Class: AWSCDK::WAFv2::CfnWebACL::XssMatchStatementProperty

Inherits:
Jsii::Struct
  • Object
show all
Defined in:
wa_fv2/cfn_web_acl.rb

Overview

A rule statement that inspects for cross-site scripting (XSS) attacks.

In XSS attacks, the attacker uses vulnerabilities in a benign website as a vehicle to inject malicious client-site scripts into other legitimate web browsers.

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(field_to_match:, text_transformations:) ⇒ XssMatchStatementProperty

Returns a new instance of XssMatchStatementProperty.

Parameters:



6507
6508
6509
6510
6511
6512
# File 'wa_fv2/cfn_web_acl.rb', line 6507

def initialize(field_to_match:, text_transformations:)
  @field_to_match = field_to_match.is_a?(Hash) ? ::AWSCDK::WAFv2::CfnWebACL::FieldToMatchProperty.new(**field_to_match.transform_keys(&:to_sym)) : field_to_match
  Jsii::Type.check_type(@field_to_match, JSON.parse(Base64.strict_decode64("eyJ1bmlvbiI6eyJ0eXBlcyI6W3siZnFuIjoiYXdzLWNkay1saWIuSVJlc29sdmFibGUifSx7ImZxbiI6ImF3cy1jZGstbGliLmF3c193YWZ2Mi5DZm5XZWJBQ0wuRmllbGRUb01hdGNoUHJvcGVydHkifV19fQ==")), "fieldToMatch")
  @text_transformations = text_transformations
  Jsii::Type.check_type(@text_transformations, JSON.parse(Base64.strict_decode64("eyJ1bmlvbiI6eyJ0eXBlcyI6W3siZnFuIjoiYXdzLWNkay1saWIuSVJlc29sdmFibGUifSx7ImNvbGxlY3Rpb24iOnsiZWxlbWVudHR5cGUiOnsidW5pb24iOnsidHlwZXMiOlt7ImZxbiI6ImF3cy1jZGstbGliLklSZXNvbHZhYmxlIn0seyJmcW4iOiJhd3MtY2RrLWxpYi5hd3Nfd2FmdjIuQ2ZuV2ViQUNMLlRleHRUcmFuc2Zvcm1hdGlvblByb3BlcnR5In1dfX0sImtpbmQiOiJhcnJheSJ9fV19fQ==")), "textTransformations")
end

Instance Attribute Details

#field_to_matchAWSCDK::IResolvable, AWSCDK::WAFv2::CfnWebACL::FieldToMatchProperty (readonly)

The part of the web request that you want AWS WAF to inspect.



6518
6519
6520
# File 'wa_fv2/cfn_web_acl.rb', line 6518

def field_to_match
  @field_to_match
end

#text_transformationsAWSCDK::IResolvable, Array<AWSCDK::IResolvable, AWSCDK::WAFv2::CfnWebACL::TextTransformationProperty> (readonly)

Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass detection.

If you specify one or more transformations in a rule statement, AWS WAF performs all transformations on the content of the request component identified by FieldToMatch , starting from the lowest priority setting, before inspecting the content for a match.



6525
6526
6527
# File 'wa_fv2/cfn_web_acl.rb', line 6525

def text_transformations
  @text_transformations
end

Class Method Details

.jsii_propertiesObject



6527
6528
6529
6530
6531
6532
# File 'wa_fv2/cfn_web_acl.rb', line 6527

def self.jsii_properties
  {
    :field_to_match => "fieldToMatch",
    :text_transformations => "textTransformations",
  }
end

Instance Method Details

#to_jsiiObject



6534
6535
6536
6537
6538
6539
6540
6541
# File 'wa_fv2/cfn_web_acl.rb', line 6534

def to_jsii
  result = {}
  result.merge!({
    "fieldToMatch" => @field_to_match,
    "textTransformations" => @text_transformations,
  })
  result.compact
end