Package-level declarations
Types
This is the latest version of the WAF API, released in November, 2019. The names of the entities that you use to access this API, like endpoints and namespaces, all have the versioning information added, like "V2" or "v2", to distinguish from the prior version. We recommend migrating your resources to this version, because it has a number of significant improvements.
Functions
Associates a web ACL with a regional application resource, to protect the resource. A regional application can be an Application Load Balancer (ALB), an Amazon API Gateway REST API, an AppSync GraphQL API, an Amazon Cognito user pool, an App Runner service, or an Amazon Web Services Verified Access instance.
Returns the web ACL capacity unit (WCU) requirements for a specified scope and set of rules. You can use this to check the capacity requirements for the rules you want to use in a RuleGroup or WebACL.
Creates an API key that contains a set of token domains.
Creates an IPSet, which you use to identify web requests that originate from specific IP addresses or ranges of IP addresses. For example, if you're receiving a lot of requests from a ranges of IP addresses, you can configure WAF to block them using an IPSet that lists those IP addresses.
Creates a RegexPatternSet, which you reference in a RegexPatternSetReferenceStatement, to have WAF inspect a web request component for the specified patterns.
Creates a RuleGroup per the specifications provided.
Creates a WebACL per the specifications provided.
Deletes the specified API key.
Deletes all rule groups that are managed by Firewall Manager for the specified web ACL.
Deletes the specified IPSet.
Deletes the LoggingConfiguration from the specified web ACL.
Permanently deletes an IAM policy from the specified rule group.
Deletes the specified RegexPatternSet.
Deletes the specified RuleGroup.
Deletes the specified WebACL.
Provides high-level information for the Amazon Web Services Managed Rules rule groups and Amazon Web Services Marketplace managed rule groups.
Provides high-level information for the managed rule groups owned by a specific vendor.
Provides high-level information for a managed rule group, including descriptions of the rules.
Disassociates the specified regional application resource from any existing web ACL association. A resource can have at most one web ACL association. A regional application can be an Application Load Balancer (ALB), an Amazon API Gateway REST API, an AppSync GraphQL API, an Amazon Cognito user pool, an App Runner service, or an Amazon Web Services Verified Access instance.
Generates a presigned download URL for the specified release of the mobile SDK.
Returns your API key in decrypted form. Use this to check the token domains that you have defined for the key.
Retrieves the specified IPSet.
Returns the LoggingConfiguration for the specified web ACL.
Retrieves the specified managed rule set.
Retrieves information for the specified mobile SDK release, including release notes and tags.
Returns the IAM policy that is attached to the specified rule group.
Retrieves the IP addresses that are currently blocked by a rate-based rule instance. This is only available for rate-based rules that aggregate solely on the IP address or on the forwarded IP address.
Retrieves the specified RegexPatternSet.
Retrieves the specified RuleGroup.
Gets detailed information about a specified number of requests--a sample--that WAF randomly selects from among the first 5,000 requests that your Amazon Web Services resource received during a time range that you choose. You can specify a sample size of up to 500 requests, and you can specify any time range in the previous three hours.
Retrieves the specified WebACL.
Retrieves the WebACL for the specified resource.
Retrieves a list of the API keys that you've defined for the specified scope.
Retrieves an array of managed rule groups that are available for you to use. This list includes all Amazon Web Services Managed Rules rule groups and all of the Amazon Web Services Marketplace managed rule groups that you're subscribed to.
Returns a list of the available versions for the specified managed rule group.
Retrieves an array of IPSetSummary objects for the IP sets that you manage.
Retrieves an array of your LoggingConfiguration objects.
Retrieves the managed rule sets that you own.
Retrieves a list of the available releases for the mobile SDK and the specified device platform.
Retrieves an array of RegexPatternSetSummary objects for the regex pattern sets that you manage.
Retrieves an array of the Amazon Resource Names (ARNs) for the regional resources that are associated with the specified web ACL.
Retrieves an array of RuleGroupSummary objects for the rule groups that you manage.
Retrieves the TagInfoForResource for the specified resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
Retrieves an array of WebACLSummary objects for the web ACLs that you manage.
Enables the specified LoggingConfiguration, to start logging from a web ACL, according to the configuration provided.
Defines the versions of your managed rule set that you are offering to the customers. Customers see your offerings as managed rule groups with versioning.
Attaches an IAM policy to the specified resource. Use this to share a rule group across accounts.
Associates tags with the specified Amazon Web Services resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing. For example, you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.
Disassociates tags from an Amazon Web Services resource. Tags are key:value pairs that you can associate with Amazon Web Services resources. For example, the tag key might be "customer" and the tag value might be "companyA." You can specify one or more tags to add to each container. You can add up to 50 tags to each Amazon Web Services resource.
Updates the specified IPSet.
Updates the expiration information for your managed rule set. Use this to initiate the expiration of a managed rule group version. After you initiate expiration for a version, WAF excludes it from the response to ListAvailableManagedRuleGroupVersions for the managed rule group.
Updates the specified RegexPatternSet.
Updates the specified RuleGroup.
Updates the specified WebACL. While updating a web ACL, WAF provides continuous coverage to the resources that you have associated with the web ACL.
Create a copy of the client with one or more configuration values overridden. This method allows the caller to perform scoped config overrides for one or more client operations.