AWS::WAFv2::WebACL ResponseInspectionHeader
Configures inspection of the response header. This is part of the ResponseInspection
configuration for AWSManagedRulesATPRuleSet
.
Response inspection is available only in web ACLs that protect Amazon CloudFront distributions.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "FailureValues" :
[ String, ... ]
, "Name" :String
, "SuccessValues" :[ String, ... ]
}
YAML
FailureValues:
- String
Name:String
SuccessValues:- String
Properties
FailureValues
-
Values in the response header with the specified name that indicate a failed login attempt. To be counted as a failed login, the value must be an exact match, including case. Each value must be unique among the success and failure values.
JSON example:
"FailureValues": [ "LoginFailed", "Failed login" ]
Required: Yes
Type: List of String
Maximum:
3
Update requires: No interruption
Name
-
The name of the header to match against. The name must be an exact match, including case.
JSON example:
"Name": [ "LoginResult" ]
Required: Yes
Type: String
Minimum:
1
Maximum:
200
Pattern:
.*\S.*
Update requires: No interruption
SuccessValues
-
Values in the response header with the specified name that indicate a successful login attempt. To be counted as a successful login, the value must be an exact match, including case. Each value must be unique among the success and failure values.
JSON example:
"SuccessValues": [ "LoginPassed", "Successful login" ]
Required: Yes
Type: List of String
Maximum:
3
Update requires: No interruption