AWS::WAFv2::WebACL ResponseInspectionHeader

Configures inspection of the response header. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet.

Note

Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "FailureValues" : [ String, ... ], "Name" : String, "SuccessValues" : [ String, ... ] }

YAML

FailureValues: - String Name: String SuccessValues: - String

Properties

FailureValues

Values in the response header with the specified name that indicate a failed login attempt. To be counted as a failed login, the value must be an exact match, including case. Each value must be unique among the success and failure values.

JSON example: "FailureValues": [ "LoginFailed", "Failed login" ]

Required: Yes

Type: List of String

Maximum: 3

Update requires: No interruption

Name

The name of the header to match against. The name must be an exact match, including case.

JSON example: "Name": [ "LoginResult" ]

Required: Yes

Type: String

Minimum: 1

Maximum: 200

Pattern: .*\S.*

Update requires: No interruption

SuccessValues

Values in the response header with the specified name that indicate a successful login attempt. To be counted as a successful login, the value must be an exact match, including case. Each value must be unique among the success and failure values.

JSON example: "SuccessValues": [ "LoginPassed", "Successful login" ]

Required: Yes

Type: List of String

Maximum: 3

Update requires: No interruption