AWS WAF SizeConstraintSet SizeConstraint
SizeConstraint is a property of the AWS::WAF::SizeConstraintSet resource that specifies a size constraint and which part of a web request that you
want AWS WAF to constrain.
Syntax
JSON
{ "ComparisonOperator" :String, "FieldToMatch" :Field to match, "Size" :String, "TextTransformation" :String}
YAML
ComparisonOperator:StringFieldToMatch:Field to matchSize:StringTextTransformation:String
Properties
ComparisonOperator-
The type of comparison that you want AWS WAF to perform. AWS WAF uses this value in combination with the
SizeandFieldToMatchproperty values to check if the size constraint is a match. For more information and valid values, see theComparisonOperatorcontent for the SizeConstraint data type in the AWS WAF API Reference.Required: Yes
Type: String
FieldToMatch-
The part of a web request that you want AWS WAF to search, such as a specific header or a query string.
Required: Yes
Size-
The size in bytes that you want AWS WAF to compare against the size of the specified
FieldToMatch. AWS WAF usesSizein combination with theComparisonOperatorandFieldToMatchproperty values to check if the size constraint of a web request is a match. For more information and valid values, see theSizecontent for the SizeConstraint data type in the AWS WAF API Reference.Required: Yes
Type: Integer
TextTransformation-
Specifies how AWS WAF processes the
FieldToMatchproperty before inspecting a request for a match. Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF. If you specify a transformation, AWS WAF transforms theFieldToMatchbefore inspecting a web request for a match.For example, AWS WAF can replace white space characters (such as
\tand\n) with a single space. For valid values, see theTextTransformationcontent for the SizeConstraint data type in the AWS WAF API Reference.Required: Yes
Type: String
