github.com/nginxinc/kubernetes-ingress@v1.12.5/examples-of-custom-resources/waf/ap-dataguard-alarm-policy.yaml

github.com/nginxinc/kubernetes-ingress@v1.12.5/examples-of-custom-resources/waf/ap-dataguard-alarm-policy.yaml (about)

     1  apiVersion: appprotect.f5.com/v1beta1
     2  kind: APPolicy
     3  metadata:
     4    name: dataguard-alarm
     5  spec:
     6    policy:
     7      signature-requirements:
     8      - tag: Fruits
     9      signature-sets:
    10      - name: apple_sigs
    11        block: true
    12        signatureSet:
    13          filter:
    14            tagValue: Fruits
    15            tagFilter: eq
    16      applicationLanguage: utf-8
    17      blocking-settings:
    18        violations:
    19        - alarm: true
    20          block: false
    21          name: VIOL_DATA_GUARD
    22      data-guard:
    23        creditCardNumbers: true
    24        enabled: true
    25        enforcementMode: ignore-urls-in-list
    26        enforcementUrls: []
    27        lastCcnDigitsToExpose: 4
    28        lastSsnDigitsToExpose: 4
    29        maskData: true
    30        usSocialSecurityNumbers: true
    31      enforcementMode: blocking
    32      name: dataguard-alarm
    33      template:
    34        name: POLICY_TEMPLATE_NGINX_BASE