ACOS
  • Start Here
  • How to Use this Reference
  • Resources
  • Operations
  • Example API Configuration
  • Filters
  • Batching Requests
  • Status Codes
ACOS
  • Docs »
  • waf template cookie-security
  • View page source

waf template cookie-security¶

Protections to secure cookies

cookie-security Specification¶

   
Type Configuration Resource
Element Name cookie-security
Element URI /axapi/v3/waf/template/{name}/cookie-security
Element Attributes cookie-security_attributes
Schema cookie-security schema

Operations Allowed:

OperationMethodURIPayload

Create Object

POST

/axapi/v3/waf/template/{name}/cookie-security

cookie-security attributes

Get Object

GET

/axapi/v3/waf/template/{name}/cookie-security

cookie-security attributes

Modify Object

POST

/axapi/v3/waf/template/{name}/cookie-security

cookie-security attributes

Replace Object

PUT

/axapi/v3/waf/template/{name}/cookie-security

cookie-security attributes

Delete Object

DELETE

/axapi/v3/waf/template/{name}/cookie-security

cookie-security attributes

cookie-security attributes¶

allow-missing-cookie

Description Allow requests with missing cookies

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

allow-unrecognized-cookie

Description Allow requests with unrecognized cookies

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

cookie-policy

Type: List

enable-disable-action

Description ‘enable’: Enable cookie security (default); ‘disable’: Disable cookie security;

Type: string

Supported Values: enable, disable

Default: enable

set-cookie-policy

Type: List

tamper-protection-grace-period

Description Allow unrecognized cookies for a period of time after cookie encryption being applied (default 120 minutes)

Type: number

Range: 0-43200

Default: 120

tamper-protection-http-only

Description Add HttpOnly flag to cookies not in set-cookie-policy list (default on)

Type: boolean

Supported Values: true, false, 1, 0

Default: 1

tamper-protection-samesite

Description ‘none’: none; ‘lax’: lax; ‘strict’: strict;

Type: string

Supported Values: none, lax, strict

Default: none

tamper-protection-secret

Description Cookie encryption secret

Type: string

Format: password

Maximum Length: 128 characters

Maximum Length: 1 characters

tamper-protection-secret-encrypted

Description Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED secret string)

tamper-protection-secure

Description Add Secure flag to cookies not in set-cookie-policy list (default on)

Type: boolean

Supported Values: true, false, 1, 0

Default: 1

tamper-protection-session-cookie-only

Description Only encrypt session cookies

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

tamper-protection-sign

Description Sign cookies

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

Mutual Exclusion: tamper-protection-sign and tamper-protection-encrypt are mutually exclusive

uuid

Description uuid of the object

Type: string

Maximum Length: 64 characters

Maximum Length: 1 characters

set-cookie-policy¶

Specification  
Type list
Block object keys  

set-cookie-policy-allow

Description Allow the cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

set-cookie-policy-disallow

Description Block the cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

set-cookie-policy-http-only

Description Add HttpOnly flag to cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

set-cookie-policy-name

Description Name of cookie

Type: string

Format: string-rlx

Maximum Length: 127 characters

Maximum Length: 1 characters

set-cookie-policy-samesite

Description ‘none’: none; ‘lax’: lax; ‘strict’: strict;

Type: string

Supported Values: none, lax, strict

set-cookie-policy-secret

Description Cookie encryption secret

Type: string

Format: password

Maximum Length: 128 characters

Maximum Length: 1 characters

set-cookie-policy-secret-encrypted

Description Do NOT use this option manually. (This is an A10 reserved keyword.) (The ENCRYPTED secret string)

set-cookie-policy-secure

Description Add Secure flag to cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

set-cookie-policy-sign

Description Sign cookies

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

Mutual Exclusion: set-cookie-policy-sign and set-cookie-policy-encrypt are mutually exclusive

cookie-policy¶

Specification  
Type list
Block object keys  

cookie-policy-allow

Description Allow the cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

cookie-policy-disallow

Description Block the cookie

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

cookie-policy-name

Description Name of cookie

Type: string

Format: string-rlx

Maximum Length: 127 characters

Maximum Length: 1 characters

© Copyright 2014-2019, a10

Built with Sphinx using a theme provided by Read the Docs.