// THIS FILE IS AUTOMATICALLY GENERATED. DO NOT EDIT. // Package waf provides a client for AWS WAF. package waf import ( "fmt" "time" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/aws/request" ) const opCreateByteMatchSet = "CreateByteMatchSet" // CreateByteMatchSetRequest generates a "aws/request.Request" representing the // client's request for the CreateByteMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateByteMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateByteMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateByteMatchSetRequest method. // req, resp := client.CreateByteMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateByteMatchSetRequest(input *CreateByteMatchSetInput) (req *request.Request, output *CreateByteMatchSetOutput) { op := &request.Operation{ Name: opCreateByteMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateByteMatchSetInput{} } req = c.newRequest(op, input, output) output = &CreateByteMatchSetOutput{} req.Data = output return } // CreateByteMatchSet API operation for AWS WAF. // // Creates a ByteMatchSet. You then use UpdateByteMatchSet to identify the part // of a web request that you want AWS WAF to inspect, such as the values of // the User-Agent header or the query string. For example, you can create a // ByteMatchSet that matches any requests with User-Agent headers that contain // the string BadBot. You can then configure AWS WAF to reject those requests. // // To create and configure a ByteMatchSet, perform the following steps: // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateByteMatchSet request. // // Submit a CreateByteMatchSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateByteMatchSet request. // // Submit an UpdateByteMatchSet request to specify the part of the request that // you want AWS WAF to inspect (for example, the header or the URI) and the // value that you want AWS WAF to watch for. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateByteMatchSet for usage and error information. // // Returned Error Codes: // * DisallowedNameException // The name specified is invalid. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateByteMatchSet(input *CreateByteMatchSetInput) (*CreateByteMatchSetOutput, error) { req, out := c.CreateByteMatchSetRequest(input) err := req.Send() return out, err } const opCreateIPSet = "CreateIPSet" // CreateIPSetRequest generates a "aws/request.Request" representing the // client's request for the CreateIPSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateIPSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateIPSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateIPSetRequest method. // req, resp := client.CreateIPSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateIPSetRequest(input *CreateIPSetInput) (req *request.Request, output *CreateIPSetOutput) { op := &request.Operation{ Name: opCreateIPSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateIPSetInput{} } req = c.newRequest(op, input, output) output = &CreateIPSetOutput{} req.Data = output return } // CreateIPSet API operation for AWS WAF. // // Creates an IPSet, which you use to specify which web requests you want to // allow or block based on the IP addresses that the requests originate from. // For example, if you're receiving a lot of requests from one or more individual // IP addresses or one or more ranges of IP addresses and you want to block // the requests, you can create an IPSet that contains those IP addresses and // then configure AWS WAF to block the requests. // // To create and configure an IPSet, perform the following steps: // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateIPSet request. // // Submit a CreateIPSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateIPSet request. // // Submit an UpdateIPSet request to specify the IP addresses that you want AWS // WAF to watch for. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateIPSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * DisallowedNameException // The name specified is invalid. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateIPSet(input *CreateIPSetInput) (*CreateIPSetOutput, error) { req, out := c.CreateIPSetRequest(input) err := req.Send() return out, err } const opCreateRule = "CreateRule" // CreateRuleRequest generates a "aws/request.Request" representing the // client's request for the CreateRule operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateRule for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateRule method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateRuleRequest method. // req, resp := client.CreateRuleRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateRuleRequest(input *CreateRuleInput) (req *request.Request, output *CreateRuleOutput) { op := &request.Operation{ Name: opCreateRule, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateRuleInput{} } req = c.newRequest(op, input, output) output = &CreateRuleOutput{} req.Data = output return } // CreateRule API operation for AWS WAF. // // Creates a Rule, which contains the IPSet objects, ByteMatchSet objects, and // other predicates that identify the requests that you want to block. If you // add more than one predicate to a Rule, a request must match all of the specifications // to be allowed or blocked. For example, suppose you add the following to a // Rule: // // * An IPSet that matches the IP address 192.0.2.44/32 // // * A ByteMatchSet that matches BadBot in the User-Agent header // // You then add the Rule to a WebACL and specify that you want to blocks requests // that satisfy the Rule. For a request to be blocked, it must come from the // IP address 192.0.2.44 and the User-Agent header in the request must contain // the value BadBot. // // To create and configure a Rule, perform the following steps: // // Create and update the predicates that you want to include in the Rule. For // more information, see CreateByteMatchSet, CreateIPSet, and CreateSqlInjectionMatchSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateRule request. // // Submit a CreateRule request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateRule request. // // Submit an UpdateRule request to specify the predicates that you want to include // in the Rule. // // Create and update a WebACL that contains the Rule. For more information, // see CreateWebACL. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateRule for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * DisallowedNameException // The name specified is invalid. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateRule(input *CreateRuleInput) (*CreateRuleOutput, error) { req, out := c.CreateRuleRequest(input) err := req.Send() return out, err } const opCreateSizeConstraintSet = "CreateSizeConstraintSet" // CreateSizeConstraintSetRequest generates a "aws/request.Request" representing the // client's request for the CreateSizeConstraintSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateSizeConstraintSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateSizeConstraintSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateSizeConstraintSetRequest method. // req, resp := client.CreateSizeConstraintSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateSizeConstraintSetRequest(input *CreateSizeConstraintSetInput) (req *request.Request, output *CreateSizeConstraintSetOutput) { op := &request.Operation{ Name: opCreateSizeConstraintSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateSizeConstraintSetInput{} } req = c.newRequest(op, input, output) output = &CreateSizeConstraintSetOutput{} req.Data = output return } // CreateSizeConstraintSet API operation for AWS WAF. // // Creates a SizeConstraintSet. You then use UpdateSizeConstraintSet to identify // the part of a web request that you want AWS WAF to check for length, such // as the length of the User-Agent header or the length of the query string. // For example, you can create a SizeConstraintSet that matches any requests // that have a query string that is longer than 100 bytes. You can then configure // AWS WAF to reject those requests. // // To create and configure a SizeConstraintSet, perform the following steps: // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateSizeConstraintSet request. // // Submit a CreateSizeConstraintSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateSizeConstraintSet request. // // Submit an UpdateSizeConstraintSet request to specify the part of the request // that you want AWS WAF to inspect (for example, the header or the URI) and // the value that you want AWS WAF to watch for. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateSizeConstraintSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * DisallowedNameException // The name specified is invalid. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateSizeConstraintSet(input *CreateSizeConstraintSetInput) (*CreateSizeConstraintSetOutput, error) { req, out := c.CreateSizeConstraintSetRequest(input) err := req.Send() return out, err } const opCreateSqlInjectionMatchSet = "CreateSqlInjectionMatchSet" // CreateSqlInjectionMatchSetRequest generates a "aws/request.Request" representing the // client's request for the CreateSqlInjectionMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateSqlInjectionMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateSqlInjectionMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateSqlInjectionMatchSetRequest method. // req, resp := client.CreateSqlInjectionMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateSqlInjectionMatchSetRequest(input *CreateSqlInjectionMatchSetInput) (req *request.Request, output *CreateSqlInjectionMatchSetOutput) { op := &request.Operation{ Name: opCreateSqlInjectionMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateSqlInjectionMatchSetInput{} } req = c.newRequest(op, input, output) output = &CreateSqlInjectionMatchSetOutput{} req.Data = output return } // CreateSqlInjectionMatchSet API operation for AWS WAF. // // Creates a SqlInjectionMatchSet, which you use to allow, block, or count requests // that contain snippets of SQL code in a specified part of web requests. AWS // WAF searches for character sequences that are likely to be malicious strings. // // To create and configure a SqlInjectionMatchSet, perform the following steps: // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateSqlInjectionMatchSet request. // // Submit a CreateSqlInjectionMatchSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateSqlInjectionMatchSet request. // // Submit an UpdateSqlInjectionMatchSet request to specify the parts of web // requests in which you want to allow, block, or count malicious SQL code. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateSqlInjectionMatchSet for usage and error information. // // Returned Error Codes: // * DisallowedNameException // The name specified is invalid. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateSqlInjectionMatchSet(input *CreateSqlInjectionMatchSetInput) (*CreateSqlInjectionMatchSetOutput, error) { req, out := c.CreateSqlInjectionMatchSetRequest(input) err := req.Send() return out, err } const opCreateWebACL = "CreateWebACL" // CreateWebACLRequest generates a "aws/request.Request" representing the // client's request for the CreateWebACL operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateWebACL for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateWebACL method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateWebACLRequest method. // req, resp := client.CreateWebACLRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateWebACLRequest(input *CreateWebACLInput) (req *request.Request, output *CreateWebACLOutput) { op := &request.Operation{ Name: opCreateWebACL, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateWebACLInput{} } req = c.newRequest(op, input, output) output = &CreateWebACLOutput{} req.Data = output return } // CreateWebACL API operation for AWS WAF. // // Creates a WebACL, which contains the Rules that identify the CloudFront web // requests that you want to allow, block, or count. AWS WAF evaluates Rules // in order based on the value of Priority for each Rule. // // You also specify a default action, either ALLOW or BLOCK. If a web request // doesn't match any of the Rules in a WebACL, AWS WAF responds to the request // with the default action. // // To create and configure a WebACL, perform the following steps: // // Create and update the ByteMatchSet objects and other predicates that you // want to include in Rules. For more information, see CreateByteMatchSet, UpdateByteMatchSet, // CreateIPSet, UpdateIPSet, CreateSqlInjectionMatchSet, and UpdateSqlInjectionMatchSet. // // Create and update the Rules that you want to include in the WebACL. For more // information, see CreateRule and UpdateRule. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateWebACL request. // // Submit a CreateWebACL request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateWebACL request. // // Submit an UpdateWebACL request to specify the Rules that you want to include // in the WebACL, to specify the default action, and to associate the WebACL // with a CloudFront distribution. // // For more information about how to use the AWS WAF API, see the AWS WAF Developer // Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateWebACL for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * DisallowedNameException // The name specified is invalid. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateWebACL(input *CreateWebACLInput) (*CreateWebACLOutput, error) { req, out := c.CreateWebACLRequest(input) err := req.Send() return out, err } const opCreateXssMatchSet = "CreateXssMatchSet" // CreateXssMatchSetRequest generates a "aws/request.Request" representing the // client's request for the CreateXssMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See CreateXssMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the CreateXssMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the CreateXssMatchSetRequest method. // req, resp := client.CreateXssMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) CreateXssMatchSetRequest(input *CreateXssMatchSetInput) (req *request.Request, output *CreateXssMatchSetOutput) { op := &request.Operation{ Name: opCreateXssMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &CreateXssMatchSetInput{} } req = c.newRequest(op, input, output) output = &CreateXssMatchSetOutput{} req.Data = output return } // CreateXssMatchSet API operation for AWS WAF. // // Creates an XssMatchSet, which you use to allow, block, or count requests // that contain cross-site scripting attacks in the specified part of web requests. // AWS WAF searches for character sequences that are likely to be malicious // strings. // // To create and configure an XssMatchSet, perform the following steps: // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a CreateXssMatchSet request. // // Submit a CreateXssMatchSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateXssMatchSet request. // // Submit an UpdateXssMatchSet request to specify the parts of web requests // in which you want to allow, block, or count cross-site scripting attacks. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation CreateXssMatchSet for usage and error information. // // Returned Error Codes: // * DisallowedNameException // The name specified is invalid. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) CreateXssMatchSet(input *CreateXssMatchSetInput) (*CreateXssMatchSetOutput, error) { req, out := c.CreateXssMatchSetRequest(input) err := req.Send() return out, err } const opDeleteByteMatchSet = "DeleteByteMatchSet" // DeleteByteMatchSetRequest generates a "aws/request.Request" representing the // client's request for the DeleteByteMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteByteMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteByteMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteByteMatchSetRequest method. // req, resp := client.DeleteByteMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteByteMatchSetRequest(input *DeleteByteMatchSetInput) (req *request.Request, output *DeleteByteMatchSetOutput) { op := &request.Operation{ Name: opDeleteByteMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteByteMatchSetInput{} } req = c.newRequest(op, input, output) output = &DeleteByteMatchSetOutput{} req.Data = output return } // DeleteByteMatchSet API operation for AWS WAF. // // Permanently deletes a ByteMatchSet. You can't delete a ByteMatchSet if it's // still used in any Rules or if it still includes any ByteMatchTuple objects // (any filters). // // If you just want to remove a ByteMatchSet from a Rule, use UpdateRule. // // To permanently delete a ByteMatchSet, perform the following steps: // // Update the ByteMatchSet to remove filters, if any. For more information, // see UpdateByteMatchSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteByteMatchSet request. // // Submit a DeleteByteMatchSet request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteByteMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteByteMatchSet(input *DeleteByteMatchSetInput) (*DeleteByteMatchSetOutput, error) { req, out := c.DeleteByteMatchSetRequest(input) err := req.Send() return out, err } const opDeleteIPSet = "DeleteIPSet" // DeleteIPSetRequest generates a "aws/request.Request" representing the // client's request for the DeleteIPSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteIPSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteIPSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteIPSetRequest method. // req, resp := client.DeleteIPSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteIPSetRequest(input *DeleteIPSetInput) (req *request.Request, output *DeleteIPSetOutput) { op := &request.Operation{ Name: opDeleteIPSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteIPSetInput{} } req = c.newRequest(op, input, output) output = &DeleteIPSetOutput{} req.Data = output return } // DeleteIPSet API operation for AWS WAF. // // Permanently deletes an IPSet. You can't delete an IPSet if it's still used // in any Rules or if it still includes any IP addresses. // // If you just want to remove an IPSet from a Rule, use UpdateRule. // // To permanently delete an IPSet from AWS WAF, perform the following steps: // // Update the IPSet to remove IP address ranges, if any. For more information, // see UpdateIPSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteIPSet request. // // Submit a DeleteIPSet request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteIPSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteIPSet(input *DeleteIPSetInput) (*DeleteIPSetOutput, error) { req, out := c.DeleteIPSetRequest(input) err := req.Send() return out, err } const opDeleteRule = "DeleteRule" // DeleteRuleRequest generates a "aws/request.Request" representing the // client's request for the DeleteRule operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteRule for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteRule method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteRuleRequest method. // req, resp := client.DeleteRuleRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteRuleRequest(input *DeleteRuleInput) (req *request.Request, output *DeleteRuleOutput) { op := &request.Operation{ Name: opDeleteRule, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteRuleInput{} } req = c.newRequest(op, input, output) output = &DeleteRuleOutput{} req.Data = output return } // DeleteRule API operation for AWS WAF. // // Permanently deletes a Rule. You can't delete a Rule if it's still used in // any WebACL objects or if it still includes any predicates, such as ByteMatchSet // objects. // // If you just want to remove a Rule from a WebACL, use UpdateWebACL. // // To permanently delete a Rule from AWS WAF, perform the following steps: // // Update the Rule to remove predicates, if any. For more information, see UpdateRule. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteRule request. // // Submit a DeleteRule request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteRule for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteRule(input *DeleteRuleInput) (*DeleteRuleOutput, error) { req, out := c.DeleteRuleRequest(input) err := req.Send() return out, err } const opDeleteSizeConstraintSet = "DeleteSizeConstraintSet" // DeleteSizeConstraintSetRequest generates a "aws/request.Request" representing the // client's request for the DeleteSizeConstraintSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteSizeConstraintSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteSizeConstraintSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteSizeConstraintSetRequest method. // req, resp := client.DeleteSizeConstraintSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteSizeConstraintSetRequest(input *DeleteSizeConstraintSetInput) (req *request.Request, output *DeleteSizeConstraintSetOutput) { op := &request.Operation{ Name: opDeleteSizeConstraintSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteSizeConstraintSetInput{} } req = c.newRequest(op, input, output) output = &DeleteSizeConstraintSetOutput{} req.Data = output return } // DeleteSizeConstraintSet API operation for AWS WAF. // // Permanently deletes a SizeConstraintSet. You can't delete a SizeConstraintSet // if it's still used in any Rules or if it still includes any SizeConstraint // objects (any filters). // // If you just want to remove a SizeConstraintSet from a Rule, use UpdateRule. // // To permanently delete a SizeConstraintSet, perform the following steps: // // Update the SizeConstraintSet to remove filters, if any. For more information, // see UpdateSizeConstraintSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteSizeConstraintSet request. // // Submit a DeleteSizeConstraintSet request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteSizeConstraintSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteSizeConstraintSet(input *DeleteSizeConstraintSetInput) (*DeleteSizeConstraintSetOutput, error) { req, out := c.DeleteSizeConstraintSetRequest(input) err := req.Send() return out, err } const opDeleteSqlInjectionMatchSet = "DeleteSqlInjectionMatchSet" // DeleteSqlInjectionMatchSetRequest generates a "aws/request.Request" representing the // client's request for the DeleteSqlInjectionMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteSqlInjectionMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteSqlInjectionMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteSqlInjectionMatchSetRequest method. // req, resp := client.DeleteSqlInjectionMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteSqlInjectionMatchSetRequest(input *DeleteSqlInjectionMatchSetInput) (req *request.Request, output *DeleteSqlInjectionMatchSetOutput) { op := &request.Operation{ Name: opDeleteSqlInjectionMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteSqlInjectionMatchSetInput{} } req = c.newRequest(op, input, output) output = &DeleteSqlInjectionMatchSetOutput{} req.Data = output return } // DeleteSqlInjectionMatchSet API operation for AWS WAF. // // Permanently deletes a SqlInjectionMatchSet. You can't delete a SqlInjectionMatchSet // if it's still used in any Rules or if it still contains any SqlInjectionMatchTuple // objects. // // If you just want to remove a SqlInjectionMatchSet from a Rule, use UpdateRule. // // To permanently delete a SqlInjectionMatchSet from AWS WAF, perform the following // steps: // // Update the SqlInjectionMatchSet to remove filters, if any. For more information, // see UpdateSqlInjectionMatchSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteSqlInjectionMatchSet request. // // Submit a DeleteSqlInjectionMatchSet request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteSqlInjectionMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteSqlInjectionMatchSet(input *DeleteSqlInjectionMatchSetInput) (*DeleteSqlInjectionMatchSetOutput, error) { req, out := c.DeleteSqlInjectionMatchSetRequest(input) err := req.Send() return out, err } const opDeleteWebACL = "DeleteWebACL" // DeleteWebACLRequest generates a "aws/request.Request" representing the // client's request for the DeleteWebACL operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteWebACL for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteWebACL method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteWebACLRequest method. // req, resp := client.DeleteWebACLRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteWebACLRequest(input *DeleteWebACLInput) (req *request.Request, output *DeleteWebACLOutput) { op := &request.Operation{ Name: opDeleteWebACL, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteWebACLInput{} } req = c.newRequest(op, input, output) output = &DeleteWebACLOutput{} req.Data = output return } // DeleteWebACL API operation for AWS WAF. // // Permanently deletes a WebACL. You can't delete a WebACL if it still contains // any Rules. // // To delete a WebACL, perform the following steps: // // Update the WebACL to remove Rules, if any. For more information, see UpdateWebACL. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteWebACL request. // // Submit a DeleteWebACL request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteWebACL for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteWebACL(input *DeleteWebACLInput) (*DeleteWebACLOutput, error) { req, out := c.DeleteWebACLRequest(input) err := req.Send() return out, err } const opDeleteXssMatchSet = "DeleteXssMatchSet" // DeleteXssMatchSetRequest generates a "aws/request.Request" representing the // client's request for the DeleteXssMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See DeleteXssMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the DeleteXssMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the DeleteXssMatchSetRequest method. // req, resp := client.DeleteXssMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) DeleteXssMatchSetRequest(input *DeleteXssMatchSetInput) (req *request.Request, output *DeleteXssMatchSetOutput) { op := &request.Operation{ Name: opDeleteXssMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &DeleteXssMatchSetInput{} } req = c.newRequest(op, input, output) output = &DeleteXssMatchSetOutput{} req.Data = output return } // DeleteXssMatchSet API operation for AWS WAF. // // Permanently deletes an XssMatchSet. You can't delete an XssMatchSet if it's // still used in any Rules or if it still contains any XssMatchTuple objects. // // If you just want to remove an XssMatchSet from a Rule, use UpdateRule. // // To permanently delete an XssMatchSet from AWS WAF, perform the following // steps: // // Update the XssMatchSet to remove filters, if any. For more information, see // UpdateXssMatchSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of a DeleteXssMatchSet request. // // Submit a DeleteXssMatchSet request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation DeleteXssMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * NonEmptyEntityException // The operation failed because you tried to delete an object that isn't empty. // For example: // // * You tried to delete a WebACL that still contains one or more Rule objects. // // * You tried to delete a Rule that still contains one or more ByteMatchSet // objects or other predicates. // // * You tried to delete a ByteMatchSet that contains one or more ByteMatchTuple // objects. // // * You tried to delete an IPSet that references one or more IP addresses. // func (c *WAF) DeleteXssMatchSet(input *DeleteXssMatchSetInput) (*DeleteXssMatchSetOutput, error) { req, out := c.DeleteXssMatchSetRequest(input) err := req.Send() return out, err } const opGetByteMatchSet = "GetByteMatchSet" // GetByteMatchSetRequest generates a "aws/request.Request" representing the // client's request for the GetByteMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetByteMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetByteMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetByteMatchSetRequest method. // req, resp := client.GetByteMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetByteMatchSetRequest(input *GetByteMatchSetInput) (req *request.Request, output *GetByteMatchSetOutput) { op := &request.Operation{ Name: opGetByteMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetByteMatchSetInput{} } req = c.newRequest(op, input, output) output = &GetByteMatchSetOutput{} req.Data = output return } // GetByteMatchSet API operation for AWS WAF. // // Returns the ByteMatchSet specified by ByteMatchSetId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetByteMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetByteMatchSet(input *GetByteMatchSetInput) (*GetByteMatchSetOutput, error) { req, out := c.GetByteMatchSetRequest(input) err := req.Send() return out, err } const opGetChangeToken = "GetChangeToken" // GetChangeTokenRequest generates a "aws/request.Request" representing the // client's request for the GetChangeToken operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetChangeToken for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetChangeToken method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetChangeTokenRequest method. // req, resp := client.GetChangeTokenRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetChangeTokenRequest(input *GetChangeTokenInput) (req *request.Request, output *GetChangeTokenOutput) { op := &request.Operation{ Name: opGetChangeToken, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetChangeTokenInput{} } req = c.newRequest(op, input, output) output = &GetChangeTokenOutput{} req.Data = output return } // GetChangeToken API operation for AWS WAF. // // When you want to create, update, or delete AWS WAF objects, get a change // token and include the change token in the create, update, or delete request. // Change tokens ensure that your application doesn't submit conflicting requests // to AWS WAF. // // Each create, update, or delete request must use a unique change token. If // your application submits a GetChangeToken request and then submits a second // GetChangeToken request before submitting a create, update, or delete request, // the second GetChangeToken request returns the same value as the first GetChangeToken // request. // // When you use a change token in a create, update, or delete request, the status // of the change token changes to PENDING, which indicates that AWS WAF is propagating // the change to all AWS WAF servers. Use GetChangeTokenStatus to determine // the status of your change token. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetChangeToken for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // func (c *WAF) GetChangeToken(input *GetChangeTokenInput) (*GetChangeTokenOutput, error) { req, out := c.GetChangeTokenRequest(input) err := req.Send() return out, err } const opGetChangeTokenStatus = "GetChangeTokenStatus" // GetChangeTokenStatusRequest generates a "aws/request.Request" representing the // client's request for the GetChangeTokenStatus operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetChangeTokenStatus for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetChangeTokenStatus method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetChangeTokenStatusRequest method. // req, resp := client.GetChangeTokenStatusRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetChangeTokenStatusRequest(input *GetChangeTokenStatusInput) (req *request.Request, output *GetChangeTokenStatusOutput) { op := &request.Operation{ Name: opGetChangeTokenStatus, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetChangeTokenStatusInput{} } req = c.newRequest(op, input, output) output = &GetChangeTokenStatusOutput{} req.Data = output return } // GetChangeTokenStatus API operation for AWS WAF. // // Returns the status of a ChangeToken that you got by calling GetChangeToken. // ChangeTokenStatus is one of the following values: // // * PROVISIONED: You requested the change token by calling GetChangeToken, // but you haven't used it yet in a call to create, update, or delete an // AWS WAF object. // // * PENDING: AWS WAF is propagating the create, update, or delete request // to all AWS WAF servers. // // * IN_SYNC: Propagation is complete. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetChangeTokenStatus for usage and error information. // // Returned Error Codes: // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // func (c *WAF) GetChangeTokenStatus(input *GetChangeTokenStatusInput) (*GetChangeTokenStatusOutput, error) { req, out := c.GetChangeTokenStatusRequest(input) err := req.Send() return out, err } const opGetIPSet = "GetIPSet" // GetIPSetRequest generates a "aws/request.Request" representing the // client's request for the GetIPSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetIPSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetIPSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetIPSetRequest method. // req, resp := client.GetIPSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetIPSetRequest(input *GetIPSetInput) (req *request.Request, output *GetIPSetOutput) { op := &request.Operation{ Name: opGetIPSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetIPSetInput{} } req = c.newRequest(op, input, output) output = &GetIPSetOutput{} req.Data = output return } // GetIPSet API operation for AWS WAF. // // Returns the IPSet that is specified by IPSetId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetIPSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetIPSet(input *GetIPSetInput) (*GetIPSetOutput, error) { req, out := c.GetIPSetRequest(input) err := req.Send() return out, err } const opGetRule = "GetRule" // GetRuleRequest generates a "aws/request.Request" representing the // client's request for the GetRule operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetRule for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetRule method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetRuleRequest method. // req, resp := client.GetRuleRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetRuleRequest(input *GetRuleInput) (req *request.Request, output *GetRuleOutput) { op := &request.Operation{ Name: opGetRule, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetRuleInput{} } req = c.newRequest(op, input, output) output = &GetRuleOutput{} req.Data = output return } // GetRule API operation for AWS WAF. // // Returns the Rule that is specified by the RuleId that you included in the // GetRule request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetRule for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetRule(input *GetRuleInput) (*GetRuleOutput, error) { req, out := c.GetRuleRequest(input) err := req.Send() return out, err } const opGetSampledRequests = "GetSampledRequests" // GetSampledRequestsRequest generates a "aws/request.Request" representing the // client's request for the GetSampledRequests operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetSampledRequests for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetSampledRequests method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetSampledRequestsRequest method. // req, resp := client.GetSampledRequestsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetSampledRequestsRequest(input *GetSampledRequestsInput) (req *request.Request, output *GetSampledRequestsOutput) { op := &request.Operation{ Name: opGetSampledRequests, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetSampledRequestsInput{} } req = c.newRequest(op, input, output) output = &GetSampledRequestsOutput{} req.Data = output return } // GetSampledRequests API operation for AWS WAF. // // Gets detailed information about a specified number of requests--a sample--that // AWS WAF randomly selects from among the first 5,000 requests that your AWS // resource received during a time range that you choose. You can specify a // sample size of up to 100 requests, and you can specify any time range in // the previous three hours. // // GetSampledRequests returns a time range, which is usually the time range // that you specified. However, if your resource (such as a CloudFront distribution) // received 5,000 requests before the specified time range elapsed, GetSampledRequests // returns an updated time range. This new time range indicates the actual period // during which AWS WAF selected the requests in the sample. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetSampledRequests for usage and error information. // // Returned Error Codes: // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // func (c *WAF) GetSampledRequests(input *GetSampledRequestsInput) (*GetSampledRequestsOutput, error) { req, out := c.GetSampledRequestsRequest(input) err := req.Send() return out, err } const opGetSizeConstraintSet = "GetSizeConstraintSet" // GetSizeConstraintSetRequest generates a "aws/request.Request" representing the // client's request for the GetSizeConstraintSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetSizeConstraintSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetSizeConstraintSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetSizeConstraintSetRequest method. // req, resp := client.GetSizeConstraintSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetSizeConstraintSetRequest(input *GetSizeConstraintSetInput) (req *request.Request, output *GetSizeConstraintSetOutput) { op := &request.Operation{ Name: opGetSizeConstraintSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetSizeConstraintSetInput{} } req = c.newRequest(op, input, output) output = &GetSizeConstraintSetOutput{} req.Data = output return } // GetSizeConstraintSet API operation for AWS WAF. // // Returns the SizeConstraintSet specified by SizeConstraintSetId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetSizeConstraintSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetSizeConstraintSet(input *GetSizeConstraintSetInput) (*GetSizeConstraintSetOutput, error) { req, out := c.GetSizeConstraintSetRequest(input) err := req.Send() return out, err } const opGetSqlInjectionMatchSet = "GetSqlInjectionMatchSet" // GetSqlInjectionMatchSetRequest generates a "aws/request.Request" representing the // client's request for the GetSqlInjectionMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetSqlInjectionMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetSqlInjectionMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetSqlInjectionMatchSetRequest method. // req, resp := client.GetSqlInjectionMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetSqlInjectionMatchSetRequest(input *GetSqlInjectionMatchSetInput) (req *request.Request, output *GetSqlInjectionMatchSetOutput) { op := &request.Operation{ Name: opGetSqlInjectionMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetSqlInjectionMatchSetInput{} } req = c.newRequest(op, input, output) output = &GetSqlInjectionMatchSetOutput{} req.Data = output return } // GetSqlInjectionMatchSet API operation for AWS WAF. // // Returns the SqlInjectionMatchSet that is specified by SqlInjectionMatchSetId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetSqlInjectionMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetSqlInjectionMatchSet(input *GetSqlInjectionMatchSetInput) (*GetSqlInjectionMatchSetOutput, error) { req, out := c.GetSqlInjectionMatchSetRequest(input) err := req.Send() return out, err } const opGetWebACL = "GetWebACL" // GetWebACLRequest generates a "aws/request.Request" representing the // client's request for the GetWebACL operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetWebACL for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetWebACL method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetWebACLRequest method. // req, resp := client.GetWebACLRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetWebACLRequest(input *GetWebACLInput) (req *request.Request, output *GetWebACLOutput) { op := &request.Operation{ Name: opGetWebACL, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetWebACLInput{} } req = c.newRequest(op, input, output) output = &GetWebACLOutput{} req.Data = output return } // GetWebACL API operation for AWS WAF. // // Returns the WebACL that is specified by WebACLId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetWebACL for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetWebACL(input *GetWebACLInput) (*GetWebACLOutput, error) { req, out := c.GetWebACLRequest(input) err := req.Send() return out, err } const opGetXssMatchSet = "GetXssMatchSet" // GetXssMatchSetRequest generates a "aws/request.Request" representing the // client's request for the GetXssMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See GetXssMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the GetXssMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the GetXssMatchSetRequest method. // req, resp := client.GetXssMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) GetXssMatchSetRequest(input *GetXssMatchSetInput) (req *request.Request, output *GetXssMatchSetOutput) { op := &request.Operation{ Name: opGetXssMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &GetXssMatchSetInput{} } req = c.newRequest(op, input, output) output = &GetXssMatchSetOutput{} req.Data = output return } // GetXssMatchSet API operation for AWS WAF. // // Returns the XssMatchSet that is specified by XssMatchSetId. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation GetXssMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // func (c *WAF) GetXssMatchSet(input *GetXssMatchSetInput) (*GetXssMatchSetOutput, error) { req, out := c.GetXssMatchSetRequest(input) err := req.Send() return out, err } const opListByteMatchSets = "ListByteMatchSets" // ListByteMatchSetsRequest generates a "aws/request.Request" representing the // client's request for the ListByteMatchSets operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListByteMatchSets for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListByteMatchSets method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListByteMatchSetsRequest method. // req, resp := client.ListByteMatchSetsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListByteMatchSetsRequest(input *ListByteMatchSetsInput) (req *request.Request, output *ListByteMatchSetsOutput) { op := &request.Operation{ Name: opListByteMatchSets, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListByteMatchSetsInput{} } req = c.newRequest(op, input, output) output = &ListByteMatchSetsOutput{} req.Data = output return } // ListByteMatchSets API operation for AWS WAF. // // Returns an array of ByteMatchSetSummary objects. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListByteMatchSets for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListByteMatchSets(input *ListByteMatchSetsInput) (*ListByteMatchSetsOutput, error) { req, out := c.ListByteMatchSetsRequest(input) err := req.Send() return out, err } const opListIPSets = "ListIPSets" // ListIPSetsRequest generates a "aws/request.Request" representing the // client's request for the ListIPSets operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListIPSets for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListIPSets method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListIPSetsRequest method. // req, resp := client.ListIPSetsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListIPSetsRequest(input *ListIPSetsInput) (req *request.Request, output *ListIPSetsOutput) { op := &request.Operation{ Name: opListIPSets, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListIPSetsInput{} } req = c.newRequest(op, input, output) output = &ListIPSetsOutput{} req.Data = output return } // ListIPSets API operation for AWS WAF. // // Returns an array of IPSetSummary objects in the response. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListIPSets for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListIPSets(input *ListIPSetsInput) (*ListIPSetsOutput, error) { req, out := c.ListIPSetsRequest(input) err := req.Send() return out, err } const opListRules = "ListRules" // ListRulesRequest generates a "aws/request.Request" representing the // client's request for the ListRules operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListRules for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListRules method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListRulesRequest method. // req, resp := client.ListRulesRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListRulesRequest(input *ListRulesInput) (req *request.Request, output *ListRulesOutput) { op := &request.Operation{ Name: opListRules, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListRulesInput{} } req = c.newRequest(op, input, output) output = &ListRulesOutput{} req.Data = output return } // ListRules API operation for AWS WAF. // // Returns an array of RuleSummary objects. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListRules for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListRules(input *ListRulesInput) (*ListRulesOutput, error) { req, out := c.ListRulesRequest(input) err := req.Send() return out, err } const opListSizeConstraintSets = "ListSizeConstraintSets" // ListSizeConstraintSetsRequest generates a "aws/request.Request" representing the // client's request for the ListSizeConstraintSets operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListSizeConstraintSets for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListSizeConstraintSets method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListSizeConstraintSetsRequest method. // req, resp := client.ListSizeConstraintSetsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListSizeConstraintSetsRequest(input *ListSizeConstraintSetsInput) (req *request.Request, output *ListSizeConstraintSetsOutput) { op := &request.Operation{ Name: opListSizeConstraintSets, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListSizeConstraintSetsInput{} } req = c.newRequest(op, input, output) output = &ListSizeConstraintSetsOutput{} req.Data = output return } // ListSizeConstraintSets API operation for AWS WAF. // // Returns an array of SizeConstraintSetSummary objects. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListSizeConstraintSets for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListSizeConstraintSets(input *ListSizeConstraintSetsInput) (*ListSizeConstraintSetsOutput, error) { req, out := c.ListSizeConstraintSetsRequest(input) err := req.Send() return out, err } const opListSqlInjectionMatchSets = "ListSqlInjectionMatchSets" // ListSqlInjectionMatchSetsRequest generates a "aws/request.Request" representing the // client's request for the ListSqlInjectionMatchSets operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListSqlInjectionMatchSets for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListSqlInjectionMatchSets method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListSqlInjectionMatchSetsRequest method. // req, resp := client.ListSqlInjectionMatchSetsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListSqlInjectionMatchSetsRequest(input *ListSqlInjectionMatchSetsInput) (req *request.Request, output *ListSqlInjectionMatchSetsOutput) { op := &request.Operation{ Name: opListSqlInjectionMatchSets, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListSqlInjectionMatchSetsInput{} } req = c.newRequest(op, input, output) output = &ListSqlInjectionMatchSetsOutput{} req.Data = output return } // ListSqlInjectionMatchSets API operation for AWS WAF. // // Returns an array of SqlInjectionMatchSet objects. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListSqlInjectionMatchSets for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListSqlInjectionMatchSets(input *ListSqlInjectionMatchSetsInput) (*ListSqlInjectionMatchSetsOutput, error) { req, out := c.ListSqlInjectionMatchSetsRequest(input) err := req.Send() return out, err } const opListWebACLs = "ListWebACLs" // ListWebACLsRequest generates a "aws/request.Request" representing the // client's request for the ListWebACLs operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListWebACLs for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListWebACLs method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListWebACLsRequest method. // req, resp := client.ListWebACLsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListWebACLsRequest(input *ListWebACLsInput) (req *request.Request, output *ListWebACLsOutput) { op := &request.Operation{ Name: opListWebACLs, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListWebACLsInput{} } req = c.newRequest(op, input, output) output = &ListWebACLsOutput{} req.Data = output return } // ListWebACLs API operation for AWS WAF. // // Returns an array of WebACLSummary objects in the response. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListWebACLs for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListWebACLs(input *ListWebACLsInput) (*ListWebACLsOutput, error) { req, out := c.ListWebACLsRequest(input) err := req.Send() return out, err } const opListXssMatchSets = "ListXssMatchSets" // ListXssMatchSetsRequest generates a "aws/request.Request" representing the // client's request for the ListXssMatchSets operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See ListXssMatchSets for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the ListXssMatchSets method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the ListXssMatchSetsRequest method. // req, resp := client.ListXssMatchSetsRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) ListXssMatchSetsRequest(input *ListXssMatchSetsInput) (req *request.Request, output *ListXssMatchSetsOutput) { op := &request.Operation{ Name: opListXssMatchSets, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &ListXssMatchSetsInput{} } req = c.newRequest(op, input, output) output = &ListXssMatchSetsOutput{} req.Data = output return } // ListXssMatchSets API operation for AWS WAF. // // Returns an array of XssMatchSet objects. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation ListXssMatchSets for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // func (c *WAF) ListXssMatchSets(input *ListXssMatchSetsInput) (*ListXssMatchSetsOutput, error) { req, out := c.ListXssMatchSetsRequest(input) err := req.Send() return out, err } const opUpdateByteMatchSet = "UpdateByteMatchSet" // UpdateByteMatchSetRequest generates a "aws/request.Request" representing the // client's request for the UpdateByteMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateByteMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateByteMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateByteMatchSetRequest method. // req, resp := client.UpdateByteMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateByteMatchSetRequest(input *UpdateByteMatchSetInput) (req *request.Request, output *UpdateByteMatchSetOutput) { op := &request.Operation{ Name: opUpdateByteMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateByteMatchSetInput{} } req = c.newRequest(op, input, output) output = &UpdateByteMatchSetOutput{} req.Data = output return } // UpdateByteMatchSet API operation for AWS WAF. // // Inserts or deletes ByteMatchTuple objects (filters) in a ByteMatchSet. For // each ByteMatchTuple object, you specify the following values: // // * Whether to insert or delete the object from the array. If you want to // change a ByteMatchSetUpdate object, you delete the existing object and // add a new one. // // * The part of a web request that you want AWS WAF to inspect, such as // a query string or the value of the User-Agent header. // // * The bytes (typically a string that corresponds with ASCII characters) // that you want AWS WAF to look for. For more information, including how // you specify the values for the AWS WAF API and the AWS CLI or SDKs, see // TargetString in the ByteMatchTuple data type. // // * Where to look, such as at the beginning or the end of a query string. // // * Whether to perform any conversions on the request, such as converting // it to lowercase, before inspecting it for the specified string. // // For example, you can add a ByteMatchSetUpdate object that matches web requests // in which User-Agent headers contain the string BadBot. You can then configure // AWS WAF to block those requests. // // To create and configure a ByteMatchSet, perform the following steps: // // Create a ByteMatchSet. For more information, see CreateByteMatchSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateByteMatchSet request. // // Submit an UpdateByteMatchSet request to specify the part of the request that // you want AWS WAF to inspect (for example, the header or the URI) and the // value that you want AWS WAF to watch for. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateByteMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateByteMatchSet(input *UpdateByteMatchSetInput) (*UpdateByteMatchSetOutput, error) { req, out := c.UpdateByteMatchSetRequest(input) err := req.Send() return out, err } const opUpdateIPSet = "UpdateIPSet" // UpdateIPSetRequest generates a "aws/request.Request" representing the // client's request for the UpdateIPSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateIPSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateIPSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateIPSetRequest method. // req, resp := client.UpdateIPSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateIPSetRequest(input *UpdateIPSetInput) (req *request.Request, output *UpdateIPSetOutput) { op := &request.Operation{ Name: opUpdateIPSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateIPSetInput{} } req = c.newRequest(op, input, output) output = &UpdateIPSetOutput{} req.Data = output return } // UpdateIPSet API operation for AWS WAF. // // Inserts or deletes IPSetDescriptor objects in an IPSet. For each IPSetDescriptor // object, you specify the following values: // // * Whether to insert or delete the object from the array. If you want to // change an IPSetDescriptor object, you delete the existing object and add // a new one. // // * The IP address version, IPv4. // // * The IP address in CIDR notation, for example, 192.0.2.0/24 (for the // range of IP addresses from 192.0.2.0 to 192.0.2.255) or 192.0.2.44/32 // (for the individual IP address 192.0.2.44). // // AWS WAF supports /8, /16, /24, and /32 IP address ranges. For more information // about CIDR notation, see the Wikipedia entry Classless Inter-Domain Routing // (https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing). // // You use an IPSet to specify which web requests you want to allow or block // based on the IP addresses that the requests originated from. For example, // if you're receiving a lot of requests from one or a small number of IP addresses // and you want to block the requests, you can create an IPSet that specifies // those IP addresses, and then configure AWS WAF to block the requests. // // To create and configure an IPSet, perform the following steps: // // Submit a CreateIPSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateIPSet request. // // Submit an UpdateIPSet request to specify the IP addresses that you want AWS // WAF to watch for. // // When you update an IPSet, you specify the IP addresses that you want to add // and/or the IP addresses that you want to delete. If you want to change an // IP address, you delete the existing IP address and add the new one. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateIPSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateIPSet(input *UpdateIPSetInput) (*UpdateIPSetOutput, error) { req, out := c.UpdateIPSetRequest(input) err := req.Send() return out, err } const opUpdateRule = "UpdateRule" // UpdateRuleRequest generates a "aws/request.Request" representing the // client's request for the UpdateRule operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateRule for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateRule method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateRuleRequest method. // req, resp := client.UpdateRuleRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateRuleRequest(input *UpdateRuleInput) (req *request.Request, output *UpdateRuleOutput) { op := &request.Operation{ Name: opUpdateRule, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateRuleInput{} } req = c.newRequest(op, input, output) output = &UpdateRuleOutput{} req.Data = output return } // UpdateRule API operation for AWS WAF. // // Inserts or deletes Predicate objects in a Rule. Each Predicate object identifies // a predicate, such as a ByteMatchSet or an IPSet, that specifies the web requests // that you want to allow, block, or count. If you add more than one predicate // to a Rule, a request must match all of the specifications to be allowed, // blocked, or counted. For example, suppose you add the following to a Rule: // // * A ByteMatchSet that matches the value BadBot in the User-Agent header // // * An IPSet that matches the IP address 192.0.2.44 // // You then add the Rule to a WebACL and specify that you want to block requests // that satisfy the Rule. For a request to be blocked, the User-Agent header // in the request must contain the value BadBotand the request must originate // from the IP address 192.0.2.44. // // To create and configure a Rule, perform the following steps: // // Create and update the predicates that you want to include in the Rule. // // Create the Rule. See CreateRule. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateRule request. // // Submit an UpdateRule request to add predicates to the Rule. // // Create and update a WebACL that contains the Rule. See CreateWebACL. // // If you want to replace one ByteMatchSet or IPSet with another, you delete // the existing one and add the new one. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateRule for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateRule(input *UpdateRuleInput) (*UpdateRuleOutput, error) { req, out := c.UpdateRuleRequest(input) err := req.Send() return out, err } const opUpdateSizeConstraintSet = "UpdateSizeConstraintSet" // UpdateSizeConstraintSetRequest generates a "aws/request.Request" representing the // client's request for the UpdateSizeConstraintSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateSizeConstraintSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateSizeConstraintSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateSizeConstraintSetRequest method. // req, resp := client.UpdateSizeConstraintSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateSizeConstraintSetRequest(input *UpdateSizeConstraintSetInput) (req *request.Request, output *UpdateSizeConstraintSetOutput) { op := &request.Operation{ Name: opUpdateSizeConstraintSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateSizeConstraintSetInput{} } req = c.newRequest(op, input, output) output = &UpdateSizeConstraintSetOutput{} req.Data = output return } // UpdateSizeConstraintSet API operation for AWS WAF. // // Inserts or deletes SizeConstraint objects (filters) in a SizeConstraintSet. // For each SizeConstraint object, you specify the following values: // // * Whether to insert or delete the object from the array. If you want to // change a SizeConstraintSetUpdate object, you delete the existing object // and add a new one. // // * The part of a web request that you want AWS WAF to evaluate, such as // the length of a query string or the length of the User-Agent header. // // * Whether to perform any transformations on the request, such as converting // it to lowercase, before checking its length. Note that transformations // of the request body are not supported because the AWS resource forwards // only the first 8192 bytes of your request to AWS WAF. // // * A ComparisonOperator used for evaluating the selected part of the request // against the specified Size, such as equals, greater than, less than, and // so on. // // * The length, in bytes, that you want AWS WAF to watch for in selected // part of the request. The length is computed after applying the transformation. // // For example, you can add a SizeConstraintSetUpdate object that matches web // requests in which the length of the User-Agent header is greater than 100 // bytes. You can then configure AWS WAF to block those requests. // // To create and configure a SizeConstraintSet, perform the following steps: // // Create a SizeConstraintSet. For more information, see CreateSizeConstraintSet. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateSizeConstraintSet request. // // Submit an UpdateSizeConstraintSet request to specify the part of the request // that you want AWS WAF to inspect (for example, the header or the URI) and // the value that you want AWS WAF to watch for. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateSizeConstraintSet for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateSizeConstraintSet(input *UpdateSizeConstraintSetInput) (*UpdateSizeConstraintSetOutput, error) { req, out := c.UpdateSizeConstraintSetRequest(input) err := req.Send() return out, err } const opUpdateSqlInjectionMatchSet = "UpdateSqlInjectionMatchSet" // UpdateSqlInjectionMatchSetRequest generates a "aws/request.Request" representing the // client's request for the UpdateSqlInjectionMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateSqlInjectionMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateSqlInjectionMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateSqlInjectionMatchSetRequest method. // req, resp := client.UpdateSqlInjectionMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateSqlInjectionMatchSetRequest(input *UpdateSqlInjectionMatchSetInput) (req *request.Request, output *UpdateSqlInjectionMatchSetOutput) { op := &request.Operation{ Name: opUpdateSqlInjectionMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateSqlInjectionMatchSetInput{} } req = c.newRequest(op, input, output) output = &UpdateSqlInjectionMatchSetOutput{} req.Data = output return } // UpdateSqlInjectionMatchSet API operation for AWS WAF. // // Inserts or deletes SqlInjectionMatchTuple objects (filters) in a SqlInjectionMatchSet. // For each SqlInjectionMatchTuple object, you specify the following values: // // * Action: Whether to insert the object into or delete the object from // the array. To change a SqlInjectionMatchTuple, you delete the existing // object and add a new one. // // * FieldToMatch: The part of web requests that you want AWS WAF to inspect // and, if you want AWS WAF to inspect a header, the name of the header. // // * TextTransformation: Which text transformation, if any, to perform on // the web request before inspecting the request for snippets of malicious // SQL code. // // You use SqlInjectionMatchSet objects to specify which CloudFront requests // you want to allow, block, or count. For example, if you're receiving requests // that contain snippets of SQL code in the query string and you want to block // the requests, you can create a SqlInjectionMatchSet with the applicable settings, // and then configure AWS WAF to block the requests. // // To create and configure a SqlInjectionMatchSet, perform the following steps: // // Submit a CreateSqlInjectionMatchSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateIPSet request. // // Submit an UpdateSqlInjectionMatchSet request to specify the parts of web // requests that you want AWS WAF to inspect for snippets of SQL code. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateSqlInjectionMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateSqlInjectionMatchSet(input *UpdateSqlInjectionMatchSetInput) (*UpdateSqlInjectionMatchSetOutput, error) { req, out := c.UpdateSqlInjectionMatchSetRequest(input) err := req.Send() return out, err } const opUpdateWebACL = "UpdateWebACL" // UpdateWebACLRequest generates a "aws/request.Request" representing the // client's request for the UpdateWebACL operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateWebACL for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateWebACL method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateWebACLRequest method. // req, resp := client.UpdateWebACLRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateWebACLRequest(input *UpdateWebACLInput) (req *request.Request, output *UpdateWebACLOutput) { op := &request.Operation{ Name: opUpdateWebACL, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateWebACLInput{} } req = c.newRequest(op, input, output) output = &UpdateWebACLOutput{} req.Data = output return } // UpdateWebACL API operation for AWS WAF. // // Inserts or deletes ActivatedRule objects in a WebACL. Each Rule identifies // web requests that you want to allow, block, or count. When you update a WebACL, // you specify the following values: // // * A default action for the WebACL, either ALLOW or BLOCK. AWS WAF performs // the default action if a request doesn't match the criteria in any of the // Rules in a WebACL. // // * The Rules that you want to add and/or delete. If you want to replace // one Rule with another, you delete the existing Rule and add the new one. // // * For each Rule, whether you want AWS WAF to allow requests, block requests, // or count requests that match the conditions in the Rule. // // * The order in which you want AWS WAF to evaluate the Rules in a WebACL. // If you add more than one Rule to a WebACL, AWS WAF evaluates each request // against the Rules in order based on the value of Priority. (The Rule that // has the lowest value for Priority is evaluated first.) When a web request // matches all of the predicates (such as ByteMatchSets and IPSets) in a // Rule, AWS WAF immediately takes the corresponding action, allow or block, // and doesn't evaluate the request against the remaining Rules in the WebACL, // if any. // // * The CloudFront distribution that you want to associate with the WebACL. // // To create and configure a WebACL, perform the following steps: // // Create and update the predicates that you want to include in Rules. For more // information, see CreateByteMatchSet, UpdateByteMatchSet, CreateIPSet, UpdateIPSet, // CreateSqlInjectionMatchSet, and UpdateSqlInjectionMatchSet. // // Create and update the Rules that you want to include in the WebACL. For more // information, see CreateRule and UpdateRule. // // Create a WebACL. See CreateWebACL. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateWebACL request. // // Submit an UpdateWebACL request to specify the Rules that you want to include // in the WebACL, to specify the default action, and to associate the WebACL // with a CloudFront distribution. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateWebACL for usage and error information. // // Returned Error Codes: // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * ReferencedItemException // The operation failed because you tried to delete an object that is still // in use. For example: // // * You tried to delete a ByteMatchSet that is still referenced by a Rule. // // * You tried to delete a Rule that is still referenced by a WebACL. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateWebACL(input *UpdateWebACLInput) (*UpdateWebACLOutput, error) { req, out := c.UpdateWebACLRequest(input) err := req.Send() return out, err } const opUpdateXssMatchSet = "UpdateXssMatchSet" // UpdateXssMatchSetRequest generates a "aws/request.Request" representing the // client's request for the UpdateXssMatchSet operation. The "output" return // value can be used to capture response data after the request's "Send" method // is called. // // See UpdateXssMatchSet for usage and error information. // // Creating a request object using this method should be used when you want to inject // custom logic into the request's lifecycle using a custom handler, or if you want to // access properties on the request object before or after sending the request. If // you just want the service response, call the UpdateXssMatchSet method directly // instead. // // Note: You must call the "Send" method on the returned request object in order // to execute the request. // // // Example sending a request using the UpdateXssMatchSetRequest method. // req, resp := client.UpdateXssMatchSetRequest(params) // // err := req.Send() // if err == nil { // resp is now filled // fmt.Println(resp) // } // func (c *WAF) UpdateXssMatchSetRequest(input *UpdateXssMatchSetInput) (req *request.Request, output *UpdateXssMatchSetOutput) { op := &request.Operation{ Name: opUpdateXssMatchSet, HTTPMethod: "POST", HTTPPath: "/", } if input == nil { input = &UpdateXssMatchSetInput{} } req = c.newRequest(op, input, output) output = &UpdateXssMatchSetOutput{} req.Data = output return } // UpdateXssMatchSet API operation for AWS WAF. // // Inserts or deletes XssMatchTuple objects (filters) in an XssMatchSet. For // each XssMatchTuple object, you specify the following values: // // * Action: Whether to insert the object into or delete the object from // the array. To change a XssMatchTuple, you delete the existing object and // add a new one. // // * FieldToMatch: The part of web requests that you want AWS WAF to inspect // and, if you want AWS WAF to inspect a header, the name of the header. // // * TextTransformation: Which text transformation, if any, to perform on // the web request before inspecting the request for cross-site scripting // attacks. // // You use XssMatchSet objects to specify which CloudFront requests you want // to allow, block, or count. For example, if you're receiving requests that // contain cross-site scripting attacks in the request body and you want to // block the requests, you can create an XssMatchSet with the applicable settings, // and then configure AWS WAF to block the requests. // // To create and configure an XssMatchSet, perform the following steps: // // Submit a CreateXssMatchSet request. // // Use GetChangeToken to get the change token that you provide in the ChangeToken // parameter of an UpdateIPSet request. // // Submit an UpdateXssMatchSet request to specify the parts of web requests // that you want AWS WAF to inspect for cross-site scripting attacks. // // For more information about how to use the AWS WAF API to allow or block HTTP // requests, see the AWS WAF Developer Guide (http://docs.aws.amazon.com/waf/latest/developerguide/). // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about // the error. // // See the AWS API reference guide for AWS WAF's // API operation UpdateXssMatchSet for usage and error information. // // Returned Error Codes: // * InternalErrorException // The operation failed because of a system problem, even though the request // was valid. Retry your request. // // * InvalidAccountException // The operation failed because you tried to create, update, or delete an object // by using an invalid account identifier. // // * InvalidOperationException // The operation failed because there was nothing to do. For example: // // * You tried to remove a Rule from a WebACL, but the Rule isn't in the // specified WebACL. // // * You tried to remove an IP address from an IPSet, but the IP address // isn't in the specified IPSet. // // * You tried to remove a ByteMatchTuple from a ByteMatchSet, but the ByteMatchTuple // isn't in the specified WebACL. // // * You tried to add a Rule to a WebACL, but the Rule already exists in // the specified WebACL. // // * You tried to add an IP address to an IPSet, but the IP address already // exists in the specified IPSet. // // * You tried to add a ByteMatchTuple to a ByteMatchSet, but the ByteMatchTuple // already exists in the specified WebACL. // // * InvalidParameterException // The operation failed because AWS WAF didn't recognize a parameter in the // request. For example: // // * You specified an invalid parameter name. // // * You specified an invalid value. // // * You tried to update an object (ByteMatchSet, IPSet, Rule, or WebACL) // using an action other than INSERT or DELETE. // // * You tried to create a WebACL with a DefaultActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a WebACL with a WafActionType other than ALLOW, // BLOCK, or COUNT. // // * You tried to update a ByteMatchSet with a FieldToMatchType other than // HEADER, QUERY_STRING, or URI. // // * You tried to update a ByteMatchSet with a Field of HEADER but no value // for Data. // // * NonexistentContainerException // The operation failed because you tried to add an object to or delete an object // from another object that doesn't exist. For example: // // * You tried to add a Rule to or delete a Rule from a WebACL that doesn't // exist. // // * You tried to add a ByteMatchSet to or delete a ByteMatchSet from a Rule // that doesn't exist. // // * You tried to add an IP address to or delete an IP address from an IPSet // that doesn't exist. // // * You tried to add a ByteMatchTuple to or delete a ByteMatchTuple from // a ByteMatchSet that doesn't exist. // // * NonexistentItemException // The operation failed because the referenced object doesn't exist. // // * StaleDataException // The operation failed because you tried to create, update, or delete an object // by using a change token that has already been used. // // * LimitsExceededException // The operation exceeds a resource limit, for example, the maximum number of // WebACL objects that you can create for an AWS account. For more information, // see Limits (http://docs.aws.amazon.com/waf/latest/developerguide/limits.html) // in the AWS WAF Developer Guide. // func (c *WAF) UpdateXssMatchSet(input *UpdateXssMatchSetInput) (*UpdateXssMatchSetOutput, error) { req, out := c.UpdateXssMatchSetRequest(input) err := req.Send() return out, err } // The ActivatedRule object in an UpdateWebACL request specifies a Rule that // you want to insert or delete, the priority of the Rule in the WebACL, and // the action that you want AWS WAF to take when a web request matches the Rule // (ALLOW, BLOCK, or COUNT). // // To specify whether to insert or delete a Rule, use the Action parameter in // the WebACLUpdate data type. type ActivatedRule struct { _ struct{} `type:"structure"` // Specifies the action that CloudFront or AWS WAF takes when a web request // matches the conditions in the Rule. Valid values for Action include the following: // // * ALLOW: CloudFront responds with the requested object. // // * BLOCK: CloudFront responds with an HTTP 403 (Forbidden) status code. // // * COUNT: AWS WAF increments a counter of requests that match the conditions // in the rule and then continues to inspect the web request based on the // remaining rules in the web ACL. // // Action is a required field Action *WafAction `type:"structure" required:"true"` // Specifies the order in which the Rules in a WebACL are evaluated. Rules with // a lower value for Priority are evaluated before Rules with a higher value. // The value must be a unique integer. If you add multiple Rules to a WebACL, // the values don't need to be consecutive. // // Priority is a required field Priority *int64 `type:"integer" required:"true"` // The RuleId for a Rule. You use RuleId to get more information about a Rule // (see GetRule), update a Rule (see UpdateRule), insert a Rule into a WebACL // or delete a one from a WebACL (see UpdateWebACL), or delete a Rule from AWS // WAF (see DeleteRule). // // RuleId is returned by CreateRule and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s ActivatedRule) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ActivatedRule) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ActivatedRule) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ActivatedRule"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.Priority == nil { invalidParams.Add(request.NewErrParamRequired("Priority")) } if s.RuleId == nil { invalidParams.Add(request.NewErrParamRequired("RuleId")) } if s.RuleId != nil && len(*s.RuleId) < 1 { invalidParams.Add(request.NewErrParamMinLen("RuleId", 1)) } if s.Action != nil { if err := s.Action.Validate(); err != nil { invalidParams.AddNested("Action", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *ActivatedRule) SetAction(v *WafAction) *ActivatedRule { s.Action = v return s } // SetPriority sets the Priority field's value. func (s *ActivatedRule) SetPriority(v int64) *ActivatedRule { s.Priority = &v return s } // SetRuleId sets the RuleId field's value. func (s *ActivatedRule) SetRuleId(v string) *ActivatedRule { s.RuleId = &v return s } // In a GetByteMatchSet request, ByteMatchSet is a complex type that contains // the ByteMatchSetId and Name of a ByteMatchSet, and the values that you specified // when you updated the ByteMatchSet. // // A complex type that contains ByteMatchTuple objects, which specify the parts // of web requests that you want AWS WAF to inspect and the values that you // want AWS WAF to search for. If a ByteMatchSet contains more than one ByteMatchTuple // object, a request needs to match the settings in only one ByteMatchTuple // to be considered a match. type ByteMatchSet struct { _ struct{} `type:"structure"` // The ByteMatchSetId for a ByteMatchSet. You use ByteMatchSetId to get information // about a ByteMatchSet (see GetByteMatchSet), update a ByteMatchSet (see UpdateByteMatchSet), // insert a ByteMatchSet into a Rule or delete one from a Rule (see UpdateRule), // and delete a ByteMatchSet from AWS WAF (see DeleteByteMatchSet). // // ByteMatchSetId is returned by CreateByteMatchSet and by ListByteMatchSets. // // ByteMatchSetId is a required field ByteMatchSetId *string `min:"1" type:"string" required:"true"` // Specifies the bytes (typically a string that corresponds with ASCII characters) // that you want AWS WAF to search for in web requests, the location in requests // that you want AWS WAF to search, and other settings. // // ByteMatchTuples is a required field ByteMatchTuples []*ByteMatchTuple `type:"list" required:"true"` // A friendly name or description of the ByteMatchSet. You can't change Name // after you create a ByteMatchSet. Name *string `min:"1" type:"string"` } // String returns the string representation func (s ByteMatchSet) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ByteMatchSet) GoString() string { return s.String() } // SetByteMatchSetId sets the ByteMatchSetId field's value. func (s *ByteMatchSet) SetByteMatchSetId(v string) *ByteMatchSet { s.ByteMatchSetId = &v return s } // SetByteMatchTuples sets the ByteMatchTuples field's value. func (s *ByteMatchSet) SetByteMatchTuples(v []*ByteMatchTuple) *ByteMatchSet { s.ByteMatchTuples = v return s } // SetName sets the Name field's value. func (s *ByteMatchSet) SetName(v string) *ByteMatchSet { s.Name = &v return s } // Returned by ListByteMatchSets. Each ByteMatchSetSummary object includes the // Name and ByteMatchSetId for one ByteMatchSet. type ByteMatchSetSummary struct { _ struct{} `type:"structure"` // The ByteMatchSetId for a ByteMatchSet. You use ByteMatchSetId to get information // about a ByteMatchSet, update a ByteMatchSet, remove a ByteMatchSet from a // Rule, and delete a ByteMatchSet from AWS WAF. // // ByteMatchSetId is returned by CreateByteMatchSet and by ListByteMatchSets. // // ByteMatchSetId is a required field ByteMatchSetId *string `min:"1" type:"string" required:"true"` // A friendly name or description of the ByteMatchSet. You can't change Name // after you create a ByteMatchSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s ByteMatchSetSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ByteMatchSetSummary) GoString() string { return s.String() } // SetByteMatchSetId sets the ByteMatchSetId field's value. func (s *ByteMatchSetSummary) SetByteMatchSetId(v string) *ByteMatchSetSummary { s.ByteMatchSetId = &v return s } // SetName sets the Name field's value. func (s *ByteMatchSetSummary) SetName(v string) *ByteMatchSetSummary { s.Name = &v return s } // In an UpdateByteMatchSet request, ByteMatchSetUpdate specifies whether to // insert or delete a ByteMatchTuple and includes the settings for the ByteMatchTuple. type ByteMatchSetUpdate struct { _ struct{} `type:"structure"` // Specifies whether to insert or delete a ByteMatchTuple. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // Information about the part of a web request that you want AWS WAF to inspect // and the value that you want AWS WAF to search for. If you specify DELETE // for the value of Action, the ByteMatchTuple values must exactly match the // values in the ByteMatchTuple that you want to delete from the ByteMatchSet. // // ByteMatchTuple is a required field ByteMatchTuple *ByteMatchTuple `type:"structure" required:"true"` } // String returns the string representation func (s ByteMatchSetUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ByteMatchSetUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ByteMatchSetUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ByteMatchSetUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.ByteMatchTuple == nil { invalidParams.Add(request.NewErrParamRequired("ByteMatchTuple")) } if s.ByteMatchTuple != nil { if err := s.ByteMatchTuple.Validate(); err != nil { invalidParams.AddNested("ByteMatchTuple", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *ByteMatchSetUpdate) SetAction(v string) *ByteMatchSetUpdate { s.Action = &v return s } // SetByteMatchTuple sets the ByteMatchTuple field's value. func (s *ByteMatchSetUpdate) SetByteMatchTuple(v *ByteMatchTuple) *ByteMatchSetUpdate { s.ByteMatchTuple = v return s } // The bytes (typically a string that corresponds with ASCII characters) that // you want AWS WAF to search for in web requests, the location in requests // that you want AWS WAF to search, and other settings. type ByteMatchTuple struct { _ struct{} `type:"structure"` // The part of a web request that you want AWS WAF to search, such as a specified // header or a query string. For more information, see FieldToMatch. // // FieldToMatch is a required field FieldToMatch *FieldToMatch `type:"structure" required:"true"` // Within the portion of a web request that you want to search (for example, // in the query string, if any), specify where you want AWS WAF to search. Valid // values include the following: // // CONTAINS // // The specified part of the web request must include the value of TargetString, // but the location doesn't matter. // // CONTAINS_WORD // // The specified part of the web request must include the value of TargetString, // and TargetString must contain only alphanumeric characters or underscore // (A-Z, a-z, 0-9, or _). In addition, TargetString must be a word, which means // one of the following: // // * TargetString exactly matches the value of the specified part of the // web request, such as the value of a header. // // * TargetString is at the beginning of the specified part of the web request // and is followed by a character other than an alphanumeric character or // underscore (_), for example, BadBot;. // // * TargetString is at the end of the specified part of the web request // and is preceded by a character other than an alphanumeric character or // underscore (_), for example, ;BadBot. // // * TargetString is in the middle of the specified part of the web request // and is preceded and followed by characters other than alphanumeric characters // or underscore (_), for example, -BadBot;. // // EXACTLY // // The value of the specified part of the web request must exactly match the // value of TargetString. // // STARTS_WITH // // The value of TargetString must appear at the beginning of the specified part // of the web request. // // ENDS_WITH // // The value of TargetString must appear at the end of the specified part of // the web request. // // PositionalConstraint is a required field PositionalConstraint *string `type:"string" required:"true" enum:"PositionalConstraint"` // The value that you want AWS WAF to search for. AWS WAF searches for the specified // string in the part of web requests that you specified in FieldToMatch. The // maximum length of the value is 50 bytes. // // Valid values depend on the values that you specified for FieldToMatch: // // * HEADER: The value that you want AWS WAF to search for in the request // header that you specified in FieldToMatch, for example, the value of the // User-Agent or Referer header. // // * METHOD: The HTTP method, which indicates the type of operation specified // in the request. CloudFront supports the following methods: DELETE, GET, // HEAD, OPTIONS, PATCH, POST, and PUT. // // * QUERY_STRING: The value that you want AWS WAF to search for in the query // string, which is the part of a URL that appears after a ? character. // // * URI: The value that you want AWS WAF to search for in the part of a // URL that identifies a resource, for example, /images/daily-ad.jpg. // // * BODY: The part of a request that contains any additional data that you // want to send to your web server as the HTTP request body, such as data // from a form. The request body immediately follows the request headers. // Note that only the first 8192 bytes of the request body are forwarded // to AWS WAF for inspection. To allow or block requests based on the length // of the body, you can create a size constraint set. For more information, // see CreateSizeConstraintSet. // // If TargetString includes alphabetic characters A-Z and a-z, note that the // value is case sensitive. // // If you're using the AWS WAF API // // Specify a base64-encoded version of the value. The maximum length of the // value before you base64-encode it is 50 bytes. // // For example, suppose the value of Type is HEADER and the value of Data is // User-Agent. If you want to search the User-Agent header for the value BadBot, // you base64-encode BadBot using MIME base64 encoding and include the resulting // value, QmFkQm90, in the value of TargetString. // // If you're using the AWS CLI or one of the AWS SDKs // // The value that you want AWS WAF to search for. The SDK automatically base64 // encodes the value. // // TargetString is automatically base64 encoded/decoded by the SDK. // // TargetString is a required field TargetString []byte `type:"blob" required:"true"` // Text transformations eliminate some of the unusual formatting that attackers // use in web requests in an effort to bypass AWS WAF. If you specify a transformation, // AWS WAF performs the transformation on TargetString before inspecting a request // for a match. // // CMD_LINE // // When you're concerned that attackers are injecting an operating system commandline // command and using unusual formatting to disguise some or all of the command, // use this option to perform the following transformations: // // * Delete the following characters: \ " ' ^ // // * Delete spaces before the following characters: / ( // // * Replace the following characters with a space: , ; // // * Replace multiple spaces with one space // // * Convert uppercase letters (A-Z) to lowercase (a-z) // // COMPRESS_WHITE_SPACE // // Use this option to replace the following characters with a space character // (decimal 32): // // * \f, formfeed, decimal 12 // // * \t, tab, decimal 9 // // * \n, newline, decimal 10 // // * \r, carriage return, decimal 13 // // * \v, vertical tab, decimal 11 // // * non-breaking space, decimal 160 // // COMPRESS_WHITE_SPACE also replaces multiple spaces with one space. // // HTML_ENTITY_DECODE // // Use this option to replace HTML-encoded characters with unencoded characters. // HTML_ENTITY_DECODE performs the following operations: // // * Replaces (ampersand)quot; with " // // * Replaces (ampersand)nbsp; with a non-breaking space, decimal 160 // // * Replaces (ampersand)lt; with a "less than" symbol // // * Replaces (ampersand)gt; with > // // * Replaces characters that are represented in hexadecimal format, (ampersand)#xhhhh;, // with the corresponding characters // // * Replaces characters that are represented in decimal format, (ampersand)#nnnn;, // with the corresponding characters // // LOWERCASE // // Use this option to convert uppercase letters (A-Z) to lowercase (a-z). // // URL_DECODE // // Use this option to decode a URL-encoded value. // // NONE // // Specify NONE if you don't want to perform any text transformations. // // TextTransformation is a required field TextTransformation *string `type:"string" required:"true" enum:"TextTransformation"` } // String returns the string representation func (s ByteMatchTuple) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ByteMatchTuple) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ByteMatchTuple) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ByteMatchTuple"} if s.FieldToMatch == nil { invalidParams.Add(request.NewErrParamRequired("FieldToMatch")) } if s.PositionalConstraint == nil { invalidParams.Add(request.NewErrParamRequired("PositionalConstraint")) } if s.TargetString == nil { invalidParams.Add(request.NewErrParamRequired("TargetString")) } if s.TextTransformation == nil { invalidParams.Add(request.NewErrParamRequired("TextTransformation")) } if s.FieldToMatch != nil { if err := s.FieldToMatch.Validate(); err != nil { invalidParams.AddNested("FieldToMatch", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetFieldToMatch sets the FieldToMatch field's value. func (s *ByteMatchTuple) SetFieldToMatch(v *FieldToMatch) *ByteMatchTuple { s.FieldToMatch = v return s } // SetPositionalConstraint sets the PositionalConstraint field's value. func (s *ByteMatchTuple) SetPositionalConstraint(v string) *ByteMatchTuple { s.PositionalConstraint = &v return s } // SetTargetString sets the TargetString field's value. func (s *ByteMatchTuple) SetTargetString(v []byte) *ByteMatchTuple { s.TargetString = v return s } // SetTextTransformation sets the TextTransformation field's value. func (s *ByteMatchTuple) SetTextTransformation(v string) *ByteMatchTuple { s.TextTransformation = &v return s } type CreateByteMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description of the ByteMatchSet. You can't change Name // after you create a ByteMatchSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateByteMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateByteMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateByteMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateByteMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateByteMatchSetInput) SetChangeToken(v string) *CreateByteMatchSetInput { s.ChangeToken = &v return s } // SetName sets the Name field's value. func (s *CreateByteMatchSetInput) SetName(v string) *CreateByteMatchSetInput { s.Name = &v return s } type CreateByteMatchSetOutput struct { _ struct{} `type:"structure"` // A ByteMatchSet that contains no ByteMatchTuple objects. ByteMatchSet *ByteMatchSet `type:"structure"` // The ChangeToken that you used to submit the CreateByteMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s CreateByteMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateByteMatchSetOutput) GoString() string { return s.String() } // SetByteMatchSet sets the ByteMatchSet field's value. func (s *CreateByteMatchSetOutput) SetByteMatchSet(v *ByteMatchSet) *CreateByteMatchSetOutput { s.ByteMatchSet = v return s } // SetChangeToken sets the ChangeToken field's value. func (s *CreateByteMatchSetOutput) SetChangeToken(v string) *CreateByteMatchSetOutput { s.ChangeToken = &v return s } type CreateIPSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description of the IPSet. You can't change Name after // you create the IPSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateIPSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateIPSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateIPSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateIPSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateIPSetInput) SetChangeToken(v string) *CreateIPSetInput { s.ChangeToken = &v return s } // SetName sets the Name field's value. func (s *CreateIPSetInput) SetName(v string) *CreateIPSetInput { s.Name = &v return s } type CreateIPSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateIPSet request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // The IPSet returned in the CreateIPSet response. IPSet *IPSet `type:"structure"` } // String returns the string representation func (s CreateIPSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateIPSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateIPSetOutput) SetChangeToken(v string) *CreateIPSetOutput { s.ChangeToken = &v return s } // SetIPSet sets the IPSet field's value. func (s *CreateIPSetOutput) SetIPSet(v *IPSet) *CreateIPSetOutput { s.IPSet = v return s } type CreateRuleInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description for the metrics for this Rule. The name can // contain only alphanumeric characters (A-Z, a-z, 0-9); the name can't contain // whitespace. You can't change the name of the metric after you create the // Rule. // // MetricName is a required field MetricName *string `type:"string" required:"true"` // A friendly name or description of the Rule. You can't change the name of // a Rule after you create it. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateRuleInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateRuleInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateRuleInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateRuleInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.MetricName == nil { invalidParams.Add(request.NewErrParamRequired("MetricName")) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateRuleInput) SetChangeToken(v string) *CreateRuleInput { s.ChangeToken = &v return s } // SetMetricName sets the MetricName field's value. func (s *CreateRuleInput) SetMetricName(v string) *CreateRuleInput { s.MetricName = &v return s } // SetName sets the Name field's value. func (s *CreateRuleInput) SetName(v string) *CreateRuleInput { s.Name = &v return s } type CreateRuleOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateRule request. You can also // use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // The Rule returned in the CreateRule response. Rule *Rule `type:"structure"` } // String returns the string representation func (s CreateRuleOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateRuleOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateRuleOutput) SetChangeToken(v string) *CreateRuleOutput { s.ChangeToken = &v return s } // SetRule sets the Rule field's value. func (s *CreateRuleOutput) SetRule(v *Rule) *CreateRuleOutput { s.Rule = v return s } type CreateSizeConstraintSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description of the SizeConstraintSet. You can't change // Name after you create a SizeConstraintSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateSizeConstraintSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateSizeConstraintSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateSizeConstraintSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateSizeConstraintSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateSizeConstraintSetInput) SetChangeToken(v string) *CreateSizeConstraintSetInput { s.ChangeToken = &v return s } // SetName sets the Name field's value. func (s *CreateSizeConstraintSetInput) SetName(v string) *CreateSizeConstraintSetInput { s.Name = &v return s } type CreateSizeConstraintSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateSizeConstraintSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // A SizeConstraintSet that contains no SizeConstraint objects. SizeConstraintSet *SizeConstraintSet `type:"structure"` } // String returns the string representation func (s CreateSizeConstraintSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateSizeConstraintSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateSizeConstraintSetOutput) SetChangeToken(v string) *CreateSizeConstraintSetOutput { s.ChangeToken = &v return s } // SetSizeConstraintSet sets the SizeConstraintSet field's value. func (s *CreateSizeConstraintSetOutput) SetSizeConstraintSet(v *SizeConstraintSet) *CreateSizeConstraintSetOutput { s.SizeConstraintSet = v return s } // A request to create a SqlInjectionMatchSet. type CreateSqlInjectionMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description for the SqlInjectionMatchSet that you're creating. // You can't change Name after you create the SqlInjectionMatchSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateSqlInjectionMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateSqlInjectionMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateSqlInjectionMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateSqlInjectionMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateSqlInjectionMatchSetInput) SetChangeToken(v string) *CreateSqlInjectionMatchSetInput { s.ChangeToken = &v return s } // SetName sets the Name field's value. func (s *CreateSqlInjectionMatchSetInput) SetName(v string) *CreateSqlInjectionMatchSetInput { s.Name = &v return s } // The response to a CreateSqlInjectionMatchSet request. type CreateSqlInjectionMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateSqlInjectionMatchSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // A SqlInjectionMatchSet. SqlInjectionMatchSet *SqlInjectionMatchSet `type:"structure"` } // String returns the string representation func (s CreateSqlInjectionMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateSqlInjectionMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateSqlInjectionMatchSetOutput) SetChangeToken(v string) *CreateSqlInjectionMatchSetOutput { s.ChangeToken = &v return s } // SetSqlInjectionMatchSet sets the SqlInjectionMatchSet field's value. func (s *CreateSqlInjectionMatchSetOutput) SetSqlInjectionMatchSet(v *SqlInjectionMatchSet) *CreateSqlInjectionMatchSetOutput { s.SqlInjectionMatchSet = v return s } type CreateWebACLInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The action that you want AWS WAF to take when a request doesn't match the // criteria specified in any of the Rule objects that are associated with the // WebACL. // // DefaultAction is a required field DefaultAction *WafAction `type:"structure" required:"true"` // A friendly name or description for the metrics for this WebACL. The name // can contain only alphanumeric characters (A-Z, a-z, 0-9); the name can't // contain whitespace. You can't change MetricName after you create the WebACL. // // MetricName is a required field MetricName *string `type:"string" required:"true"` // A friendly name or description of the WebACL. You can't change Name after // you create the WebACL. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateWebACLInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateWebACLInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateWebACLInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateWebACLInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.DefaultAction == nil { invalidParams.Add(request.NewErrParamRequired("DefaultAction")) } if s.MetricName == nil { invalidParams.Add(request.NewErrParamRequired("MetricName")) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if s.DefaultAction != nil { if err := s.DefaultAction.Validate(); err != nil { invalidParams.AddNested("DefaultAction", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateWebACLInput) SetChangeToken(v string) *CreateWebACLInput { s.ChangeToken = &v return s } // SetDefaultAction sets the DefaultAction field's value. func (s *CreateWebACLInput) SetDefaultAction(v *WafAction) *CreateWebACLInput { s.DefaultAction = v return s } // SetMetricName sets the MetricName field's value. func (s *CreateWebACLInput) SetMetricName(v string) *CreateWebACLInput { s.MetricName = &v return s } // SetName sets the Name field's value. func (s *CreateWebACLInput) SetName(v string) *CreateWebACLInput { s.Name = &v return s } type CreateWebACLOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateWebACL request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // The WebACL returned in the CreateWebACL response. WebACL *WebACL `type:"structure"` } // String returns the string representation func (s CreateWebACLOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateWebACLOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateWebACLOutput) SetChangeToken(v string) *CreateWebACLOutput { s.ChangeToken = &v return s } // SetWebACL sets the WebACL field's value. func (s *CreateWebACLOutput) SetWebACL(v *WebACL) *CreateWebACLOutput { s.WebACL = v return s } // A request to create an XssMatchSet. type CreateXssMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // A friendly name or description for the XssMatchSet that you're creating. // You can't change Name after you create the XssMatchSet. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s CreateXssMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateXssMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *CreateXssMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "CreateXssMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Name == nil { invalidParams.Add(request.NewErrParamRequired("Name")) } if s.Name != nil && len(*s.Name) < 1 { invalidParams.Add(request.NewErrParamMinLen("Name", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *CreateXssMatchSetInput) SetChangeToken(v string) *CreateXssMatchSetInput { s.ChangeToken = &v return s } // SetName sets the Name field's value. func (s *CreateXssMatchSetInput) SetName(v string) *CreateXssMatchSetInput { s.Name = &v return s } // The response to a CreateXssMatchSet request. type CreateXssMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the CreateXssMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` // An XssMatchSet. XssMatchSet *XssMatchSet `type:"structure"` } // String returns the string representation func (s CreateXssMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s CreateXssMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *CreateXssMatchSetOutput) SetChangeToken(v string) *CreateXssMatchSetOutput { s.ChangeToken = &v return s } // SetXssMatchSet sets the XssMatchSet field's value. func (s *CreateXssMatchSetOutput) SetXssMatchSet(v *XssMatchSet) *CreateXssMatchSetOutput { s.XssMatchSet = v return s } type DeleteByteMatchSetInput struct { _ struct{} `type:"structure"` // The ByteMatchSetId of the ByteMatchSet that you want to delete. ByteMatchSetId // is returned by CreateByteMatchSet and by ListByteMatchSets. // // ByteMatchSetId is a required field ByteMatchSetId *string `min:"1" type:"string" required:"true"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteByteMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteByteMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteByteMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteByteMatchSetInput"} if s.ByteMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("ByteMatchSetId")) } if s.ByteMatchSetId != nil && len(*s.ByteMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("ByteMatchSetId", 1)) } if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetByteMatchSetId sets the ByteMatchSetId field's value. func (s *DeleteByteMatchSetInput) SetByteMatchSetId(v string) *DeleteByteMatchSetInput { s.ByteMatchSetId = &v return s } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteByteMatchSetInput) SetChangeToken(v string) *DeleteByteMatchSetInput { s.ChangeToken = &v return s } type DeleteByteMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteByteMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteByteMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteByteMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteByteMatchSetOutput) SetChangeToken(v string) *DeleteByteMatchSetOutput { s.ChangeToken = &v return s } type DeleteIPSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The IPSetId of the IPSet that you want to delete. IPSetId is returned by // CreateIPSet and by ListIPSets. // // IPSetId is a required field IPSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteIPSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteIPSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteIPSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteIPSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.IPSetId == nil { invalidParams.Add(request.NewErrParamRequired("IPSetId")) } if s.IPSetId != nil && len(*s.IPSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("IPSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteIPSetInput) SetChangeToken(v string) *DeleteIPSetInput { s.ChangeToken = &v return s } // SetIPSetId sets the IPSetId field's value. func (s *DeleteIPSetInput) SetIPSetId(v string) *DeleteIPSetInput { s.IPSetId = &v return s } type DeleteIPSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteIPSet request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteIPSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteIPSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteIPSetOutput) SetChangeToken(v string) *DeleteIPSetOutput { s.ChangeToken = &v return s } type DeleteRuleInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The RuleId of the Rule that you want to delete. RuleId is returned by CreateRule // and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteRuleInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteRuleInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteRuleInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteRuleInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.RuleId == nil { invalidParams.Add(request.NewErrParamRequired("RuleId")) } if s.RuleId != nil && len(*s.RuleId) < 1 { invalidParams.Add(request.NewErrParamMinLen("RuleId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteRuleInput) SetChangeToken(v string) *DeleteRuleInput { s.ChangeToken = &v return s } // SetRuleId sets the RuleId field's value. func (s *DeleteRuleInput) SetRuleId(v string) *DeleteRuleInput { s.RuleId = &v return s } type DeleteRuleOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteRule request. You can also // use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteRuleOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteRuleOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteRuleOutput) SetChangeToken(v string) *DeleteRuleOutput { s.ChangeToken = &v return s } type DeleteSizeConstraintSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The SizeConstraintSetId of the SizeConstraintSet that you want to delete. // SizeConstraintSetId is returned by CreateSizeConstraintSet and by ListSizeConstraintSets. // // SizeConstraintSetId is a required field SizeConstraintSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteSizeConstraintSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteSizeConstraintSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteSizeConstraintSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteSizeConstraintSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.SizeConstraintSetId == nil { invalidParams.Add(request.NewErrParamRequired("SizeConstraintSetId")) } if s.SizeConstraintSetId != nil && len(*s.SizeConstraintSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SizeConstraintSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteSizeConstraintSetInput) SetChangeToken(v string) *DeleteSizeConstraintSetInput { s.ChangeToken = &v return s } // SetSizeConstraintSetId sets the SizeConstraintSetId field's value. func (s *DeleteSizeConstraintSetInput) SetSizeConstraintSetId(v string) *DeleteSizeConstraintSetInput { s.SizeConstraintSetId = &v return s } type DeleteSizeConstraintSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteSizeConstraintSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteSizeConstraintSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteSizeConstraintSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteSizeConstraintSetOutput) SetChangeToken(v string) *DeleteSizeConstraintSetOutput { s.ChangeToken = &v return s } // A request to delete a SqlInjectionMatchSet from AWS WAF. type DeleteSqlInjectionMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The SqlInjectionMatchSetId of the SqlInjectionMatchSet that you want to delete. // SqlInjectionMatchSetId is returned by CreateSqlInjectionMatchSet and by ListSqlInjectionMatchSets. // // SqlInjectionMatchSetId is a required field SqlInjectionMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteSqlInjectionMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteSqlInjectionMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteSqlInjectionMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteSqlInjectionMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.SqlInjectionMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("SqlInjectionMatchSetId")) } if s.SqlInjectionMatchSetId != nil && len(*s.SqlInjectionMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SqlInjectionMatchSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteSqlInjectionMatchSetInput) SetChangeToken(v string) *DeleteSqlInjectionMatchSetInput { s.ChangeToken = &v return s } // SetSqlInjectionMatchSetId sets the SqlInjectionMatchSetId field's value. func (s *DeleteSqlInjectionMatchSetInput) SetSqlInjectionMatchSetId(v string) *DeleteSqlInjectionMatchSetInput { s.SqlInjectionMatchSetId = &v return s } // The response to a request to delete a SqlInjectionMatchSet from AWS WAF. type DeleteSqlInjectionMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteSqlInjectionMatchSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteSqlInjectionMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteSqlInjectionMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteSqlInjectionMatchSetOutput) SetChangeToken(v string) *DeleteSqlInjectionMatchSetOutput { s.ChangeToken = &v return s } type DeleteWebACLInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The WebACLId of the WebACL that you want to delete. WebACLId is returned // by CreateWebACL and by ListWebACLs. // // WebACLId is a required field WebACLId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteWebACLInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteWebACLInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteWebACLInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteWebACLInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.WebACLId == nil { invalidParams.Add(request.NewErrParamRequired("WebACLId")) } if s.WebACLId != nil && len(*s.WebACLId) < 1 { invalidParams.Add(request.NewErrParamMinLen("WebACLId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteWebACLInput) SetChangeToken(v string) *DeleteWebACLInput { s.ChangeToken = &v return s } // SetWebACLId sets the WebACLId field's value. func (s *DeleteWebACLInput) SetWebACLId(v string) *DeleteWebACLInput { s.WebACLId = &v return s } type DeleteWebACLOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteWebACL request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteWebACLOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteWebACLOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteWebACLOutput) SetChangeToken(v string) *DeleteWebACLOutput { s.ChangeToken = &v return s } // A request to delete an XssMatchSet from AWS WAF. type DeleteXssMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The XssMatchSetId of the XssMatchSet that you want to delete. XssMatchSetId // is returned by CreateXssMatchSet and by ListXssMatchSets. // // XssMatchSetId is a required field XssMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s DeleteXssMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteXssMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *DeleteXssMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "DeleteXssMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.XssMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("XssMatchSetId")) } if s.XssMatchSetId != nil && len(*s.XssMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("XssMatchSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteXssMatchSetInput) SetChangeToken(v string) *DeleteXssMatchSetInput { s.ChangeToken = &v return s } // SetXssMatchSetId sets the XssMatchSetId field's value. func (s *DeleteXssMatchSetInput) SetXssMatchSetId(v string) *DeleteXssMatchSetInput { s.XssMatchSetId = &v return s } // The response to a request to delete an XssMatchSet from AWS WAF. type DeleteXssMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the DeleteXssMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s DeleteXssMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s DeleteXssMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *DeleteXssMatchSetOutput) SetChangeToken(v string) *DeleteXssMatchSetOutput { s.ChangeToken = &v return s } // Specifies where in a web request to look for TargetString. type FieldToMatch struct { _ struct{} `type:"structure"` // When the value of Type is HEADER, enter the name of the header that you want // AWS WAF to search, for example, User-Agent or Referer. If the value of Type // is any other value, omit Data. // // The name of the header is not case sensitive. Data *string `type:"string"` // The part of the web request that you want AWS WAF to search for a specified // string. Parts of a request that you can search include the following: // // * HEADER: A specified request header, for example, the value of the User-Agent // or Referer header. If you choose HEADER for the type, specify the name // of the header in Data. // // * METHOD: The HTTP method, which indicated the type of operation that // the request is asking the origin to perform. Amazon CloudFront supports // the following methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, and PUT. // // * QUERY_STRING: A query string, which is the part of a URL that appears // after a ? character, if any. // // * URI: The part of a web request that identifies a resource, for example, // /images/daily-ad.jpg. // // * BODY: The part of a request that contains any additional data that you // want to send to your web server as the HTTP request body, such as data // from a form. The request body immediately follows the request headers. // Note that only the first 8192 bytes of the request body are forwarded // to AWS WAF for inspection. To allow or block requests based on the length // of the body, you can create a size constraint set. For more information, // see CreateSizeConstraintSet. // // Type is a required field Type *string `type:"string" required:"true" enum:"MatchFieldType"` } // String returns the string representation func (s FieldToMatch) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s FieldToMatch) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *FieldToMatch) Validate() error { invalidParams := request.ErrInvalidParams{Context: "FieldToMatch"} if s.Type == nil { invalidParams.Add(request.NewErrParamRequired("Type")) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetData sets the Data field's value. func (s *FieldToMatch) SetData(v string) *FieldToMatch { s.Data = &v return s } // SetType sets the Type field's value. func (s *FieldToMatch) SetType(v string) *FieldToMatch { s.Type = &v return s } type GetByteMatchSetInput struct { _ struct{} `type:"structure"` // The ByteMatchSetId of the ByteMatchSet that you want to get. ByteMatchSetId // is returned by CreateByteMatchSet and by ListByteMatchSets. // // ByteMatchSetId is a required field ByteMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetByteMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetByteMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetByteMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetByteMatchSetInput"} if s.ByteMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("ByteMatchSetId")) } if s.ByteMatchSetId != nil && len(*s.ByteMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("ByteMatchSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetByteMatchSetId sets the ByteMatchSetId field's value. func (s *GetByteMatchSetInput) SetByteMatchSetId(v string) *GetByteMatchSetInput { s.ByteMatchSetId = &v return s } type GetByteMatchSetOutput struct { _ struct{} `type:"structure"` // Information about the ByteMatchSet that you specified in the GetByteMatchSet // request. For more information, see the following topics: // // * ByteMatchSet: Contains ByteMatchSetId, ByteMatchTuples, and Name // // * ByteMatchTuples: Contains an array of ByteMatchTuple objects. Each ByteMatchTuple // object contains FieldToMatch, PositionalConstraint, TargetString, and // TextTransformation // // * FieldToMatch: Contains Data and Type ByteMatchSet *ByteMatchSet `type:"structure"` } // String returns the string representation func (s GetByteMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetByteMatchSetOutput) GoString() string { return s.String() } // SetByteMatchSet sets the ByteMatchSet field's value. func (s *GetByteMatchSetOutput) SetByteMatchSet(v *ByteMatchSet) *GetByteMatchSetOutput { s.ByteMatchSet = v return s } type GetChangeTokenInput struct { _ struct{} `type:"structure"` } // String returns the string representation func (s GetChangeTokenInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetChangeTokenInput) GoString() string { return s.String() } type GetChangeTokenOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used in the request. Use this value in a GetChangeTokenStatus // request to get the current status of the request. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s GetChangeTokenOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetChangeTokenOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *GetChangeTokenOutput) SetChangeToken(v string) *GetChangeTokenOutput { s.ChangeToken = &v return s } type GetChangeTokenStatusInput struct { _ struct{} `type:"structure"` // The change token for which you want to get the status. This change token // was previously returned in the GetChangeToken response. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetChangeTokenStatusInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetChangeTokenStatusInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetChangeTokenStatusInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetChangeTokenStatusInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *GetChangeTokenStatusInput) SetChangeToken(v string) *GetChangeTokenStatusInput { s.ChangeToken = &v return s } type GetChangeTokenStatusOutput struct { _ struct{} `type:"structure"` // The status of the change token. ChangeTokenStatus *string `type:"string" enum:"ChangeTokenStatus"` } // String returns the string representation func (s GetChangeTokenStatusOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetChangeTokenStatusOutput) GoString() string { return s.String() } // SetChangeTokenStatus sets the ChangeTokenStatus field's value. func (s *GetChangeTokenStatusOutput) SetChangeTokenStatus(v string) *GetChangeTokenStatusOutput { s.ChangeTokenStatus = &v return s } type GetIPSetInput struct { _ struct{} `type:"structure"` // The IPSetId of the IPSet that you want to get. IPSetId is returned by CreateIPSet // and by ListIPSets. // // IPSetId is a required field IPSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetIPSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetIPSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetIPSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetIPSetInput"} if s.IPSetId == nil { invalidParams.Add(request.NewErrParamRequired("IPSetId")) } if s.IPSetId != nil && len(*s.IPSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("IPSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetIPSetId sets the IPSetId field's value. func (s *GetIPSetInput) SetIPSetId(v string) *GetIPSetInput { s.IPSetId = &v return s } type GetIPSetOutput struct { _ struct{} `type:"structure"` // Information about the IPSet that you specified in the GetIPSet request. For // more information, see the following topics: // // * IPSet: Contains IPSetDescriptors, IPSetId, and Name // // * IPSetDescriptors: Contains an array of IPSetDescriptor objects. Each // IPSetDescriptor object contains Type and Value IPSet *IPSet `type:"structure"` } // String returns the string representation func (s GetIPSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetIPSetOutput) GoString() string { return s.String() } // SetIPSet sets the IPSet field's value. func (s *GetIPSetOutput) SetIPSet(v *IPSet) *GetIPSetOutput { s.IPSet = v return s } type GetRuleInput struct { _ struct{} `type:"structure"` // The RuleId of the Rule that you want to get. RuleId is returned by CreateRule // and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetRuleInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetRuleInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetRuleInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetRuleInput"} if s.RuleId == nil { invalidParams.Add(request.NewErrParamRequired("RuleId")) } if s.RuleId != nil && len(*s.RuleId) < 1 { invalidParams.Add(request.NewErrParamMinLen("RuleId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetRuleId sets the RuleId field's value. func (s *GetRuleInput) SetRuleId(v string) *GetRuleInput { s.RuleId = &v return s } type GetRuleOutput struct { _ struct{} `type:"structure"` // Information about the Rule that you specified in the GetRule request. For // more information, see the following topics: // // * Rule: Contains MetricName, Name, an array of Predicate objects, and // RuleId // // * Predicate: Each Predicate object contains DataId, Negated, and Type Rule *Rule `type:"structure"` } // String returns the string representation func (s GetRuleOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetRuleOutput) GoString() string { return s.String() } // SetRule sets the Rule field's value. func (s *GetRuleOutput) SetRule(v *Rule) *GetRuleOutput { s.Rule = v return s } type GetSampledRequestsInput struct { _ struct{} `type:"structure"` // The number of requests that you want AWS WAF to return from among the first // 5,000 requests that your AWS resource received during the time range. If // your resource received fewer requests than the value of MaxItems, GetSampledRequests // returns information about all of them. // // MaxItems is a required field MaxItems *int64 `min:"1" type:"long" required:"true"` // RuleId is one of two values: // // * The RuleId of the Rule for which you want GetSampledRequests to return // a sample of requests. // // * Default_Action, which causes GetSampledRequests to return a sample of // the requests that didn't match any of the rules in the specified WebACL. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` // The start date and time and the end date and time of the range for which // you want GetSampledRequests to return a sample of requests. Specify the date // and time in Unix time format (in seconds). You can specify any time range // in the previous three hours. // // TimeWindow is a required field TimeWindow *TimeWindow `type:"structure" required:"true"` // The WebACLId of the WebACL for which you want GetSampledRequests to return // a sample of requests. // // WebAclId is a required field WebAclId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetSampledRequestsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSampledRequestsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetSampledRequestsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetSampledRequestsInput"} if s.MaxItems == nil { invalidParams.Add(request.NewErrParamRequired("MaxItems")) } if s.MaxItems != nil && *s.MaxItems < 1 { invalidParams.Add(request.NewErrParamMinValue("MaxItems", 1)) } if s.RuleId == nil { invalidParams.Add(request.NewErrParamRequired("RuleId")) } if s.RuleId != nil && len(*s.RuleId) < 1 { invalidParams.Add(request.NewErrParamMinLen("RuleId", 1)) } if s.TimeWindow == nil { invalidParams.Add(request.NewErrParamRequired("TimeWindow")) } if s.WebAclId == nil { invalidParams.Add(request.NewErrParamRequired("WebAclId")) } if s.WebAclId != nil && len(*s.WebAclId) < 1 { invalidParams.Add(request.NewErrParamMinLen("WebAclId", 1)) } if s.TimeWindow != nil { if err := s.TimeWindow.Validate(); err != nil { invalidParams.AddNested("TimeWindow", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetMaxItems sets the MaxItems field's value. func (s *GetSampledRequestsInput) SetMaxItems(v int64) *GetSampledRequestsInput { s.MaxItems = &v return s } // SetRuleId sets the RuleId field's value. func (s *GetSampledRequestsInput) SetRuleId(v string) *GetSampledRequestsInput { s.RuleId = &v return s } // SetTimeWindow sets the TimeWindow field's value. func (s *GetSampledRequestsInput) SetTimeWindow(v *TimeWindow) *GetSampledRequestsInput { s.TimeWindow = v return s } // SetWebAclId sets the WebAclId field's value. func (s *GetSampledRequestsInput) SetWebAclId(v string) *GetSampledRequestsInput { s.WebAclId = &v return s } type GetSampledRequestsOutput struct { _ struct{} `type:"structure"` // The total number of requests from which GetSampledRequests got a sample of // MaxItems requests. If PopulationSize is less than MaxItems, the sample includes // every request that your AWS resource received during the specified time range. PopulationSize *int64 `type:"long"` // A complex type that contains detailed information about each of the requests // in the sample. SampledRequests []*SampledHTTPRequest `type:"list"` // Usually, TimeWindow is the time range that you specified in the GetSampledRequests // request. However, if your AWS resource received more than 5,000 requests // during the time range that you specified in the request, GetSampledRequests // returns the time range for the first 5,000 requests. TimeWindow *TimeWindow `type:"structure"` } // String returns the string representation func (s GetSampledRequestsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSampledRequestsOutput) GoString() string { return s.String() } // SetPopulationSize sets the PopulationSize field's value. func (s *GetSampledRequestsOutput) SetPopulationSize(v int64) *GetSampledRequestsOutput { s.PopulationSize = &v return s } // SetSampledRequests sets the SampledRequests field's value. func (s *GetSampledRequestsOutput) SetSampledRequests(v []*SampledHTTPRequest) *GetSampledRequestsOutput { s.SampledRequests = v return s } // SetTimeWindow sets the TimeWindow field's value. func (s *GetSampledRequestsOutput) SetTimeWindow(v *TimeWindow) *GetSampledRequestsOutput { s.TimeWindow = v return s } type GetSizeConstraintSetInput struct { _ struct{} `type:"structure"` // The SizeConstraintSetId of the SizeConstraintSet that you want to get. SizeConstraintSetId // is returned by CreateSizeConstraintSet and by ListSizeConstraintSets. // // SizeConstraintSetId is a required field SizeConstraintSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetSizeConstraintSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSizeConstraintSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetSizeConstraintSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetSizeConstraintSetInput"} if s.SizeConstraintSetId == nil { invalidParams.Add(request.NewErrParamRequired("SizeConstraintSetId")) } if s.SizeConstraintSetId != nil && len(*s.SizeConstraintSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SizeConstraintSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetSizeConstraintSetId sets the SizeConstraintSetId field's value. func (s *GetSizeConstraintSetInput) SetSizeConstraintSetId(v string) *GetSizeConstraintSetInput { s.SizeConstraintSetId = &v return s } type GetSizeConstraintSetOutput struct { _ struct{} `type:"structure"` // Information about the SizeConstraintSet that you specified in the GetSizeConstraintSet // request. For more information, see the following topics: // // * SizeConstraintSet: Contains SizeConstraintSetId, SizeConstraints, and // Name // // * SizeConstraints: Contains an array of SizeConstraint objects. Each SizeConstraint // object contains FieldToMatch, TextTransformation, ComparisonOperator, // and Size // // * FieldToMatch: Contains Data and Type SizeConstraintSet *SizeConstraintSet `type:"structure"` } // String returns the string representation func (s GetSizeConstraintSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSizeConstraintSetOutput) GoString() string { return s.String() } // SetSizeConstraintSet sets the SizeConstraintSet field's value. func (s *GetSizeConstraintSetOutput) SetSizeConstraintSet(v *SizeConstraintSet) *GetSizeConstraintSetOutput { s.SizeConstraintSet = v return s } // A request to get a SqlInjectionMatchSet. type GetSqlInjectionMatchSetInput struct { _ struct{} `type:"structure"` // The SqlInjectionMatchSetId of the SqlInjectionMatchSet that you want to get. // SqlInjectionMatchSetId is returned by CreateSqlInjectionMatchSet and by ListSqlInjectionMatchSets. // // SqlInjectionMatchSetId is a required field SqlInjectionMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetSqlInjectionMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSqlInjectionMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetSqlInjectionMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetSqlInjectionMatchSetInput"} if s.SqlInjectionMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("SqlInjectionMatchSetId")) } if s.SqlInjectionMatchSetId != nil && len(*s.SqlInjectionMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SqlInjectionMatchSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetSqlInjectionMatchSetId sets the SqlInjectionMatchSetId field's value. func (s *GetSqlInjectionMatchSetInput) SetSqlInjectionMatchSetId(v string) *GetSqlInjectionMatchSetInput { s.SqlInjectionMatchSetId = &v return s } // The response to a GetSqlInjectionMatchSet request. type GetSqlInjectionMatchSetOutput struct { _ struct{} `type:"structure"` // Information about the SqlInjectionMatchSet that you specified in the GetSqlInjectionMatchSet // request. For more information, see the following topics: // // * SqlInjectionMatchSet: Contains Name, SqlInjectionMatchSetId, and an // array of SqlInjectionMatchTuple objects // // * SqlInjectionMatchTuple: Each SqlInjectionMatchTuple object contains // FieldToMatch and TextTransformation // // * FieldToMatch: Contains Data and Type SqlInjectionMatchSet *SqlInjectionMatchSet `type:"structure"` } // String returns the string representation func (s GetSqlInjectionMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetSqlInjectionMatchSetOutput) GoString() string { return s.String() } // SetSqlInjectionMatchSet sets the SqlInjectionMatchSet field's value. func (s *GetSqlInjectionMatchSetOutput) SetSqlInjectionMatchSet(v *SqlInjectionMatchSet) *GetSqlInjectionMatchSetOutput { s.SqlInjectionMatchSet = v return s } type GetWebACLInput struct { _ struct{} `type:"structure"` // The WebACLId of the WebACL that you want to get. WebACLId is returned by // CreateWebACL and by ListWebACLs. // // WebACLId is a required field WebACLId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetWebACLInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetWebACLInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetWebACLInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetWebACLInput"} if s.WebACLId == nil { invalidParams.Add(request.NewErrParamRequired("WebACLId")) } if s.WebACLId != nil && len(*s.WebACLId) < 1 { invalidParams.Add(request.NewErrParamMinLen("WebACLId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetWebACLId sets the WebACLId field's value. func (s *GetWebACLInput) SetWebACLId(v string) *GetWebACLInput { s.WebACLId = &v return s } type GetWebACLOutput struct { _ struct{} `type:"structure"` // Information about the WebACL that you specified in the GetWebACL request. // For more information, see the following topics: // // * WebACL: Contains DefaultAction, MetricName, Name, an array of Rule objects, // and WebACLId // // * DefaultAction (Data type is WafAction): Contains Type // // * Rules: Contains an array of ActivatedRule objects, which contain Action, // Priority, and RuleId // // * Action: Contains Type WebACL *WebACL `type:"structure"` } // String returns the string representation func (s GetWebACLOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetWebACLOutput) GoString() string { return s.String() } // SetWebACL sets the WebACL field's value. func (s *GetWebACLOutput) SetWebACL(v *WebACL) *GetWebACLOutput { s.WebACL = v return s } // A request to get an XssMatchSet. type GetXssMatchSetInput struct { _ struct{} `type:"structure"` // The XssMatchSetId of the XssMatchSet that you want to get. XssMatchSetId // is returned by CreateXssMatchSet and by ListXssMatchSets. // // XssMatchSetId is a required field XssMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s GetXssMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetXssMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *GetXssMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "GetXssMatchSetInput"} if s.XssMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("XssMatchSetId")) } if s.XssMatchSetId != nil && len(*s.XssMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("XssMatchSetId", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetXssMatchSetId sets the XssMatchSetId field's value. func (s *GetXssMatchSetInput) SetXssMatchSetId(v string) *GetXssMatchSetInput { s.XssMatchSetId = &v return s } // The response to a GetXssMatchSet request. type GetXssMatchSetOutput struct { _ struct{} `type:"structure"` // Information about the XssMatchSet that you specified in the GetXssMatchSet // request. For more information, see the following topics: // // * XssMatchSet: Contains Name, XssMatchSetId, and an array of XssMatchTuple // objects // // * XssMatchTuple: Each XssMatchTuple object contains FieldToMatch and TextTransformation // // * FieldToMatch: Contains Data and Type XssMatchSet *XssMatchSet `type:"structure"` } // String returns the string representation func (s GetXssMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s GetXssMatchSetOutput) GoString() string { return s.String() } // SetXssMatchSet sets the XssMatchSet field's value. func (s *GetXssMatchSetOutput) SetXssMatchSet(v *XssMatchSet) *GetXssMatchSetOutput { s.XssMatchSet = v return s } // The response from a GetSampledRequests request includes an HTTPHeader complex // type that appears as Headers in the response syntax. HTTPHeader contains // the names and values of all of the headers that appear in one of the web // requests that were returned by GetSampledRequests. type HTTPHeader struct { _ struct{} `type:"structure"` // The name of one of the headers in the sampled web request. Name *string `type:"string"` // The value of one of the headers in the sampled web request. Value *string `type:"string"` } // String returns the string representation func (s HTTPHeader) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s HTTPHeader) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *HTTPHeader) SetName(v string) *HTTPHeader { s.Name = &v return s } // SetValue sets the Value field's value. func (s *HTTPHeader) SetValue(v string) *HTTPHeader { s.Value = &v return s } // The response from a GetSampledRequests request includes an HTTPRequest complex // type that appears as Request in the response syntax. HTTPRequest contains // information about one of the web requests that were returned by GetSampledRequests. type HTTPRequest struct { _ struct{} `type:"structure"` // The IP address that the request originated from. If the WebACL is associated // with a CloudFront distribution, this is the value of one of the following // fields in CloudFront access logs: // // * c-ip, if the viewer did not use an HTTP proxy or a load balancer to // send the request // // * x-forwarded-for, if the viewer did use an HTTP proxy or a load balancer // to send the request ClientIP *string `type:"string"` // The two-letter country code for the country that the request originated from. // For a current list of country codes, see the Wikipedia entry ISO 3166-1 alpha-2 // (https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2). Country *string `type:"string"` // The HTTP version specified in the sampled web request, for example, HTTP/1.1. HTTPVersion *string `type:"string"` // A complex type that contains two values for each header in the sampled web // request: the name of the header and the value of the header. Headers []*HTTPHeader `type:"list"` // The HTTP method specified in the sampled web request. CloudFront supports // the following methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, and PUT. Method *string `type:"string"` // The part of a web request that identifies the resource, for example, /images/daily-ad.jpg. URI *string `type:"string"` } // String returns the string representation func (s HTTPRequest) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s HTTPRequest) GoString() string { return s.String() } // SetClientIP sets the ClientIP field's value. func (s *HTTPRequest) SetClientIP(v string) *HTTPRequest { s.ClientIP = &v return s } // SetCountry sets the Country field's value. func (s *HTTPRequest) SetCountry(v string) *HTTPRequest { s.Country = &v return s } // SetHTTPVersion sets the HTTPVersion field's value. func (s *HTTPRequest) SetHTTPVersion(v string) *HTTPRequest { s.HTTPVersion = &v return s } // SetHeaders sets the Headers field's value. func (s *HTTPRequest) SetHeaders(v []*HTTPHeader) *HTTPRequest { s.Headers = v return s } // SetMethod sets the Method field's value. func (s *HTTPRequest) SetMethod(v string) *HTTPRequest { s.Method = &v return s } // SetURI sets the URI field's value. func (s *HTTPRequest) SetURI(v string) *HTTPRequest { s.URI = &v return s } // Contains one or more IP addresses or blocks of IP addresses specified in // Classless Inter-Domain Routing (CIDR) notation. To specify an individual // IP address, you specify the four-part IP address followed by a /32, for example, // 192.0.2.0/31. To block a range of IP addresses, you can specify a /24, a // /16, or a /8 CIDR. For more information about CIDR notation, perform an Internet // search on cidr notation. type IPSet struct { _ struct{} `type:"structure"` // The IP address type (IPV4) and the IP address range (in CIDR notation) that // web requests originate from. If the WebACL is associated with a CloudFront // distribution, this is the value of one of the following fields in CloudFront // access logs: // // * c-ip, if the viewer did not use an HTTP proxy or a load balancer to // send the request // // * x-forwarded-for, if the viewer did use an HTTP proxy or a load balancer // to send the request // // IPSetDescriptors is a required field IPSetDescriptors []*IPSetDescriptor `type:"list" required:"true"` // The IPSetId for an IPSet. You use IPSetId to get information about an IPSet // (see GetIPSet), update an IPSet (see UpdateIPSet), insert an IPSet into a // Rule or delete one from a Rule (see UpdateRule), and delete an IPSet from // AWS WAF (see DeleteIPSet). // // IPSetId is returned by CreateIPSet and by ListIPSets. // // IPSetId is a required field IPSetId *string `min:"1" type:"string" required:"true"` // A friendly name or description of the IPSet. You can't change the name of // an IPSet after you create it. Name *string `min:"1" type:"string"` } // String returns the string representation func (s IPSet) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s IPSet) GoString() string { return s.String() } // SetIPSetDescriptors sets the IPSetDescriptors field's value. func (s *IPSet) SetIPSetDescriptors(v []*IPSetDescriptor) *IPSet { s.IPSetDescriptors = v return s } // SetIPSetId sets the IPSetId field's value. func (s *IPSet) SetIPSetId(v string) *IPSet { s.IPSetId = &v return s } // SetName sets the Name field's value. func (s *IPSet) SetName(v string) *IPSet { s.Name = &v return s } // Specifies the IP address type (IPV4) and the IP address range (in CIDR format) // that web requests originate from. type IPSetDescriptor struct { _ struct{} `type:"structure"` // Specify IPV4. // // Type is a required field Type *string `type:"string" required:"true" enum:"IPSetDescriptorType"` // Specify an IPv4 address by using CIDR notation. For example: // // * To configure AWS WAF to allow, block, or count requests that originated // from the IP address 192.0.2.44, specify 192.0.2.44/32. // // * To configure AWS WAF to allow, block, or count requests that originated // from IP addresses from 192.0.2.0 to 192.0.2.255, specify 192.0.2.0/24. // // AWS WAF supports only /8, /16, /24, and /32 IP addresses. // // For more information about CIDR notation, see the Wikipedia entry Classless // Inter-Domain Routing (https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing). // // Value is a required field Value *string `type:"string" required:"true"` } // String returns the string representation func (s IPSetDescriptor) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s IPSetDescriptor) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *IPSetDescriptor) Validate() error { invalidParams := request.ErrInvalidParams{Context: "IPSetDescriptor"} if s.Type == nil { invalidParams.Add(request.NewErrParamRequired("Type")) } if s.Value == nil { invalidParams.Add(request.NewErrParamRequired("Value")) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetType sets the Type field's value. func (s *IPSetDescriptor) SetType(v string) *IPSetDescriptor { s.Type = &v return s } // SetValue sets the Value field's value. func (s *IPSetDescriptor) SetValue(v string) *IPSetDescriptor { s.Value = &v return s } // Contains the identifier and the name of the IPSet. type IPSetSummary struct { _ struct{} `type:"structure"` // The IPSetId for an IPSet. You can use IPSetId in a GetIPSet request to get // detailed information about an IPSet. // // IPSetId is a required field IPSetId *string `min:"1" type:"string" required:"true"` // A friendly name or description of the IPSet. You can't change the name of // an IPSet after you create it. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s IPSetSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s IPSetSummary) GoString() string { return s.String() } // SetIPSetId sets the IPSetId field's value. func (s *IPSetSummary) SetIPSetId(v string) *IPSetSummary { s.IPSetId = &v return s } // SetName sets the Name field's value. func (s *IPSetSummary) SetName(v string) *IPSetSummary { s.Name = &v return s } // Specifies the type of update to perform to an IPSet with UpdateIPSet. type IPSetUpdate struct { _ struct{} `type:"structure"` // Specifies whether to insert or delete an IP address with UpdateIPSet. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // The IP address type (IPV4) and the IP address range (in CIDR notation) that // web requests originate from. // // IPSetDescriptor is a required field IPSetDescriptor *IPSetDescriptor `type:"structure" required:"true"` } // String returns the string representation func (s IPSetUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s IPSetUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *IPSetUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "IPSetUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.IPSetDescriptor == nil { invalidParams.Add(request.NewErrParamRequired("IPSetDescriptor")) } if s.IPSetDescriptor != nil { if err := s.IPSetDescriptor.Validate(); err != nil { invalidParams.AddNested("IPSetDescriptor", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *IPSetUpdate) SetAction(v string) *IPSetUpdate { s.Action = &v return s } // SetIPSetDescriptor sets the IPSetDescriptor field's value. func (s *IPSetUpdate) SetIPSetDescriptor(v *IPSetDescriptor) *IPSetUpdate { s.IPSetDescriptor = v return s } type ListByteMatchSetsInput struct { _ struct{} `type:"structure"` // Specifies the number of ByteMatchSet objects that you want AWS WAF to return // for this request. If you have more ByteMatchSets objects than the number // you specify for Limit, the response includes a NextMarker value that you // can use to get another batch of ByteMatchSet objects. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more ByteMatchSets than the // value of Limit, AWS WAF returns a NextMarker value in the response that allows // you to list another group of ByteMatchSets. For the second and subsequent // ListByteMatchSets requests, specify the value of NextMarker from the previous // response to get information about another batch of ByteMatchSets. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListByteMatchSetsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListByteMatchSetsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListByteMatchSetsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListByteMatchSetsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListByteMatchSetsInput) SetLimit(v int64) *ListByteMatchSetsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListByteMatchSetsInput) SetNextMarker(v string) *ListByteMatchSetsInput { s.NextMarker = &v return s } type ListByteMatchSetsOutput struct { _ struct{} `type:"structure"` // An array of ByteMatchSetSummary objects. ByteMatchSets []*ByteMatchSetSummary `type:"list"` // If you have more ByteMatchSet objects than the number that you specified // for Limit in the request, the response includes a NextMarker value. To list // more ByteMatchSet objects, submit another ListByteMatchSets request, and // specify the NextMarker value from the response in the NextMarker value in // the next request. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListByteMatchSetsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListByteMatchSetsOutput) GoString() string { return s.String() } // SetByteMatchSets sets the ByteMatchSets field's value. func (s *ListByteMatchSetsOutput) SetByteMatchSets(v []*ByteMatchSetSummary) *ListByteMatchSetsOutput { s.ByteMatchSets = v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListByteMatchSetsOutput) SetNextMarker(v string) *ListByteMatchSetsOutput { s.NextMarker = &v return s } type ListIPSetsInput struct { _ struct{} `type:"structure"` // Specifies the number of IPSet objects that you want AWS WAF to return for // this request. If you have more IPSet objects than the number you specify // for Limit, the response includes a NextMarker value that you can use to get // another batch of IPSet objects. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more IPSets than the value // of Limit, AWS WAF returns a NextMarker value in the response that allows // you to list another group of IPSets. For the second and subsequent ListIPSets // requests, specify the value of NextMarker from the previous response to get // information about another batch of ByteMatchSets. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListIPSetsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListIPSetsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListIPSetsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListIPSetsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListIPSetsInput) SetLimit(v int64) *ListIPSetsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListIPSetsInput) SetNextMarker(v string) *ListIPSetsInput { s.NextMarker = &v return s } type ListIPSetsOutput struct { _ struct{} `type:"structure"` // An array of IPSetSummary objects. IPSets []*IPSetSummary `type:"list"` // If you have more IPSet objects than the number that you specified for Limit // in the request, the response includes a NextMarker value. To list more IPSet // objects, submit another ListIPSets request, and specify the NextMarker value // from the response in the NextMarker value in the next request. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListIPSetsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListIPSetsOutput) GoString() string { return s.String() } // SetIPSets sets the IPSets field's value. func (s *ListIPSetsOutput) SetIPSets(v []*IPSetSummary) *ListIPSetsOutput { s.IPSets = v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListIPSetsOutput) SetNextMarker(v string) *ListIPSetsOutput { s.NextMarker = &v return s } type ListRulesInput struct { _ struct{} `type:"structure"` // Specifies the number of Rules that you want AWS WAF to return for this request. // If you have more Rules than the number that you specify for Limit, the response // includes a NextMarker value that you can use to get another batch of Rules. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more Rules than the value of // Limit, AWS WAF returns a NextMarker value in the response that allows you // to list another group of Rules. For the second and subsequent ListRules requests, // specify the value of NextMarker from the previous response to get information // about another batch of Rules. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListRulesInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListRulesInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListRulesInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListRulesInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListRulesInput) SetLimit(v int64) *ListRulesInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListRulesInput) SetNextMarker(v string) *ListRulesInput { s.NextMarker = &v return s } type ListRulesOutput struct { _ struct{} `type:"structure"` // If you have more Rules than the number that you specified for Limit in the // request, the response includes a NextMarker value. To list more Rules, submit // another ListRules request, and specify the NextMarker value from the response // in the NextMarker value in the next request. NextMarker *string `min:"1" type:"string"` // An array of RuleSummary objects. Rules []*RuleSummary `type:"list"` } // String returns the string representation func (s ListRulesOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListRulesOutput) GoString() string { return s.String() } // SetNextMarker sets the NextMarker field's value. func (s *ListRulesOutput) SetNextMarker(v string) *ListRulesOutput { s.NextMarker = &v return s } // SetRules sets the Rules field's value. func (s *ListRulesOutput) SetRules(v []*RuleSummary) *ListRulesOutput { s.Rules = v return s } type ListSizeConstraintSetsInput struct { _ struct{} `type:"structure"` // Specifies the number of SizeConstraintSet objects that you want AWS WAF to // return for this request. If you have more SizeConstraintSets objects than // the number you specify for Limit, the response includes a NextMarker value // that you can use to get another batch of SizeConstraintSet objects. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more SizeConstraintSets than // the value of Limit, AWS WAF returns a NextMarker value in the response that // allows you to list another group of SizeConstraintSets. For the second and // subsequent ListSizeConstraintSets requests, specify the value of NextMarker // from the previous response to get information about another batch of SizeConstraintSets. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListSizeConstraintSetsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListSizeConstraintSetsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListSizeConstraintSetsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListSizeConstraintSetsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListSizeConstraintSetsInput) SetLimit(v int64) *ListSizeConstraintSetsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListSizeConstraintSetsInput) SetNextMarker(v string) *ListSizeConstraintSetsInput { s.NextMarker = &v return s } type ListSizeConstraintSetsOutput struct { _ struct{} `type:"structure"` // If you have more SizeConstraintSet objects than the number that you specified // for Limit in the request, the response includes a NextMarker value. To list // more SizeConstraintSet objects, submit another ListSizeConstraintSets request, // and specify the NextMarker value from the response in the NextMarker value // in the next request. NextMarker *string `min:"1" type:"string"` // An array of SizeConstraintSetSummary objects. SizeConstraintSets []*SizeConstraintSetSummary `type:"list"` } // String returns the string representation func (s ListSizeConstraintSetsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListSizeConstraintSetsOutput) GoString() string { return s.String() } // SetNextMarker sets the NextMarker field's value. func (s *ListSizeConstraintSetsOutput) SetNextMarker(v string) *ListSizeConstraintSetsOutput { s.NextMarker = &v return s } // SetSizeConstraintSets sets the SizeConstraintSets field's value. func (s *ListSizeConstraintSetsOutput) SetSizeConstraintSets(v []*SizeConstraintSetSummary) *ListSizeConstraintSetsOutput { s.SizeConstraintSets = v return s } // A request to list the SqlInjectionMatchSet objects created by the current // AWS account. type ListSqlInjectionMatchSetsInput struct { _ struct{} `type:"structure"` // Specifies the number of SqlInjectionMatchSet objects that you want AWS WAF // to return for this request. If you have more SqlInjectionMatchSet objects // than the number you specify for Limit, the response includes a NextMarker // value that you can use to get another batch of Rules. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more SqlInjectionMatchSet objects // than the value of Limit, AWS WAF returns a NextMarker value in the response // that allows you to list another group of SqlInjectionMatchSets. For the second // and subsequent ListSqlInjectionMatchSets requests, specify the value of NextMarker // from the previous response to get information about another batch of SqlInjectionMatchSets. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListSqlInjectionMatchSetsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListSqlInjectionMatchSetsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListSqlInjectionMatchSetsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListSqlInjectionMatchSetsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListSqlInjectionMatchSetsInput) SetLimit(v int64) *ListSqlInjectionMatchSetsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListSqlInjectionMatchSetsInput) SetNextMarker(v string) *ListSqlInjectionMatchSetsInput { s.NextMarker = &v return s } // The response to a ListSqlInjectionMatchSets request. type ListSqlInjectionMatchSetsOutput struct { _ struct{} `type:"structure"` // If you have more SqlInjectionMatchSet objects than the number that you specified // for Limit in the request, the response includes a NextMarker value. To list // more SqlInjectionMatchSet objects, submit another ListSqlInjectionMatchSets // request, and specify the NextMarker value from the response in the NextMarker // value in the next request. NextMarker *string `min:"1" type:"string"` // An array of SqlInjectionMatchSetSummary objects. SqlInjectionMatchSets []*SqlInjectionMatchSetSummary `type:"list"` } // String returns the string representation func (s ListSqlInjectionMatchSetsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListSqlInjectionMatchSetsOutput) GoString() string { return s.String() } // SetNextMarker sets the NextMarker field's value. func (s *ListSqlInjectionMatchSetsOutput) SetNextMarker(v string) *ListSqlInjectionMatchSetsOutput { s.NextMarker = &v return s } // SetSqlInjectionMatchSets sets the SqlInjectionMatchSets field's value. func (s *ListSqlInjectionMatchSetsOutput) SetSqlInjectionMatchSets(v []*SqlInjectionMatchSetSummary) *ListSqlInjectionMatchSetsOutput { s.SqlInjectionMatchSets = v return s } type ListWebACLsInput struct { _ struct{} `type:"structure"` // Specifies the number of WebACL objects that you want AWS WAF to return for // this request. If you have more WebACL objects than the number that you specify // for Limit, the response includes a NextMarker value that you can use to get // another batch of WebACL objects. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more WebACL objects than the // number that you specify for Limit, AWS WAF returns a NextMarker value in // the response that allows you to list another group of WebACL objects. For // the second and subsequent ListWebACLs requests, specify the value of NextMarker // from the previous response to get information about another batch of WebACL // objects. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListWebACLsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListWebACLsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListWebACLsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListWebACLsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListWebACLsInput) SetLimit(v int64) *ListWebACLsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListWebACLsInput) SetNextMarker(v string) *ListWebACLsInput { s.NextMarker = &v return s } type ListWebACLsOutput struct { _ struct{} `type:"structure"` // If you have more WebACL objects than the number that you specified for Limit // in the request, the response includes a NextMarker value. To list more WebACL // objects, submit another ListWebACLs request, and specify the NextMarker value // from the response in the NextMarker value in the next request. NextMarker *string `min:"1" type:"string"` // An array of WebACLSummary objects. WebACLs []*WebACLSummary `type:"list"` } // String returns the string representation func (s ListWebACLsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListWebACLsOutput) GoString() string { return s.String() } // SetNextMarker sets the NextMarker field's value. func (s *ListWebACLsOutput) SetNextMarker(v string) *ListWebACLsOutput { s.NextMarker = &v return s } // SetWebACLs sets the WebACLs field's value. func (s *ListWebACLsOutput) SetWebACLs(v []*WebACLSummary) *ListWebACLsOutput { s.WebACLs = v return s } // A request to list the XssMatchSet objects created by the current AWS account. type ListXssMatchSetsInput struct { _ struct{} `type:"structure"` // Specifies the number of XssMatchSet objects that you want AWS WAF to return // for this request. If you have more XssMatchSet objects than the number you // specify for Limit, the response includes a NextMarker value that you can // use to get another batch of Rules. Limit *int64 `type:"integer"` // If you specify a value for Limit and you have more XssMatchSet objects than // the value of Limit, AWS WAF returns a NextMarker value in the response that // allows you to list another group of XssMatchSets. For the second and subsequent // ListXssMatchSets requests, specify the value of NextMarker from the previous // response to get information about another batch of XssMatchSets. NextMarker *string `min:"1" type:"string"` } // String returns the string representation func (s ListXssMatchSetsInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListXssMatchSetsInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *ListXssMatchSetsInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "ListXssMatchSetsInput"} if s.NextMarker != nil && len(*s.NextMarker) < 1 { invalidParams.Add(request.NewErrParamMinLen("NextMarker", 1)) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetLimit sets the Limit field's value. func (s *ListXssMatchSetsInput) SetLimit(v int64) *ListXssMatchSetsInput { s.Limit = &v return s } // SetNextMarker sets the NextMarker field's value. func (s *ListXssMatchSetsInput) SetNextMarker(v string) *ListXssMatchSetsInput { s.NextMarker = &v return s } // The response to a ListXssMatchSets request. type ListXssMatchSetsOutput struct { _ struct{} `type:"structure"` // If you have more XssMatchSet objects than the number that you specified for // Limit in the request, the response includes a NextMarker value. To list more // XssMatchSet objects, submit another ListXssMatchSets request, and specify // the NextMarker value from the response in the NextMarker value in the next // request. NextMarker *string `min:"1" type:"string"` // An array of XssMatchSetSummary objects. XssMatchSets []*XssMatchSetSummary `type:"list"` } // String returns the string representation func (s ListXssMatchSetsOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s ListXssMatchSetsOutput) GoString() string { return s.String() } // SetNextMarker sets the NextMarker field's value. func (s *ListXssMatchSetsOutput) SetNextMarker(v string) *ListXssMatchSetsOutput { s.NextMarker = &v return s } // SetXssMatchSets sets the XssMatchSets field's value. func (s *ListXssMatchSetsOutput) SetXssMatchSets(v []*XssMatchSetSummary) *ListXssMatchSetsOutput { s.XssMatchSets = v return s } // Specifies the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, and // SizeConstraintSet objects that you want to add to a Rule and, for each object, // indicates whether you want to negate the settings, for example, requests // that do NOT originate from the IP address 192.0.2.44. type Predicate struct { _ struct{} `type:"structure"` // A unique identifier for a predicate in a Rule, such as ByteMatchSetId or // IPSetId. The ID is returned by the corresponding Create or List command. // // DataId is a required field DataId *string `min:"1" type:"string" required:"true"` // Set Negated to False if you want AWS WAF to allow, block, or count requests // based on the settings in the specified ByteMatchSet, IPSet, SqlInjectionMatchSet, // XssMatchSet, or SizeConstraintSet. For example, if an IPSet includes the // IP address 192.0.2.44, AWS WAF will allow or block requests based on that // IP address. // // Set Negated to True if you want AWS WAF to allow or block a request based // on the negation of the settings in the ByteMatchSet, IPSet, SqlInjectionMatchSet, // XssMatchSet, or SizeConstraintSet. For example, if an IPSet includes the // IP address 192.0.2.44, AWS WAF will allow, block, or count requests based // on all IP addresses except192.0.2.44. // // Negated is a required field Negated *bool `type:"boolean" required:"true"` // The type of predicate in a Rule, such as ByteMatchSet or IPSet. // // Type is a required field Type *string `type:"string" required:"true" enum:"PredicateType"` } // String returns the string representation func (s Predicate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s Predicate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *Predicate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "Predicate"} if s.DataId == nil { invalidParams.Add(request.NewErrParamRequired("DataId")) } if s.DataId != nil && len(*s.DataId) < 1 { invalidParams.Add(request.NewErrParamMinLen("DataId", 1)) } if s.Negated == nil { invalidParams.Add(request.NewErrParamRequired("Negated")) } if s.Type == nil { invalidParams.Add(request.NewErrParamRequired("Type")) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetDataId sets the DataId field's value. func (s *Predicate) SetDataId(v string) *Predicate { s.DataId = &v return s } // SetNegated sets the Negated field's value. func (s *Predicate) SetNegated(v bool) *Predicate { s.Negated = &v return s } // SetType sets the Type field's value. func (s *Predicate) SetType(v string) *Predicate { s.Type = &v return s } // A combination of ByteMatchSet, IPSet, and/or SqlInjectionMatchSet objects // that identify the web requests that you want to allow, block, or count. For // example, you might create a Rule that includes the following predicates: // // * An IPSet that causes AWS WAF to search for web requests that originate // from the IP address 192.0.2.44 // // * A ByteMatchSet that causes AWS WAF to search for web requests for which // the value of the User-Agent header is BadBot. // // To match the settings in this Rule, a request must originate from 192.0.2.44 // AND include a User-Agent header for which the value is BadBot. type Rule struct { _ struct{} `type:"structure"` MetricName *string `type:"string"` // The friendly name or description for the Rule. You can't change the name // of a Rule after you create it. Name *string `min:"1" type:"string"` // The Predicates object contains one Predicate element for each ByteMatchSet, // IPSet, or SqlInjectionMatchSet object that you want to include in a Rule. // // Predicates is a required field Predicates []*Predicate `type:"list" required:"true"` // A unique identifier for a Rule. You use RuleId to get more information about // a Rule (see GetRule), update a Rule (see UpdateRule), insert a Rule into // a WebACL or delete a one from a WebACL (see UpdateWebACL), or delete a Rule // from AWS WAF (see DeleteRule). // // RuleId is returned by CreateRule and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s Rule) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s Rule) GoString() string { return s.String() } // SetMetricName sets the MetricName field's value. func (s *Rule) SetMetricName(v string) *Rule { s.MetricName = &v return s } // SetName sets the Name field's value. func (s *Rule) SetName(v string) *Rule { s.Name = &v return s } // SetPredicates sets the Predicates field's value. func (s *Rule) SetPredicates(v []*Predicate) *Rule { s.Predicates = v return s } // SetRuleId sets the RuleId field's value. func (s *Rule) SetRuleId(v string) *Rule { s.RuleId = &v return s } // Contains the identifier and the friendly name or description of the Rule. type RuleSummary struct { _ struct{} `type:"structure"` // A friendly name or description of the Rule. You can't change the name of // a Rule after you create it. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` // A unique identifier for a Rule. You use RuleId to get more information about // a Rule (see GetRule), update a Rule (see UpdateRule), insert a Rule into // a WebACL or delete one from a WebACL (see UpdateWebACL), or delete a Rule // from AWS WAF (see DeleteRule). // // RuleId is returned by CreateRule and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s RuleSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s RuleSummary) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *RuleSummary) SetName(v string) *RuleSummary { s.Name = &v return s } // SetRuleId sets the RuleId field's value. func (s *RuleSummary) SetRuleId(v string) *RuleSummary { s.RuleId = &v return s } // Specifies a Predicate (such as an IPSet) and indicates whether you want to // add it to a Rule or delete it from a Rule. type RuleUpdate struct { _ struct{} `type:"structure"` // Specify INSERT to add a Predicate to a Rule. Use DELETE to remove a Predicate // from a Rule. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // The ID of the Predicate (such as an IPSet) that you want to add to a Rule. // // Predicate is a required field Predicate *Predicate `type:"structure" required:"true"` } // String returns the string representation func (s RuleUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s RuleUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *RuleUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "RuleUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.Predicate == nil { invalidParams.Add(request.NewErrParamRequired("Predicate")) } if s.Predicate != nil { if err := s.Predicate.Validate(); err != nil { invalidParams.AddNested("Predicate", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *RuleUpdate) SetAction(v string) *RuleUpdate { s.Action = &v return s } // SetPredicate sets the Predicate field's value. func (s *RuleUpdate) SetPredicate(v *Predicate) *RuleUpdate { s.Predicate = v return s } // The response from a GetSampledRequests request includes a SampledHTTPRequests // complex type that appears as SampledRequests in the response syntax. SampledHTTPRequests // contains one SampledHTTPRequest object for each web request that is returned // by GetSampledRequests. type SampledHTTPRequest struct { _ struct{} `type:"structure"` // The action for the Rule that the request matched: ALLOW, BLOCK, or COUNT. Action *string `type:"string"` // A complex type that contains detailed information about the request. // // Request is a required field Request *HTTPRequest `type:"structure" required:"true"` // The time at which AWS WAF received the request from your AWS resource, in // Unix time format (in seconds). Timestamp *time.Time `type:"timestamp" timestampFormat:"unix"` // A value that indicates how one result in the response relates proportionally // to other results in the response. A result that has a weight of 2 represents // roughly twice as many CloudFront web requests as a result that has a weight // of 1. // // Weight is a required field Weight *int64 `type:"long" required:"true"` } // String returns the string representation func (s SampledHTTPRequest) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SampledHTTPRequest) GoString() string { return s.String() } // SetAction sets the Action field's value. func (s *SampledHTTPRequest) SetAction(v string) *SampledHTTPRequest { s.Action = &v return s } // SetRequest sets the Request field's value. func (s *SampledHTTPRequest) SetRequest(v *HTTPRequest) *SampledHTTPRequest { s.Request = v return s } // SetTimestamp sets the Timestamp field's value. func (s *SampledHTTPRequest) SetTimestamp(v time.Time) *SampledHTTPRequest { s.Timestamp = &v return s } // SetWeight sets the Weight field's value. func (s *SampledHTTPRequest) SetWeight(v int64) *SampledHTTPRequest { s.Weight = &v return s } // Specifies a constraint on the size of a part of the web request. AWS WAF // uses the Size, ComparisonOperator, and FieldToMatch to build an expression // in the form of "SizeComparisonOperator size in bytes of FieldToMatch". If // that expression is true, the SizeConstraint is considered to match. type SizeConstraint struct { _ struct{} `type:"structure"` // The type of comparison you want AWS WAF to perform. AWS WAF uses this in // combination with the provided Size and FieldToMatch to build an expression // in the form of "SizeComparisonOperator size in bytes of FieldToMatch". If // that expression is true, the SizeConstraint is considered to match. // // EQ: Used to test if the Size is equal to the size of the FieldToMatch // // NE: Used to test if the Size is not equal to the size of the FieldToMatch // // LE: Used to test if the Size is less than or equal to the size of the FieldToMatch // // LT: Used to test if the Size is strictly less than the size of the FieldToMatch // // GE: Used to test if the Size is greater than or equal to the size of the // FieldToMatch // // GT: Used to test if the Size is strictly greater than the size of the FieldToMatch // // ComparisonOperator is a required field ComparisonOperator *string `type:"string" required:"true" enum:"ComparisonOperator"` // Specifies where in a web request to look for TargetString. // // FieldToMatch is a required field FieldToMatch *FieldToMatch `type:"structure" required:"true"` // The size in bytes that you want AWS WAF to compare against the size of the // specified FieldToMatch. AWS WAF uses this in combination with ComparisonOperator // and FieldToMatch to build an expression in the form of "SizeComparisonOperator // size in bytes of FieldToMatch". If that expression is true, the SizeConstraint // is considered to match. // // Valid values for size are 0 - 21474836480 bytes (0 - 20 GB). // // If you specify URI for the value of Type, the / in the URI counts as one // character. For example, the URI /logo.jpg is nine characters long. // // Size is a required field Size *int64 `type:"long" required:"true"` // Text transformations eliminate some of the unusual formatting that attackers // use in web requests in an effort to bypass AWS WAF. If you specify a transformation, // AWS WAF performs the transformation on FieldToMatch before inspecting a request // for a match. // // Note that if you choose BODY for the value of Type, you must choose NONE // for TextTransformation because CloudFront forwards only the first 8192 bytes // for inspection. // // NONE // // Specify NONE if you don't want to perform any text transformations. // // CMD_LINE // // When you're concerned that attackers are injecting an operating system command // line command and using unusual formatting to disguise some or all of the // command, use this option to perform the following transformations: // // * Delete the following characters: \ " ' ^ // // * Delete spaces before the following characters: / ( // // * Replace the following characters with a space: , ; // // * Replace multiple spaces with one space // // * Convert uppercase letters (A-Z) to lowercase (a-z) // // COMPRESS_WHITE_SPACE // // Use this option to replace the following characters with a space character // (decimal 32): // // * \f, formfeed, decimal 12 // // * \t, tab, decimal 9 // // * \n, newline, decimal 10 // // * \r, carriage return, decimal 13 // // * \v, vertical tab, decimal 11 // // * non-breaking space, decimal 160 // // COMPRESS_WHITE_SPACE also replaces multiple spaces with one space. // // HTML_ENTITY_DECODE // // Use this option to replace HTML-encoded characters with unencoded characters. // HTML_ENTITY_DECODE performs the following operations: // // * Replaces (ampersand)quot; with " // // * Replaces (ampersand)nbsp; with a non-breaking space, decimal 160 // // * Replaces (ampersand)lt; with a "less than" symbol // // * Replaces (ampersand)gt; with > // // * Replaces characters that are represented in hexadecimal format, (ampersand)#xhhhh;, // with the corresponding characters // // * Replaces characters that are represented in decimal format, (ampersand)#nnnn;, // with the corresponding characters // // LOWERCASE // // Use this option to convert uppercase letters (A-Z) to lowercase (a-z). // // URL_DECODE // // Use this option to decode a URL-encoded value. // // TextTransformation is a required field TextTransformation *string `type:"string" required:"true" enum:"TextTransformation"` } // String returns the string representation func (s SizeConstraint) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SizeConstraint) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *SizeConstraint) Validate() error { invalidParams := request.ErrInvalidParams{Context: "SizeConstraint"} if s.ComparisonOperator == nil { invalidParams.Add(request.NewErrParamRequired("ComparisonOperator")) } if s.FieldToMatch == nil { invalidParams.Add(request.NewErrParamRequired("FieldToMatch")) } if s.Size == nil { invalidParams.Add(request.NewErrParamRequired("Size")) } if s.TextTransformation == nil { invalidParams.Add(request.NewErrParamRequired("TextTransformation")) } if s.FieldToMatch != nil { if err := s.FieldToMatch.Validate(); err != nil { invalidParams.AddNested("FieldToMatch", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetComparisonOperator sets the ComparisonOperator field's value. func (s *SizeConstraint) SetComparisonOperator(v string) *SizeConstraint { s.ComparisonOperator = &v return s } // SetFieldToMatch sets the FieldToMatch field's value. func (s *SizeConstraint) SetFieldToMatch(v *FieldToMatch) *SizeConstraint { s.FieldToMatch = v return s } // SetSize sets the Size field's value. func (s *SizeConstraint) SetSize(v int64) *SizeConstraint { s.Size = &v return s } // SetTextTransformation sets the TextTransformation field's value. func (s *SizeConstraint) SetTextTransformation(v string) *SizeConstraint { s.TextTransformation = &v return s } // A complex type that contains SizeConstraint objects, which specify the parts // of web requests that you want AWS WAF to inspect the size of. If a SizeConstraintSet // contains more than one SizeConstraint object, a request only needs to match // one constraint to be considered a match. type SizeConstraintSet struct { _ struct{} `type:"structure"` // The name, if any, of the SizeConstraintSet. Name *string `min:"1" type:"string"` // A unique identifier for a SizeConstraintSet. You use SizeConstraintSetId // to get information about a SizeConstraintSet (see GetSizeConstraintSet), // update a SizeConstraintSet (see UpdateSizeConstraintSet), insert a SizeConstraintSet // into a Rule or delete one from a Rule (see UpdateRule), and delete a SizeConstraintSet // from AWS WAF (see DeleteSizeConstraintSet). // // SizeConstraintSetId is returned by CreateSizeConstraintSet and by ListSizeConstraintSets. // // SizeConstraintSetId is a required field SizeConstraintSetId *string `min:"1" type:"string" required:"true"` // Specifies the parts of web requests that you want to inspect the size of. // // SizeConstraints is a required field SizeConstraints []*SizeConstraint `type:"list" required:"true"` } // String returns the string representation func (s SizeConstraintSet) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SizeConstraintSet) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *SizeConstraintSet) SetName(v string) *SizeConstraintSet { s.Name = &v return s } // SetSizeConstraintSetId sets the SizeConstraintSetId field's value. func (s *SizeConstraintSet) SetSizeConstraintSetId(v string) *SizeConstraintSet { s.SizeConstraintSetId = &v return s } // SetSizeConstraints sets the SizeConstraints field's value. func (s *SizeConstraintSet) SetSizeConstraints(v []*SizeConstraint) *SizeConstraintSet { s.SizeConstraints = v return s } // The Id and Name of a SizeConstraintSet. type SizeConstraintSetSummary struct { _ struct{} `type:"structure"` // The name of the SizeConstraintSet, if any. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` // A unique identifier for a SizeConstraintSet. You use SizeConstraintSetId // to get information about a SizeConstraintSet (see GetSizeConstraintSet), // update a SizeConstraintSet (see UpdateSizeConstraintSet), insert a SizeConstraintSet // into a Rule or delete one from a Rule (see UpdateRule), and delete a SizeConstraintSet // from AWS WAF (see DeleteSizeConstraintSet). // // SizeConstraintSetId is returned by CreateSizeConstraintSet and by ListSizeConstraintSets. // // SizeConstraintSetId is a required field SizeConstraintSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s SizeConstraintSetSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SizeConstraintSetSummary) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *SizeConstraintSetSummary) SetName(v string) *SizeConstraintSetSummary { s.Name = &v return s } // SetSizeConstraintSetId sets the SizeConstraintSetId field's value. func (s *SizeConstraintSetSummary) SetSizeConstraintSetId(v string) *SizeConstraintSetSummary { s.SizeConstraintSetId = &v return s } // Specifies the part of a web request that you want to inspect the size of // and indicates whether you want to add the specification to a SizeConstraintSet // or delete it from a SizeConstraintSet. type SizeConstraintSetUpdate struct { _ struct{} `type:"structure"` // Specify INSERT to add a SizeConstraintSetUpdate to a SizeConstraintSet. Use // DELETE to remove a SizeConstraintSetUpdate from a SizeConstraintSet. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // Specifies a constraint on the size of a part of the web request. AWS WAF // uses the Size, ComparisonOperator, and FieldToMatch to build an expression // in the form of "SizeComparisonOperator size in bytes of FieldToMatch". If // that expression is true, the SizeConstraint is considered to match. // // SizeConstraint is a required field SizeConstraint *SizeConstraint `type:"structure" required:"true"` } // String returns the string representation func (s SizeConstraintSetUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SizeConstraintSetUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *SizeConstraintSetUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "SizeConstraintSetUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.SizeConstraint == nil { invalidParams.Add(request.NewErrParamRequired("SizeConstraint")) } if s.SizeConstraint != nil { if err := s.SizeConstraint.Validate(); err != nil { invalidParams.AddNested("SizeConstraint", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *SizeConstraintSetUpdate) SetAction(v string) *SizeConstraintSetUpdate { s.Action = &v return s } // SetSizeConstraint sets the SizeConstraint field's value. func (s *SizeConstraintSetUpdate) SetSizeConstraint(v *SizeConstraint) *SizeConstraintSetUpdate { s.SizeConstraint = v return s } // A complex type that contains SqlInjectionMatchTuple objects, which specify // the parts of web requests that you want AWS WAF to inspect for snippets of // malicious SQL code and, if you want AWS WAF to inspect a header, the name // of the header. If a SqlInjectionMatchSet contains more than one SqlInjectionMatchTuple // object, a request needs to include snippets of SQL code in only one of the // specified parts of the request to be considered a match. type SqlInjectionMatchSet struct { _ struct{} `type:"structure"` // The name, if any, of the SqlInjectionMatchSet. Name *string `min:"1" type:"string"` // A unique identifier for a SqlInjectionMatchSet. You use SqlInjectionMatchSetId // to get information about a SqlInjectionMatchSet (see GetSqlInjectionMatchSet), // update a SqlInjectionMatchSet (see UpdateSqlInjectionMatchSet), insert a // SqlInjectionMatchSet into a Rule or delete one from a Rule (see UpdateRule), // and delete a SqlInjectionMatchSet from AWS WAF (see DeleteSqlInjectionMatchSet). // // SqlInjectionMatchSetId is returned by CreateSqlInjectionMatchSet and by ListSqlInjectionMatchSets. // // SqlInjectionMatchSetId is a required field SqlInjectionMatchSetId *string `min:"1" type:"string" required:"true"` // Specifies the parts of web requests that you want to inspect for snippets // of malicious SQL code. // // SqlInjectionMatchTuples is a required field SqlInjectionMatchTuples []*SqlInjectionMatchTuple `type:"list" required:"true"` } // String returns the string representation func (s SqlInjectionMatchSet) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SqlInjectionMatchSet) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *SqlInjectionMatchSet) SetName(v string) *SqlInjectionMatchSet { s.Name = &v return s } // SetSqlInjectionMatchSetId sets the SqlInjectionMatchSetId field's value. func (s *SqlInjectionMatchSet) SetSqlInjectionMatchSetId(v string) *SqlInjectionMatchSet { s.SqlInjectionMatchSetId = &v return s } // SetSqlInjectionMatchTuples sets the SqlInjectionMatchTuples field's value. func (s *SqlInjectionMatchSet) SetSqlInjectionMatchTuples(v []*SqlInjectionMatchTuple) *SqlInjectionMatchSet { s.SqlInjectionMatchTuples = v return s } // The Id and Name of a SqlInjectionMatchSet. type SqlInjectionMatchSetSummary struct { _ struct{} `type:"structure"` // The name of the SqlInjectionMatchSet, if any, specified by Id. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` // A unique identifier for a SqlInjectionMatchSet. You use SqlInjectionMatchSetId // to get information about a SqlInjectionMatchSet (see GetSqlInjectionMatchSet), // update a SqlInjectionMatchSet (see UpdateSqlInjectionMatchSet), insert a // SqlInjectionMatchSet into a Rule or delete one from a Rule (see UpdateRule), // and delete a SqlInjectionMatchSet from AWS WAF (see DeleteSqlInjectionMatchSet). // // SqlInjectionMatchSetId is returned by CreateSqlInjectionMatchSet and by ListSqlInjectionMatchSets. // // SqlInjectionMatchSetId is a required field SqlInjectionMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s SqlInjectionMatchSetSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SqlInjectionMatchSetSummary) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *SqlInjectionMatchSetSummary) SetName(v string) *SqlInjectionMatchSetSummary { s.Name = &v return s } // SetSqlInjectionMatchSetId sets the SqlInjectionMatchSetId field's value. func (s *SqlInjectionMatchSetSummary) SetSqlInjectionMatchSetId(v string) *SqlInjectionMatchSetSummary { s.SqlInjectionMatchSetId = &v return s } // Specifies the part of a web request that you want to inspect for snippets // of malicious SQL code and indicates whether you want to add the specification // to a SqlInjectionMatchSet or delete it from a SqlInjectionMatchSet. type SqlInjectionMatchSetUpdate struct { _ struct{} `type:"structure"` // Specify INSERT to add a SqlInjectionMatchSetUpdate to a SqlInjectionMatchSet. // Use DELETE to remove a SqlInjectionMatchSetUpdate from a SqlInjectionMatchSet. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // Specifies the part of a web request that you want AWS WAF to inspect for // snippets of malicious SQL code and, if you want AWS WAF to inspect a header, // the name of the header. // // SqlInjectionMatchTuple is a required field SqlInjectionMatchTuple *SqlInjectionMatchTuple `type:"structure" required:"true"` } // String returns the string representation func (s SqlInjectionMatchSetUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SqlInjectionMatchSetUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *SqlInjectionMatchSetUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "SqlInjectionMatchSetUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.SqlInjectionMatchTuple == nil { invalidParams.Add(request.NewErrParamRequired("SqlInjectionMatchTuple")) } if s.SqlInjectionMatchTuple != nil { if err := s.SqlInjectionMatchTuple.Validate(); err != nil { invalidParams.AddNested("SqlInjectionMatchTuple", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *SqlInjectionMatchSetUpdate) SetAction(v string) *SqlInjectionMatchSetUpdate { s.Action = &v return s } // SetSqlInjectionMatchTuple sets the SqlInjectionMatchTuple field's value. func (s *SqlInjectionMatchSetUpdate) SetSqlInjectionMatchTuple(v *SqlInjectionMatchTuple) *SqlInjectionMatchSetUpdate { s.SqlInjectionMatchTuple = v return s } // Specifies the part of a web request that you want AWS WAF to inspect for // snippets of malicious SQL code and, if you want AWS WAF to inspect a header, // the name of the header. type SqlInjectionMatchTuple struct { _ struct{} `type:"structure"` // Specifies where in a web request to look for TargetString. // // FieldToMatch is a required field FieldToMatch *FieldToMatch `type:"structure" required:"true"` // Text transformations eliminate some of the unusual formatting that attackers // use in web requests in an effort to bypass AWS WAF. If you specify a transformation, // AWS WAF performs the transformation on FieldToMatch before inspecting a request // for a match. // // CMD_LINE // // When you're concerned that attackers are injecting an operating system commandline // command and using unusual formatting to disguise some or all of the command, // use this option to perform the following transformations: // // * Delete the following characters: \ " ' ^ // // * Delete spaces before the following characters: / ( // // * Replace the following characters with a space: , ; // // * Replace multiple spaces with one space // // * Convert uppercase letters (A-Z) to lowercase (a-z) // // COMPRESS_WHITE_SPACE // // Use this option to replace the following characters with a space character // (decimal 32): // // * \f, formfeed, decimal 12 // // * \t, tab, decimal 9 // // * \n, newline, decimal 10 // // * \r, carriage return, decimal 13 // // * \v, vertical tab, decimal 11 // // * non-breaking space, decimal 160 // // COMPRESS_WHITE_SPACE also replaces multiple spaces with one space. // // HTML_ENTITY_DECODE // // Use this option to replace HTML-encoded characters with unencoded characters. // HTML_ENTITY_DECODE performs the following operations: // // * Replaces (ampersand)quot; with " // // * Replaces (ampersand)nbsp; with a non-breaking space, decimal 160 // // * Replaces (ampersand)lt; with a "less than" symbol // // * Replaces (ampersand)gt; with > // // * Replaces characters that are represented in hexadecimal format, (ampersand)#xhhhh;, // with the corresponding characters // // * Replaces characters that are represented in decimal format, (ampersand)#nnnn;, // with the corresponding characters // // LOWERCASE // // Use this option to convert uppercase letters (A-Z) to lowercase (a-z). // // URL_DECODE // // Use this option to decode a URL-encoded value. // // NONE // // Specify NONE if you don't want to perform any text transformations. // // TextTransformation is a required field TextTransformation *string `type:"string" required:"true" enum:"TextTransformation"` } // String returns the string representation func (s SqlInjectionMatchTuple) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s SqlInjectionMatchTuple) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *SqlInjectionMatchTuple) Validate() error { invalidParams := request.ErrInvalidParams{Context: "SqlInjectionMatchTuple"} if s.FieldToMatch == nil { invalidParams.Add(request.NewErrParamRequired("FieldToMatch")) } if s.TextTransformation == nil { invalidParams.Add(request.NewErrParamRequired("TextTransformation")) } if s.FieldToMatch != nil { if err := s.FieldToMatch.Validate(); err != nil { invalidParams.AddNested("FieldToMatch", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetFieldToMatch sets the FieldToMatch field's value. func (s *SqlInjectionMatchTuple) SetFieldToMatch(v *FieldToMatch) *SqlInjectionMatchTuple { s.FieldToMatch = v return s } // SetTextTransformation sets the TextTransformation field's value. func (s *SqlInjectionMatchTuple) SetTextTransformation(v string) *SqlInjectionMatchTuple { s.TextTransformation = &v return s } // In a GetSampledRequests request, the StartTime and EndTime objects specify // the time range for which you want AWS WAF to return a sample of web requests. // // In a GetSampledRequests response, the StartTime and EndTime objects specify // the time range for which AWS WAF actually returned a sample of web requests. // AWS WAF gets the specified number of requests from among the first 5,000 // requests that your AWS resource receives during the specified time period. // If your resource receives more than 5,000 requests during that period, AWS // WAF stops sampling after the 5,000th request. In that case, EndTime is the // time that AWS WAF received the 5,000th request. type TimeWindow struct { _ struct{} `type:"structure"` // The end of the time range from which you want GetSampledRequests to return // a sample of the requests that your AWS resource received. You can specify // any time range in the previous three hours. // // EndTime is a required field EndTime *time.Time `type:"timestamp" timestampFormat:"unix" required:"true"` // The beginning of the time range from which you want GetSampledRequests to // return a sample of the requests that your AWS resource received. You can // specify any time range in the previous three hours. // // StartTime is a required field StartTime *time.Time `type:"timestamp" timestampFormat:"unix" required:"true"` } // String returns the string representation func (s TimeWindow) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s TimeWindow) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *TimeWindow) Validate() error { invalidParams := request.ErrInvalidParams{Context: "TimeWindow"} if s.EndTime == nil { invalidParams.Add(request.NewErrParamRequired("EndTime")) } if s.StartTime == nil { invalidParams.Add(request.NewErrParamRequired("StartTime")) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetEndTime sets the EndTime field's value. func (s *TimeWindow) SetEndTime(v time.Time) *TimeWindow { s.EndTime = &v return s } // SetStartTime sets the StartTime field's value. func (s *TimeWindow) SetStartTime(v time.Time) *TimeWindow { s.StartTime = &v return s } type UpdateByteMatchSetInput struct { _ struct{} `type:"structure"` // The ByteMatchSetId of the ByteMatchSet that you want to update. ByteMatchSetId // is returned by CreateByteMatchSet and by ListByteMatchSets. // // ByteMatchSetId is a required field ByteMatchSetId *string `min:"1" type:"string" required:"true"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // An array of ByteMatchSetUpdate objects that you want to insert into or delete // from a ByteMatchSet. For more information, see the applicable data types: // // * ByteMatchSetUpdate: Contains Action and ByteMatchTuple // // * ByteMatchTuple: Contains FieldToMatch, PositionalConstraint, TargetString, // and TextTransformation // // * FieldToMatch: Contains Data and Type // // Updates is a required field Updates []*ByteMatchSetUpdate `type:"list" required:"true"` } // String returns the string representation func (s UpdateByteMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateByteMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateByteMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateByteMatchSetInput"} if s.ByteMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("ByteMatchSetId")) } if s.ByteMatchSetId != nil && len(*s.ByteMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("ByteMatchSetId", 1)) } if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetByteMatchSetId sets the ByteMatchSetId field's value. func (s *UpdateByteMatchSetInput) SetByteMatchSetId(v string) *UpdateByteMatchSetInput { s.ByteMatchSetId = &v return s } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateByteMatchSetInput) SetChangeToken(v string) *UpdateByteMatchSetInput { s.ChangeToken = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateByteMatchSetInput) SetUpdates(v []*ByteMatchSetUpdate) *UpdateByteMatchSetInput { s.Updates = v return s } type UpdateByteMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateByteMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateByteMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateByteMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateByteMatchSetOutput) SetChangeToken(v string) *UpdateByteMatchSetOutput { s.ChangeToken = &v return s } type UpdateIPSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The IPSetId of the IPSet that you want to update. IPSetId is returned by // CreateIPSet and by ListIPSets. // // IPSetId is a required field IPSetId *string `min:"1" type:"string" required:"true"` // An array of IPSetUpdate objects that you want to insert into or delete from // an IPSet. For more information, see the applicable data types: // // * IPSetUpdate: Contains Action and IPSetDescriptor // // * IPSetDescriptor: Contains Type and Value // // Updates is a required field Updates []*IPSetUpdate `type:"list" required:"true"` } // String returns the string representation func (s UpdateIPSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateIPSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateIPSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateIPSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.IPSetId == nil { invalidParams.Add(request.NewErrParamRequired("IPSetId")) } if s.IPSetId != nil && len(*s.IPSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("IPSetId", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateIPSetInput) SetChangeToken(v string) *UpdateIPSetInput { s.ChangeToken = &v return s } // SetIPSetId sets the IPSetId field's value. func (s *UpdateIPSetInput) SetIPSetId(v string) *UpdateIPSetInput { s.IPSetId = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateIPSetInput) SetUpdates(v []*IPSetUpdate) *UpdateIPSetInput { s.Updates = v return s } type UpdateIPSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateIPSet request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateIPSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateIPSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateIPSetOutput) SetChangeToken(v string) *UpdateIPSetOutput { s.ChangeToken = &v return s } type UpdateRuleInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The RuleId of the Rule that you want to update. RuleId is returned by CreateRule // and by ListRules. // // RuleId is a required field RuleId *string `min:"1" type:"string" required:"true"` // An array of RuleUpdate objects that you want to insert into or delete from // a Rule. For more information, see the applicable data types: // // * RuleUpdate: Contains Action and Predicate // // * Predicate: Contains DataId, Negated, and Type // // * FieldToMatch: Contains Data and Type // // Updates is a required field Updates []*RuleUpdate `type:"list" required:"true"` } // String returns the string representation func (s UpdateRuleInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateRuleInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateRuleInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateRuleInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.RuleId == nil { invalidParams.Add(request.NewErrParamRequired("RuleId")) } if s.RuleId != nil && len(*s.RuleId) < 1 { invalidParams.Add(request.NewErrParamMinLen("RuleId", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateRuleInput) SetChangeToken(v string) *UpdateRuleInput { s.ChangeToken = &v return s } // SetRuleId sets the RuleId field's value. func (s *UpdateRuleInput) SetRuleId(v string) *UpdateRuleInput { s.RuleId = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateRuleInput) SetUpdates(v []*RuleUpdate) *UpdateRuleInput { s.Updates = v return s } type UpdateRuleOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateRule request. You can also // use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateRuleOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateRuleOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateRuleOutput) SetChangeToken(v string) *UpdateRuleOutput { s.ChangeToken = &v return s } type UpdateSizeConstraintSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The SizeConstraintSetId of the SizeConstraintSet that you want to update. // SizeConstraintSetId is returned by CreateSizeConstraintSet and by ListSizeConstraintSets. // // SizeConstraintSetId is a required field SizeConstraintSetId *string `min:"1" type:"string" required:"true"` // An array of SizeConstraintSetUpdate objects that you want to insert into // or delete from a SizeConstraintSet. For more information, see the applicable // data types: // // * SizeConstraintSetUpdate: Contains Action and SizeConstraint // // * SizeConstraint: Contains FieldToMatch, TextTransformation, ComparisonOperator, // and Size // // * FieldToMatch: Contains Data and Type // // Updates is a required field Updates []*SizeConstraintSetUpdate `type:"list" required:"true"` } // String returns the string representation func (s UpdateSizeConstraintSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateSizeConstraintSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateSizeConstraintSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateSizeConstraintSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.SizeConstraintSetId == nil { invalidParams.Add(request.NewErrParamRequired("SizeConstraintSetId")) } if s.SizeConstraintSetId != nil && len(*s.SizeConstraintSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SizeConstraintSetId", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateSizeConstraintSetInput) SetChangeToken(v string) *UpdateSizeConstraintSetInput { s.ChangeToken = &v return s } // SetSizeConstraintSetId sets the SizeConstraintSetId field's value. func (s *UpdateSizeConstraintSetInput) SetSizeConstraintSetId(v string) *UpdateSizeConstraintSetInput { s.SizeConstraintSetId = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateSizeConstraintSetInput) SetUpdates(v []*SizeConstraintSetUpdate) *UpdateSizeConstraintSetInput { s.Updates = v return s } type UpdateSizeConstraintSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateSizeConstraintSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateSizeConstraintSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateSizeConstraintSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateSizeConstraintSetOutput) SetChangeToken(v string) *UpdateSizeConstraintSetOutput { s.ChangeToken = &v return s } // A request to update a SqlInjectionMatchSet. type UpdateSqlInjectionMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // The SqlInjectionMatchSetId of the SqlInjectionMatchSet that you want to update. // SqlInjectionMatchSetId is returned by CreateSqlInjectionMatchSet and by ListSqlInjectionMatchSets. // // SqlInjectionMatchSetId is a required field SqlInjectionMatchSetId *string `min:"1" type:"string" required:"true"` // An array of SqlInjectionMatchSetUpdate objects that you want to insert into // or delete from a SqlInjectionMatchSet. For more information, see the applicable // data types: // // * SqlInjectionMatchSetUpdate: Contains Action and SqlInjectionMatchTuple // // * SqlInjectionMatchTuple: Contains FieldToMatch and TextTransformation // // * FieldToMatch: Contains Data and Type // // Updates is a required field Updates []*SqlInjectionMatchSetUpdate `type:"list" required:"true"` } // String returns the string representation func (s UpdateSqlInjectionMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateSqlInjectionMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateSqlInjectionMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateSqlInjectionMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.SqlInjectionMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("SqlInjectionMatchSetId")) } if s.SqlInjectionMatchSetId != nil && len(*s.SqlInjectionMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("SqlInjectionMatchSetId", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateSqlInjectionMatchSetInput) SetChangeToken(v string) *UpdateSqlInjectionMatchSetInput { s.ChangeToken = &v return s } // SetSqlInjectionMatchSetId sets the SqlInjectionMatchSetId field's value. func (s *UpdateSqlInjectionMatchSetInput) SetSqlInjectionMatchSetId(v string) *UpdateSqlInjectionMatchSetInput { s.SqlInjectionMatchSetId = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateSqlInjectionMatchSetInput) SetUpdates(v []*SqlInjectionMatchSetUpdate) *UpdateSqlInjectionMatchSetInput { s.Updates = v return s } // The response to an UpdateSqlInjectionMatchSets request. type UpdateSqlInjectionMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateSqlInjectionMatchSet request. // You can also use this value to query the status of the request. For more // information, see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateSqlInjectionMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateSqlInjectionMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateSqlInjectionMatchSetOutput) SetChangeToken(v string) *UpdateSqlInjectionMatchSetOutput { s.ChangeToken = &v return s } type UpdateWebACLInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // For the action that is associated with a rule in a WebACL, specifies the // action that you want AWS WAF to perform when a web request matches all of // the conditions in a rule. For the default action in a WebACL, specifies the // action that you want AWS WAF to take when a web request doesn't match all // of the conditions in any of the rules in a WebACL. DefaultAction *WafAction `type:"structure"` // An array of updates to make to the WebACL. // // An array of WebACLUpdate objects that you want to insert into or delete from // a WebACL. For more information, see the applicable data types: // // * WebACLUpdate: Contains Action and ActivatedRule // // * ActivatedRule: Contains Action, Priority, and RuleId // // * WafAction: Contains Type Updates []*WebACLUpdate `type:"list"` // The WebACLId of the WebACL that you want to update. WebACLId is returned // by CreateWebACL and by ListWebACLs. // // WebACLId is a required field WebACLId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s UpdateWebACLInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateWebACLInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateWebACLInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateWebACLInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.WebACLId == nil { invalidParams.Add(request.NewErrParamRequired("WebACLId")) } if s.WebACLId != nil && len(*s.WebACLId) < 1 { invalidParams.Add(request.NewErrParamMinLen("WebACLId", 1)) } if s.DefaultAction != nil { if err := s.DefaultAction.Validate(); err != nil { invalidParams.AddNested("DefaultAction", err.(request.ErrInvalidParams)) } } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateWebACLInput) SetChangeToken(v string) *UpdateWebACLInput { s.ChangeToken = &v return s } // SetDefaultAction sets the DefaultAction field's value. func (s *UpdateWebACLInput) SetDefaultAction(v *WafAction) *UpdateWebACLInput { s.DefaultAction = v return s } // SetUpdates sets the Updates field's value. func (s *UpdateWebACLInput) SetUpdates(v []*WebACLUpdate) *UpdateWebACLInput { s.Updates = v return s } // SetWebACLId sets the WebACLId field's value. func (s *UpdateWebACLInput) SetWebACLId(v string) *UpdateWebACLInput { s.WebACLId = &v return s } type UpdateWebACLOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateWebACL request. You can // also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateWebACLOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateWebACLOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateWebACLOutput) SetChangeToken(v string) *UpdateWebACLOutput { s.ChangeToken = &v return s } // A request to update an XssMatchSet. type UpdateXssMatchSetInput struct { _ struct{} `type:"structure"` // The value returned by the most recent call to GetChangeToken. // // ChangeToken is a required field ChangeToken *string `min:"1" type:"string" required:"true"` // An array of XssMatchSetUpdate objects that you want to insert into or delete // from a XssMatchSet. For more information, see the applicable data types: // // * XssMatchSetUpdate: Contains Action and XssMatchTuple // // * XssMatchTuple: Contains FieldToMatch and TextTransformation // // * FieldToMatch: Contains Data and Type // // Updates is a required field Updates []*XssMatchSetUpdate `type:"list" required:"true"` // The XssMatchSetId of the XssMatchSet that you want to update. XssMatchSetId // is returned by CreateXssMatchSet and by ListXssMatchSets. // // XssMatchSetId is a required field XssMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s UpdateXssMatchSetInput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateXssMatchSetInput) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *UpdateXssMatchSetInput) Validate() error { invalidParams := request.ErrInvalidParams{Context: "UpdateXssMatchSetInput"} if s.ChangeToken == nil { invalidParams.Add(request.NewErrParamRequired("ChangeToken")) } if s.ChangeToken != nil && len(*s.ChangeToken) < 1 { invalidParams.Add(request.NewErrParamMinLen("ChangeToken", 1)) } if s.Updates == nil { invalidParams.Add(request.NewErrParamRequired("Updates")) } if s.XssMatchSetId == nil { invalidParams.Add(request.NewErrParamRequired("XssMatchSetId")) } if s.XssMatchSetId != nil && len(*s.XssMatchSetId) < 1 { invalidParams.Add(request.NewErrParamMinLen("XssMatchSetId", 1)) } if s.Updates != nil { for i, v := range s.Updates { if v == nil { continue } if err := v.Validate(); err != nil { invalidParams.AddNested(fmt.Sprintf("%s[%v]", "Updates", i), err.(request.ErrInvalidParams)) } } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateXssMatchSetInput) SetChangeToken(v string) *UpdateXssMatchSetInput { s.ChangeToken = &v return s } // SetUpdates sets the Updates field's value. func (s *UpdateXssMatchSetInput) SetUpdates(v []*XssMatchSetUpdate) *UpdateXssMatchSetInput { s.Updates = v return s } // SetXssMatchSetId sets the XssMatchSetId field's value. func (s *UpdateXssMatchSetInput) SetXssMatchSetId(v string) *UpdateXssMatchSetInput { s.XssMatchSetId = &v return s } // The response to an UpdateXssMatchSets request. type UpdateXssMatchSetOutput struct { _ struct{} `type:"structure"` // The ChangeToken that you used to submit the UpdateXssMatchSet request. You // can also use this value to query the status of the request. For more information, // see GetChangeTokenStatus. ChangeToken *string `min:"1" type:"string"` } // String returns the string representation func (s UpdateXssMatchSetOutput) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s UpdateXssMatchSetOutput) GoString() string { return s.String() } // SetChangeToken sets the ChangeToken field's value. func (s *UpdateXssMatchSetOutput) SetChangeToken(v string) *UpdateXssMatchSetOutput { s.ChangeToken = &v return s } // For the action that is associated with a rule in a WebACL, specifies the // action that you want AWS WAF to perform when a web request matches all of // the conditions in a rule. For the default action in a WebACL, specifies the // action that you want AWS WAF to take when a web request doesn't match all // of the conditions in any of the rules in a WebACL. type WafAction struct { _ struct{} `type:"structure"` // Specifies how you want AWS WAF to respond to requests that match the settings // in a Rule. Valid settings include the following: // // * ALLOW: AWS WAF allows requests // // * BLOCK: AWS WAF blocks requests // // * COUNT: AWS WAF increments a counter of the requests that match all of // the conditions in the rule. AWS WAF then continues to inspect the web // request based on the remaining rules in the web ACL. You can't specify // COUNT for the default action for a WebACL. // // Type is a required field Type *string `type:"string" required:"true" enum:"WafActionType"` } // String returns the string representation func (s WafAction) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s WafAction) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *WafAction) Validate() error { invalidParams := request.ErrInvalidParams{Context: "WafAction"} if s.Type == nil { invalidParams.Add(request.NewErrParamRequired("Type")) } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetType sets the Type field's value. func (s *WafAction) SetType(v string) *WafAction { s.Type = &v return s } // Contains the Rules that identify the requests that you want to allow, block, // or count. In a WebACL, you also specify a default action (ALLOW or BLOCK), // and the action for each Rule that you add to a WebACL, for example, block // requests from specified IP addresses or block requests from specified referrers. // You also associate the WebACL with a CloudFront distribution to identify // the requests that you want AWS WAF to filter. If you add more than one Rule // to a WebACL, a request needs to match only one of the specifications to be // allowed, blocked, or counted. For more information, see UpdateWebACL. type WebACL struct { _ struct{} `type:"structure"` // The action to perform if none of the Rules contained in the WebACL match. // The action is specified by the WafAction object. // // DefaultAction is a required field DefaultAction *WafAction `type:"structure" required:"true"` MetricName *string `type:"string"` // A friendly name or description of the WebACL. You can't change the name of // a WebACL after you create it. Name *string `min:"1" type:"string"` // An array that contains the action for each Rule in a WebACL, the priority // of the Rule, and the ID of the Rule. // // Rules is a required field Rules []*ActivatedRule `type:"list" required:"true"` // A unique identifier for a WebACL. You use WebACLId to get information about // a WebACL (see GetWebACL), update a WebACL (see UpdateWebACL), and delete // a WebACL from AWS WAF (see DeleteWebACL). // // WebACLId is returned by CreateWebACL and by ListWebACLs. // // WebACLId is a required field WebACLId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s WebACL) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s WebACL) GoString() string { return s.String() } // SetDefaultAction sets the DefaultAction field's value. func (s *WebACL) SetDefaultAction(v *WafAction) *WebACL { s.DefaultAction = v return s } // SetMetricName sets the MetricName field's value. func (s *WebACL) SetMetricName(v string) *WebACL { s.MetricName = &v return s } // SetName sets the Name field's value. func (s *WebACL) SetName(v string) *WebACL { s.Name = &v return s } // SetRules sets the Rules field's value. func (s *WebACL) SetRules(v []*ActivatedRule) *WebACL { s.Rules = v return s } // SetWebACLId sets the WebACLId field's value. func (s *WebACL) SetWebACLId(v string) *WebACL { s.WebACLId = &v return s } // Contains the identifier and the name or description of the WebACL. type WebACLSummary struct { _ struct{} `type:"structure"` // A friendly name or description of the WebACL. You can't change the name of // a WebACL after you create it. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` // A unique identifier for a WebACL. You use WebACLId to get information about // a WebACL (see GetWebACL), update a WebACL (see UpdateWebACL), and delete // a WebACL from AWS WAF (see DeleteWebACL). // // WebACLId is returned by CreateWebACL and by ListWebACLs. // // WebACLId is a required field WebACLId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s WebACLSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s WebACLSummary) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *WebACLSummary) SetName(v string) *WebACLSummary { s.Name = &v return s } // SetWebACLId sets the WebACLId field's value. func (s *WebACLSummary) SetWebACLId(v string) *WebACLSummary { s.WebACLId = &v return s } // Specifies whether to insert a Rule into or delete a Rule from a WebACL. type WebACLUpdate struct { _ struct{} `type:"structure"` // Specifies whether to insert a Rule into or delete a Rule from a WebACL. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // The ActivatedRule object in an UpdateWebACL request specifies a Rule that // you want to insert or delete, the priority of the Rule in the WebACL, and // the action that you want AWS WAF to take when a web request matches the Rule // (ALLOW, BLOCK, or COUNT). // // To specify whether to insert or delete a Rule, use the Action parameter in // the WebACLUpdate data type. // // ActivatedRule is a required field ActivatedRule *ActivatedRule `type:"structure" required:"true"` } // String returns the string representation func (s WebACLUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s WebACLUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *WebACLUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "WebACLUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.ActivatedRule == nil { invalidParams.Add(request.NewErrParamRequired("ActivatedRule")) } if s.ActivatedRule != nil { if err := s.ActivatedRule.Validate(); err != nil { invalidParams.AddNested("ActivatedRule", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *WebACLUpdate) SetAction(v string) *WebACLUpdate { s.Action = &v return s } // SetActivatedRule sets the ActivatedRule field's value. func (s *WebACLUpdate) SetActivatedRule(v *ActivatedRule) *WebACLUpdate { s.ActivatedRule = v return s } // A complex type that contains XssMatchTuple objects, which specify the parts // of web requests that you want AWS WAF to inspect for cross-site scripting // attacks and, if you want AWS WAF to inspect a header, the name of the header. // If a XssMatchSet contains more than one XssMatchTuple object, a request needs // to include cross-site scripting attacks in only one of the specified parts // of the request to be considered a match. type XssMatchSet struct { _ struct{} `type:"structure"` // The name, if any, of the XssMatchSet. Name *string `min:"1" type:"string"` // A unique identifier for an XssMatchSet. You use XssMatchSetId to get information // about an XssMatchSet (see GetXssMatchSet), update an XssMatchSet (see UpdateXssMatchSet), // insert an XssMatchSet into a Rule or delete one from a Rule (see UpdateRule), // and delete an XssMatchSet from AWS WAF (see DeleteXssMatchSet). // // XssMatchSetId is returned by CreateXssMatchSet and by ListXssMatchSets. // // XssMatchSetId is a required field XssMatchSetId *string `min:"1" type:"string" required:"true"` // Specifies the parts of web requests that you want to inspect for cross-site // scripting attacks. // // XssMatchTuples is a required field XssMatchTuples []*XssMatchTuple `type:"list" required:"true"` } // String returns the string representation func (s XssMatchSet) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s XssMatchSet) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *XssMatchSet) SetName(v string) *XssMatchSet { s.Name = &v return s } // SetXssMatchSetId sets the XssMatchSetId field's value. func (s *XssMatchSet) SetXssMatchSetId(v string) *XssMatchSet { s.XssMatchSetId = &v return s } // SetXssMatchTuples sets the XssMatchTuples field's value. func (s *XssMatchSet) SetXssMatchTuples(v []*XssMatchTuple) *XssMatchSet { s.XssMatchTuples = v return s } // The Id and Name of an XssMatchSet. type XssMatchSetSummary struct { _ struct{} `type:"structure"` // The name of the XssMatchSet, if any, specified by Id. // // Name is a required field Name *string `min:"1" type:"string" required:"true"` // A unique identifier for an XssMatchSet. You use XssMatchSetId to get information // about a XssMatchSet (see GetXssMatchSet), update an XssMatchSet (see UpdateXssMatchSet), // insert an XssMatchSet into a Rule or delete one from a Rule (see UpdateRule), // and delete an XssMatchSet from AWS WAF (see DeleteXssMatchSet). // // XssMatchSetId is returned by CreateXssMatchSet and by ListXssMatchSets. // // XssMatchSetId is a required field XssMatchSetId *string `min:"1" type:"string" required:"true"` } // String returns the string representation func (s XssMatchSetSummary) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s XssMatchSetSummary) GoString() string { return s.String() } // SetName sets the Name field's value. func (s *XssMatchSetSummary) SetName(v string) *XssMatchSetSummary { s.Name = &v return s } // SetXssMatchSetId sets the XssMatchSetId field's value. func (s *XssMatchSetSummary) SetXssMatchSetId(v string) *XssMatchSetSummary { s.XssMatchSetId = &v return s } // Specifies the part of a web request that you want to inspect for cross-site // scripting attacks and indicates whether you want to add the specification // to an XssMatchSet or delete it from an XssMatchSet. type XssMatchSetUpdate struct { _ struct{} `type:"structure"` // Specify INSERT to add a XssMatchSetUpdate to an XssMatchSet. Use DELETE to // remove a XssMatchSetUpdate from an XssMatchSet. // // Action is a required field Action *string `type:"string" required:"true" enum:"ChangeAction"` // Specifies the part of a web request that you want AWS WAF to inspect for // cross-site scripting attacks and, if you want AWS WAF to inspect a header, // the name of the header. // // XssMatchTuple is a required field XssMatchTuple *XssMatchTuple `type:"structure" required:"true"` } // String returns the string representation func (s XssMatchSetUpdate) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s XssMatchSetUpdate) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *XssMatchSetUpdate) Validate() error { invalidParams := request.ErrInvalidParams{Context: "XssMatchSetUpdate"} if s.Action == nil { invalidParams.Add(request.NewErrParamRequired("Action")) } if s.XssMatchTuple == nil { invalidParams.Add(request.NewErrParamRequired("XssMatchTuple")) } if s.XssMatchTuple != nil { if err := s.XssMatchTuple.Validate(); err != nil { invalidParams.AddNested("XssMatchTuple", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetAction sets the Action field's value. func (s *XssMatchSetUpdate) SetAction(v string) *XssMatchSetUpdate { s.Action = &v return s } // SetXssMatchTuple sets the XssMatchTuple field's value. func (s *XssMatchSetUpdate) SetXssMatchTuple(v *XssMatchTuple) *XssMatchSetUpdate { s.XssMatchTuple = v return s } // Specifies the part of a web request that you want AWS WAF to inspect for // cross-site scripting attacks and, if you want AWS WAF to inspect a header, // the name of the header. type XssMatchTuple struct { _ struct{} `type:"structure"` // Specifies where in a web request to look for TargetString. // // FieldToMatch is a required field FieldToMatch *FieldToMatch `type:"structure" required:"true"` // Text transformations eliminate some of the unusual formatting that attackers // use in web requests in an effort to bypass AWS WAF. If you specify a transformation, // AWS WAF performs the transformation on FieldToMatch before inspecting a request // for a match. // // CMD_LINE // // When you're concerned that attackers are injecting an operating system commandline // command and using unusual formatting to disguise some or all of the command, // use this option to perform the following transformations: // // * Delete the following characters: \ " ' ^ // // * Delete spaces before the following characters: / ( // // * Replace the following characters with a space: , ; // // * Replace multiple spaces with one space // // * Convert uppercase letters (A-Z) to lowercase (a-z) // // COMPRESS_WHITE_SPACE // // Use this option to replace the following characters with a space character // (decimal 32): // // * \f, formfeed, decimal 12 // // * \t, tab, decimal 9 // // * \n, newline, decimal 10 // // * \r, carriage return, decimal 13 // // * \v, vertical tab, decimal 11 // // * non-breaking space, decimal 160 // // COMPRESS_WHITE_SPACE also replaces multiple spaces with one space. // // HTML_ENTITY_DECODE // // Use this option to replace HTML-encoded characters with unencoded characters. // HTML_ENTITY_DECODE performs the following operations: // // * Replaces (ampersand)quot; with " // // * Replaces (ampersand)nbsp; with a non-breaking space, decimal 160 // // * Replaces (ampersand)lt; with a "less than" symbol // // * Replaces (ampersand)gt; with > // // * Replaces characters that are represented in hexadecimal format, (ampersand)#xhhhh;, // with the corresponding characters // // * Replaces characters that are represented in decimal format, (ampersand)#nnnn;, // with the corresponding characters // // LOWERCASE // // Use this option to convert uppercase letters (A-Z) to lowercase (a-z). // // URL_DECODE // // Use this option to decode a URL-encoded value. // // NONE // // Specify NONE if you don't want to perform any text transformations. // // TextTransformation is a required field TextTransformation *string `type:"string" required:"true" enum:"TextTransformation"` } // String returns the string representation func (s XssMatchTuple) String() string { return awsutil.Prettify(s) } // GoString returns the string representation func (s XssMatchTuple) GoString() string { return s.String() } // Validate inspects the fields of the type to determine if they are valid. func (s *XssMatchTuple) Validate() error { invalidParams := request.ErrInvalidParams{Context: "XssMatchTuple"} if s.FieldToMatch == nil { invalidParams.Add(request.NewErrParamRequired("FieldToMatch")) } if s.TextTransformation == nil { invalidParams.Add(request.NewErrParamRequired("TextTransformation")) } if s.FieldToMatch != nil { if err := s.FieldToMatch.Validate(); err != nil { invalidParams.AddNested("FieldToMatch", err.(request.ErrInvalidParams)) } } if invalidParams.Len() > 0 { return invalidParams } return nil } // SetFieldToMatch sets the FieldToMatch field's value. func (s *XssMatchTuple) SetFieldToMatch(v *FieldToMatch) *XssMatchTuple { s.FieldToMatch = v return s } // SetTextTransformation sets the TextTransformation field's value. func (s *XssMatchTuple) SetTextTransformation(v string) *XssMatchTuple { s.TextTransformation = &v return s } const ( // ChangeActionInsert is a ChangeAction enum value ChangeActionInsert = "INSERT" // ChangeActionDelete is a ChangeAction enum value ChangeActionDelete = "DELETE" ) const ( // ChangeTokenStatusProvisioned is a ChangeTokenStatus enum value ChangeTokenStatusProvisioned = "PROVISIONED" // ChangeTokenStatusPending is a ChangeTokenStatus enum value ChangeTokenStatusPending = "PENDING" // ChangeTokenStatusInsync is a ChangeTokenStatus enum value ChangeTokenStatusInsync = "INSYNC" ) const ( // ComparisonOperatorEq is a ComparisonOperator enum value ComparisonOperatorEq = "EQ" // ComparisonOperatorNe is a ComparisonOperator enum value ComparisonOperatorNe = "NE" // ComparisonOperatorLe is a ComparisonOperator enum value ComparisonOperatorLe = "LE" // ComparisonOperatorLt is a ComparisonOperator enum value ComparisonOperatorLt = "LT" // ComparisonOperatorGe is a ComparisonOperator enum value ComparisonOperatorGe = "GE" // ComparisonOperatorGt is a ComparisonOperator enum value ComparisonOperatorGt = "GT" ) const ( // IPSetDescriptorTypeIpv4 is a IPSetDescriptorType enum value IPSetDescriptorTypeIpv4 = "IPV4" // IPSetDescriptorTypeIpv6 is a IPSetDescriptorType enum value IPSetDescriptorTypeIpv6 = "IPV6" ) const ( // MatchFieldTypeUri is a MatchFieldType enum value MatchFieldTypeUri = "URI" // MatchFieldTypeQueryString is a MatchFieldType enum value MatchFieldTypeQueryString = "QUERY_STRING" // MatchFieldTypeHeader is a MatchFieldType enum value MatchFieldTypeHeader = "HEADER" // MatchFieldTypeMethod is a MatchFieldType enum value MatchFieldTypeMethod = "METHOD" // MatchFieldTypeBody is a MatchFieldType enum value MatchFieldTypeBody = "BODY" ) const ( // ParameterExceptionFieldChangeAction is a ParameterExceptionField enum value ParameterExceptionFieldChangeAction = "CHANGE_ACTION" // ParameterExceptionFieldWafAction is a ParameterExceptionField enum value ParameterExceptionFieldWafAction = "WAF_ACTION" // ParameterExceptionFieldPredicateType is a ParameterExceptionField enum value ParameterExceptionFieldPredicateType = "PREDICATE_TYPE" // ParameterExceptionFieldIpsetType is a ParameterExceptionField enum value ParameterExceptionFieldIpsetType = "IPSET_TYPE" // ParameterExceptionFieldByteMatchFieldType is a ParameterExceptionField enum value ParameterExceptionFieldByteMatchFieldType = "BYTE_MATCH_FIELD_TYPE" // ParameterExceptionFieldSqlInjectionMatchFieldType is a ParameterExceptionField enum value ParameterExceptionFieldSqlInjectionMatchFieldType = "SQL_INJECTION_MATCH_FIELD_TYPE" // ParameterExceptionFieldByteMatchTextTransformation is a ParameterExceptionField enum value ParameterExceptionFieldByteMatchTextTransformation = "BYTE_MATCH_TEXT_TRANSFORMATION" // ParameterExceptionFieldByteMatchPositionalConstraint is a ParameterExceptionField enum value ParameterExceptionFieldByteMatchPositionalConstraint = "BYTE_MATCH_POSITIONAL_CONSTRAINT" // ParameterExceptionFieldSizeConstraintComparisonOperator is a ParameterExceptionField enum value ParameterExceptionFieldSizeConstraintComparisonOperator = "SIZE_CONSTRAINT_COMPARISON_OPERATOR" ) const ( // ParameterExceptionReasonInvalidOption is a ParameterExceptionReason enum value ParameterExceptionReasonInvalidOption = "INVALID_OPTION" // ParameterExceptionReasonIllegalCombination is a ParameterExceptionReason enum value ParameterExceptionReasonIllegalCombination = "ILLEGAL_COMBINATION" ) const ( // PositionalConstraintExactly is a PositionalConstraint enum value PositionalConstraintExactly = "EXACTLY" // PositionalConstraintStartsWith is a PositionalConstraint enum value PositionalConstraintStartsWith = "STARTS_WITH" // PositionalConstraintEndsWith is a PositionalConstraint enum value PositionalConstraintEndsWith = "ENDS_WITH" // PositionalConstraintContains is a PositionalConstraint enum value PositionalConstraintContains = "CONTAINS" // PositionalConstraintContainsWord is a PositionalConstraint enum value PositionalConstraintContainsWord = "CONTAINS_WORD" ) const ( // PredicateTypeIpmatch is a PredicateType enum value PredicateTypeIpmatch = "IPMatch" // PredicateTypeByteMatch is a PredicateType enum value PredicateTypeByteMatch = "ByteMatch" // PredicateTypeSqlInjectionMatch is a PredicateType enum value PredicateTypeSqlInjectionMatch = "SqlInjectionMatch" // PredicateTypeSizeConstraint is a PredicateType enum value PredicateTypeSizeConstraint = "SizeConstraint" // PredicateTypeXssMatch is a PredicateType enum value PredicateTypeXssMatch = "XssMatch" ) const ( // TextTransformationNone is a TextTransformation enum value TextTransformationNone = "NONE" // TextTransformationCompressWhiteSpace is a TextTransformation enum value TextTransformationCompressWhiteSpace = "COMPRESS_WHITE_SPACE" // TextTransformationHtmlEntityDecode is a TextTransformation enum value TextTransformationHtmlEntityDecode = "HTML_ENTITY_DECODE" // TextTransformationLowercase is a TextTransformation enum value TextTransformationLowercase = "LOWERCASE" // TextTransformationCmdLine is a TextTransformation enum value TextTransformationCmdLine = "CMD_LINE" // TextTransformationUrlDecode is a TextTransformation enum value TextTransformationUrlDecode = "URL_DECODE" ) const ( // WafActionTypeBlock is a WafActionType enum value WafActionTypeBlock = "BLOCK" // WafActionTypeAllow is a WafActionType enum value WafActionTypeAllow = "ALLOW" // WafActionTypeCount is a WafActionType enum value WafActionTypeCount = "COUNT" )