AWS::WAFv2::WebACL ResponseInspectionJson
Configures inspection of the response JSON. AWS WAF can inspect the first 65,536 bytes (64 KB) of the response JSON. This is part of the ResponseInspection
configuration for AWSManagedRulesATPRuleSet
.
Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "FailureValues" :
[ String, ... ]
, "Identifier" :String
, "SuccessValues" :[ String, ... ]
}
YAML
FailureValues:
- String
Identifier:String
SuccessValues:- String
Properties
FailureValues
-
Values for the specified identifier in the response JSON that indicate a failed login attempt. To be counted as a failed login, the value must be an exact match, including case. Each value must be unique among the success and failure values.
JSON example:
"FailureValues": [ "False", "Failed" ]
Required: Yes
Type: List of String
Maximum:
5
Update requires: No interruption
Identifier
-
The identifier for the value to match against in the JSON. The identifier must be an exact match, including case.
JSON example:
"Identifier": [ "/login/success" ]
Required: Yes
Type: String
Minimum:
1
Maximum:
512
Pattern:
.*\S.*
Update requires: No interruption
SuccessValues
-
Values for the specified identifier in the response JSON that indicate a successful login attempt. To be counted as a successful login, the value must be an exact match, including case. Each value must be unique among the success and failure values.
JSON example:
"SuccessValues": [ "True", "Succeeded" ]
Required: Yes
Type: List of String
Maximum:
5
Update requires: No interruption