Updating a Policy¶

Function Description¶

This API is used to update a policy.

URI¶

URI format
PUT /v1/{project_id}/waf/policy/{policy_id}
Parameter description
Table 1 Path parameters¶
Parameter
Mandatory
Type
Description
project_id
Yes
String
Specifies the project ID.
policy_id
Yes
String
Specifies the policy ID.

**Table 1** Path parameters¶
Parameter	Mandatory	Type	Description
project_id	Yes	String	Specifies the project ID.
policy_id	Yes	String	Specifies the policy ID.

Request¶

Request parameters

**Table 2** Parameter description¶
Parameter	Mandatory	Type	Description
name	No	String	Specifies the policy name.
action	No	Table 3	Specifies the protective action after a rule is matched. block: WAF blocks and logs detected attacks. log: WAF logs detected attacks only.
options	No	Table 4	Specifies the protection switches.
level	No	Integer	Specifies the protection level. 1: low 2: medium 3: high
full_detection	No	Boolean	Specifies the detection mode in Precise Protection. true: full detection. Full detection finishes all threat detections before blocking requests that meet Precise Protection specified conditions. false: instant detection. Instant detection immediately ends threat detection after blocking a request that meets Precise Protection specified conditions.

**Table 3** **action**¶
Parameter	Mandatory	Type	Description
category	Yes	String	Specifies the protective action. block: WAF blocks and logs detected attacks. log: WAF logs detected attacks only.

**Table 4** **options**¶
Parameter	Mandatory	Type	Description
webattack	No	Boolean	Specifies whether Basic Web Protection is enabled. true: enabled. false: disabled.
common	No	Boolean	Specifies whether General Check in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler	No	Boolean	Specifies whether the master crawler detection switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_engine	No	Boolean	Specifies whether the Search Engine switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_scanner	No	Boolean	Specifies whether the Scanner switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_script	No	Boolean	Specifies whether the Script Tool switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_other	No	Boolean	Specifies whether detection of other crawlers in Basic Web Protection is enabled. true: enabled. false: disabled.
webshell	No	Boolean	Specifies whether webshell detection in Basic Web Protection is enabled. true: enabled. false: disabled.
cc	No	Boolean	Specifies whether CC Attack Protection is enabled. true: enabled. false: disabled.
custom	No	Boolean	Specifies whether Precise Protection is enabled. true: enabled. false: disabled.
whiteblackip	No	Boolean	Specifies whether Blacklist and Whitelist is enabled. true: enabled. false: disabled.
privacy	No	Boolean	Specifies whether Data Masking is enabled. true: enabled. false: disabled.
Ignore	No	Boolean	Specifies whether False Alarm Masking is enabled. true: enabled. false: disabled.
antitamper	No	Boolean	Specifies whether Web Tamper Protection is enabled. true: enabled. false: disabled.

Response¶

Response parameters

**Table 5** Parameter description¶
Parameter	Type	Description
id	String	Specifies the instance ID.
name	String	Specifies the policy name.
options	Table 9	Specifies the protection switches.
action	Table 6	Specifies the mode of Basic Web Protection. block: WAF blocks and logs detected attacks. log: WAF logs detected attacks only.
level	Integer	Specifies the protection level. 1: low 2: medium 3: high
full_detection	Boolean	Specifies the detection mode in Precise Protection. true: full detection. Full detection finishes all threat detections before blocking requests that meet Precise Protection specified conditions. false: instant detection. Instant detection immediately ends threat detection after blocking a request that meets Precise Protection specified conditions.
hosts	Array	Specifies the domain IDs.
timestamp	Long	Specifies the time when a policy is created.

**Table 6** **action**¶
Parameter	Type	Description
category	String	Specifies the protective action. block: WAF blocks and logs detected attacks. log: WAF logs detected attacks only.

**Table 7** **options**¶
Parameter	Type	Description
webattack	Boolean	Specifies whether Basic Web Protection is enabled. true: enabled. false: disabled.
common	Boolean	Specifies whether General Check in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler	Boolean	Specifies whether the master crawler detection switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_engine	Boolean	Specifies whether the Search Engine switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_scanner	Boolean	Specifies whether the Scanner switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_script	Boolean	Specifies whether the Script Tool switch in Basic Web Protection is enabled. true: enabled. false: disabled.
crawler_other	Boolean	Specifies whether detection of other crawlers in Basic Web Protection is enabled. true: enabled. false: disabled.
webshell	Boolean	Specifies whether webshell detection in Basic Web Protection is enabled. true: enabled. false: disabled.
cc	Boolean	Specifies whether CC Attack Protection is enabled. true: enabled. false: disabled.
custom	Boolean	Specifies whether Precise Protection is enabled. true: enabled. false: disabled.
whiteblackip	Boolean	Specifies whether Blacklist and Whitelist is enabled. true: enabled. false: disabled.
privacy	Boolean	Specifies whether Data Masking is enabled. true: enabled. false: disabled.
Ignore	Boolean	Specifies whether False Alarm Masking is enabled. true: enabled. false: disabled.
antitamper	Boolean	Specifies whether Web Tamper Protection is enabled. true: enabled. false: disabled.

Examples¶

A policy named policy_1 is used as an example.

Request example

{
          "name": "policy_1",
          "action": {
              "category": "block"
           },
           "options": {
               "webattack": true,
               "common": true,
               "crawler": true,
               "crawler_engine": true,
               "crawler_scanner": true,
               "crawler_script": true,
               "crawler_other": true,
               "webshell": true,
               "cc": true,
               "custom": true,
               "whiteblackip": true,
               "ignore": true,
               "privacy": true,
               "antitamper": true
            },
           "level": 1,
           "full_detection": false
}

Response example

{
          "id": "xxxxxxxxxxxxxxxxxxxxxxxxx",
          "name": "policy_1",
          "action": {
              "category": "block"
           },
           "options": {
               "webattack": true,
               "common": true,
               "crawler": true,
               "crawler_engine": true,
               "crawler_scanner": true,
               "crawler_script": true,
               "crawler_other": true,
               "webshell": true,
               "cc": true,
               "custom": true,
               "whiteblackip": true,
               "ignore": true,
               "privacy": true,
               "antitamper": true
            },
           "level": 1,
           "full_detection": false,
           "hosts": [],
           "timestamp": 1499817612
}

Status Code¶

Table 8 describes the normal status code returned by the API.

**Table 8** Status code¶
Status Code	Description	Meaning
200	OK	The request has succeeded.

For details about error status codes, see Status Codes.

last updated: 2024-04-20 02:29