@Generated(value="software.amazon.awssdk:codegen") public final class SqliMatchStatement extends Object implements SdkPojo, Serializable, ToCopyableBuilder<SqliMatchStatement.Builder,SqliMatchStatement>
A rule statement that inspects for malicious SQL code. Attackers insert malicious SQL code into web requests to do things like modify your database or extract data from it.
| Modifier and Type | Class and Description |
|---|---|
static interface |
SqliMatchStatement.Builder |
| Modifier and Type | Method and Description |
|---|---|
static SqliMatchStatement.Builder |
builder() |
boolean |
equals(Object obj) |
boolean |
equalsBySdkFields(Object obj) |
FieldToMatch |
fieldToMatch()
The part of the web request that you want WAF to inspect.
|
<T> Optional<T> |
getValueForField(String fieldName,
Class<T> clazz) |
int |
hashCode() |
boolean |
hasTextTransformations()
For responses, this returns true if the service returned a value for the TextTransformations property.
|
List<SdkField<?>> |
sdkFields() |
SensitivityLevel |
sensitivityLevel()
The sensitivity that you want WAF to use to inspect for SQL injection attacks.
|
String |
sensitivityLevelAsString()
The sensitivity that you want WAF to use to inspect for SQL injection attacks.
|
static Class<? extends SqliMatchStatement.Builder> |
serializableBuilderClass() |
List<TextTransformation> |
textTransformations()
Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to
bypass detection.
|
SqliMatchStatement.Builder |
toBuilder() |
String |
toString()
Returns a string representation of this object.
|
clone, finalize, getClass, notify, notifyAll, wait, wait, waitcopypublic final FieldToMatch fieldToMatch()
The part of the web request that you want WAF to inspect.
public final boolean hasTextTransformations()
isEmpty() method on the property).
This is useful because the SDK will never return a null collection or map, but you may need to differentiate
between the service returning nothing (or null) and the service returning an empty collection or map. For
requests, this returns true if a value for the property was specified in the request builder, and false if a
value was not specified.public final List<TextTransformation> textTransformations()
Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to
bypass detection. Text transformations are used in rule match statements, to transform the
FieldToMatch request component before inspecting it, and they're used in rate-based rule statements,
to transform request components before using them as custom aggregation keys. If you specify one or more
transformations to apply, WAF performs all transformations on the specified content, starting from the lowest
priority setting, and then uses the transformed component contents.
Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.
This method will never return null. If you would like to know whether the service returned this field (so that
you can differentiate between null and empty), you can use the hasTextTransformations() method.
FieldToMatch request component before inspecting it, and they're used in rate-based rule
statements, to transform request components before using them as custom aggregation keys. If you specify
one or more transformations to apply, WAF performs all transformations on the specified content, starting
from the lowest priority setting, and then uses the transformed component contents.public final SensitivityLevel sensitivityLevel()
The sensitivity that you want WAF to use to inspect for SQL injection attacks.
HIGH detects more attacks, but might generate more false positives, especially if your web requests
frequently contain unusual strings. For information about identifying and mitigating false positives, see Testing and tuning in the
WAF Developer Guide.
LOW is generally a better choice for resources that already have other protections against SQL
injection attacks or that have a low tolerance for false positives.
Default: LOW
If the service returns an enum value that is not available in the current SDK version, sensitivityLevel
will return SensitivityLevel.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available
from sensitivityLevelAsString().
HIGH detects more attacks, but might generate more false positives, especially if your web
requests frequently contain unusual strings. For information about identifying and mitigating false
positives, see Testing and tuning
in the WAF Developer Guide.
LOW is generally a better choice for resources that already have other protections against
SQL injection attacks or that have a low tolerance for false positives.
Default: LOW
SensitivityLevelpublic final String sensitivityLevelAsString()
The sensitivity that you want WAF to use to inspect for SQL injection attacks.
HIGH detects more attacks, but might generate more false positives, especially if your web requests
frequently contain unusual strings. For information about identifying and mitigating false positives, see Testing and tuning in the
WAF Developer Guide.
LOW is generally a better choice for resources that already have other protections against SQL
injection attacks or that have a low tolerance for false positives.
Default: LOW
If the service returns an enum value that is not available in the current SDK version, sensitivityLevel
will return SensitivityLevel.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available
from sensitivityLevelAsString().
HIGH detects more attacks, but might generate more false positives, especially if your web
requests frequently contain unusual strings. For information about identifying and mitigating false
positives, see Testing and tuning
in the WAF Developer Guide.
LOW is generally a better choice for resources that already have other protections against
SQL injection attacks or that have a low tolerance for false positives.
Default: LOW
SensitivityLevelpublic SqliMatchStatement.Builder toBuilder()
toBuilder in interface ToCopyableBuilder<SqliMatchStatement.Builder,SqliMatchStatement>public static SqliMatchStatement.Builder builder()
public static Class<? extends SqliMatchStatement.Builder> serializableBuilderClass()
public final boolean equalsBySdkFields(Object obj)
equalsBySdkFields in interface SdkPojopublic final String toString()
Copyright © 2023. All rights reserved.