Class CcApiGatewayWaf

Well Architected API Gateway WAF API Gateway WAF , by default this WAF allows traffic from sources that add x-origin-verify header

Default Alarms

Examples

Default Usage

new CcApigatewayWaf(this, "LogicalId", {});

Custom Configuration

new CcApigatewayWaf(this, "LogicalId", {
   ccDoNotAddAnonymousIpWafRules: true
});

Compliance

It addresses the following compliance requirements, when used with API Gateway

PCI, HIPAA, APRA, MAS, NIST4

Hierarchy

Constructors

constructor

Properties

webAcl

Methods

getLoggingConfig apiGatewayOriginVerifyRule

Constructors

constructor

Properties

Readonly webAcl

webAcl: CfnWebACL

Exposing Web ACL for clients

Methods

getLoggingConfig

  • getLoggingConfig(id, wafArn): CfnLoggingConfiguration

  • Parameters

    • id: string
    • wafArn: string

    Returns CfnLoggingConfiguration

Static Private apiGatewayOriginVerifyRule

  • apiGatewayOriginVerifyRule(headerName, headerValue): RuleProperty

  • This WAF rule will look for a header name and value, used with API Gateway to verify requests are coming from known source.

    Parameters

    • headerName: string
    • headerValue: string

    Returns RuleProperty

Settings

Member Visibility

Theme

On This Page

Generated using TypeDoc