.. _waf_template_request_check:

waf template request-check
==========================

Request check


request-check Specification
---------------------------

	===================================== ==========================================================================
	 **Parameter**                         **Value** 

	===================================== ==========================================================================
	 **Type**                              *Configuration Resource*

	 **Element Name**                      request-check

	 **Element URI**                       /axapi/v3/waf/template/{name}/request-check

	 **Element Attributes**                request-check_attributes

	 **Partition Visibility**              shared

	 **Schema**                             :download:`request-check schema <waf-template-request-check/waf-template-request-check.txt>`
	===================================== ==========================================================================





	**Operations Allowed:**




.. raw:: html

   <script type="text/javascript">
 function showExample(a,b) { document.getElementById(a+'_div').style.display = 'block'; document.getElementById(a+'_cl').style.display = 'block'; document.getElementById(a+'_eg').style.display = 'none';}
   function closeExample(a,b) { document.getElementById(a+'_div').style.display = 'none'; document.getElementById(a+'_cl').style.display = 'none'; document.getElementById(a+'_eg').style.display = 'block';}
 </script>
   <table width='90%' style='margin-left:5%'>



.. raw:: html

   <tr style='border-bottom: thin solid; border-top: thin solid'><th width=15%>Operation</th><th width=10%>Method</th><th>URI</th><th width=15%>Payload</th><th width=10%></th></tr>




.. raw:: html

   <tr  style='border-bottom: thin solid;'><td valign = 'top'>


Create Object



.. raw:: html

   </td><td valign = 'top'>


POST



.. raw:: html

   </td><td valign = 'top'>


/axapi/v3/waf/template/{name}/request-check



.. raw:: html

   </td><td valign = 'top'>


:ref:`3283_request-check_attributes`



.. raw:: html

   </td><td></td></tr>




.. raw:: html

   <tr  style='border-bottom: thin solid;'><td valign = 'top'>


Get Object



.. raw:: html

   </td><td valign = 'top'>


GET



.. raw:: html

   </td><td valign = 'top'>


/axapi/v3/waf/template/{name}/request-check



.. raw:: html

   </td><td valign = 'top'>


:ref:`3283_request-check_attributes`



.. raw:: html

   </td><td></td></tr>




.. raw:: html

   <tr  style='border-bottom: thin solid;'><td valign = 'top'>


Modify Object



.. raw:: html

   </td><td valign = 'top'>


POST



.. raw:: html

   </td><td valign = 'top'>


/axapi/v3/waf/template/{name}/request-check



.. raw:: html

   </td><td valign = 'top'>


:ref:`3283_request-check_attributes`



.. raw:: html

   </td><td></td></tr>




.. raw:: html

   <tr  style='border-bottom: thin solid;'><td valign = 'top'>


Replace Object



.. raw:: html

   </td><td valign = 'top'>


PUT



.. raw:: html

   </td><td valign = 'top'>


/axapi/v3/waf/template/{name}/request-check



.. raw:: html

   </td><td valign = 'top'>


:ref:`3283_request-check_attributes`



.. raw:: html

   </td><td></td></tr>




.. raw:: html

   <tr  style='border-bottom: thin solid;'><td valign = 'top'>


Delete Object



.. raw:: html

   </td><td valign = 'top'>


DELETE



.. raw:: html

   </td><td valign = 'top'>


/axapi/v3/waf/template/{name}/request-check



.. raw:: html

   </td><td valign = 'top'>


:ref:`3283_request-check_attributes`



.. raw:: html

   </td><td></td></tr>




.. raw:: html

   </table>

.. _3283_request-check_attributes:

request-check attributes
------------------------

    **bot-check**

        **Description** Check User-Agent for known bots

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **bot-check-policy-file**

        **Description** Name of WAF policy list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters

    **command-injection-check**

        **Description** Check to protect against command injection attacks

        **Type:** string

        **Format:** enum-list

    **command-injection-check-policy-file**

        **Description** Name of WAF policy command injection list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters

    **lifetime**

        **Description** Session lifetime in minutes (default 10)

        **Type:** number

        **Range:** 1-1440

        **Default:** 10

    **redirect-whitelist**

        **Description** Check Redirect URL against list of previously learned redirects

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **referer-check**

        **Description** Check referer to protect against CSRF attacks

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **referer-domain-list**

        **Description** List of referer domains allowed

        **Type:** string

        **Format:** string-rlx

        **Maximum Length:** 255 characters

        **Maximum Length:** 1 characters

        **Mutual Exclusion:** referer-domain-list and referer-domain-list-only are mutually exclusive

    **referer-domain-list-only**

        **Description** List of referer domains allowed

        **Type:** string

        **Format:** string-rlx

        **Maximum Length:** 255 characters

        **Maximum Length:** 1 characters

        **Mutual Exclusion:** referer-domain-list-only and referer-domain-list are mutually exclusive

    **referer-safe-url**

        **Description**  Safe URL to redirect to if referer is missing

        **Type:** string

        **Format:** string-rlx

        **Maximum Length:** 255 characters

        **Maximum Length:** 1 characters

    **session-check**

        **Description** Enable session checking via session cookie

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **sqlia-check**

        **Description** 'reject': Reject requests with SQLIA patterns; 

        **Type:** string

        **Supported Values:** reject

    **sqlia-check-policy-file**

        **Description** Name of WAF policy list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters

    **url-blacklist**

        **Description** specify name of WAF policy list file to blacklist

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **url-learned-list**

        **Description** Check URL against list of previously learned URLs

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **url-whitelist**

        **Description** specify name of WAF policy list file to whitelist

        **Type:** boolean

        **Supported Values:** true, false, 1, 0

        **Default:** 0

    **uuid**

        **Description** uuid of the object

        **Type:** string

        **Maximum Length:** 64 characters

        **Maximum Length:** 1 characters

    **waf-blacklist-file**

        **Description** Name of WAF policy list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters

    **waf-whitelist-file**

        **Description** Name of WAF policy list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters

    **xss-check**

        **Description** 'reject': Reject requests with bad cookies; 

        **Type:** string

        **Supported Values:** reject

    **xss-check-policy-file**

        **Description** Name of WAF policy list file

        **Type:** string

        **Maximum Length:** 128 characters

        **Maximum Length:** 1 characters