Skip to content

Commit

Permalink
Top-level WAF (#7222)
Browse files Browse the repository at this point in the history
  • Loading branch information
@venkatsvpr @tjprescott
venkatsvpr authored and tjprescott committed Oct 2, 2019
1 parent 7fde8a0 commit f8a5884
Show file tree
Hide file tree
Showing 5 changed files with 278 additions and 17 deletions.
17 changes: 14 additions & 3 deletions ...ork/resource-manager/Microsoft.Network/stable/2019-08-01/examples/WafListAllPolicies.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,11 @@
"resourceState": "Enabled",
"provisioningState": "Succeeded",
"policySettings": {
"enabledState": "Enabled",
"mode": "Prevention"
"state": "Enabled",
"mode": "Prevention",
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 750,
"requestBodyCheck" : true
},
"customRules": [
{
Expand Down Expand Up @@ -81,7 +84,15 @@
],
"action": "Block"
}
]
],
"managedRules" :{
"managedRuleSets": [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0"
}
]
}
}
}
]
Expand Down
15 changes: 13 additions & 2 deletions ...etwork/resource-manager/Microsoft.Network/stable/2019-08-01/examples/WafListPolicies.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,19 @@
"resourceState": "Enabled",
"provisioningState": "Succeeded",
"policySettings": {
"enabledState": "Enabled",
"mode": "Prevention"
"state": "Enabled",
"mode": "Detection",
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 750,
"requestBodyCheck" : true
},
"managedRules": {
"managedRuleSets": [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0"
}
]
},
"customRules": [
{
Expand Down
38 changes: 34 additions & 4 deletions ...esource-manager/Microsoft.Network/stable/2019-08-01/examples/WafPolicyCreateOrUpdate.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,14 @@
"parameters": {
"location": "WestUs",
"properties": {
"managedRules" : {
"managedRuleSets" : [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0"
}
]
},
"customRules": [
{
"name": "Rule1",
Expand Down Expand Up @@ -80,8 +88,19 @@
"resourceState": "Enabled",
"provisioningState": "Succeeded",
"policySettings": {
"enabledState": "Enabled",
"mode": "Prevention"
"state": "Enabled",
"mode": "Detection",
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 750,
"requestBodyCheck" : true
},
"managedRules" : {
"managedRuleSets" : [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0"
}
]
},
"customRules": [
{
Expand Down Expand Up @@ -159,8 +178,19 @@
"resourceState": "Enabled",
"provisioningState": "Succeeded",
"policySettings": {
"enabledState": "Enabled",
"mode": "Prevention"
"state": "Enabled",
"mode": "Detection",
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 750,
"requestBodyCheck" : true
},
"managedRules" : {
"managedRuleSets" : [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0"
}
]
},
"customRules": [
{
Expand Down
57 changes: 54 additions & 3 deletions ...n/network/resource-manager/Microsoft.Network/stable/2019-08-01/examples/WafPolicyGet.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,11 @@
"resourceState": "Enabled",
"provisioningState": "Succeeded",
"policySettings": {
"enabledState": "Enabled",
"mode": "Prevention"
"state": "Enabled",
"mode": "Prevention",
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 750,
"requestBodyCheck" : true
},
"customRules": [
{
Expand Down Expand Up @@ -81,7 +84,55 @@
],
"action": "Block"
}
]
],
"managedRules": {
"managedRuleSets" : [
{
"ruleSetType" : "OWASP",
"ruleSetVersion" : "3.0",
"ruleGroupOverrides" : [
{
"ruleGroupName" : "REQUEST-942-APPLICATION-ATTACK-SQLI",
"rules" : [
{
"ruleId" : "942130",
"state" : "Disabled"
},
{
"ruleId" : "942110",
"state" : "Disabled"
}
]
},
{
"ruleGroupName" : "REQUEST-920-PROTOCOL-ENFORCEMENT",
"rules" : [
{
"ruleId" : "920100",
"state" : "Disabled"
},
{
"ruleId" : "920120",
"state" : "Disabled"
}
]
}
]
}
],
"exclusions": [
{
"matchVariable" : "RequestHeaderNames",
"selectorMatchOperator" : "Equals",
"selector" : "testHeader1"
},
{
"matchVariable" : "RequestHeaderNames",
"selectorMatchOperator" : "StartsWith",
"selector" : "testHeader2"
}
]
}
}
}
}
Expand Down
Loading

0 comments on commit f8a5884

Please sign in to comment.