EdgeVirtualServiceHttpSecurityRule
Defines a HTTP security rule. It consists of a match criteria along with the actions to execute once the criteria is satisfied. If the match criteria is not set, defined actions will be be executed for all requests.
{
"name": "string",
"active": false,
"logging": false,
"matchCriteria": {
"clientIpMatch": {
"matchCriteria": "string",
"addresses": [
"string"
]
},
"servicePortMatch": {
"matchCriteria": "string",
"ports": [
0
]
},
"methodMatch": {
"matchCriteria": "string",
"methods": [
"string"
]
},
"protocol": "string",
"pathMatch": {
"matchCriteria": "string",
"matchStrings": [
"string"
]
},
"queryMatch": [
"string"
],
"headerMatch": [
{
"matchCriteria": "string",
"value": [
"string"
],
"key": "string"
}
],
"cookieMatch": {
"matchCriteria": "string",
"key": "string",
"value": "string"
}
},
"allowOrCloseConnectionAction": "string",
"rateLimitAction": {
"count": 0,
"period": 0,
"closeConnectionAction": "string",
"redirectAction": {
"statusCode": 0
},
"localResponseAction": {
"statusCode": 0,
"contentType": "string",
"content": "string"
}
},
"redirectToHttpsAction": {
"port": 0
},
"localResponseAction": {
"statusCode": 0,
"contentType": "string",
"content": "string"
}
}
Name of the rule. Must be non-blank and fewer than 1000 characters.
Whether the rule is active or not.
Whether to enable logging on rule match or not.
Defines a HTTP security match criteria. If multiple matches are configured, it is treated as logically AND operation. All match types must be true for the security match criteria to be satisfied.
Action to allow the incoming request or close the connection. It cannot be configured in combination with other actions. Allowed values are:
- ALLOW - Allow the incoming request.
- CLOSE - Close the incoming connection.
Defines the action to apply rate limit on incoming requests. It consists of rate limiting properties and one of the actions to execute upon reaching rate limit. If not actions are provided, rate limiting will only be reported.
Defines the action to redirect the incoming request to HTTPS.
Defines the action to send a local HTTP response.