Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Opentelekomcloud Provider
  3. API Docs
  4. WafDedicatedPreciseProtectionRuleV1
opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
opentelekomcloud/terraform-provider-opentelekomcloud

opentelekomcloud.WafDedicatedPreciseProtectionRuleV1

Explore with Pulumi AI

opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
opentelekomcloud/terraform-provider-opentelekomcloud

Up-to-date reference of API arguments for WAF dedicated Precise Protection rule you can get at documentation portal.

Manages a WAF Dedicated Precise Protection Rule resource within OpenTelekomCloud.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as opentelekomcloud from "@pulumi/opentelekomcloud";

const policy1 = new opentelekomcloud.WafDedicatedPolicyV1("policy1", {});
const rule1 = new opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1", {
    policyId: policy1.wafDedicatedPolicyV1Id,
    time: false,
    description: "desc",
    priority: 50,
    conditions: [{
        category: "url",
        contents: ["test"],
        logicOperation: "contain",
    }],
    actions: [{
        category: "block",
    }],
});
Copy
import pulumi
import pulumi_opentelekomcloud as opentelekomcloud

policy1 = opentelekomcloud.WafDedicatedPolicyV1("policy1")
rule1 = opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1",
    policy_id=policy1.waf_dedicated_policy_v1_id,
    time=False,
    description="desc",
    priority=50,
    conditions=[{
        "category": "url",
        "contents": ["test"],
        "logic_operation": "contain",
    }],
    actions=[{
        "category": "block",
    }])
Copy
package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/opentelekomcloud/opentelekomcloud"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		policy1, err := opentelekomcloud.NewWafDedicatedPolicyV1(ctx, "policy1", nil)
		if err != nil {
			return err
		}
		_, err = opentelekomcloud.NewWafDedicatedPreciseProtectionRuleV1(ctx, "rule1", &opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args{
			PolicyId:    policy1.WafDedicatedPolicyV1Id,
			Time:        pulumi.Bool(false),
			Description: pulumi.String("desc"),
			Priority:    pulumi.Float64(50),
			Conditions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArray{
				&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ConditionArgs{
					Category: pulumi.String("url"),
					Contents: pulumi.StringArray{
						pulumi.String("test"),
					},
					LogicOperation: pulumi.String("contain"),
				},
			},
			Actions: opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArray{
				&opentelekomcloud.WafDedicatedPreciseProtectionRuleV1ActionArgs{
					Category: pulumi.String("block"),
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Opentelekomcloud = Pulumi.Opentelekomcloud;

return await Deployment.RunAsync(() => 
{
    var policy1 = new Opentelekomcloud.WafDedicatedPolicyV1("policy1");

    var rule1 = new Opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("rule1", new()
    {
        PolicyId = policy1.WafDedicatedPolicyV1Id,
        Time = false,
        Description = "desc",
        Priority = 50,
        Conditions = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs
            {
                Category = "url",
                Contents = new[]
                {
                    "test",
                },
                LogicOperation = "contain",
            },
        },
        Actions = new[]
        {
            new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs
            {
                Category = "block",
            },
        },
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.opentelekomcloud.WafDedicatedPolicyV1;
import com.pulumi.opentelekomcloud.WafDedicatedPreciseProtectionRuleV1;
import com.pulumi.opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs;
import com.pulumi.opentelekomcloud.inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var policy1 = new WafDedicatedPolicyV1("policy1");

        var rule1 = new WafDedicatedPreciseProtectionRuleV1("rule1", WafDedicatedPreciseProtectionRuleV1Args.builder()
            .policyId(policy1.wafDedicatedPolicyV1Id())
            .time(false)
            .description("desc")
            .priority(50)
            .conditions(WafDedicatedPreciseProtectionRuleV1ConditionArgs.builder()
                .category("url")
                .contents("test")
                .logicOperation("contain")
                .build())
            .actions(WafDedicatedPreciseProtectionRuleV1ActionArgs.builder()
                .category("block")
                .build())
            .build());

    }
}
Copy
resources:
  policy1:
    type: opentelekomcloud:WafDedicatedPolicyV1
  rule1:
    type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
    properties:
      policyId: ${policy1.wafDedicatedPolicyV1Id}
      time: false
      description: desc
      priority: 50
      conditions:
        - category: url
          contents:
            - test
          logicOperation: contain
      actions:
        - category: block
Copy

Create WafDedicatedPreciseProtectionRuleV1 Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new WafDedicatedPreciseProtectionRuleV1(name: string, args: WafDedicatedPreciseProtectionRuleV1Args, opts?: CustomResourceOptions);
@overload
def WafDedicatedPreciseProtectionRuleV1(resource_name: str,
                                        args: WafDedicatedPreciseProtectionRuleV1Args,
                                        opts: Optional[ResourceOptions] = None)

@overload
def WafDedicatedPreciseProtectionRuleV1(resource_name: str,
                                        opts: Optional[ResourceOptions] = None,
                                        actions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]] = None,
                                        policy_id: Optional[str] = None,
                                        priority: Optional[float] = None,
                                        time: Optional[bool] = None,
                                        conditions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]] = None,
                                        description: Optional[str] = None,
                                        start: Optional[float] = None,
                                        terminal: Optional[float] = None,
                                        timeouts: Optional[WafDedicatedPreciseProtectionRuleV1TimeoutsArgs] = None,
                                        waf_dedicated_precise_protection_rule_v1_id: Optional[str] = None)
func NewWafDedicatedPreciseProtectionRuleV1(ctx *Context, name string, args WafDedicatedPreciseProtectionRuleV1Args, opts ...ResourceOption) (*WafDedicatedPreciseProtectionRuleV1, error)
public WafDedicatedPreciseProtectionRuleV1(string name, WafDedicatedPreciseProtectionRuleV1Args args, CustomResourceOptions? opts = null)
public WafDedicatedPreciseProtectionRuleV1(String name, WafDedicatedPreciseProtectionRuleV1Args args)
public WafDedicatedPreciseProtectionRuleV1(String name, WafDedicatedPreciseProtectionRuleV1Args args, CustomResourceOptions options)

type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. WafDedicatedPreciseProtectionRuleV1Args
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. WafDedicatedPreciseProtectionRuleV1Args
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. WafDedicatedPreciseProtectionRuleV1Args
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. WafDedicatedPreciseProtectionRuleV1Args
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. WafDedicatedPreciseProtectionRuleV1Args
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var wafDedicatedPreciseProtectionRuleV1Resource = new Opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", new()
{
    Actions = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ActionArgs
        {
            Category = "string",
            FollowedActionId = "string",
        },
    },
    PolicyId = "string",
    Priority = 0,
    Time = false,
    Conditions = new[]
    {
        new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1ConditionArgs
        {
            Category = "string",
            Contents = new[]
            {
                "string",
            },
            Index = "string",
            LogicOperation = "string",
            ValueListId = "string",
        },
    },
    Description = "string",
    Start = 0,
    Terminal = 0,
    Timeouts = new Opentelekomcloud.Inputs.WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
    {
        Create = "string",
        Delete = "string",
    },
    WafDedicatedPreciseProtectionRuleV1Id = "string",
});
Copy
example, err := opentelekomcloud.NewWafDedicatedPreciseProtectionRuleV1(ctx, "wafDedicatedPreciseProtectionRuleV1Resource", &opentelekomcloud.WafDedicatedPreciseProtectionRuleV1Args{
Actions: .WafDedicatedPreciseProtectionRuleV1ActionArray{
&.WafDedicatedPreciseProtectionRuleV1ActionArgs{
Category: pulumi.String("string"),
FollowedActionId: pulumi.String("string"),
},
},
PolicyId: pulumi.String("string"),
Priority: pulumi.Float64(0),
Time: pulumi.Bool(false),
Conditions: .WafDedicatedPreciseProtectionRuleV1ConditionArray{
&.WafDedicatedPreciseProtectionRuleV1ConditionArgs{
Category: pulumi.String("string"),
Contents: pulumi.StringArray{
pulumi.String("string"),
},
Index: pulumi.String("string"),
LogicOperation: pulumi.String("string"),
ValueListId: pulumi.String("string"),
},
},
Description: pulumi.String("string"),
Start: pulumi.Float64(0),
Terminal: pulumi.Float64(0),
Timeouts: &.WafDedicatedPreciseProtectionRuleV1TimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
},
WafDedicatedPreciseProtectionRuleV1Id: pulumi.String("string"),
})
Copy
var wafDedicatedPreciseProtectionRuleV1Resource = new WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", WafDedicatedPreciseProtectionRuleV1Args.builder()
    .actions(WafDedicatedPreciseProtectionRuleV1ActionArgs.builder()
        .category("string")
        .followedActionId("string")
        .build())
    .policyId("string")
    .priority(0)
    .time(false)
    .conditions(WafDedicatedPreciseProtectionRuleV1ConditionArgs.builder()
        .category("string")
        .contents("string")
        .index("string")
        .logicOperation("string")
        .valueListId("string")
        .build())
    .description("string")
    .start(0)
    .terminal(0)
    .timeouts(WafDedicatedPreciseProtectionRuleV1TimeoutsArgs.builder()
        .create("string")
        .delete("string")
        .build())
    .wafDedicatedPreciseProtectionRuleV1Id("string")
    .build());
Copy
waf_dedicated_precise_protection_rule_v1_resource = opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource",
    actions=[{
        "category": "string",
        "followed_action_id": "string",
    }],
    policy_id="string",
    priority=0,
    time=False,
    conditions=[{
        "category": "string",
        "contents": ["string"],
        "index": "string",
        "logic_operation": "string",
        "value_list_id": "string",
    }],
    description="string",
    start=0,
    terminal=0,
    timeouts={
        "create": "string",
        "delete": "string",
    },
    waf_dedicated_precise_protection_rule_v1_id="string")
Copy
const wafDedicatedPreciseProtectionRuleV1Resource = new opentelekomcloud.WafDedicatedPreciseProtectionRuleV1("wafDedicatedPreciseProtectionRuleV1Resource", {
    actions: [{
        category: "string",
        followedActionId: "string",
    }],
    policyId: "string",
    priority: 0,
    time: false,
    conditions: [{
        category: "string",
        contents: ["string"],
        index: "string",
        logicOperation: "string",
        valueListId: "string",
    }],
    description: "string",
    start: 0,
    terminal: 0,
    timeouts: {
        create: "string",
        "delete": "string",
    },
    wafDedicatedPreciseProtectionRuleV1Id: "string",
});
Copy
type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1
properties:
    actions:
        - category: string
          followedActionId: string
    conditions:
        - category: string
          contents:
            - string
          index: string
          logicOperation: string
          valueListId: string
    description: string
    policyId: string
    priority: 0
    start: 0
    terminal: 0
    time: false
    timeouts:
        create: string
        delete: string
    wafDedicatedPreciseProtectionRuleV1Id: string
Copy

WafDedicatedPreciseProtectionRuleV1 Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The WafDedicatedPreciseProtectionRuleV1 resource accepts the following input properties:

Actions This property is required. List<WafDedicatedPreciseProtectionRuleV1Action>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
PolicyId This property is required. string
The WAF policy ID. Changing this creates a new rule.
Priority This property is required. double
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Time This property is required. bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Conditions List<WafDedicatedPreciseProtectionRuleV1Condition>
Match condition List. Changing this creates a new rule. The conditions block supports:
Description string
Rule description. Changing this creates a new rule.
Start double
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Terminal double
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
WafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
Actions This property is required. []WafDedicatedPreciseProtectionRuleV1ActionArgs
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
PolicyId This property is required. string
The WAF policy ID. Changing this creates a new rule.
Priority This property is required. float64
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Time This property is required. bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Conditions []WafDedicatedPreciseProtectionRuleV1ConditionArgs
Match condition List. Changing this creates a new rule. The conditions block supports:
Description string
Rule description. Changing this creates a new rule.
Start float64
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Terminal float64
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
WafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
actions This property is required. List<WafDedicatedPreciseProtectionRuleV1Action>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId This property is required. String
The WAF policy ID. Changing this creates a new rule.
priority This property is required. Double
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time This property is required. Boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions List<WafDedicatedPreciseProtectionRuleV1Condition>
Match condition List. Changing this creates a new rule. The conditions block supports:
description String
Rule description. Changing this creates a new rule.
start Double
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal Double
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id String
ID of the rule.
actions This property is required. WafDedicatedPreciseProtectionRuleV1Action[]
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId This property is required. string
The WAF policy ID. Changing this creates a new rule.
priority This property is required. number
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time This property is required. boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions WafDedicatedPreciseProtectionRuleV1Condition[]
Match condition List. Changing this creates a new rule. The conditions block supports:
description string
Rule description. Changing this creates a new rule.
start number
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal number
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
actions This property is required. Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policy_id This property is required. str
The WAF policy ID. Changing this creates a new rule.
priority This property is required. float
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time This property is required. bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]
Match condition List. Changing this creates a new rule. The conditions block supports:
description str
Rule description. Changing this creates a new rule.
start float
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal float
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
waf_dedicated_precise_protection_rule_v1_id str
ID of the rule.
actions This property is required. List<Property Map>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
policyId This property is required. String
The WAF policy ID. Changing this creates a new rule.
priority This property is required. Number
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
time This property is required. Boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
conditions List<Property Map>
Match condition List. Changing this creates a new rule. The conditions block supports:
description String
Rule description. Changing this creates a new rule.
start Number
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
terminal Number
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
timeouts Property Map
wafDedicatedPreciseProtectionRuleV1Id String
ID of the rule.

Outputs

All input properties are implicitly available as output properties. Additionally, the WafDedicatedPreciseProtectionRuleV1 resource produces the following output properties:

CreatedAt double
Timestamp the rule is created.
Id string
The provider-assigned unique ID for this managed resource.
Status double
Rule status. The value can be:
CreatedAt float64
Timestamp the rule is created.
Id string
The provider-assigned unique ID for this managed resource.
Status float64
Rule status. The value can be:
createdAt Double
Timestamp the rule is created.
id String
The provider-assigned unique ID for this managed resource.
status Double
Rule status. The value can be:
createdAt number
Timestamp the rule is created.
id string
The provider-assigned unique ID for this managed resource.
status number
Rule status. The value can be:
created_at float
Timestamp the rule is created.
id str
The provider-assigned unique ID for this managed resource.
status float
Rule status. The value can be:
createdAt Number
Timestamp the rule is created.
id String
The provider-assigned unique ID for this managed resource.
status Number
Rule status. The value can be:

Look up Existing WafDedicatedPreciseProtectionRuleV1 Resource

Get an existing WafDedicatedPreciseProtectionRuleV1 resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: WafDedicatedPreciseProtectionRuleV1State, opts?: CustomResourceOptions): WafDedicatedPreciseProtectionRuleV1
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        actions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]] = None,
        conditions: Optional[Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]] = None,
        created_at: Optional[float] = None,
        description: Optional[str] = None,
        policy_id: Optional[str] = None,
        priority: Optional[float] = None,
        start: Optional[float] = None,
        status: Optional[float] = None,
        terminal: Optional[float] = None,
        time: Optional[bool] = None,
        timeouts: Optional[WafDedicatedPreciseProtectionRuleV1TimeoutsArgs] = None,
        waf_dedicated_precise_protection_rule_v1_id: Optional[str] = None) -> WafDedicatedPreciseProtectionRuleV1
func GetWafDedicatedPreciseProtectionRuleV1(ctx *Context, name string, id IDInput, state *WafDedicatedPreciseProtectionRuleV1State, opts ...ResourceOption) (*WafDedicatedPreciseProtectionRuleV1, error)
public static WafDedicatedPreciseProtectionRuleV1 Get(string name, Input<string> id, WafDedicatedPreciseProtectionRuleV1State? state, CustomResourceOptions? opts = null)
public static WafDedicatedPreciseProtectionRuleV1 get(String name, Output<String> id, WafDedicatedPreciseProtectionRuleV1State state, CustomResourceOptions options)
resources:  _:    type: opentelekomcloud:WafDedicatedPreciseProtectionRuleV1    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
Actions List<WafDedicatedPreciseProtectionRuleV1Action>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
Conditions List<WafDedicatedPreciseProtectionRuleV1Condition>
Match condition List. Changing this creates a new rule. The conditions block supports:
CreatedAt double
Timestamp the rule is created.
Description string
Rule description. Changing this creates a new rule.
PolicyId string
The WAF policy ID. Changing this creates a new rule.
Priority double
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Start double
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Status double
Rule status. The value can be:
Terminal double
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Time bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
WafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
Actions []WafDedicatedPreciseProtectionRuleV1ActionArgs
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
Conditions []WafDedicatedPreciseProtectionRuleV1ConditionArgs
Match condition List. Changing this creates a new rule. The conditions block supports:
CreatedAt float64
Timestamp the rule is created.
Description string
Rule description. Changing this creates a new rule.
PolicyId string
The WAF policy ID. Changing this creates a new rule.
Priority float64
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
Start float64
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
Status float64
Rule status. The value can be:
Terminal float64
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
Time bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
Timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
WafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
actions List<WafDedicatedPreciseProtectionRuleV1Action>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions List<WafDedicatedPreciseProtectionRuleV1Condition>
Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt Double
Timestamp the rule is created.
description String
Rule description. Changing this creates a new rule.
policyId String
The WAF policy ID. Changing this creates a new rule.
priority Double
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start Double
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status Double
Rule status. The value can be:
terminal Double
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time Boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id String
ID of the rule.
actions WafDedicatedPreciseProtectionRuleV1Action[]
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions WafDedicatedPreciseProtectionRuleV1Condition[]
Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt number
Timestamp the rule is created.
description string
Rule description. Changing this creates a new rule.
policyId string
The WAF policy ID. Changing this creates a new rule.
priority number
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start number
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status number
Rule status. The value can be:
terminal number
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1Timeouts
wafDedicatedPreciseProtectionRuleV1Id string
ID of the rule.
actions Sequence[WafDedicatedPreciseProtectionRuleV1ActionArgs]
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions Sequence[WafDedicatedPreciseProtectionRuleV1ConditionArgs]
Match condition List. Changing this creates a new rule. The conditions block supports:
created_at float
Timestamp the rule is created.
description str
Rule description. Changing this creates a new rule.
policy_id str
The WAF policy ID. Changing this creates a new rule.
priority float
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start float
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status float
Rule status. The value can be:
terminal float
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time bool
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts WafDedicatedPreciseProtectionRuleV1TimeoutsArgs
waf_dedicated_precise_protection_rule_v1_id str
ID of the rule.
actions List<Property Map>
Protection action to take if the number of requests reaches the upper limit. Changing this creates a new rule. The conditions block supports:
conditions List<Property Map>
Match condition List. Changing this creates a new rule. The conditions block supports:
createdAt Number
Timestamp the rule is created.
description String
Rule description. Changing this creates a new rule.
policyId String
The WAF policy ID. Changing this creates a new rule.
priority Number
Priority of a rule. A small value indicates a high priority. If two rules are assigned with the same priority, the rule added earlier has higher priority. Value range: 0 to 1000. Changing this creates a new rule.
start Number
Timestamp (ms) when the precise protection rule takes effect. This parameter is returned only when time is true. Changing this creates a new rule.
status Number
Rule status. The value can be:
terminal Number
Timestamp (ms) when the precise protection rule expires. This parameter is returned only when time is true. Changing this creates a new rule.
time Boolean
Time the precise protection rule takes effect. Changing this creates a new rule. Values:
timeouts Property Map
wafDedicatedPreciseProtectionRuleV1Id String
ID of the rule.

Supporting Types

WafDedicatedPreciseProtectionRuleV1Action
, WafDedicatedPreciseProtectionRuleV1ActionArgs

Category This property is required. string
Action type. Changing this creates a new rule.
FollowedActionId string
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.
Category This property is required. string
Action type. Changing this creates a new rule.
FollowedActionId string
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.
category This property is required. String
Action type. Changing this creates a new rule.
followedActionId String
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.
category This property is required. string
Action type. Changing this creates a new rule.
followedActionId string
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.
category This property is required. str
Action type. Changing this creates a new rule.
followed_action_id str
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.
category This property is required. String
Action type. Changing this creates a new rule.
followedActionId String
ID of a known attack source rule. This parameter can be configured only when category is set to block. Changing this creates a new rule.

WafDedicatedPreciseProtectionRuleV1Condition
, WafDedicatedPreciseProtectionRuleV1ConditionArgs

Category string
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
Contents List<string>
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
Index string
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
LogicOperation string
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
ValueListId string
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.
Category string
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
Contents []string
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
Index string
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
LogicOperation string
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
ValueListId string
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.
category String
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
contents List<String>
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
index String
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
logicOperation String
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
valueListId String
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.
category string
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
contents string[]
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
index string
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
logicOperation string
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
valueListId string
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.
category str
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
contents Sequence[str]
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
index str
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
logic_operation str
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
value_list_id str
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.
category String
Field type. The options are url, user-agent, ip, params, cookie, referer, header, request_line, method, and request.
contents List<String>
Content of the conditions. This parameter is mandatory when the suffix of logic_operation is not any or all. This parameter is mandatory when the suffix of logic_operation is not any or all. Changing this creates a new rule.
index String
Subfield. Changing this creates a new rule.

  • When the field type is url, user-agent, ip, refer, request_line, method, or request, index is not required.
  • When the field type is params, header, or cookie, and the subfield is customized, the value of index is the customized subfield.
logicOperation String
Logic for matching the condition. Changing this creates a new rule.

  • If the category is url, user-agent or referer , the optional operations are contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal and len_not_equal
  • If the category is ip, the optional operations are: equal, not_equal, equal_any and not_equal_all
  • If the category is method, the optional operations are: equal and not_equal
  • If the category is request_line and request, the optional operations are: len_greater, len_less, len_equal and len_not_equal
  • If the category is params, header, and cookie, the optional operations are: contain, not_contain, equal, not_equal, prefix, not_prefix, suffix, not_suffix, contain_any, not_contain_all, equal_any, not_equal_all, equal_any, not_equal_all, prefix_any, not_prefix_all, suffix_any, not_suffix_all, len_greater, len_less, len_equal, len_not_equal, num_greater, num_less, num_equal, num_not_equal, exist and not_exist
valueListId String
Reference table ID. This parameter is mandatory when the suffix of logic_operation is any or all. The reference table type must be the same as the category type. Changing this creates a new rule.

WafDedicatedPreciseProtectionRuleV1Timeouts
, WafDedicatedPreciseProtectionRuleV1TimeoutsArgs

Create string
Delete string
Create string
Delete string
create String
delete String
create string
delete string
create str
delete str
create String
delete String

Import

Dedicated WAF Precise Protection Rules can be imported using policy_id/id, e.g.

$ pulumi import opentelekomcloud:index/wafDedicatedPreciseProtectionRuleV1:WafDedicatedPreciseProtectionRuleV1 rule_1 ff95e71c8ae74eba9887193ab22c5757/b39f3a5a1b4f447a8030f0b0703f47f5
Copy

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository
opentelekomcloud opentelekomcloud/terraform-provider-opentelekomcloud
License
Notes
This Pulumi package is based on the opentelekomcloud Terraform Provider.
opentelekomcloud 1.36.35 published on Monday, Apr 14, 2025 by opentelekomcloud
opentelekomcloud/terraform-provider-opentelekomcloud