Interface CfnWebACLPropsMixin.XssMatchStatementProperty
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnWebACLPropsMixin.XssMatchStatementProperty.Jsii$Proxy
- Enclosing class:
CfnWebACLPropsMixin
@Stability(Stable)
public static interface CfnWebACLPropsMixin.XssMatchStatementProperty
extends software.amazon.jsii.JsiiSerializable
A rule statement that inspects for cross-site scripting (XSS) attacks.
In XSS attacks, the attacker uses vulnerabilities in a benign website as a vehicle to inject malicious client-site scripts into other legitimate web browsers.
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.cfnpropertymixins.services.wafv2.*;
Object all;
Object allQueryArguments;
Object method;
Object queryString;
Object singleHeader;
Object singleQueryArgument;
Object uriPath;
XssMatchStatementProperty xssMatchStatementProperty = XssMatchStatementProperty.builder()
.fieldToMatch(FieldToMatchProperty.builder()
.allQueryArguments(allQueryArguments)
.body(BodyProperty.builder()
.oversizeHandling("oversizeHandling")
.build())
.cookies(CookiesProperty.builder()
.matchPattern(CookieMatchPatternProperty.builder()
.all(all)
.excludedCookies(List.of("excludedCookies"))
.includedCookies(List.of("includedCookies"))
.build())
.matchScope("matchScope")
.oversizeHandling("oversizeHandling")
.build())
.headerOrder(HeaderOrderProperty.builder()
.oversizeHandling("oversizeHandling")
.build())
.headers(HeadersProperty.builder()
.matchPattern(HeaderMatchPatternProperty.builder()
.all(all)
.excludedHeaders(List.of("excludedHeaders"))
.includedHeaders(List.of("includedHeaders"))
.build())
.matchScope("matchScope")
.oversizeHandling("oversizeHandling")
.build())
.ja3Fingerprint(JA3FingerprintProperty.builder()
.fallbackBehavior("fallbackBehavior")
.build())
.ja4Fingerprint(JA4FingerprintProperty.builder()
.fallbackBehavior("fallbackBehavior")
.build())
.jsonBody(JsonBodyProperty.builder()
.invalidFallbackBehavior("invalidFallbackBehavior")
.matchPattern(JsonMatchPatternProperty.builder()
.all(all)
.includedPaths(List.of("includedPaths"))
.build())
.matchScope("matchScope")
.oversizeHandling("oversizeHandling")
.build())
.method(method)
.queryString(queryString)
.singleHeader(singleHeader)
.singleQueryArgument(singleQueryArgument)
.uriFragment(UriFragmentProperty.builder()
.fallbackBehavior("fallbackBehavior")
.build())
.uriPath(uriPath)
.build())
.textTransformations(List.of(TextTransformationProperty.builder()
.priority(123)
.type("type")
.build()))
.build();
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeInterfaceDescriptionstatic final classA builder forCfnWebACLPropsMixin.XssMatchStatementPropertystatic final classAn implementation forCfnWebACLPropsMixin.XssMatchStatementProperty -
Method Summary
Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getFieldToMatch
The part of the web request that you want AWS WAF to inspect.Returns union: either
IResolvableorCfnWebACLPropsMixin.FieldToMatchProperty- See Also:
-
getTextTransformations
Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.If you specify one or more transformations in a rule statement, AWS WAF performs all transformations on the content of the request component identified by
FieldToMatch, starting from the lowest priority setting, before inspecting the content for a match.Returns union: either
IResolvableor Listinvalid input: '<'eitherIResolvableorCfnWebACLPropsMixin.TextTransformationProperty>- See Also:
-
builder
-