github.com/nginxinc/kubernetes-ingress@v1.12.5/deployments/common/crds/appprotect.f5.com_appolicies.yaml (about) 1 apiVersion: apiextensions.k8s.io/v1 2 kind: CustomResourceDefinition 3 metadata: 4 annotations: 5 controller-gen.kubebuilder.io/version: v0.4.0 6 creationTimestamp: null 7 name: appolicies.appprotect.f5.com 8 spec: 9 group: appprotect.f5.com 10 names: 11 kind: APPolicy 12 listKind: APPolicyList 13 plural: appolicies 14 singular: appolicy 15 preserveUnknownFields: false 16 scope: Namespaced 17 versions: 18 - name: v1beta1 19 schema: 20 openAPIV3Schema: 21 description: APPolicyConfig is the Schema for the APPolicyconfigs API 22 properties: 23 apiVersion: 24 description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' 25 type: string 26 kind: 27 description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' 28 type: string 29 metadata: 30 type: object 31 spec: 32 description: APPolicySpec defines the desired state of APPolicy 33 properties: 34 modifications: 35 items: 36 properties: 37 action: 38 type: string 39 description: 40 type: string 41 entity: 42 properties: 43 name: 44 type: string 45 type: object 46 entityChanges: 47 properties: 48 type: 49 type: string 50 type: object 51 type: object 52 x-kubernetes-preserve-unknown-fields: true 53 type: array 54 modificationsReference: 55 properties: 56 link: 57 pattern: ^http 58 type: string 59 type: object 60 policy: 61 description: Defines the App Protect policy 62 properties: 63 applicationLanguage: 64 enum: 65 - iso-8859-10 66 - iso-8859-6 67 - windows-1255 68 - auto-detect 69 - koi8-r 70 - gb18030 71 - iso-8859-8 72 - windows-1250 73 - iso-8859-9 74 - windows-1252 75 - iso-8859-16 76 - gb2312 77 - iso-8859-2 78 - iso-8859-5 79 - windows-1257 80 - windows-1256 81 - iso-8859-13 82 - windows-874 83 - windows-1253 84 - iso-8859-3 85 - euc-jp 86 - utf-8 87 - gbk 88 - windows-1251 89 - big5 90 - iso-8859-1 91 - shift_jis 92 - euc-kr 93 - iso-8859-4 94 - iso-8859-7 95 - iso-8859-15 96 type: string 97 blocking-settings: 98 properties: 99 evasions: 100 items: 101 properties: 102 description: 103 enum: 104 - '%u decoding' 105 - Apache whitespace 106 - Bad unescape 107 - Bare byte decoding 108 - Directory traversals 109 - IIS backslashes 110 - IIS Unicode codepoints 111 - Multiple decoding 112 type: string 113 enabled: 114 type: boolean 115 maxDecodingPasses: 116 type: integer 117 type: object 118 type: array 119 http-protocols: 120 items: 121 properties: 122 description: 123 enum: 124 - Unescaped space in URL 125 - Unparsable request content 126 - Several Content-Length headers 127 - 'POST request with Content-Length: 0' 128 - Null in request 129 - No Host header in HTTP/1.1 request 130 - Multiple host headers 131 - Host header contains IP address 132 - High ASCII characters in headers 133 - Header name with no header value 134 - CRLF characters before request start 135 - Content length should be a positive number 136 - Chunked request with Content-Length header 137 - Check maximum number of parameters 138 - Check maximum number of headers 139 - Body in GET or HEAD requests 140 - Bad multipart/form-data request parsing 141 - Bad multipart parameters parsing 142 - Bad HTTP version 143 - Bad host header value 144 type: string 145 enabled: 146 type: boolean 147 maxHeaders: 148 type: integer 149 maxParams: 150 type: integer 151 type: object 152 type: array 153 violations: 154 items: 155 properties: 156 alarm: 157 type: boolean 158 block: 159 type: boolean 160 description: 161 type: string 162 name: 163 enum: 164 - VIOL_GRPC_FORMAT 165 - VIOL_GRPC_MALFORMED 166 - VIOL_GRPC_METHOD 167 - VIOL_PARAMETER_ARRAY_VALUE 168 - VIOL_PARAMETER_VALUE_REGEXP 169 - VIOL_CSRF 170 - VIOL_PARAMETER_VALUE_BASE64 171 - VIOL_MANDATORY_HEADER 172 - VIOL_HEADER_REPEATED 173 - VIOL_ASM_COOKIE_MODIFIED 174 - VIOL_BLACKLISTED_IP 175 - VIOL_COOKIE_EXPIRED 176 - VIOL_COOKIE_LENGTH 177 - VIOL_COOKIE_MALFORMED 178 - VIOL_COOKIE_MODIFIED 179 - VIOL_DATA_GUARD 180 - VIOL_ENCODING 181 - VIOL_EVASION 182 - VIOL_FILETYPE 183 - VIOL_FILE_UPLOAD 184 - VIOL_FILE_UPLOAD_IN_BODY 185 - VIOL_HEADER_LENGTH 186 - VIOL_HEADER_METACHAR 187 - VIOL_HTTP_PROTOCOL 188 - VIOL_HTTP_RESPONSE_STATUS 189 - VIOL_JSON_FORMAT 190 - VIOL_JSON_MALFORMED 191 - VIOL_JSON_SCHEMA 192 - VIOL_MANDATORY_PARAMETER 193 - VIOL_MANDATORY_REQUEST_BODY 194 - VIOL_METHOD 195 - VIOL_PARAMETER 196 - VIOL_PARAMETER_DATA_TYPE 197 - VIOL_PARAMETER_EMPTY_VALUE 198 - VIOL_PARAMETER_LOCATION 199 - VIOL_PARAMETER_MULTIPART_NULL_VALUE 200 - VIOL_PARAMETER_NAME_METACHAR 201 - VIOL_PARAMETER_NUMERIC_VALUE 202 - VIOL_PARAMETER_REPEATED 203 - VIOL_PARAMETER_STATIC_VALUE 204 - VIOL_PARAMETER_VALUE_LENGTH 205 - VIOL_PARAMETER_VALUE_METACHAR 206 - VIOL_POST_DATA_LENGTH 207 - VIOL_QUERY_STRING_LENGTH 208 - VIOL_RATING_THREAT 209 - VIOL_RATING_NEED_EXAMINATION 210 - VIOL_REQUEST_MAX_LENGTH 211 - VIOL_REQUEST_LENGTH 212 - VIOL_THREAT_CAMPAIGN 213 - VIOL_URL 214 - VIOL_URL_CONTENT_TYPE 215 - VIOL_URL_LENGTH 216 - VIOL_URL_METACHAR 217 - VIOL_XML_FORMAT 218 - VIOL_XML_MALFORMED 219 type: string 220 type: object 221 type: array 222 type: object 223 blockingSettingReference: 224 properties: 225 link: 226 pattern: ^http 227 type: string 228 type: object 229 bot-defense: 230 properties: 231 mitigations: 232 properties: 233 anomalies: 234 items: 235 properties: 236 action: 237 enum: 238 - alarm 239 - block 240 - default 241 - detect 242 - ignore 243 type: string 244 name: 245 type: string 246 scoreThreshold: 247 pattern: '[0-9]|[1-9][0-9]|1[0-4][0-9]|150|default' 248 type: string 249 type: object 250 type: array 251 browsers: 252 items: 253 properties: 254 $action: 255 enum: 256 - delete 257 type: string 258 action: 259 enum: 260 - alarm 261 - block 262 - detect 263 type: string 264 maxVersion: 265 maximum: 2147483647 266 minimum: 0 267 type: integer 268 minVersion: 269 maximum: 2147483647 270 minimum: 0 271 type: integer 272 name: 273 type: string 274 type: object 275 type: array 276 classes: 277 items: 278 properties: 279 action: 280 enum: 281 - alarm 282 - block 283 - detect 284 - ignore 285 type: string 286 name: 287 enum: 288 - browser 289 - malicious-bot 290 - suspicious-browser 291 - trusted-bot 292 - unknown 293 - untrusted-bot 294 type: string 295 type: object 296 type: array 297 signatures: 298 items: 299 properties: 300 action: 301 enum: 302 - alarm 303 - block 304 - detect 305 - ignore 306 type: string 307 name: 308 type: string 309 type: object 310 type: array 311 type: object 312 settings: 313 properties: 314 isEnabled: 315 type: boolean 316 type: object 317 type: object 318 browser-definitions: 319 items: 320 properties: 321 $action: 322 enum: 323 - delete 324 type: string 325 isUserDefined: 326 type: boolean 327 matchRegex: 328 type: string 329 matchString: 330 type: string 331 name: 332 type: string 333 type: object 334 type: array 335 caseInsensitive: 336 type: boolean 337 character-sets: 338 items: 339 properties: 340 characterSet: 341 items: 342 properties: 343 isAllowed: 344 type: boolean 345 metachar: 346 type: string 347 type: object 348 type: array 349 characterSetType: 350 enum: 351 - gwt-content 352 - header 353 - json-content 354 - parameter-name 355 - parameter-value 356 - plain-text-content 357 - url 358 - xml-content 359 type: string 360 type: object 361 type: array 362 characterSetReference: 363 properties: 364 link: 365 pattern: ^http 366 type: string 367 type: object 368 cookie-settings: 369 properties: 370 maximumCookieHeaderLength: 371 pattern: any|\d+ 372 type: string 373 type: object 374 cookieReference: 375 properties: 376 link: 377 pattern: ^http 378 type: string 379 type: object 380 cookieSettingsReference: 381 properties: 382 link: 383 pattern: ^http 384 type: string 385 type: object 386 cookies: 387 items: 388 properties: 389 accessibleOnlyThroughTheHttpProtocol: 390 type: boolean 391 attackSignaturesCheck: 392 type: boolean 393 decodeValueAsBase64: 394 enum: 395 - enabled 396 - disabled 397 - required 398 type: string 399 enforcementType: 400 type: string 401 insertSameSiteAttribute: 402 enum: 403 - lax 404 - none 405 - none-value 406 - strict 407 type: string 408 name: 409 type: string 410 securedOverHttpsConnection: 411 type: boolean 412 signatureOverrides: 413 items: 414 properties: 415 enabled: 416 type: boolean 417 name: 418 type: string 419 signatureId: 420 type: integer 421 tag: 422 type: string 423 type: object 424 type: array 425 type: 426 enum: 427 - explicit 428 - wildcard 429 type: string 430 wildcardOrder: 431 type: integer 432 type: object 433 type: array 434 csrf-protection: 435 properties: 436 enabled: 437 type: boolean 438 expirationTimeInSeconds: 439 pattern: disabled|\d+ 440 type: string 441 sslOnly: 442 type: boolean 443 type: object 444 csrf-urls: 445 items: 446 properties: 447 $action: 448 enum: 449 - delete 450 type: string 451 enforcementAction: 452 enum: 453 - verify-origin 454 - none 455 type: string 456 method: 457 enum: 458 - GET 459 - POST 460 - any 461 type: string 462 url: 463 type: string 464 wildcardOrder: 465 type: integer 466 type: object 467 type: array 468 data-guard: 469 properties: 470 creditCardNumbers: 471 type: boolean 472 enabled: 473 type: boolean 474 enforcementMode: 475 enum: 476 - ignore-urls-in-list 477 - enforce-urls-in-list 478 type: string 479 enforcementUrls: 480 items: 481 type: string 482 type: array 483 lastCcnDigitsToExpose: 484 type: integer 485 lastSsnDigitsToExpose: 486 type: integer 487 maskData: 488 type: boolean 489 usSocialSecurityNumbers: 490 type: boolean 491 type: object 492 dataGuardReference: 493 properties: 494 link: 495 pattern: ^http 496 type: string 497 type: object 498 description: 499 type: string 500 enablePassiveMode: 501 type: boolean 502 enforcementMode: 503 enum: 504 - transparent 505 - blocking 506 type: string 507 filetypeReference: 508 properties: 509 link: 510 pattern: ^http 511 type: string 512 type: object 513 filetypes: 514 items: 515 properties: 516 action: 517 type: string 518 allowed: 519 type: boolean 520 checkPostDataLength: 521 type: boolean 522 checkQueryStringLength: 523 type: boolean 524 checkRequestLength: 525 type: boolean 526 checkUrlLength: 527 type: boolean 528 name: 529 type: string 530 postDataLength: 531 type: integer 532 queryStringLength: 533 type: integer 534 requestLength: 535 type: integer 536 responseCheck: 537 type: boolean 538 type: 539 enum: 540 - explicit 541 - wildcard 542 type: string 543 urlLength: 544 type: integer 545 wildcardOrder: 546 type: integer 547 type: object 548 type: array 549 fullPath: 550 type: string 551 general: 552 properties: 553 allowedResponseCodes: 554 items: 555 format: int32 556 maximum: 999 557 minimum: 100 558 type: integer 559 type: array 560 customXffHeaders: 561 items: 562 type: string 563 type: array 564 maskCreditCardNumbersInRequest: 565 type: boolean 566 trustXff: 567 type: boolean 568 type: object 569 generalReference: 570 properties: 571 link: 572 pattern: ^http 573 type: string 574 type: object 575 grpc-profiles: 576 items: 577 properties: 578 associateUrls: 579 type: boolean 580 attackSignaturesCheck: 581 type: boolean 582 defenseAttributes: 583 properties: 584 allowUnknownFields: 585 type: boolean 586 maximumDataLength: 587 pattern: any|\d+ 588 type: string 589 type: object 590 description: 591 type: string 592 hasIdlFiles: 593 type: boolean 594 idlFiles: 595 items: 596 properties: 597 idlFile: 598 properties: 599 contents: 600 type: string 601 fileName: 602 type: string 603 isBase64: 604 type: boolean 605 type: object 606 isPrimary: 607 type: boolean 608 primaryIdlFileName: 609 type: string 610 type: object 611 type: array 612 metacharElementCheck: 613 type: boolean 614 name: 615 type: string 616 signatureOverrides: 617 items: 618 properties: 619 enabled: 620 type: boolean 621 name: 622 type: string 623 signatureId: 624 type: integer 625 tag: 626 type: string 627 type: object 628 type: array 629 type: object 630 type: array 631 header-settings: 632 properties: 633 maximumHttpHeaderLength: 634 pattern: any|\d+ 635 type: string 636 type: object 637 headerReference: 638 properties: 639 link: 640 pattern: ^http 641 type: string 642 type: object 643 headerSettingsReference: 644 properties: 645 link: 646 pattern: ^http 647 type: string 648 type: object 649 headers: 650 items: 651 properties: 652 allowRepeatedOccurrences: 653 type: boolean 654 base64Decoding: 655 type: boolean 656 checkSignatures: 657 type: boolean 658 decodeValueAsBase64: 659 enum: 660 - enabled 661 - disabled 662 - required 663 type: string 664 htmlNormalization: 665 type: boolean 666 mandatory: 667 type: boolean 668 maskValueInLogs: 669 type: boolean 670 name: 671 type: string 672 normalizationViolations: 673 type: boolean 674 percentDecoding: 675 type: boolean 676 signatureOverrides: 677 items: 678 properties: 679 enabled: 680 type: boolean 681 name: 682 type: string 683 signatureId: 684 type: integer 685 tag: 686 type: string 687 type: object 688 type: array 689 type: 690 enum: 691 - explicit 692 - wildcard 693 type: string 694 urlNormalization: 695 type: boolean 696 wildcardOrder: 697 type: integer 698 type: object 699 type: array 700 host-names: 701 items: 702 properties: 703 $action: 704 enum: 705 - delete 706 type: string 707 includeSubdomains: 708 type: boolean 709 name: 710 type: string 711 type: object 712 type: array 713 idl-files: 714 items: 715 properties: 716 contents: 717 type: string 718 fileName: 719 type: string 720 isBase64: 721 type: boolean 722 type: object 723 type: array 724 json-profiles: 725 items: 726 properties: 727 attackSignaturesCheck: 728 type: boolean 729 defenseAttributes: 730 properties: 731 maximumArrayLength: 732 pattern: any|\d+ 733 type: string 734 maximumStructureDepth: 735 pattern: any|\d+ 736 type: string 737 maximumTotalLengthOfJSONData: 738 pattern: any|\d+ 739 type: string 740 maximumValueLength: 741 pattern: any|\d+ 742 type: string 743 tolerateJSONParsingWarnings: 744 type: boolean 745 type: object 746 description: 747 type: string 748 handleJsonValuesAsParameters: 749 type: boolean 750 hasValidationFiles: 751 type: boolean 752 metacharOverrides: 753 items: 754 properties: 755 isAllowed: 756 type: boolean 757 metachar: 758 type: string 759 type: object 760 type: array 761 name: 762 type: string 763 signatureOverrides: 764 items: 765 properties: 766 enabled: 767 type: boolean 768 name: 769 type: string 770 signatureId: 771 type: integer 772 tag: 773 type: string 774 type: object 775 type: array 776 validationFiles: 777 items: 778 properties: 779 importUrl: 780 type: string 781 isPrimary: 782 type: boolean 783 jsonValidationFile: 784 properties: 785 contents: 786 type: string 787 fileName: 788 type: string 789 isBase64: 790 type: boolean 791 type: object 792 type: object 793 type: array 794 type: object 795 type: array 796 json-validation-files: 797 items: 798 properties: 799 contents: 800 type: string 801 fileName: 802 type: string 803 isBase64: 804 type: boolean 805 type: object 806 type: array 807 jsonProfileReference: 808 properties: 809 link: 810 pattern: ^http 811 type: string 812 type: object 813 jsonValidationFileReference: 814 properties: 815 link: 816 pattern: ^http 817 type: string 818 type: object 819 methodReference: 820 properties: 821 link: 822 pattern: ^http 823 type: string 824 type: object 825 methods: 826 items: 827 properties: 828 action: 829 type: string 830 name: 831 type: string 832 type: object 833 type: array 834 name: 835 type: string 836 open-api-files: 837 items: 838 properties: 839 link: 840 pattern: ^http 841 type: string 842 type: object 843 type: array 844 parameterReference: 845 properties: 846 link: 847 pattern: ^http 848 type: string 849 type: object 850 parameters: 851 items: 852 properties: 853 allowEmptyValue: 854 type: boolean 855 allowRepeatedParameterName: 856 type: boolean 857 arraySerializationFormat: 858 enum: 859 - csv 860 - form 861 - label 862 - matrix 863 - multi 864 - multipart 865 - pipe 866 - ssv 867 - tsv 868 type: string 869 attackSignaturesCheck: 870 type: boolean 871 checkMaxValue: 872 type: boolean 873 checkMaxValueLength: 874 type: boolean 875 checkMetachars: 876 type: boolean 877 checkMinValue: 878 type: boolean 879 checkMinValueLength: 880 type: boolean 881 checkMultipleOfValue: 882 type: boolean 883 contentProfile: 884 properties: 885 name: 886 type: string 887 type: object 888 dataType: 889 enum: 890 - alpha-numeric 891 - binary 892 - boolean 893 - decimal 894 - email 895 - integer 896 - none 897 - phone 898 type: string 899 decodeValueAsBase64: 900 enum: 901 - enabled 902 - disabled 903 - required 904 type: string 905 disallowFileUploadOfExecutables: 906 type: boolean 907 enableRegularExpression: 908 type: boolean 909 exclusiveMax: 910 type: boolean 911 exclusiveMin: 912 type: boolean 913 isBase64: 914 type: boolean 915 isCookie: 916 type: boolean 917 isHeader: 918 type: boolean 919 level: 920 enum: 921 - global 922 - url 923 type: string 924 mandatory: 925 type: boolean 926 maximumLength: 927 type: integer 928 maximumValue: 929 type: integer 930 metacharsOnParameterValueCheck: 931 type: boolean 932 minimumLength: 933 type: integer 934 minimumValue: 935 type: integer 936 multipleOf: 937 type: integer 938 name: 939 type: string 940 nameMetacharOverrides: 941 items: 942 properties: 943 isAllowed: 944 type: boolean 945 metachar: 946 type: string 947 type: object 948 type: array 949 objectSerializationStyle: 950 type: string 951 parameterEnumValues: 952 items: 953 type: string 954 type: array 955 parameterLocation: 956 enum: 957 - any 958 - cookie 959 - form-data 960 - header 961 - path 962 - query 963 type: string 964 regularExpression: 965 type: string 966 sensitiveParameter: 967 type: boolean 968 signatureOverrides: 969 items: 970 properties: 971 enabled: 972 type: boolean 973 name: 974 type: string 975 signatureId: 976 type: integer 977 tag: 978 type: string 979 type: object 980 type: array 981 staticValues: 982 type: string 983 type: 984 enum: 985 - explicit 986 - wildcard 987 type: string 988 url: 989 type: object 990 valueMetacharOverrides: 991 items: 992 properties: 993 isAllowed: 994 type: boolean 995 metachar: 996 type: string 997 type: object 998 type: array 999 valueType: 1000 enum: 1001 - array 1002 - auto-detect 1003 - dynamic-content 1004 - dynamic-parameter-name 1005 - ignore 1006 - json 1007 - object 1008 - openapi-array 1009 - static-content 1010 - user-input 1011 - xml 1012 type: string 1013 wildcardOrder: 1014 type: integer 1015 type: object 1016 type: array 1017 response-pages: 1018 items: 1019 properties: 1020 ajaxActionType: 1021 enum: 1022 - alert-popup 1023 - custom 1024 - redirect 1025 type: string 1026 ajaxCustomContent: 1027 type: string 1028 ajaxEnabled: 1029 type: boolean 1030 ajaxPopupMessage: 1031 type: string 1032 ajaxRedirectUrl: 1033 type: string 1034 grpcStatusCode: 1035 pattern: ABORTED|ALREADY_EXISTS|CANCELLED|DATA_LOSS|DEADLINE_EXCEEDED|FAILED_PRECONDITION|INTERNAL|INVALID_ARGUMENT|NOT_FOUND|OK|OUT_OF_RANGE|PERMISSION_DENIED|RESOURCE_EXHAUSTED|UNAUTHENTICATED|UNAVAILABLE|UNIMPLEMENTED|UNKNOWN|d+ 1036 type: string 1037 grpcStatusMessage: 1038 type: string 1039 responseActionType: 1040 enum: 1041 - custom 1042 - default 1043 - erase-cookies 1044 - redirect 1045 - soap-fault 1046 type: string 1047 responseContent: 1048 type: string 1049 responseHeader: 1050 type: string 1051 responsePageType: 1052 enum: 1053 - ajax 1054 - ajax-login 1055 - captcha 1056 - captcha-fail 1057 - default 1058 - failed-login-honeypot 1059 - failed-login-honeypot-ajax 1060 - hijack 1061 - leaked-credentials 1062 - leaked-credentials-ajax 1063 - mobile 1064 - persistent-flow 1065 - xml 1066 - grpc 1067 type: string 1068 responseRedirectUrl: 1069 type: string 1070 type: object 1071 type: array 1072 responsePageReference: 1073 properties: 1074 link: 1075 pattern: ^http 1076 type: string 1077 type: object 1078 sensitive-parameters: 1079 items: 1080 properties: 1081 name: 1082 type: string 1083 type: object 1084 type: array 1085 sensitiveParameterReference: 1086 properties: 1087 link: 1088 pattern: ^http 1089 type: string 1090 type: object 1091 server-technologies: 1092 items: 1093 properties: 1094 serverTechnologyName: 1095 enum: 1096 - Jenkins 1097 - SharePoint 1098 - Oracle Application Server 1099 - Python 1100 - Oracle Identity Manager 1101 - Spring Boot 1102 - CouchDB 1103 - SQLite 1104 - Handlebars 1105 - Mustache 1106 - Prototype 1107 - Zend 1108 - Redis 1109 - Underscore.js 1110 - Ember.js 1111 - ZURB Foundation 1112 - ef.js 1113 - Vue.js 1114 - UIKit 1115 - TYPO3 CMS 1116 - RequireJS 1117 - React 1118 - MooTools 1119 - Laravel 1120 - GraphQL 1121 - Google Web Toolkit 1122 - Express.js 1123 - CodeIgniter 1124 - Backbone.js 1125 - AngularJS 1126 - JavaScript 1127 - Nginx 1128 - Jetty 1129 - Joomla 1130 - JavaServer Faces (JSF) 1131 - Ruby 1132 - MongoDB 1133 - Django 1134 - Node.js 1135 - Citrix 1136 - JBoss 1137 - Elasticsearch 1138 - Apache Struts 1139 - XML 1140 - PostgreSQL 1141 - IBM DB2 1142 - Sybase/ASE 1143 - CGI 1144 - Proxy Servers 1145 - SSI (Server Side Includes) 1146 - Cisco 1147 - Novell 1148 - Macromedia JRun 1149 - BEA Systems WebLogic Server 1150 - Lotus Domino 1151 - MySQL 1152 - Oracle 1153 - Microsoft SQL Server 1154 - PHP 1155 - Outlook Web Access 1156 - Apache/NCSA HTTP Server 1157 - Apache Tomcat 1158 - WordPress 1159 - Macromedia ColdFusion 1160 - Unix/Linux 1161 - Microsoft Windows 1162 - ASP.NET 1163 - Front Page Server Extensions (FPSE) 1164 - IIS 1165 - WebDAV 1166 - ASP 1167 - Java Servlets/JSP 1168 - jQuery 1169 type: string 1170 type: object 1171 type: array 1172 serverTechnologyReference: 1173 properties: 1174 link: 1175 pattern: ^http 1176 type: string 1177 type: object 1178 signature-requirements: 1179 items: 1180 properties: 1181 tag: 1182 type: string 1183 type: object 1184 type: array 1185 signature-sets: 1186 items: 1187 properties: 1188 alarm: 1189 type: boolean 1190 block: 1191 type: boolean 1192 name: 1193 type: string 1194 type: object 1195 x-kubernetes-preserve-unknown-fields: true 1196 type: array 1197 signature-settings: 1198 properties: 1199 attackSignatureFalsePositiveMode: 1200 enum: 1201 - detect 1202 - detect-and-allow 1203 - disabled 1204 type: string 1205 minimumAccuracyForAutoAddedSignatures: 1206 enum: 1207 - high 1208 - low 1209 - medium 1210 type: string 1211 type: object 1212 signatureReference: 1213 properties: 1214 link: 1215 pattern: ^http 1216 type: string 1217 type: object 1218 signatureSetReference: 1219 properties: 1220 link: 1221 pattern: ^http 1222 type: string 1223 type: object 1224 signatureSettingReference: 1225 properties: 1226 link: 1227 pattern: ^http 1228 type: string 1229 type: object 1230 signatures: 1231 items: 1232 properties: 1233 enabled: 1234 type: boolean 1235 name: 1236 type: string 1237 signatureId: 1238 type: integer 1239 tag: 1240 type: string 1241 type: object 1242 type: array 1243 softwareVersion: 1244 type: string 1245 template: 1246 properties: 1247 name: 1248 type: string 1249 type: object 1250 threat-campaigns: 1251 items: 1252 properties: 1253 isEnabled: 1254 type: boolean 1255 name: 1256 type: string 1257 type: object 1258 type: array 1259 threatCampaignReference: 1260 properties: 1261 link: 1262 pattern: ^http 1263 type: string 1264 type: object 1265 urlReference: 1266 properties: 1267 link: 1268 pattern: ^http 1269 type: string 1270 type: object 1271 urls: 1272 items: 1273 properties: 1274 $action: 1275 enum: 1276 - delete 1277 type: string 1278 allowRenderingInFrames: 1279 enum: 1280 - never 1281 - only-same 1282 type: string 1283 allowRenderingInFramesOnlyFrom: 1284 type: string 1285 attackSignaturesCheck: 1286 type: boolean 1287 clickjackingProtection: 1288 type: boolean 1289 description: 1290 type: string 1291 disallowFileUploadOfExecutables: 1292 type: boolean 1293 html5CrossOriginRequestsEnforcement: 1294 properties: 1295 allowOriginsEnforcementMode: 1296 enum: 1297 - replace-with 1298 - unmodified 1299 type: string 1300 checkAllowedMethods: 1301 type: boolean 1302 crossDomainAllowedOrigin: 1303 items: 1304 properties: 1305 includeSubDomains: 1306 type: boolean 1307 originName: 1308 type: string 1309 originPort: 1310 pattern: any|\d+ 1311 type: string 1312 originProtocol: 1313 enum: 1314 - http 1315 - http/https 1316 - https 1317 type: string 1318 type: object 1319 type: array 1320 enforcementMode: 1321 enum: 1322 - disabled 1323 - enforce 1324 type: string 1325 type: object 1326 isAllowed: 1327 type: boolean 1328 mandatoryBody: 1329 type: boolean 1330 metacharOverrides: 1331 items: 1332 properties: 1333 isAllowed: 1334 type: boolean 1335 metachar: 1336 type: string 1337 type: object 1338 type: array 1339 metacharsOnUrlCheck: 1340 type: boolean 1341 method: 1342 enum: 1343 - ACL 1344 - BCOPY 1345 - BDELETE 1346 - BMOVE 1347 - BPROPFIND 1348 - BPROPPATCH 1349 - CHECKIN 1350 - CHECKOUT 1351 - CONNECT 1352 - COPY 1353 - DELETE 1354 - GET 1355 - HEAD 1356 - LINK 1357 - LOCK 1358 - MERGE 1359 - MKCOL 1360 - MKWORKSPACE 1361 - MOVE 1362 - NOTIFY 1363 - OPTIONS 1364 - PATCH 1365 - POLL 1366 - POST 1367 - PROPFIND 1368 - PROPPATCH 1369 - PUT 1370 - REPORT 1371 - RPC_IN_DATA 1372 - RPC_OUT_DATA 1373 - SEARCH 1374 - SUBSCRIBE 1375 - TRACE 1376 - TRACK 1377 - UNLINK 1378 - UNLOCK 1379 - UNSUBSCRIBE 1380 - VERSION_CONTROL 1381 - X-MS-ENUMATTS 1382 - '*' 1383 type: string 1384 methodOverrides: 1385 items: 1386 properties: 1387 allowed: 1388 type: boolean 1389 method: 1390 enum: 1391 - ACL 1392 - BCOPY 1393 - BDELETE 1394 - BMOVE 1395 - BPROPFIND 1396 - BPROPPATCH 1397 - CHECKIN 1398 - CHECKOUT 1399 - CONNECT 1400 - COPY 1401 - DELETE 1402 - GET 1403 - HEAD 1404 - LINK 1405 - LOCK 1406 - MERGE 1407 - MKCOL 1408 - MKWORKSPACE 1409 - MOVE 1410 - NOTIFY 1411 - OPTIONS 1412 - PATCH 1413 - POLL 1414 - POST 1415 - PROPFIND 1416 - PROPPATCH 1417 - PUT 1418 - REPORT 1419 - RPC_IN_DATA 1420 - RPC_OUT_DATA 1421 - SEARCH 1422 - SUBSCRIBE 1423 - TRACE 1424 - TRACK 1425 - UNLINK 1426 - UNLOCK 1427 - UNSUBSCRIBE 1428 - VERSION_CONTROL 1429 - X-MS-ENUMATTS 1430 type: string 1431 type: object 1432 type: array 1433 methodsOverrideOnUrlCheck: 1434 type: boolean 1435 name: 1436 type: string 1437 operationId: 1438 type: string 1439 positionalParameters: 1440 items: 1441 properties: 1442 parameter: 1443 properties: 1444 allowEmptyValue: 1445 type: boolean 1446 allowRepeatedParameterName: 1447 type: boolean 1448 arraySerializationFormat: 1449 enum: 1450 - csv 1451 - form 1452 - label 1453 - matrix 1454 - multi 1455 - multipart 1456 - pipe 1457 - ssv 1458 - tsv 1459 type: string 1460 attackSignaturesCheck: 1461 type: boolean 1462 checkMaxValue: 1463 type: boolean 1464 checkMaxValueLength: 1465 type: boolean 1466 checkMetachars: 1467 type: boolean 1468 checkMinValue: 1469 type: boolean 1470 checkMinValueLength: 1471 type: boolean 1472 checkMultipleOfValue: 1473 type: boolean 1474 contentProfile: 1475 properties: 1476 name: 1477 type: string 1478 type: object 1479 dataType: 1480 enum: 1481 - alpha-numeric 1482 - binary 1483 - boolean 1484 - decimal 1485 - email 1486 - integer 1487 - none 1488 - phone 1489 type: string 1490 decodeValueAsBase64: 1491 enum: 1492 - enabled 1493 - disabled 1494 - required 1495 type: string 1496 disallowFileUploadOfExecutables: 1497 type: boolean 1498 enableRegularExpression: 1499 type: boolean 1500 exclusiveMax: 1501 type: boolean 1502 exclusiveMin: 1503 type: boolean 1504 isBase64: 1505 type: boolean 1506 isCookie: 1507 type: boolean 1508 isHeader: 1509 type: boolean 1510 level: 1511 enum: 1512 - global 1513 - url 1514 type: string 1515 mandatory: 1516 type: boolean 1517 maximumLength: 1518 type: integer 1519 maximumValue: 1520 type: integer 1521 metacharsOnParameterValueCheck: 1522 type: boolean 1523 minimumLength: 1524 type: integer 1525 minimumValue: 1526 type: integer 1527 multipleOf: 1528 type: integer 1529 name: 1530 type: string 1531 nameMetacharOverrides: 1532 items: 1533 properties: 1534 isAllowed: 1535 type: boolean 1536 metachar: 1537 type: string 1538 type: object 1539 type: array 1540 objectSerializationStyle: 1541 type: string 1542 parameterEnumValues: 1543 items: 1544 type: string 1545 type: array 1546 parameterLocation: 1547 enum: 1548 - any 1549 - cookie 1550 - form-data 1551 - header 1552 - path 1553 - query 1554 type: string 1555 regularExpression: 1556 type: string 1557 sensitiveParameter: 1558 type: boolean 1559 signatureOverrides: 1560 items: 1561 properties: 1562 enabled: 1563 type: boolean 1564 name: 1565 type: string 1566 signatureId: 1567 type: integer 1568 tag: 1569 type: string 1570 type: object 1571 type: array 1572 staticValues: 1573 type: string 1574 type: 1575 enum: 1576 - explicit 1577 - wildcard 1578 type: string 1579 url: 1580 type: object 1581 valueMetacharOverrides: 1582 items: 1583 properties: 1584 isAllowed: 1585 type: boolean 1586 metachar: 1587 type: string 1588 type: object 1589 type: array 1590 valueType: 1591 enum: 1592 - array 1593 - auto-detect 1594 - dynamic-content 1595 - dynamic-parameter-name 1596 - ignore 1597 - json 1598 - object 1599 - openapi-array 1600 - static-content 1601 - user-input 1602 - xml 1603 type: string 1604 wildcardOrder: 1605 type: integer 1606 type: object 1607 urlSegmentIndex: 1608 type: integer 1609 type: object 1610 type: array 1611 protocol: 1612 enum: 1613 - http 1614 - https 1615 type: string 1616 signatureOverrides: 1617 items: 1618 properties: 1619 enabled: 1620 type: boolean 1621 name: 1622 type: string 1623 signatureId: 1624 type: integer 1625 tag: 1626 type: string 1627 type: object 1628 type: array 1629 type: 1630 enum: 1631 - explicit 1632 - wildcard 1633 type: string 1634 urlContentProfiles: 1635 items: 1636 properties: 1637 contentProfile: 1638 properties: 1639 name: 1640 type: string 1641 type: object 1642 headerName: 1643 type: string 1644 headerOrder: 1645 type: string 1646 headerValue: 1647 type: string 1648 name: 1649 type: string 1650 type: 1651 enum: 1652 - apply-content-signatures 1653 - apply-value-and-content-signatures 1654 - disallow 1655 - do-nothing 1656 - form-data 1657 - gwt 1658 - json 1659 - xml 1660 - grpc 1661 type: string 1662 type: object 1663 type: array 1664 wildcardOrder: 1665 type: integer 1666 type: object 1667 type: array 1668 whitelist-ips: 1669 items: 1670 properties: 1671 blockRequests: 1672 enum: 1673 - always 1674 - never 1675 - policy-default 1676 type: string 1677 ipAddress: 1678 pattern: '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' 1679 type: string 1680 ipMask: 1681 pattern: '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' 1682 type: string 1683 type: object 1684 type: array 1685 whitelistIpReference: 1686 properties: 1687 link: 1688 pattern: ^http 1689 type: string 1690 type: object 1691 xml-profiles: 1692 items: 1693 properties: 1694 attackSignaturesCheck: 1695 type: boolean 1696 defenseAttributes: 1697 properties: 1698 allowCDATA: 1699 type: boolean 1700 allowDTDs: 1701 type: boolean 1702 allowExternalReferences: 1703 type: boolean 1704 allowProcessingInstructions: 1705 type: boolean 1706 maximumAttributeValueLength: 1707 pattern: any|\d+ 1708 type: string 1709 maximumAttributesPerElement: 1710 pattern: any|\d+ 1711 type: string 1712 maximumChildrenPerElement: 1713 pattern: any|\d+ 1714 type: string 1715 maximumDocumentDepth: 1716 pattern: any|\d+ 1717 type: string 1718 maximumDocumentSize: 1719 pattern: any|\d+ 1720 type: string 1721 maximumElements: 1722 pattern: any|\d+ 1723 type: string 1724 maximumNSDeclarations: 1725 pattern: any|\d+ 1726 type: string 1727 maximumNameLength: 1728 pattern: any|\d+ 1729 type: string 1730 maximumNamespaceLength: 1731 pattern: any|\d+ 1732 type: string 1733 tolerateCloseTagShorthand: 1734 type: boolean 1735 tolerateLeadingWhiteSpace: 1736 type: boolean 1737 tolerateNumericNames: 1738 type: boolean 1739 type: object 1740 description: 1741 type: string 1742 enableWss: 1743 type: boolean 1744 followSchemaLinks: 1745 type: boolean 1746 name: 1747 type: string 1748 signatureOverrides: 1749 items: 1750 properties: 1751 enabled: 1752 type: boolean 1753 name: 1754 type: string 1755 signatureId: 1756 type: integer 1757 tag: 1758 type: string 1759 type: object 1760 type: array 1761 type: object 1762 type: array 1763 xml-validation-files: 1764 items: 1765 properties: 1766 contents: 1767 type: string 1768 fileName: 1769 type: string 1770 isBase64: 1771 type: boolean 1772 type: object 1773 type: array 1774 xmlProfileReference: 1775 properties: 1776 link: 1777 pattern: ^http 1778 type: string 1779 type: object 1780 xmlValidationFileReference: 1781 properties: 1782 link: 1783 pattern: ^http 1784 type: string 1785 type: object 1786 type: object 1787 type: object 1788 type: object 1789 served: true 1790 storage: true