AWS::WAFv2::WebACL ResponseInspectionBodyContains
Configures inspection of the response body. AWS WAF can inspect the first 65,536 bytes (64 KB) of the response body. This is part of the ResponseInspection
configuration for AWSManagedRulesATPRuleSet
.
Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "FailureStrings" :
[ String, ... ]
, "SuccessStrings" :[ String, ... ]
}
YAML
FailureStrings:
- String
SuccessStrings:- String
Properties
FailureStrings
-
Strings in the body of the response that indicate a failed login attempt. To be counted as a failed login, the string can be anywhere in the body and must be an exact match, including case. Each string must be unique among the success and failure strings.
JSON example:
"FailureStrings": [ "Login failed" ]
Required: Yes
Type: List of String
Maximum:
5
Update requires: No interruption
SuccessStrings
-
Strings in the body of the response that indicate a successful login attempt. To be counted as a successful login, the string can be anywhere in the body and must be an exact match, including case. Each string must be unique among the success and failure strings.
JSON example:
"SuccessStrings": [ "Login successful", "Welcome to our site!" ]
Required: Yes
Type: List of String
Maximum:
5
Update requires: No interruption