pulumi_wasm_providers_gcp_mini::compute::security_policy_rule

Struct SecurityPolicyRuleArgs

source 
pub struct SecurityPolicyRuleArgs {
    pub action: Output<String>,
    pub description: Output<Option<String>>,
    pub header_action: Output<Option<SecurityPolicyRuleHeaderAction>>,
    pub match_: Output<Option<SecurityPolicyRuleMatch>>,
    pub preconfigured_waf_config: Output<Option<SecurityPolicyRulePreconfiguredWafConfig>>,
    pub preview: Output<Option<bool>>,
    pub priority: Output<i32>,
    pub project: Output<Option<String>>,
    pub rate_limit_options: Output<Option<SecurityPolicyRuleRateLimitOptions>>,
    pub redirect_options: Output<Option<SecurityPolicyRuleRedirectOptions>>,
    pub security_policy: Output<String>,
}

Fields§

§action: Output<String>

The Action to perform when the rule is matched. The following are the valid actions:

  • allow: allow access to target.
  • deny(STATUS): deny access to target, returns the HTTP response code specified. Valid values for STATUS are 403, 404, and 502.
  • rate_based_ban: limit client traffic to the configured threshold and ban the client if the traffic exceeds the threshold. Configure parameters for this action in RateLimitOptions. Requires rateLimitOptions to be set.
  • redirect: redirect to a different target. This can either be an internal reCAPTCHA redirect, or an external URL-based redirect via a 302 response. Parameters for this action can be configured via redirectOptions. This action is only supported in Global Security Policies of type CLOUD_ARMOR.
  • throttle: limit client traffic to the configured threshold. Configure parameters for this action in rateLimitOptions. Requires rateLimitOptions to be set for this.
§description: Output<Option<String>>

An optional description of this resource. Provide this property when you create the resource.

§header_action: Output<Option<SecurityPolicyRuleHeaderAction>>

Optional, additional actions that are performed on headers. This field is only supported in Global Security Policies of type CLOUD_ARMOR. Structure is documented below.

§match_: Output<Option<SecurityPolicyRuleMatch>>

A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding ‘action’ is enforced. Structure is documented below.

§preconfigured_waf_config: Output<Option<SecurityPolicyRulePreconfiguredWafConfig>>

Preconfigured WAF configuration to be applied for the rule. If the rule does not evaluate preconfigured WAF rules, i.e., if evaluatePreconfiguredWaf() is not used, this field will have no effect. Structure is documented below.

§preview: Output<Option<bool>>

If set to true, the specified action is not enforced.

§priority: Output<i32>

An integer indicating the priority of a rule in the list. The priority must be a positive value between 0 and 2147483647. Rules are evaluated from highest to lowest priority where 0 is the highest priority and 2147483647 is the lowest priority.

§project: Output<Option<String>>

The ID of the project in which the resource belongs. If it is not provided, the provider project is used.

§rate_limit_options: Output<Option<SecurityPolicyRuleRateLimitOptions>>

Must be specified if the action is “rate_based_ban” or “throttle”. Cannot be specified for any other actions. Structure is documented below.

§redirect_options: Output<Option<SecurityPolicyRuleRedirectOptions>>

Parameters defining the redirect action. Cannot be specified for any other actions. This field is only supported in Global Security Policies of type CLOUD_ARMOR. Structure is documented below.

§security_policy: Output<String>

The name of the security policy this rule belongs to.

Implementations§

source§

impl SecurityPolicyRuleArgs

source

pub fn builder() -> SecurityPolicyRuleArgsBuilder

Create an instance of SecurityPolicyRuleArgs using the builder syntax

Trait Implementations§

source§

impl Clone for SecurityPolicyRuleArgs

source§

fn clone(&self) -> SecurityPolicyRuleArgs

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> CloneToUninit for T
where T: Clone,

source§

unsafe fn clone_to_uninit(&self, dst: *mut T)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dst. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> ToOwned for T
where T: Clone,

source§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

source§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.