arvancloud_cdn_domain_waf (Resource)

Domain's WAF Settings.

Example Usage

resource "arvancloud_cdn_domain_waf" "example" {
  domain = "cdn-terraform.ir"
  mode   = "off"
  log_redaction = {
    cookies = [
    ],
    headers = [
      "authorization",
      "proxy-authorization",
      "cookie"
    ],
    all_headers        = false,
    body               = true,
    records            = false,
    replacement_string = "--REDACTED--"
  }
}

Schema

Required

domain (String) UUID or the name of the domain.

Optional

log_redaction (Attributes) The LogRedaction configuration is used to control which parts of the Web Application Firewall (WAF) logs are redacted (hidden or replaced) to protect sensitive information. (see below for nested schema)
mode (String) WAF protection mode.

Read-Only

is_enabled (Boolean) Whether the WAF is active or not.
last_updated (String) Timestamp of the last Terraform update of the domain.

Nested Schema for `log_redaction`

Required:

all_headers (Boolean) Redact all headers if true.
body (Boolean) Redact the request body if true.
cookies (List of String) List of cookie names to redact.
headers (List of String) List of header names to redact.
records (Boolean) Redacts specific log entries or entire log records. When enabled, fields within log records may be hidden or replaced with a placeholder.
replacement_string (String) String to replace redacted values.

Import

Import is supported using the following syntax:

$ terraform import arvancloud_cdn_domain_waf.example cdn-terraform.ir

Example Usage​

Schema​

Required​

Optional​

Read-Only​

Nested Schema for log_redaction​

Import​

Example Usage

Schema

Required

Optional

Read-Only

Nested Schema for `log_redaction`

Import