Struct aws_sdk_securityhub::model::AwsWafWebAclRule
source · [−]#[non_exhaustive]pub struct AwsWafWebAclRule {
pub action: Option<WafAction>,
pub excluded_rules: Option<Vec<WafExcludedRule>>,
pub override_action: Option<WafOverrideAction>,
pub priority: i32,
pub rule_id: Option<String>,
pub type: Option<String>,
}Expand description
Details for a rule in an WAF WebACL.
Fields (Non-exhaustive)
This struct is marked as non-exhaustive
Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.action: Option<WafAction>Specifies the action that CloudFront or WAF takes when a web request matches the conditions in the rule.
excluded_rules: Option<Vec<WafExcludedRule>>Rules to exclude from a rule group.
override_action: Option<WafOverrideAction>Use the OverrideAction to test your RuleGroup.
Any rule in a RuleGroup can potentially block a request. If you set the OverrideAction to None, the RuleGroup blocks a request if any individual rule in the RuleGroup matches the request and is configured to block that request.
However, if you first want to test the RuleGroup, set the OverrideAction to Count. The RuleGroup then overrides any block action specified by individual rules contained within the group. Instead of blocking matching requests, those requests are counted.
ActivatedRule|OverrideAction applies only when updating or adding a RuleGroup to a WebACL. In this case you do not use ActivatedRule|Action. For all other update requests, ActivatedRule|Action is used instead of ActivatedRule|OverrideAction.
priority: i32Specifies the order in which the rules in a WebACL are evaluated. Rules with a lower value for Priority are evaluated before rules with a higher value. The value must be a unique integer. If you add multiple rules to a WebACL, the values do not need to be consecutive.
rule_id: Option<String>The identifier for a rule.
type: Option<String>The rule type.
Valid values: REGULAR | RATE_BASED | GROUP
The default is REGULAR.
Implementations
Specifies the action that CloudFront or WAF takes when a web request matches the conditions in the rule.
Rules to exclude from a rule group.
Use the OverrideAction to test your RuleGroup.
Any rule in a RuleGroup can potentially block a request. If you set the OverrideAction to None, the RuleGroup blocks a request if any individual rule in the RuleGroup matches the request and is configured to block that request.
However, if you first want to test the RuleGroup, set the OverrideAction to Count. The RuleGroup then overrides any block action specified by individual rules contained within the group. Instead of blocking matching requests, those requests are counted.
ActivatedRule|OverrideAction applies only when updating or adding a RuleGroup to a WebACL. In this case you do not use ActivatedRule|Action. For all other update requests, ActivatedRule|Action is used instead of ActivatedRule|OverrideAction.
Specifies the order in which the rules in a WebACL are evaluated. Rules with a lower value for Priority are evaluated before rules with a higher value. The value must be a unique integer. If you add multiple rules to a WebACL, the values do not need to be consecutive.
Creates a new builder-style object to manufacture AwsWafWebAclRule
Trait Implementations
This method tests for self and other values to be equal, and is used
by ==. Read more
This method tests for !=.
Auto Trait Implementations
impl RefUnwindSafe for AwsWafWebAclRule
impl Send for AwsWafWebAclRule
impl Sync for AwsWafWebAclRule
impl Unpin for AwsWafWebAclRule
impl UnwindSafe for AwsWafWebAclRule
Blanket Implementations
Mutably borrows from an owned value. Read more
Attaches the provided Subscriber to this type, returning a
WithDispatch wrapper. Read more
Attaches the current default Subscriber to this type, returning a
WithDispatch wrapper. Read more