aws-cdk-lib.aws_wafv2.CfnWebACL.CaptchaActionProperty

interface CaptchaActionProperty

LanguageType name
.NETAmazon.CDK.AWS.WAFv2.CfnWebACL.CaptchaActionProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awswafv2#CfnWebACL_CaptchaActionProperty
Javasoftware.amazon.awscdk.services.wafv2.CfnWebACL.CaptchaActionProperty
Pythonaws_cdk.aws_wafv2.CfnWebACL.CaptchaActionProperty
TypeScript aws-cdk-lib » aws_wafv2 » CfnWebACL » CaptchaActionProperty

Specifies that AWS WAF should run a CAPTCHA check against the request:.

  • If the request includes a valid, unexpired CAPTCHA token, AWS WAF allows the web request inspection to proceed to the next rule, similar to a CountAction .
  • If the request doesn't include a valid, unexpired CAPTCHA token, AWS WAF discontinues the web ACL evaluation of the request and blocks it from going to its intended destination.

AWS WAF generates a response that it sends back to the client, which includes the following:

  • The header x-amzn-waf-action with a value of captcha .
  • The HTTP status code 405 Method Not Allowed .
  • If the request contains an Accept header with a value of text/html , the response includes a CAPTCHA challenge.

You can configure the expiration time in the CaptchaConfig ImmunityTimeProperty setting at the rule and web ACL level. The rule setting overrides the web ACL setting.

This action option is available for rules. It isn't available for web ACL default actions.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_wafv2 as wafv2 } from 'aws-cdk-lib';
const captchaActionProperty: wafv2.CfnWebACL.CaptchaActionProperty = {
  customRequestHandling: {
    insertHeaders: [{
      name: 'name',
      value: 'value',
    }],
  },
};

Properties

NameTypeDescription
customRequestHandling?IResolvable | CustomRequestHandlingPropertyDefines custom handling for the web request, used when the CAPTCHA inspection determines that the request's token is valid and unexpired.

customRequestHandling?

Type: IResolvable | CustomRequestHandlingProperty (optional)

Defines custom handling for the web request, used when the CAPTCHA inspection determines that the request's token is valid and unexpired.

For information about customizing web requests and responses, see Customizing web requests and responses in AWS WAF in the AWS WAF Developer Guide .