Class: AWSCDK::WAFv2::CfnWebACL::JA4FingerprintProperty
- Inherits:
-
Jsii::Struct
- Object
- Jsii::Struct
- AWSCDK::WAFv2::CfnWebACL::JA4FingerprintProperty
- Defined in:
- wa_fv2/cfn_web_acl.rb
Overview
Available for use with Amazon CloudFront distributions and Application Load Balancers.
Match against the request's JA4 fingerprint. The JA4 fingerprint is a 36-character hash derived from the TLS Client Hello of an incoming request. This fingerprint serves as a unique identifier for the client's TLS configuration. AWS WAF calculates and logs this fingerprint for each request that has enough TLS Client Hello information for the calculation. Almost all web requests include this information.
You can use this choice only with a string match
ByteMatchStatementwith thePositionalConstraintset toEXACTLY.
You can obtain the JA4 fingerprint for client requests from the web ACL logs. If AWS WAF is able to calculate the fingerprint, it includes it in the logs. For information about the logging fields, see Log fields in the AWS WAF Developer Guide .
Provide the JA4 fingerprint string from the logs in your string match statement specification, to match with any future requests that have the same TLS configuration.
Instance Attribute Summary collapse
-
#fallback_behavior ⇒ String
readonly
The match status to assign to the web request if the request doesn't have a JA4 fingerprint.
Class Method Summary collapse
Instance Method Summary collapse
-
#initialize(fallback_behavior:) ⇒ JA4FingerprintProperty
constructor
A new instance of JA4FingerprintProperty.
- #to_jsii ⇒ Object
Constructor Details
#initialize(fallback_behavior:) ⇒ JA4FingerprintProperty
Returns a new instance of JA4FingerprintProperty.
3218 3219 3220 3221 |
# File 'wa_fv2/cfn_web_acl.rb', line 3218 def initialize(fallback_behavior:) @fallback_behavior = fallback_behavior Jsii::Type.check_type(@fallback_behavior, JSON.parse(Base64.strict_decode64("eyJwcmltaXRpdmUiOiJzdHJpbmcifQ==")), "fallbackBehavior") end |
Instance Attribute Details
#fallback_behavior ⇒ String (readonly)
The match status to assign to the web request if the request doesn't have a JA4 fingerprint.
You can specify the following fallback behaviors:
MATCH- Treat the web request as matching the rule statement. AWS WAF applies the rule action to the request.NO_MATCH- Treat the web request as not matching the rule statement.
3232 3233 3234 |
# File 'wa_fv2/cfn_web_acl.rb', line 3232 def fallback_behavior @fallback_behavior end |
Class Method Details
.jsii_properties ⇒ Object
3234 3235 3236 3237 3238 |
# File 'wa_fv2/cfn_web_acl.rb', line 3234 def self.jsii_properties { :fallback_behavior => "fallbackBehavior", } end |
Instance Method Details
#to_jsii ⇒ Object
3240 3241 3242 3243 3244 3245 3246 |
# File 'wa_fv2/cfn_web_acl.rb', line 3240 def to_jsii result = {} result.merge!({ "fallbackBehavior" => @fallback_behavior, }) result.compact end |