-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
aws - rest-stage - add regex match support for wafv2-enabled filter and set-wafv2 action #7946
Conversation
Cfgperiodic
mu - changes on LambdaRetry max_attempts
Also rename/shorten the ignore parameter for readability.
re.match(target_acl, k)] | ||
if len(target_acl_ids) != 1 or \ | ||
('arn' not in target_acl_ids[0]): | ||
raise ValueError(f'{target_acl} matching to none or the ' |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nit: the can be omitted.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
change has been taken care.
wafs = self.manager.get_resource_manager('wafv2').resources(augment=False) | ||
waf_name_arn_map = {w['Name']: w['ARN'] for w in wafs} | ||
target_acl_id = waf_name_arn_map.get(target_acl, target_acl) | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@kk1532 ,
Since wafv2-enabled and set-wafv2 are common for cloudfront, appsync, can we make same logic? You can refer to pr/7706 for cloudfront wafv2-enabled as well.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@cahn1 wafv2-enabled
filter has been updated with cloudfront logic.
@kapilt can you please check out the updated code when you get a chance? CC: @kk1532 @darrendao @cahn1 |
… On Mon, Nov 21, 2022 at 4:12 PM Steven ***@***.***> wrote:
@kapilt <https://github.com/kapilt> can you please check out the updated
code when you get a chance?
CC: @kk1532 <https://github.com/kk1532> @darrendao
<https://github.com/darrendao> @cahn1 <https://github.com/cahn1>
—
Reply to this email directly, view it on GitHub
<#7946 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAAFJESGOJHW2UT6VZY3XSDWJPQU7ANCNFSM6AAAAAARQET4WU>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
thanks, lgtm
Added regex feature to wafv2-enabled filter of rest-stage.
This fix supports local WAF and FMS based WAF.
Also Added set-wafv2 filter to support regex format.