github.com/nathanielks/terraform@v0.6.1-0.20170509030759-13e1a62319dc/website/source/docs/providers/aws/r/waf_xss_match_set.html.markdown

github.com/nathanielks/terraform@v0.6.1-0.20170509030759-13e1a62319dc/website/source/docs/providers/aws/r/waf_xss_match_set.html.markdown (about)

     1  ---
     2  layout: "aws"
     3  page_title: "AWS: waf_xss_match_set"
     4  sidebar_current: "docs-aws-resource-waf-xss-match-set"
     5  description: |-
     6    Provides a AWS WAF XssMatchSet resource.
     7  ---
     8  
     9  # aws\_waf\_xss\_match\_set
    10  
    11  Provides a WAF XSS Match Set Resource
    12  
    13  ## Example Usage
    14  
    15  ```hcl
    16  resource "aws_waf_xss_match_set" "xss_match_set" {
    17    name = "xss_match_set"
    18  
    19    xss_match_tuples {
    20      text_transformation = "NONE"
    21  
    22      field_to_match {
    23        type = "URI"
    24      }
    25    }
    26  
    27    xss_match_tuples {
    28      text_transformation = "NONE"
    29  
    30      field_to_match {
    31        type = "QUERY_STRING"
    32      }
    33    }
    34  }
    35  ```
    36  
    37  ## Argument Reference
    38  
    39  The following arguments are supported:
    40  
    41  * `name` - (Required) The name or description of the SizeConstraintSet.
    42  * `xss_match_tuples` - (Optional) The parts of web requests that you want to inspect for cross-site scripting attacks.
    43  
    44  ## Nested Blocks
    45  
    46  ### `xss_match_tuples`
    47  
    48  * `field_to_match` - (Required) Specifies where in a web request to look for cross-site scripting attacks.
    49  * `text_transformation` - (Required) Text transformations used to eliminate unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
    50    If you specify a transformation, AWS WAF performs the transformation on `target_string` before inspecting a request for a match.
    51    e.g. `CMD_LINE`, `HTML_ENTITY_DECODE` or `NONE`.
    52    See [docs](http://docs.aws.amazon.com/waf/latest/APIReference/API_XssMatchTuple.html#WAF-Type-XssMatchTuple-TextTransformation)
    53    for all supported values.
    54  
    55  ### `field_to_match`
    56  
    57  #### Arguments
    58  
    59  * `data` - (Optional) When `type` is `HEADER`, enter the name of the header that you want to search, e.g. `User-Agent` or `Referer`.
    60    If `type` is any other value, omit this field.
    61  * `type` - (Required) The part of the web request that you want AWS WAF to search for a specified string.
    62    e.g. `HEADER`, `METHOD` or `BODY`.
    63    See [docs](http://docs.aws.amazon.com/waf/latest/APIReference/API_FieldToMatch.html)
    64    for all supported values.
    65  
    66  
    67  ## Remarks
    68  
    69  ## Attributes Reference
    70  
    71  The following attributes are exported:
    72  
    73  * `id` - The ID of the WAF XssMatchSet.