class Aws::SecurityHub::Types::AwsWafWebAclRule

Details for a rule in an WAF WebACL.

@note When making an API call, you may pass AwsWafWebAclRule

data as a hash:

    {
      action: {
        type: "NonEmptyString",
      },
      excluded_rules: [
        {
          rule_id: "NonEmptyString",
        },
      ],
      override_action: {
        type: "NonEmptyString",
      },
      priority: 1,
      rule_id: "NonEmptyString",
      type: "NonEmptyString",
    }

@!attribute [rw] action

Specifies the action that CloudFront or WAF takes when a web request
matches the conditions in the rule.
@return [Types::WafAction]

@!attribute [rw] excluded_rules

Rules to exclude from a rule group.
@return [Array<Types::WafExcludedRule>]

@!attribute [rw] override_action

Use the `OverrideAction` to test your RuleGroup.

Any rule in a RuleGroup can potentially block a request. If you set
the `OverrideAction` to `None`, the RuleGroup blocks a request if
any individual rule in the RuleGroup matches the request and is
configured to block that request.

However, if you first want to test the RuleGroup, set the
`OverrideAction` to `Count`. The RuleGroup then overrides any block
action specified by individual rules contained within the group.
Instead of blocking matching requests, those requests are counted.

`ActivatedRule`\|`OverrideAction` applies only when updating or
adding a RuleGroup to a WebACL. In this case you do not use
`ActivatedRule`\|`Action`. For all other update requests,
`ActivatedRule`\|`Action` is used instead of
`ActivatedRule`\|`OverrideAction`.
@return [Types::WafOverrideAction]

@!attribute [rw] priority

Specifies the order in which the rules in a WebACL are evaluated.
Rules with a lower value for `Priority` are evaluated before rules
with a higher value. The value must be a unique integer. If you add
multiple rules to a WebACL, the values do not need to be
consecutive.
@return [Integer]

@!attribute [rw] rule_id

The identifier for a rule.
@return [String]

@!attribute [rw] type

The rule type.

Valid values: `REGULAR` \| `RATE_BASED` \| `GROUP`

The default is `REGULAR`.
@return [String]

@see docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsWafWebAclRule AWS API Documentation

Constants

SENSITIVE