{ "id":"/axapi/v3/waf/template/{name}/brute-force-protection", "type":"object", "node-type":"scalar", "title":"brute-force-protection", "partition-visibility":"shared", "description":"Protect brute force attacks", "properties":{ "challenge-action-cookie":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Use Set-Cookie to determine if client allows cookies", "optional":true }, "challenge-action-javascript":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Add JavaScript to response to test if client allows JavaScript", "optional":true }, "challenge-action-captcha":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Initiate a Captcha to verify client can respond", "optional":true }, "brute-force-challenge-limit":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "default":2, "partition-visibility":"shared", "description":"Maximum brute-force events before sending challenge (default 2) (Maximum brute-force events before locking out client (default 2))", "optional":true }, "enable-disable-action":{ "type":"string", "format":"enum", "default":"disable", "partition-visibility":"shared", "description":"'enable': Enable brute force protections; 'disable': Disable brute force protections (default); ", "enum":[ "enable", "disable" ], "optional":true }, "brute-force-global":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Brute-force triggers apply globally instead of per-client (Apply brute-force triggers globally)", "optional":true }, "brute-force-lockout-limit":{ "type":"number", "format":"number", "minimum":0, "maximum":65535, "default":5, "partition-visibility":"shared", "description":"Maximum brute-force events before locking out client (default 5)", "optional":true }, "brute-force-lockout-period":{ "type":"number", "format":"number", "minimum":0, "maximum":1800, "default":600, "partition-visibility":"shared", "description":"Number of seconds client should be locked out (default 600)", "optional":true }, "brute-force-resp-codes":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Trigger brute-force check on HTTP response code", "optional":true }, "brute-force-resp-codes-file":{ "type":"string", "format":"string", "minLength":1, "maxLength":128, "partition-visibility":"shared", "description":"Name of WAF policy list file", "optional":true }, "brute-force-resp-headers":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Trigger brute-force check on HTTP response header names", "optional":true }, "brute-force-resp-headers-file":{ "type":"string", "format":"string", "minLength":1, "maxLength":128, "partition-visibility":"shared", "description":"Name of WAF policy list file", "optional":true }, "brute-force-resp-string":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Trigger brute-force check on HTTP response reason phrase", "optional":true }, "brute-force-resp-string-file":{ "type":"string", "format":"string", "minLength":1, "maxLength":128, "partition-visibility":"shared", "description":"Name of WAF policy list file", "optional":true }, "brute-force-test-period":{ "type":"number", "format":"number", "minimum":0, "maximum":600, "default":60, "partition-visibility":"shared", "description":"Number of seconds for brute-force event counting (default 60)", "optional":true }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true } } }