From 142b8794721fed01606e22b821faebacea031736 Mon Sep 17 00:00:00 2001 From: gjoranv Date: Wed, 27 Jul 2022 00:38:07 +0200 Subject: Move rule-based-filter config to configdefinitions module/bundle .. to remove import-package from config-model to jdisc-security-filters. - Keep the old config def for a while in case it's needed by hosted Vespa config models. --- .../vespa/config/jdisc/http/filter/package-info.java | 5 +++++ ...p.filter.security.rule.config.rule-based-filter.def | 18 ++++++++++++++++++ 2 files changed, 23 insertions(+) create mode 100644 configdefinitions/src/main/java/com/yahoo/vespa/config/jdisc/http/filter/package-info.java create mode 100644 configdefinitions/src/vespa/jdisc.http.filter.security.rule.config.rule-based-filter.def (limited to 'configdefinitions') diff --git a/configdefinitions/src/main/java/com/yahoo/vespa/config/jdisc/http/filter/package-info.java b/configdefinitions/src/main/java/com/yahoo/vespa/config/jdisc/http/filter/package-info.java new file mode 100644 index 00000000000..9dcdc2504d1 --- /dev/null +++ b/configdefinitions/src/main/java/com/yahoo/vespa/config/jdisc/http/filter/package-info.java @@ -0,0 +1,5 @@ +// Copyright Yahoo. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root. +@ExportPackage +package com.yahoo.vespa.config.jdisc.http.filter; + +import com.yahoo.osgi.annotation.ExportPackage; diff --git a/configdefinitions/src/vespa/jdisc.http.filter.security.rule.config.rule-based-filter.def b/configdefinitions/src/vespa/jdisc.http.filter.security.rule.config.rule-based-filter.def new file mode 100644 index 00000000000..3fe850908dc --- /dev/null +++ b/configdefinitions/src/vespa/jdisc.http.filter.security.rule.config.rule-based-filter.def @@ -0,0 +1,18 @@ +# Copyright Yahoo. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root. +package=com.yahoo.vespa.config.jdisc.http.filter + +dryrun bool default=false +defaultRule.action enum { ALLOW, BLOCK } +defaultRule.blockResponseCode int default=403 +defaultRule.blockResponseMessage string default="" +defaultRule.blockResponseHeaders[].name string +defaultRule.blockResponseHeaders[].value string +rule[].name string +rule[].action enum { ALLOW, BLOCK } +rule[].hostNames[] string +rule[].methods[] enum { GET, POST, PUT, PATCH, DELETE } +rule[].pathExpressions[] string +rule[].blockResponseCode int default=403 +rule[].blockResponseMessage string default="" +rule[].blockResponseHeaders[].name string +rule[].blockResponseHeaders[].value string -- cgit v1.2.3