AWS WAF Regional XssMatchSet XssMatchTuple

XssMatchTuple is a property of the AWS::WAFRegional::XssMatchSet resource that specifies the part of a web request that you want AWS WAF to inspect for cross-site scripting attacks.

Syntax

JSON


{
  "FieldToMatch" : Field to match,
  "TextTransformation" : String
}

YAML


FieldToMatch:
  Field to match
TextTransformation: String

Properties

FieldToMatch

The part of a web request that you want AWS WAF to search, such as a specific header or a query string.

Required: Yes

Type: AWS WAF Regional XssMatchSet XssMatchTuple FieldToMatch

TextTransformation

Specifies how AWS WAF processes the FieldToMatch property before inspecting a request for a match. Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF. If you specify a transformation, AWS WAF transforms theFieldToMatch parameter before inspecting a web request for a match.

For example, AWS WAF can replace white space characters (such as \t and \n) with a single space. For valid values, see the TextTransformation content for the XssMatchTuple data type in the AWS WAF Regional API Reference.

Required: Yes

Type: String

Warning Javascript is disabled or is unavailable in your browser.

To use the AWS Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

« Previous Next »