AWS::WAFv2::WebACL ResponseInspectionJson

Configures inspection of the response JSON. AWS WAF can inspect the first 65,536 bytes (64 KB) of the response JSON. This is part of the ResponseInspection configuration for AWSManagedRulesATPRuleSet.

Note

Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "FailureValues" : [ String, ... ], "Identifier" : String, "SuccessValues" : [ String, ... ] }

YAML

FailureValues: - String Identifier: String SuccessValues: - String

Properties

FailureValues

Values for the specified identifier in the response JSON that indicate a failed login attempt. To be counted as a failed login, the value must be an exact match, including case. Each value must be unique among the success and failure values.

JSON example: "FailureValues": [ "False", "Failed" ]

Required: Yes

Type: List of String

Maximum: 5

Update requires: No interruption

Identifier

The identifier for the value to match against in the JSON. The identifier must be an exact match, including case.

JSON example: "Identifier": [ "/login/success" ]

Required: Yes

Type: String

Minimum: 1

Maximum: 512

Pattern: .*\S.*

Update requires: No interruption

SuccessValues

Values for the specified identifier in the response JSON that indicate a successful login attempt. To be counted as a successful login, the value must be an exact match, including case. Each value must be unique among the success and failure values.

JSON example: "SuccessValues": [ "True", "Succeeded" ]

Required: Yes

Type: List of String

Maximum: 5

Update requires: No interruption