opentelekomcloud 1.36.37, Apr 24 25

opentelekomcloud 1.36.37 published on Thursday, Apr 24, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedPreciseProtectionRuleV1

Explore with Pulumi AI

opentelekomcloud 1.36.37 published on Thursday, Apr 24, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const policy1 = new opentelekomcloud.WafDedicatedPolicyV1("policy1", {});
const rule1 = new opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1", {
    policyId: policy1.wafDedicatedPolicyV1Id,
    time: false,
    description: "desc",
    priority: 50,
    conditions: [{
        category: "url",
        contents: ["test"],
        logicOperation: "contain",
    }],
    actions: [{
        category: "block",
    }],
});

import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

policy1 = opentelekomcloud.WafDedicatedPolicyV1("policy1")
rule1 = opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1",
    policy_id=policy1.waf_dedicated_policy_v1_id,
    time=False,
    description="desc",
    priority=50,
    conditions=[{
        "category": "url",
        "contents": ["test"],
        "logic_operation": "contain",
    }],
    actions=[{
        "category": "block",
    }])

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		policy1, err := opentelekomcloud.NewWafDedicatedPolicyV1(ctx, "policy1", nil)
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedPreciseProtectionRuleV1(ctx, "rule1", &opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args{
			PolicyId:    policy1.WafDedicatedPolicyV1Id,
			Time:        pulumi.Bool(false),
			Description: pulumi.String("desc"),
			Priority:    pulumi.Float64(50),
			Conditions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArray{
				&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArgs{
					Category: pulumi.String("url"),
					Contents: pulumi.StringArray{
						pulumi.String("test"),
					},
					LogicOperation: pulumi.String("contain"),
				},
			},
			Actions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArray{
				&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArgs{
					Category: pulumi.String("block"),
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var policy1 = new Opentelekomcloud.WafDedicatedPolicyV1("policy1");

    var rule1 = new Opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1", new()
    {
        PolicyId = policy1.WafDedicatedPolicyV1Id,
        Time = false,
        Description = "desc",
        Priority = 50,
        Conditions = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs
            {
                Category = "url",
                Contents = new[]
                {
                    "test",
                },
                LogicOperation = "contain",
            },
        },
        Actions = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs
            {
                Category = "block",
            },
        },
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.WafDedicatedPolicyV1;
import com.pulumi.opentelekomcloud.WafDedicatedPreciseProtectionRuleV1;
import com.pulumi.opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var policy1 = new WafDedicatedPolicyV1("policy1");

        var rule1 = new WafDedicatedPreciseProtectionRuleV1("rule1", WafDedicatedPreciseProtectionRuleV1Args.builder()
            .policyId(policy1.wafDedicatedPolicyV1Id())
            .time(false)
            .description("desc")
            .priority(50)
            .conditions(WafDedicatedPreciseProtectionRuleV1ConditionArgs.builder()
                .category("url")
                .contents("test")
                .logicOperation("contain")
                .build())
            .actions(WafDedicatedPreciseProtectionRuleV1ActionArgs.builder()
                .category("block")
                .build())
            .build());

    }
}

resources:
  policy1:
    type: opentelekomcloud:WafDedicatedPolicyV1
  rule1:
    type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
    properties:
      policyId: ${policy1.wafDedicatedPolicyV1Id}
      time: false
      description: desc
      priority: 50
      conditions:
        - category: url
          contents:
            - test
          logicOperation: contain
      actions:
        - category: block

Create WafDedicatedPreciseProtectionRuleV1 Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new WafDedicatedPreciseProtectionRuleV1(name: string, args: WafDedicatedPreciseProtectionRuleV1Args, opts?: CustomResourceOptions);

@overload
def WafDedicatedPreciseProtectionRuleV1(resource_name: str,
                                        args: WafDedicatedPreciseProtectionRuleV1Args,
                                        opts: Optional[ResourceOptions] = None)

@overload
def WafDedicatedPreciseProtectionRuleV1(resource_name: str,
                                        opts: Optional[ResourceOptions] = None,
                                        actions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]] = None,
                                        policy_id: Optional[str] = None,
                                        priority: Optional[float] = None,
                                        time: Optional[bool] = None,
                                        conditions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]] = None,
                                        description: Optional[str] = None,
                                        start: Optional[float] = None,
                                        terminal: Optional[float] = None,
                                        timeouts: Optional[WafDedicatedPreciseProtectionRuleV1TimeoutsArgs] = None,
                                        waf_dedicated_precise_protection_rule_v1_id: Optional[str] = None)

func NewWafDedicatedPreciseProtectionRuleV1(ctx *Context, name string, args WafDedicatedPreciseProtectionRuleV1Args, opts ...ResourceOption) (*WafDedicatedPreciseProtectionRuleV1, error)

public WafDedicatedPreciseProtectionRuleV1(string name, WafDedicatedPreciseProtectionRuleV1Args args, CustomResourceOptions? opts = null)

public WafDedicatedPreciseProtectionRuleV1(String name, WafDedicatedPreciseProtectionRuleV1Args args)
public WafDedicatedPreciseProtectionRuleV1(String name, WafDedicatedPreciseProtectionRuleV1Args args, CustomResourceOptions options)

type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args WafDedicatedPreciseProtectionRuleV1Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args WafDedicatedPreciseProtectionRuleV1Args: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args WafDedicatedPreciseProtectionRuleV1Args: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args WafDedicatedPreciseProtectionRuleV1Args: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args WafDedicatedPreciseProtectionRuleV1Args: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var wafDedicatedPreciseProtectionRuleV1Resource = new Opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", new()
{
    Actions = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs
        {
            Category = "string",
            FollowedActionId = "string",
        },
    },
    PolicyId = "string",
    Priority = 0,
    Time = false,
    Conditions = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs
        {
            Category = "string",
            Contents = new[]
            {
                "string",
            },
            Index = "string",
            LogicOperation = "string",
            ValueListId = "string",
        },
    },
    Description = "string",
    Start = 0,
    Terminal = 0,
    Timeouts = new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
    {
        Create = "string",
        Delete = "string",
    },
    WafDedicatedPreciseProtectionRuleV1Id = "string",
});

example, err := opentelekomcloud.NewWafDedicatedPreciseProtectionRuleV1(ctx, "wafDedicatedPreciseProtectionRuleV1Resource", &opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args{
	Actions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArray{
		&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArgs{
			Category:         pulumi.String("string"),
			FollowedActionId: pulumi.String("string"),
		},
	},
	PolicyId: pulumi.String("string"),
	Priority: pulumi.Float64(0),
	Time:     pulumi.Bool(false),
	Conditions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArray{
		&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArgs{
			Category: pulumi.String("string"),
			Contents: pulumi.StringArray{
				pulumi.String("string"),
			},
			Index:          pulumi.String("string"),
			LogicOperation: pulumi.String("string"),
			ValueListId:    pulumi.String("string"),
		},
	},
	Description: pulumi.String("string"),
	Start:       pulumi.Float64(0),
	Terminal:    pulumi.Float64(0),
	Timeouts: &opentelekomcloud.WafDedicatedPreciseProtectionRuleV1TimeoutsArgs{
		Create: pulumi.String("string"),
		Delete: pulumi.String("string"),
	},
	WafDedicatedPreciseProtectionRuleV1Id: pulumi.String("string"),
})

var wafDedicatedPreciseProtectionRuleV1Resource = new WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", WafDedicatedPreciseProtectionRuleV1Args.builder()
    .actions(WafDedicatedPreciseProtectionRuleV1ActionArgs.builder()
        .category("string")
        .followedActionId("string")
        .build())
    .policyId("string")
    .priority(0)
    .time(false)
    .conditions(WafDedicatedPreciseProtectionRuleV1ConditionArgs.builder()
        .category("string")
        .contents("string")
        .index("string")
        .logicOperation("string")
        .valueListId("string")
        .build())
    .description("string")
    .start(0)
    .terminal(0)
    .timeouts(WafDedicatedPreciseProtectionRuleV1TimeoutsArgs.builder()
        .create("string")
        .delete("string")
        .build())
    .wafDedicatedPreciseProtectionRuleV1Id("string")
    .build());

waf_dedicated_precise_protection_rule_v1_resource = opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource",
    actions=[{
        "category": "string",
        "followed_action_id": "string",
    }],
    policy_id="string",
    priority=0,
    time=False,
    conditions=[{
        "category": "string",
        "contents": ["string"],
        "index": "string",
        "logic_operation": "string",
        "value_list_id": "string",
    }],
    description="string",
    start=0,
    terminal=0,
    timeouts={
        "create": "string",
        "delete": "string",
    },
    waf_dedicated_precise_protection_rule_v1_id="string")

const wafDedicatedPreciseProtectionRuleV1Resource = new opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", {
    actions: [{
        category: "string",
        followedActionId: "string",
    }],
    policyId: "string",
    priority: 0,
    time: false,
    conditions: [{
        category: "string",
        contents: ["string"],
        index: "string",
        logicOperation: "string",
        valueListId: "string",
    }],
    description: "string",
    start: 0,
    terminal: 0,
    timeouts: {
        create: "string",
        "delete": "string",
    },
    wafDedicatedPreciseProtectionRuleV1Id: "string",
});

type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
properties:
    actions:
        - category: string
          followedActionId: string
    conditions:
        - category: string
          contents:
            - string
          index: string
          logicOperation: string
          valueListId: string
    description: string
    policyId: string
    priority: 0
    start: 0
    terminal: 0
    time: false
    timeouts:
        create: string
        delete: string
    wafDedicatedPreciseProtectionRuleV1Id: string

WafDedicatedPreciseProtectionRuleV1 Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The WafDedicatedPreciseProtectionRuleV1 resource accepts the following input properties:

Actions List<WafDedicatedPreciseProtectionRuleV1Action>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
PolicyId string: The WAF policy ID. Changing this creates a new rule.
Priority double: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Conditions List<WafDedicatedPreciseProtectionRuleV1Condition>: Match condition List. Changing this creates a new rule. The conditions block supports:
Description string: Rule description. Changing this creates a new rule.
Start double: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Terminal double: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
WafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

Actions []WafDedicatedPreciseProtectionRuleV1ActionArgs: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
PolicyId string: The WAF policy ID. Changing this creates a new rule.
Priority float64: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Conditions []WafDedicatedPreciseProtectionRuleV1ConditionArgs: Match condition List. Changing this creates a new rule. The conditions block supports:
Description string: Rule description. Changing this creates a new rule.
Start float64: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Terminal float64: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
WafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

actions List<WafDedicatedPreciseProtectionRuleV1Action>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId String: The WAF policy ID. Changing this creates a new rule.
priority Double: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time Boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions List<WafDedicatedPreciseProtectionRuleV1Condition>: Match condition List. Changing this creates a new rule. The conditions block supports:
description String: Rule description. Changing this creates a new rule.
start Double: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal Double: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id String: ID of the rule.

actions WafDedicatedPreciseProtectionRuleV1Action[]: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId string: The WAF policy ID. Changing this creates a new rule.
priority number: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions WafDedicatedPreciseProtectionRuleV1Condition[]: Match condition List. Changing this creates a new rule. The conditions block supports:
description string: Rule description. Changing this creates a new rule.
start number: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal number: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

actions Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policy_id str: The WAF policy ID. Changing this creates a new rule.
priority float: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]: Match condition List. Changing this creates a new rule. The conditions block supports:
description str: Rule description. Changing this creates a new rule.
start float: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal float: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
waf_dedicated_precise_protection_rule_v1_id str: ID of the rule.

actions List<Property Map>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId String: The WAF policy ID. Changing this creates a new rule.
priority Number: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time Boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions List<Property Map>: Match condition List. Changing this creates a new rule. The conditions block supports:
description String: Rule description. Changing this creates a new rule.
start Number: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal Number: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts Property Map
wafDedicatedPreciseProtectionRuleV1Id String: ID of the rule.

Outputs

All input properties are implicitly available as output properties. Additionally, the WafDedicatedPreciseProtectionRuleV1 resource produces the following output properties:

CreatedAt double: Timestamp the rule is created.
Id string: The provider-assigned unique ID for this managed resource.
Status double: Rule status. The value can be:

CreatedAt float64: Timestamp the rule is created.
Id string: The provider-assigned unique ID for this managed resource.
Status float64: Rule status. The value can be:

createdAt Double: Timestamp the rule is created.
id String: The provider-assigned unique ID for this managed resource.
status Double: Rule status. The value can be:

createdAt number: Timestamp the rule is created.
id string: The provider-assigned unique ID for this managed resource.
status number: Rule status. The value can be:

created_at float: Timestamp the rule is created.
id str: The provider-assigned unique ID for this managed resource.
status float: Rule status. The value can be:

createdAt Number: Timestamp the rule is created.
id String: The provider-assigned unique ID for this managed resource.
status Number: Rule status. The value can be:

Look up Existing WafDedicatedPreciseProtectionRuleV1 Resource

Get an existing WafDedicatedPreciseProtectionRuleV1 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: WafDedicatedPreciseProtectionRuleV1State, opts?: CustomResourceOptions): WafDedicatedPreciseProtectionRuleV1

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        actions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]] = None,
        conditions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]] = None,
        created_at: Optional[float] = None,
        description: Optional[str] = None,
        policy_id: Optional[str] = None,
        priority: Optional[float] = None,
        start: Optional[float] = None,
        status: Optional[float] = None,
        terminal: Optional[float] = None,
        time: Optional[bool] = None,
        timeouts: Optional[WafDedicatedPreciseProtectionRuleV1TimeoutsArgs] = None,
        waf_dedicated_precise_protection_rule_v1_id: Optional[str] = None) -> WafDedicatedPreciseProtectionRuleV1

func GetWafDedicatedPreciseProtectionRuleV1(ctx *Context, name string, id IDInput, state *WafDedicatedPreciseProtectionRuleV1State, opts ...ResourceOption) (*WafDedicatedPreciseProtectionRuleV1, error)

public static WafDedicatedPreciseProtectionRuleV1 Get(string name, Input<string> id, WafDedicatedPreciseProtectionRuleV1State? state, CustomResourceOptions? opts = null)

public static WafDedicatedPreciseProtectionRuleV1 get(String name, Output<String> id, WafDedicatedPreciseProtectionRuleV1State state, CustomResourceOptions options)

resources:  _:    type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Actions List<WafDedicatedPreciseProtectionRuleV1Action>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
Conditions List<WafDedicatedPreciseProtectionRuleV1Condition>: Match condition List. Changing this creates a new rule. The conditions block supports:
CreatedAt double: Timestamp the rule is created.
Description string: Rule description. Changing this creates a new rule.
PolicyId string: The WAF policy ID. Changing this creates a new rule.
Priority double: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Start double: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Status double: Rule status. The value can be:
Terminal double: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
WafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

Actions []WafDedicatedPreciseProtectionRuleV1ActionArgs: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
Conditions []WafDedicatedPreciseProtectionRuleV1ConditionArgs: Match condition List. Changing this creates a new rule. The conditions block supports:
CreatedAt float64: Timestamp the rule is created.
Description string: Rule description. Changing this creates a new rule.
PolicyId string: The WAF policy ID. Changing this creates a new rule.
Priority float64: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Start float64: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Status float64: Rule status. The value can be:
Terminal float64: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
WafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

actions List<WafDedicatedPreciseProtectionRuleV1Action>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions List<WafDedicatedPreciseProtectionRuleV1Condition>: Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt Double: Timestamp the rule is created.
description String: Rule description. Changing this creates a new rule.
policyId String: The WAF policy ID. Changing this creates a new rule.
priority Double: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start Double: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status Double: Rule status. The value can be:
terminal Double: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time Boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id String: ID of the rule.

actions WafDedicatedPreciseProtectionRuleV1Action[]: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions WafDedicatedPreciseProtectionRuleV1Condition[]: Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt number: Timestamp the rule is created.
description string: Rule description. Changing this creates a new rule.
policyId string: The WAF policy ID. Changing this creates a new rule.
priority number: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start number: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status number: Rule status. The value can be:
terminal number: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id string: ID of the rule.

actions Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]: Match condition List. Changing this creates a new rule. The conditions block supports:
created_at float: Timestamp the rule is created.
description str: Rule description. Changing this creates a new rule.
policy_id str: The WAF policy ID. Changing this creates a new rule.
priority float: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start float: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status float: Rule status. The value can be:
terminal float: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time bool: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
waf_dedicated_precise_protection_rule_v1_id str: ID of the rule.

actions List<Property Map>: Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions List<Property Map>: Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt Number: Timestamp the rule is created.
description String: Rule description. Changing this creates a new rule.
policyId String: The WAF policy ID. Changing this creates a new rule.
priority Number: Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start Number: Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status Number: Rule status. The value can be:
terminal Number: Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time Boolean: Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts Property Map
wafDedicatedPreciseProtectionRuleV1Id String: ID of the rule.

Supporting Types

WafDedicatedPreciseProtectionRuleV1Action, WafDedicatedPreciseProtectionRuleV1ActionArgs

Category string: Action type. Changing this creates a new rule.
FollowedActionId string: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

Category string: Action type. Changing this creates a new rule.
FollowedActionId string: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

category String: Action type. Changing this creates a new rule.
followedActionId String: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

category string: Action type. Changing this creates a new rule.
followedActionId string: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

category str: Action type. Changing this creates a new rule.
followed_action_id str: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

category String: Action type. Changing this creates a new rule.
followedActionId String: ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

WafDedicatedPreciseProtectionRuleV1Condition, WafDedicatedPreciseProtectionRuleV1ConditionArgs

Category string

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

Contents List<string>

Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.

Index string

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

LogicOperation string

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

ValueListId string

Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.

Category string

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

Contents []string

Index string

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

LogicOperation string

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

ValueListId string

category String

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

contents List<String>

index String

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

logicOperation String

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

valueListId String

category string

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

contents string[]

index string

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

logicOperation string

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

valueListId string

category str

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

contents Sequence[str]

index str

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

logic_operation str

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

value_list_id str

category String

Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.

contents List<String>

index String

Subfield. Changing this creates a new rule.

When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.

logicOperation String

Logic for matching the condition. Changing this creates a new rule.

If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
If the category is method, the optional operations are: equal and not_equal
If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist

valueListId String

WafDedicatedPreciseProtectionRuleV1Timeouts, WafDedicatedPreciseProtectionRuleV1TimeoutsArgs

Create string
Delete string

Create string
Delete string

create String
delete String

create string
delete string

create str
delete str

create String
delete String

Import

Dedicated WAF Precise Protection Rules can be imported using policy_id/id, e.g.

$ pulumi import opentelekomcloud:index/wafDedicatedPreciseProtectionRuleV1:WafDedicatedPreciseProtectionRuleV1 rule_1 ff95e71c8ae74eba9887193ab22c5757/b39f3a5a1b4f447a8030f0b0703f47f5

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: opentelekomcloud opentelekomcloud/terraform-provider-opentelekomcloud
License
Notes: This Pulumi package is based on the opentelekomcloud Terraform Provider.

opentelekomcloud 1.36.37 published on Thursday, Apr 24, 2025 by opentelekomcloud

opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedPreciseProtectionRuleV1

On this page

On this page

Example Usage

Create WafDedicatedPreciseProtectionRuleV1 Resource

Constructor syntax

Parameters

Constructor example

WafDedicatedPreciseProtectionRuleV1 Resource Properties

Inputs

Outputs

Look up Existing WafDedicatedPreciseProtectionRuleV1 Resource

Supporting Types

WafDedicatedPreciseProtectionRuleV1Action, WafDedicatedPreciseProtectionRuleV1ActionArgs

WafDedicatedPreciseProtectionRuleV1Condition, WafDedicatedPreciseProtectionRuleV1ConditionArgs

WafDedicatedPreciseProtectionRuleV1Timeouts, WafDedicatedPreciseProtectionRuleV1TimeoutsArgs

Import

Package Details

On this page

On this page