aws-cdk-lib.aws_wafv2.CfnLoggingConfiguration.JsonBodyProperty

interface JsonBodyProperty

LanguageType name
.NETAmazon.CDK.AWS.WAFv2.CfnLoggingConfiguration.JsonBodyProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awswafv2#CfnLoggingConfiguration_JsonBodyProperty
Javasoftware.amazon.awscdk.services.wafv2.CfnLoggingConfiguration.JsonBodyProperty
Pythonaws_cdk.aws_wafv2.CfnLoggingConfiguration.JsonBodyProperty
TypeScript aws-cdk-lib » aws_wafv2 » CfnLoggingConfiguration » JsonBodyProperty

Inspect the body of the web request as JSON. The body immediately follows the request headers.

This is used to indicate the web request component to inspect, in the FieldToMatch specification.

Use the specifications in this object to indicate which parts of the JSON body to inspect using the rule's inspection criteria. AWS WAF inspects only the parts of the JSON that result from the matches that you indicate.

Example JSON: "JsonBody": { "MatchPattern": { "All": {} }, "MatchScope": "ALL" }

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_wafv2 as wafv2 } from 'aws-cdk-lib';

declare const all: any;
const jsonBodyProperty: wafv2.CfnLoggingConfiguration.JsonBodyProperty = {
  matchPattern: {
    all: all,
    includedPaths: ['includedPaths'],
  },
  matchScope: 'matchScope',

  // the properties below are optional
  invalidFallbackBehavior: 'invalidFallbackBehavior',
};

Properties

NameTypeDescription
matchPatternIResolvable | MatchPatternPropertyThe patterns to look for in the JSON body.
matchScopestringThe parts of the JSON to match against using the MatchPattern .
invalidFallbackBehavior?stringWhat AWS WAF should do if it fails to completely parse the JSON body. The options are the following:.

matchPattern

Type: IResolvable | MatchPatternProperty

The patterns to look for in the JSON body.

AWS WAF inspects the results of these pattern matches against the rule inspection criteria.


matchScope

Type: string

The parts of the JSON to match against using the MatchPattern .

If you specify All , AWS WAF matches against keys and values.


invalidFallbackBehavior?

Type: string (optional)

What AWS WAF should do if it fails to completely parse the JSON body. The options are the following:.

  • EVALUATE_AS_STRING - Inspect the body as plain text. AWS WAF applies the text transformations and inspection criteria that you defined for the JSON inspection to the body text string.
  • MATCH - Treat the web request as matching the rule statement. AWS WAF applies the rule action to the request.
  • NO_MATCH - Treat the web request as not matching the rule statement.

If you don't provide this setting, AWS WAF parses and evaluates the content only up to the first parsing failure that it encounters.

AWS WAF does its best to parse the entire JSON body, but might be forced to stop for reasons such as invalid characters, duplicate keys, truncation, and any content whose root node isn't an object or an array.

AWS WAF parses the JSON in the following examples as two valid key, value pairs:

  • Missing comma: {"key1":"value1""key2":"value2"}
  • Missing colon: {"key1":"value1","key2""value2"}
  • Extra colons: {"key1"::"value1","key2""value2"}