. This enables the use of tokens across * multiple protected websites. When WAF provides a token, it uses the domain of the Amazon Web Services resource * that the web ACL is protecting. If you don't specify a list of token domains, WAF accepts tokens only for the * domain of the protected resource. With a token domain list, WAF accepts the resource's host domain plus all * domains in the token domain list, including their prefixed subdomains. *
*/ private java.util.List* Specifies custom configurations for the associations between the web ACL and protected resources. *
** Use this to customize the maximum size of the request body that your protected CloudFront distributions forward * to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
** The name of the web ACL. You cannot change the name of a web ACL after you create it. *
* * @param name * The name of the web ACL. You cannot change the name of a web ACL after you create it. */ public void setName(String name) { this.name = name; } /** ** The name of the web ACL. You cannot change the name of a web ACL after you create it. *
* * @return The name of the web ACL. You cannot change the name of a web ACL after you create it. */ public String getName() { return this.name; } /** ** The name of the web ACL. You cannot change the name of a web ACL after you create it. *
* * @param name * The name of the web ACL. You cannot change the name of a web ACL after you create it. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withName(String name) { setName(name); return this; } /** *
* A unique identifier for the WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*
WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*/
public void setId(String id) {
this.id = id;
}
/**
*
* A unique identifier for the WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*
WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*/
public String getId() {
return this.id;
}
/**
*
* A unique identifier for the WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
*
WebACL. This ID is returned in the responses to create and list
* commands. You use this ID to do things like get, update, and delete a WebACL.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withId(String id) {
setId(id);
return this;
}
/**
* * The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. *
* * @param aRN * The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. */ public void setARN(String aRN) { this.aRN = aRN; } /** ** The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. *
* * @return The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. */ public String getARN() { return this.aRN; } /** ** The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. *
* * @param aRN * The Amazon Resource Name (ARN) of the web ACL that you want to associate with the resource. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withARN(String aRN) { setARN(aRN); return this; } /** *
* The action to perform if none of the Rules contained in the WebACL match.
*
Rules contained in the WebACL match.
*/
public void setDefaultAction(DefaultAction defaultAction) {
this.defaultAction = defaultAction;
}
/**
*
* The action to perform if none of the Rules contained in the WebACL match.
*
Rules contained in the WebACL match.
*/
public DefaultAction getDefaultAction() {
return this.defaultAction;
}
/**
*
* The action to perform if none of the Rules contained in the WebACL match.
*
Rules contained in the WebACL match.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withDefaultAction(DefaultAction defaultAction) {
setDefaultAction(defaultAction);
return this;
}
/**
* * A description of the web ACL that helps with identification. *
* * @param description * A description of the web ACL that helps with identification. */ public void setDescription(String description) { this.description = description; } /** ** A description of the web ACL that helps with identification. *
* * @return A description of the web ACL that helps with identification. */ public String getDescription() { return this.description; } /** ** A description of the web ACL that helps with identification. *
* * @param description * A description of the web ACL that helps with identification. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withDescription(String description) { setDescription(description); return this; } /** ** The Rule statements used to identify the web requests that you want to allow, block, or count. Each rule * includes one top-level statement that WAF uses to identify matching web requests, and parameters that govern how * WAF handles them. *
* * @return The Rule statements used to identify the web requests that you want to allow, block, or count. * Each rule includes one top-level statement that WAF uses to identify matching web requests, and * parameters that govern how WAF handles them. */ public java.util.List* The Rule statements used to identify the web requests that you want to allow, block, or count. Each rule * includes one top-level statement that WAF uses to identify matching web requests, and parameters that govern how * WAF handles them. *
* * @param rules * The Rule statements used to identify the web requests that you want to allow, block, or count. Each * rule includes one top-level statement that WAF uses to identify matching web requests, and parameters that * govern how WAF handles them. */ public void setRules(java.util.Collection* The Rule statements used to identify the web requests that you want to allow, block, or count. Each rule * includes one top-level statement that WAF uses to identify matching web requests, and parameters that govern how * WAF handles them. *
** NOTE: This method appends the values to the existing list (if any). Use * {@link #setRules(java.util.Collection)} or {@link #withRules(java.util.Collection)} if you want to override the * existing values. *
* * @param rules * The Rule statements used to identify the web requests that you want to allow, block, or count. Each * rule includes one top-level statement that WAF uses to identify matching web requests, and parameters that * govern how WAF handles them. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withRules(Rule... rules) { if (this.rules == null) { setRules(new java.util.ArrayList* The Rule statements used to identify the web requests that you want to allow, block, or count. Each rule * includes one top-level statement that WAF uses to identify matching web requests, and parameters that govern how * WAF handles them. *
* * @param rules * The Rule statements used to identify the web requests that you want to allow, block, or count. Each * rule includes one top-level statement that WAF uses to identify matching web requests, and parameters that * govern how WAF handles them. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withRules(java.util.Collection* Defines and enables Amazon CloudWatch metrics and web request sample collection. *
* * @param visibilityConfig * Defines and enables Amazon CloudWatch metrics and web request sample collection. */ public void setVisibilityConfig(VisibilityConfig visibilityConfig) { this.visibilityConfig = visibilityConfig; } /** ** Defines and enables Amazon CloudWatch metrics and web request sample collection. *
* * @return Defines and enables Amazon CloudWatch metrics and web request sample collection. */ public VisibilityConfig getVisibilityConfig() { return this.visibilityConfig; } /** ** Defines and enables Amazon CloudWatch metrics and web request sample collection. *
* * @param visibilityConfig * Defines and enables Amazon CloudWatch metrics and web request sample collection. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withVisibilityConfig(VisibilityConfig visibilityConfig) { setVisibilityConfig(visibilityConfig); return this; } /** ** The web ACL capacity units (WCUs) currently being used by this web ACL. *
** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule groups, and * web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost of each rule. * Simple rules that cost little to run use fewer WCUs than more complex rules that use more processing power. Rule * group capacity is fixed at creation, which helps users plan their web ACL WCU usage when they use a rule group. * For more information, see WAF web ACL capacity * units (WCU) in the WAF Developer Guide. *
* * @param capacity * The web ACL capacity units (WCUs) currently being used by this web ACL. ** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule * groups, and web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost * of each rule. Simple rules that cost little to run use fewer WCUs than more complex rules that use more * processing power. Rule group capacity is fixed at creation, which helps users plan their web ACL WCU usage * when they use a rule group. For more information, see WAF web ACL * capacity units (WCU) in the WAF Developer Guide. */ public void setCapacity(Long capacity) { this.capacity = capacity; } /** *
* The web ACL capacity units (WCUs) currently being used by this web ACL. *
** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule groups, and * web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost of each rule. * Simple rules that cost little to run use fewer WCUs than more complex rules that use more processing power. Rule * group capacity is fixed at creation, which helps users plan their web ACL WCU usage when they use a rule group. * For more information, see WAF web ACL capacity * units (WCU) in the WAF Developer Guide. *
* * @return The web ACL capacity units (WCUs) currently being used by this web ACL. ** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule * groups, and web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative * cost of each rule. Simple rules that cost little to run use fewer WCUs than more complex rules that use * more processing power. Rule group capacity is fixed at creation, which helps users plan their web ACL WCU * usage when they use a rule group. For more information, see WAF web ACL * capacity units (WCU) in the WAF Developer Guide. */ public Long getCapacity() { return this.capacity; } /** *
* The web ACL capacity units (WCUs) currently being used by this web ACL. *
** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule groups, and * web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost of each rule. * Simple rules that cost little to run use fewer WCUs than more complex rules that use more processing power. Rule * group capacity is fixed at creation, which helps users plan their web ACL WCU usage when they use a rule group. * For more information, see WAF web ACL capacity * units (WCU) in the WAF Developer Guide. *
* * @param capacity * The web ACL capacity units (WCUs) currently being used by this web ACL. ** WAF uses WCUs to calculate and control the operating resources that are used to run your rules, rule * groups, and web ACLs. WAF calculates capacity differently for each rule type, to reflect the relative cost * of each rule. Simple rules that cost little to run use fewer WCUs than more complex rules that use more * processing power. Rule group capacity is fixed at creation, which helps users plan their web ACL WCU usage * when they use a rule group. For more information, see WAF web ACL * capacity units (WCU) in the WAF Developer Guide. * @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withCapacity(Long capacity) { setCapacity(capacity); return this; } /** *
* The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and * contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web * ACL are prioritized after these. *
** In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run * first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the * rule groups, to determine their relative processing order. *
* * @return The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF * policy and contains only rule group references. You can't alter these. Any rules and rule groups that you * define for the web ACL are prioritized after these. *
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
*/
public java.util.List
* The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized after these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
*/
public void setPreProcessFirewallManagerRuleGroups(java.util.Collection
* The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized after these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* NOTE: This method appends the values to the existing list (if any). Use
* {@link #setPreProcessFirewallManagerRuleGroups(java.util.Collection)} or
* {@link #withPreProcessFirewallManagerRuleGroups(java.util.Collection)} if you want to override the existing
* values.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withPreProcessFirewallManagerRuleGroups(FirewallManagerRuleGroup... preProcessFirewallManagerRuleGroups) {
if (this.preProcessFirewallManagerRuleGroups == null) {
setPreProcessFirewallManagerRuleGroups(new java.util.ArrayList
* The first set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized after these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withPreProcessFirewallManagerRuleGroups(java.util.Collection
* The last set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized before these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
*/
public java.util.List
* The last set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized before these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
*/
public void setPostProcessFirewallManagerRuleGroups(java.util.Collection
* The last set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized before these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* NOTE: This method appends the values to the existing list (if any). Use
* {@link #setPostProcessFirewallManagerRuleGroups(java.util.Collection)} or
* {@link #withPostProcessFirewallManagerRuleGroups(java.util.Collection)} if you want to override the existing
* values.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withPostProcessFirewallManagerRuleGroups(FirewallManagerRuleGroup... postProcessFirewallManagerRuleGroups) {
if (this.postProcessFirewallManagerRuleGroups == null) {
setPostProcessFirewallManagerRuleGroups(new java.util.ArrayList
* The last set of rules for WAF to process in the web ACL. This is defined in an Firewall Manager WAF policy and
* contains only rule group references. You can't alter these. Any rules and rule groups that you define for the web
* ACL are prioritized before these.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to run
* first in the web ACL and a set of rule groups to run last. Within each set, the administrator prioritizes the
* rule groups, to determine their relative processing order.
*
* In the Firewall Manager WAF policy, the Firewall Manager administrator can define a set of rule groups to
* run first in the web ACL and a set of rule groups to run last. Within each set, the administrator
* prioritizes the rule groups, to determine their relative processing order.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withPostProcessFirewallManagerRuleGroups(java.util.Collection
* Indicates whether this web ACL is managed by Firewall Manager. If true, then only Firewall Manager can delete the
* web ACL or any Firewall Manager rule groups in the web ACL.
*
* Indicates whether this web ACL is managed by Firewall Manager. If true, then only Firewall Manager can delete the
* web ACL or any Firewall Manager rule groups in the web ACL.
*
* Indicates whether this web ACL is managed by Firewall Manager. If true, then only Firewall Manager can delete the
* web ACL or any Firewall Manager rule groups in the web ACL.
*
* Indicates whether this web ACL is managed by Firewall Manager. If true, then only Firewall Manager can delete the
* web ACL or any Firewall Manager rule groups in the web ACL.
*
* The label namespace prefix for this web ACL. All labels added by rules in this web ACL have this prefix.
*
* The syntax for the label namespace prefix for a web ACL is the following:
*
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully
* qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined and
* the label from the rule, separated by a colon:
*
*
*
*
* @param labelNamespace
* The label namespace prefix for this web ACL. All labels added by rules in this web ACL have this prefix.
* awswaf:<account ID>:webacl:<web ACL name>:
* <label namespace>:<label from rule>
*
* The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully * qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined * and the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* The label namespace prefix for this web ACL. All labels added by rules in this web ACL have this prefix. *
** The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully * qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined and * the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A * fully qualified label is made up of the label namespace from the rule group or web ACL where the rule is * defined and the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* The label namespace prefix for this web ACL. All labels added by rules in this web ACL have this prefix. *
** The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully * qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined and * the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* The syntax for the label namespace prefix for a web ACL is the following: *
*
* awswaf:<account ID>:webacl:<web ACL name>:
*
* When a rule with a label matches a web request, WAF adds the fully qualified label to the request. A fully * qualified label is made up of the label namespace from the rule group or web ACL where the rule is defined * and the label from the rule, separated by a colon: *
*
* <label namespace>:<label from rule>
*
* A map of custom response keys and content bodies. When you create a rule with a block action, you can send a * custom response to the web request. You define these for the web ACL, and then use them in the rules and default * actions that you define in the web ACL. *
** For information about customizing web requests and responses, see Customizing web * requests and responses in WAF in the WAF Developer Guide. *
** For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF Developer * Guide. *
* * @return A map of custom response keys and content bodies. When you create a rule with a block action, you can * send a custom response to the web request. You define these for the web ACL, and then use them in the * rules and default actions that you define in the web ACL. ** For information about customizing web requests and responses, see Customizing * web requests and responses in WAF in the WAF Developer Guide. *
*
* For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF
* Developer Guide.
*/
public java.util.Map
* A map of custom response keys and content bodies. When you create a rule with a block action, you can send a
* custom response to the web request. You define these for the web ACL, and then use them in the rules and default
* actions that you define in the web ACL.
*
* For information about customizing web requests and responses, see Customizing web
* requests and responses in WAF in the WAF Developer Guide.
*
* For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF Developer
* Guide.
*
* For information about customizing web requests and responses, see Customizing * web requests and responses in WAF in the WAF Developer Guide. *
*
* For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF
* Developer Guide.
*/
public void setCustomResponseBodies(java.util.Map
* A map of custom response keys and content bodies. When you create a rule with a block action, you can send a
* custom response to the web request. You define these for the web ACL, and then use them in the rules and default
* actions that you define in the web ACL.
*
* For information about customizing web requests and responses, see Customizing web
* requests and responses in WAF in the WAF Developer Guide.
*
* For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF Developer
* Guide.
*
* For information about customizing web requests and responses, see Customizing * web requests and responses in WAF in the WAF Developer Guide. *
*
* For information about the limits on count and size for custom request and response settings, see WAF quotas in the WAF
* Developer Guide.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withCustomResponseBodies(java.util.Map
* Specifies how WAF should handle
* Specifies how WAF should handle
* Specifies how WAF should handle
* Specifies how WAF should handle challenge evaluations for rules that don't have their own
*
* Specifies how WAF should handle challenge evaluations for rules that don't have their own
*
* Specifies how WAF should handle challenge evaluations for rules that don't have their own
*
* Specifies the domains that WAF should accept in a web request token. This enables the use of tokens across
* multiple protected websites. When WAF provides a token, it uses the domain of the Amazon Web Services resource
* that the web ACL is protecting. If you don't specify a list of token domains, WAF accepts tokens only for the
* domain of the protected resource. With a token domain list, WAF accepts the resource's host domain plus all
* domains in the token domain list, including their prefixed subdomains.
*
* Specifies the domains that WAF should accept in a web request token. This enables the use of tokens across
* multiple protected websites. When WAF provides a token, it uses the domain of the Amazon Web Services resource
* that the web ACL is protecting. If you don't specify a list of token domains, WAF accepts tokens only for the
* domain of the protected resource. With a token domain list, WAF accepts the resource's host domain plus all
* domains in the token domain list, including their prefixed subdomains.
*
* Specifies the domains that WAF should accept in a web request token. This enables the use of tokens across
* multiple protected websites. When WAF provides a token, it uses the domain of the Amazon Web Services resource
* that the web ACL is protecting. If you don't specify a list of token domains, WAF accepts tokens only for the
* domain of the protected resource. With a token domain list, WAF accepts the resource's host domain plus all
* domains in the token domain list, including their prefixed subdomains.
*
* NOTE: This method appends the values to the existing list (if any). Use
* {@link #setTokenDomains(java.util.Collection)} or {@link #withTokenDomains(java.util.Collection)} if you want to
* override the existing values.
*
* Specifies the domains that WAF should accept in a web request token. This enables the use of tokens across
* multiple protected websites. When WAF provides a token, it uses the domain of the Amazon Web Services resource
* that the web ACL is protecting. If you don't specify a list of token domains, WAF accepts tokens only for the
* domain of the protected resource. With a token domain list, WAF accepts the resource's host domain plus all
* domains in the token domain list, including their prefixed subdomains.
*
* Specifies custom configurations for the associations between the web ACL and protected resources.
*
* Use this to customize the maximum size of the request body that your protected CloudFront distributions forward
* to WAF for inspection. The default is 16 KB (16,384 kilobytes).
*
* You are charged additional fees when your protected resources forward body sizes that are larger than the
* default. For more information, see WAF Pricing.
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
*/
public void setCaptchaConfig(CaptchaConfig captchaConfig) {
this.captchaConfig = captchaConfig;
}
/**
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
*/
public CaptchaConfig getCaptchaConfig() {
return this.captchaConfig;
}
/**
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
* CAPTCHA evaluations for rules that don't have their own
* CaptchaConfig settings. If you don't specify this, WAF uses its default settings for
* CaptchaConfig.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withCaptchaConfig(CaptchaConfig captchaConfig) {
setCaptchaConfig(captchaConfig);
return this;
}
/**
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
*/
public void setChallengeConfig(ChallengeConfig challengeConfig) {
this.challengeConfig = challengeConfig;
}
/**
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
*/
public ChallengeConfig getChallengeConfig() {
return this.challengeConfig;
}
/**
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
* ChallengeConfig settings. If you don't specify this, WAF uses its default settings for
* ChallengeConfig.
* @return Returns a reference to this object so that method calls can be chained together.
*/
public WebACL withChallengeConfig(ChallengeConfig challengeConfig) {
setChallengeConfig(challengeConfig);
return this;
}
/**
*
* Use this to customize the maximum size of the request body that your protected CloudFront distributions * forward to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
*/ public void setAssociationConfig(AssociationConfig associationConfig) { this.associationConfig = associationConfig; } /** ** Specifies custom configurations for the associations between the web ACL and protected resources. *
** Use this to customize the maximum size of the request body that your protected CloudFront distributions forward * to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
** Use this to customize the maximum size of the request body that your protected CloudFront distributions * forward to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
*/ public AssociationConfig getAssociationConfig() { return this.associationConfig; } /** ** Specifies custom configurations for the associations between the web ACL and protected resources. *
** Use this to customize the maximum size of the request body that your protected CloudFront distributions forward * to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
** Use this to customize the maximum size of the request body that your protected CloudFront distributions * forward to WAF for inspection. The default is 16 KB (16,384 kilobytes). *
** You are charged additional fees when your protected resources forward body sizes that are larger than the * default. For more information, see WAF Pricing. *
* @return Returns a reference to this object so that method calls can be chained together. */ public WebACL withAssociationConfig(AssociationConfig associationConfig) { setAssociationConfig(associationConfig); return this; } /** * Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be * redacted from this string using a placeholder value. * * @return A string representation of this object. * * @see java.lang.Object#toString() */ @Override public String toString() { StringBuilder sb = new StringBuilder(); sb.append("{"); if (getName() != null) sb.append("Name: ").append(getName()).append(","); if (getId() != null) sb.append("Id: ").append(getId()).append(","); if (getARN() != null) sb.append("ARN: ").append(getARN()).append(","); if (getDefaultAction() != null) sb.append("DefaultAction: ").append(getDefaultAction()).append(","); if (getDescription() != null) sb.append("Description: ").append(getDescription()).append(","); if (getRules() != null) sb.append("Rules: ").append(getRules()).append(","); if (getVisibilityConfig() != null) sb.append("VisibilityConfig: ").append(getVisibilityConfig()).append(","); if (getCapacity() != null) sb.append("Capacity: ").append(getCapacity()).append(","); if (getPreProcessFirewallManagerRuleGroups() != null) sb.append("PreProcessFirewallManagerRuleGroups: ").append(getPreProcessFirewallManagerRuleGroups()).append(","); if (getPostProcessFirewallManagerRuleGroups() != null) sb.append("PostProcessFirewallManagerRuleGroups: ").append(getPostProcessFirewallManagerRuleGroups()).append(","); if (getManagedByFirewallManager() != null) sb.append("ManagedByFirewallManager: ").append(getManagedByFirewallManager()).append(","); if (getLabelNamespace() != null) sb.append("LabelNamespace: ").append(getLabelNamespace()).append(","); if (getCustomResponseBodies() != null) sb.append("CustomResponseBodies: ").append(getCustomResponseBodies()).append(","); if (getCaptchaConfig() != null) sb.append("CaptchaConfig: ").append(getCaptchaConfig()).append(","); if (getChallengeConfig() != null) sb.append("ChallengeConfig: ").append(getChallengeConfig()).append(","); if (getTokenDomains() != null) sb.append("TokenDomains: ").append(getTokenDomains()).append(","); if (getAssociationConfig() != null) sb.append("AssociationConfig: ").append(getAssociationConfig()); sb.append("}"); return sb.toString(); } @Override public boolean equals(Object obj) { if (this == obj) return true; if (obj == null) return false; if (obj instanceof WebACL == false) return false; WebACL other = (WebACL) obj; if (other.getName() == null ^ this.getName() == null) return false; if (other.getName() != null && other.getName().equals(this.getName()) == false) return false; if (other.getId() == null ^ this.getId() == null) return false; if (other.getId() != null && other.getId().equals(this.getId()) == false) return false; if (other.getARN() == null ^ this.getARN() == null) return false; if (other.getARN() != null && other.getARN().equals(this.getARN()) == false) return false; if (other.getDefaultAction() == null ^ this.getDefaultAction() == null) return false; if (other.getDefaultAction() != null && other.getDefaultAction().equals(this.getDefaultAction()) == false) return false; if (other.getDescription() == null ^ this.getDescription() == null) return false; if (other.getDescription() != null && other.getDescription().equals(this.getDescription()) == false) return false; if (other.getRules() == null ^ this.getRules() == null) return false; if (other.getRules() != null && other.getRules().equals(this.getRules()) == false) return false; if (other.getVisibilityConfig() == null ^ this.getVisibilityConfig() == null) return false; if (other.getVisibilityConfig() != null && other.getVisibilityConfig().equals(this.getVisibilityConfig()) == false) return false; if (other.getCapacity() == null ^ this.getCapacity() == null) return false; if (other.getCapacity() != null && other.getCapacity().equals(this.getCapacity()) == false) return false; if (other.getPreProcessFirewallManagerRuleGroups() == null ^ this.getPreProcessFirewallManagerRuleGroups() == null) return false; if (other.getPreProcessFirewallManagerRuleGroups() != null && other.getPreProcessFirewallManagerRuleGroups().equals(this.getPreProcessFirewallManagerRuleGroups()) == false) return false; if (other.getPostProcessFirewallManagerRuleGroups() == null ^ this.getPostProcessFirewallManagerRuleGroups() == null) return false; if (other.getPostProcessFirewallManagerRuleGroups() != null && other.getPostProcessFirewallManagerRuleGroups().equals(this.getPostProcessFirewallManagerRuleGroups()) == false) return false; if (other.getManagedByFirewallManager() == null ^ this.getManagedByFirewallManager() == null) return false; if (other.getManagedByFirewallManager() != null && other.getManagedByFirewallManager().equals(this.getManagedByFirewallManager()) == false) return false; if (other.getLabelNamespace() == null ^ this.getLabelNamespace() == null) return false; if (other.getLabelNamespace() != null && other.getLabelNamespace().equals(this.getLabelNamespace()) == false) return false; if (other.getCustomResponseBodies() == null ^ this.getCustomResponseBodies() == null) return false; if (other.getCustomResponseBodies() != null && other.getCustomResponseBodies().equals(this.getCustomResponseBodies()) == false) return false; if (other.getCaptchaConfig() == null ^ this.getCaptchaConfig() == null) return false; if (other.getCaptchaConfig() != null && other.getCaptchaConfig().equals(this.getCaptchaConfig()) == false) return false; if (other.getChallengeConfig() == null ^ this.getChallengeConfig() == null) return false; if (other.getChallengeConfig() != null && other.getChallengeConfig().equals(this.getChallengeConfig()) == false) return false; if (other.getTokenDomains() == null ^ this.getTokenDomains() == null) return false; if (other.getTokenDomains() != null && other.getTokenDomains().equals(this.getTokenDomains()) == false) return false; if (other.getAssociationConfig() == null ^ this.getAssociationConfig() == null) return false; if (other.getAssociationConfig() != null && other.getAssociationConfig().equals(this.getAssociationConfig()) == false) return false; return true; } @Override public int hashCode() { final int prime = 31; int hashCode = 1; hashCode = prime * hashCode + ((getName() == null) ? 0 : getName().hashCode()); hashCode = prime * hashCode + ((getId() == null) ? 0 : getId().hashCode()); hashCode = prime * hashCode + ((getARN() == null) ? 0 : getARN().hashCode()); hashCode = prime * hashCode + ((getDefaultAction() == null) ? 0 : getDefaultAction().hashCode()); hashCode = prime * hashCode + ((getDescription() == null) ? 0 : getDescription().hashCode()); hashCode = prime * hashCode + ((getRules() == null) ? 0 : getRules().hashCode()); hashCode = prime * hashCode + ((getVisibilityConfig() == null) ? 0 : getVisibilityConfig().hashCode()); hashCode = prime * hashCode + ((getCapacity() == null) ? 0 : getCapacity().hashCode()); hashCode = prime * hashCode + ((getPreProcessFirewallManagerRuleGroups() == null) ? 0 : getPreProcessFirewallManagerRuleGroups().hashCode()); hashCode = prime * hashCode + ((getPostProcessFirewallManagerRuleGroups() == null) ? 0 : getPostProcessFirewallManagerRuleGroups().hashCode()); hashCode = prime * hashCode + ((getManagedByFirewallManager() == null) ? 0 : getManagedByFirewallManager().hashCode()); hashCode = prime * hashCode + ((getLabelNamespace() == null) ? 0 : getLabelNamespace().hashCode()); hashCode = prime * hashCode + ((getCustomResponseBodies() == null) ? 0 : getCustomResponseBodies().hashCode()); hashCode = prime * hashCode + ((getCaptchaConfig() == null) ? 0 : getCaptchaConfig().hashCode()); hashCode = prime * hashCode + ((getChallengeConfig() == null) ? 0 : getChallengeConfig().hashCode()); hashCode = prime * hashCode + ((getTokenDomains() == null) ? 0 : getTokenDomains().hashCode()); hashCode = prime * hashCode + ((getAssociationConfig() == null) ? 0 : getAssociationConfig().hashCode()); return hashCode; } @Override public WebACL clone() { try { return (WebACL) super.clone(); } catch (CloneNotSupportedException e) { throw new IllegalStateException("Got a CloneNotSupportedException from Object.clone() " + "even though we're Cloneable!", e); } } @com.amazonaws.annotation.SdkInternalApi @Override public void marshall(ProtocolMarshaller protocolMarshaller) { com.amazonaws.services.wafv2.model.transform.WebACLMarshaller.getInstance().marshall(this, protocolMarshaller); } }