import { APIResource } from "../../resource.js"; import * as Core from "../../core.js"; import * as RulesAPI from "./rules.js"; import * as RulesetsAPI from "./rulesets.js"; export declare class Rules extends APIResource { /** * Adds a new rule to an account or zone ruleset. The rule will be added to the end * of the existing list of rules in the ruleset by default. * * @example * ```ts * const rule = await client.rulesets.rules.create( * '2f2feab2026849078ba485f918791bdc', * { account_id: 'account_id' }, * ); * ``` */ create(rulesetId: string, params: RuleCreateParams, options?: Core.RequestOptions): Core.APIPromise; /** * Deletes an existing rule from an account or zone ruleset. * * @example * ```ts * const rule = await client.rulesets.rules.delete( * '2f2feab2026849078ba485f918791bdc', * '3a03d665bac047339bb530ecb439a90d', * { account_id: 'account_id' }, * ); * ``` */ delete(rulesetId: string, ruleId: string, params?: RuleDeleteParams, options?: Core.RequestOptions): Core.APIPromise; delete(rulesetId: string, ruleId: string, options?: Core.RequestOptions): Core.APIPromise; /** * Updates an existing rule in an account or zone ruleset. * * @example * ```ts * const response = await client.rulesets.rules.edit( * '2f2feab2026849078ba485f918791bdc', * '3a03d665bac047339bb530ecb439a90d', * { account_id: 'account_id' }, * ); * ``` */ edit(rulesetId: string, ruleId: string, params: RuleEditParams, options?: Core.RequestOptions): Core.APIPromise; } export interface BlockRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'block'; /** * The parameters configuring the rule's action. */ action_parameters?: BlockRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: BlockRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: BlockRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace BlockRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The response to show when the block is applied. */ response?: ActionParameters.Response; } namespace ActionParameters { /** * The response to show when the block is applied. */ interface Response { /** * The content to return. */ content: string; /** * The type of the content to return. */ content_type: string; /** * The status code to return. */ status_code: number; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface BlockRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'block'; /** * The parameters configuring the rule's action. */ action_parameters?: BlockRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: BlockRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: BlockRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace BlockRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The response to show when the block is applied. */ response?: ActionParameters.Response; } namespace ActionParameters { /** * The response to show when the block is applied. */ interface Response { /** * The content to return. */ content: string; /** * The type of the content to return. */ content_type: string; /** * The status code to return. */ status_code: number; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface CompressResponseRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'compress_response'; /** * The parameters configuring the rule's action. */ action_parameters?: CompressResponseRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: CompressResponseRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: CompressResponseRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace CompressResponseRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Custom order for compression algorithms. */ algorithms: Array; } namespace ActionParameters { /** * Compression algorithm to enable. */ interface Algorithm { /** * Name of the compression algorithm to enable. */ name?: 'none' | 'auto' | 'default' | 'gzip' | 'brotli' | 'zstd'; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface CompressResponseRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'compress_response'; /** * The parameters configuring the rule's action. */ action_parameters?: CompressResponseRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: CompressResponseRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: CompressResponseRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace CompressResponseRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Custom order for compression algorithms. */ algorithms: Array; } namespace ActionParameters { /** * Compression algorithm to enable. */ interface Algorithm { /** * Name of the compression algorithm to enable. */ name?: 'none' | 'auto' | 'default' | 'gzip' | 'brotli' | 'zstd'; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface DDoSDynamicRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'ddos_dynamic'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: DDoSDynamicRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: DDoSDynamicRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace DDoSDynamicRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface DDoSDynamicRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'ddos_dynamic'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: DDoSDynamicRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: DDoSDynamicRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace DDoSDynamicRuleParam { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ExecuteRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'execute'; /** * The parameters configuring the rule's action. */ action_parameters?: ExecuteRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ExecuteRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ExecuteRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ExecuteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The ID of the ruleset to execute. */ id: string; /** * The configuration to use for matched data logging. */ matched_data?: ActionParameters.MatchedData; /** * A set of overrides to apply to the target ruleset. */ overrides?: ActionParameters.Overrides; } namespace ActionParameters { /** * The configuration to use for matched data logging. */ interface MatchedData { /** * The public key to encrypt matched data logs with. */ public_key: string; } /** * A set of overrides to apply to the target ruleset. */ interface Overrides { /** * An action to override all rules with. This option has lower precedence than rule * and category overrides. */ action?: string; /** * A list of category-level overrides. This option has the second-highest * precedence after rule-level overrides. */ categories?: Array; /** * Whether to enable execution of all rules. This option has lower precedence than * rule and category overrides. */ enabled?: boolean; /** * A list of rule-level overrides. This option has the highest precedence. */ rules?: Array; /** * A sensitivity level to set for all rules. This option has lower precedence than * rule and category overrides and is only applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } namespace Overrides { /** * A category-level override. */ interface Category { /** * The name of the category to override. */ category: string; /** * The action to override rules in the category with. */ action?: string; /** * Whether to enable execution of rules in the category. */ enabled?: boolean; /** * The sensitivity level to use for rules in the category. This option is only * applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } /** * A rule-level override. */ interface Rule { /** * The ID of the rule to override. */ id: string; /** * The action to override the rule with. */ action?: string; /** * Whether to enable execution of the rule. */ enabled?: boolean; /** * The score threshold to use for the rule. */ score_threshold?: number; /** * The sensitivity level to use for the rule. This option is only applicable for * DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ExecuteRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'execute'; /** * The parameters configuring the rule's action. */ action_parameters?: ExecuteRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ExecuteRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ExecuteRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ExecuteRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The ID of the ruleset to execute. */ id: string; /** * The configuration to use for matched data logging. */ matched_data?: ActionParameters.MatchedData; /** * A set of overrides to apply to the target ruleset. */ overrides?: ActionParameters.Overrides; } namespace ActionParameters { /** * The configuration to use for matched data logging. */ interface MatchedData { /** * The public key to encrypt matched data logs with. */ public_key: string; } /** * A set of overrides to apply to the target ruleset. */ interface Overrides { /** * An action to override all rules with. This option has lower precedence than rule * and category overrides. */ action?: string; /** * A list of category-level overrides. This option has the second-highest * precedence after rule-level overrides. */ categories?: Array; /** * Whether to enable execution of all rules. This option has lower precedence than * rule and category overrides. */ enabled?: boolean; /** * A list of rule-level overrides. This option has the highest precedence. */ rules?: Array; /** * A sensitivity level to set for all rules. This option has lower precedence than * rule and category overrides and is only applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } namespace Overrides { /** * A category-level override. */ interface Category { /** * The name of the category to override. */ category: string; /** * The action to override rules in the category with. */ action?: string; /** * Whether to enable execution of rules in the category. */ enabled?: boolean; /** * The sensitivity level to use for rules in the category. This option is only * applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } /** * A rule-level override. */ interface Rule { /** * The ID of the rule to override. */ id: string; /** * The action to override the rule with. */ action?: string; /** * Whether to enable execution of the rule. */ enabled?: boolean; /** * The score threshold to use for the rule. */ score_threshold?: number; /** * The sensitivity level to use for the rule. This option is only applicable for * DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ForceConnectionCloseRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'force_connection_close'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ForceConnectionCloseRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ForceConnectionCloseRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ForceConnectionCloseRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ForceConnectionCloseRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'force_connection_close'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ForceConnectionCloseRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ForceConnectionCloseRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ForceConnectionCloseRuleParam { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface LogCustomFieldRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'log_custom_field'; /** * The parameters configuring the rule's action. */ action_parameters?: LogCustomFieldRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: LogCustomFieldRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: LogCustomFieldRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace LogCustomFieldRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The cookie fields to log. */ cookie_fields?: Array; /** * The raw response fields to log. */ raw_response_fields?: Array; /** * The raw request fields to log. */ request_fields?: Array; /** * The transformed response fields to log. */ response_fields?: Array; /** * The transformed request fields to log. */ transformed_request_fields?: Array; } namespace ActionParameters { /** * The cookie field to log. */ interface CookieField { /** * The name of the cookie. */ name: string; } /** * The raw response field to log. */ interface RawResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The raw request field to log. */ interface RequestField { /** * The name of the header. */ name: string; } /** * The transformed response field to log. */ interface ResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The transformed request field to log. */ interface TransformedRequestField { /** * The name of the header. */ name: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface LogCustomFieldRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'log_custom_field'; /** * The parameters configuring the rule's action. */ action_parameters?: LogCustomFieldRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: LogCustomFieldRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: LogCustomFieldRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace LogCustomFieldRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The cookie fields to log. */ cookie_fields?: Array; /** * The raw response fields to log. */ raw_response_fields?: Array; /** * The raw request fields to log. */ request_fields?: Array; /** * The transformed response fields to log. */ response_fields?: Array; /** * The transformed request fields to log. */ transformed_request_fields?: Array; } namespace ActionParameters { /** * The cookie field to log. */ interface CookieField { /** * The name of the cookie. */ name: string; } /** * The raw response field to log. */ interface RawResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The raw request field to log. */ interface RequestField { /** * The name of the header. */ name: string; } /** * The transformed response field to log. */ interface ResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The transformed request field to log. */ interface TransformedRequestField { /** * The name of the header. */ name: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface LogRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'log'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: LogRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: LogRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace LogRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface LogRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'log'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: LogRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: LogRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace LogRuleParam { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } /** * An object configuring the rule's logging behavior. */ export interface Logging { /** * Whether to generate a log when the rule matches. */ enabled: boolean; } /** * An object configuring the rule's logging behavior. */ export interface LoggingParam { /** * Whether to generate a log when the rule matches. */ enabled: boolean; } export interface ManagedChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'managed_challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ManagedChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ManagedChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ManagedChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ManagedChallengeRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'managed_challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ManagedChallengeRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ManagedChallengeRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ManagedChallengeRuleParam { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RedirectRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'redirect'; /** * The parameters configuring the rule's action. */ action_parameters?: RedirectRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RedirectRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RedirectRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RedirectRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A redirect based on a bulk list lookup. */ from_list?: ActionParameters.FromList; /** * A redirect based on the request properties. */ from_value?: ActionParameters.FromValue; } namespace ActionParameters { /** * A redirect based on a bulk list lookup. */ interface FromList { /** * An expression that evaluates to the list lookup key. */ key: string; /** * The name of the list to match against. */ name: string; } /** * A redirect based on the request properties. */ interface FromValue { /** * A URL to redirect the request to. */ target_url: FromValue.TargetURL; /** * Whether to keep the query string of the original request. */ preserve_query_string?: boolean; /** * The status code to use for the redirect. */ status_code?: 301 | 302 | 303 | 307 | 308; } namespace FromValue { /** * A URL to redirect the request to. */ interface TargetURL { /** * An expression that evaluates to a URL to redirect the request to. */ expression?: string; /** * A URL to redirect the request to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RedirectRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'redirect'; /** * The parameters configuring the rule's action. */ action_parameters?: RedirectRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RedirectRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RedirectRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RedirectRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A redirect based on a bulk list lookup. */ from_list?: ActionParameters.FromList; /** * A redirect based on the request properties. */ from_value?: ActionParameters.FromValue; } namespace ActionParameters { /** * A redirect based on a bulk list lookup. */ interface FromList { /** * An expression that evaluates to the list lookup key. */ key: string; /** * The name of the list to match against. */ name: string; } /** * A redirect based on the request properties. */ interface FromValue { /** * A URL to redirect the request to. */ target_url: FromValue.TargetURL; /** * Whether to keep the query string of the original request. */ preserve_query_string?: boolean; /** * The status code to use for the redirect. */ status_code?: 301 | 302 | 303 | 307 | 308; } namespace FromValue { /** * A URL to redirect the request to. */ interface TargetURL { /** * An expression that evaluates to a URL to redirect the request to. */ expression?: string; /** * A URL to redirect the request to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RewriteRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'rewrite'; /** * The parameters configuring the rule's action. */ action_parameters?: RewriteRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RewriteRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RewriteRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RewriteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A map of headers to rewrite. */ headers?: { [key: string]: ActionParameters.AddStaticHeader | ActionParameters.AddDynamicHeader | ActionParameters.SetStaticHeader | ActionParameters.SetDynamicHeader | ActionParameters.RemoveHeader; }; /** * A URI path rewrite. */ uri?: ActionParameters.URIPath | ActionParameters.URIQuery; } namespace ActionParameters { /** * A header with a static value to add. */ interface AddStaticHeader { /** * The operation to perform on the header. */ operation: 'add'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to add. */ interface AddDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'add'; } /** * A header with a static value to set. */ interface SetStaticHeader { /** * The operation to perform on the header. */ operation: 'set'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to set. */ interface SetDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'set'; } /** * A header to remove. */ interface RemoveHeader { /** * The operation to perform on the header. */ operation: 'remove'; } /** * A URI path rewrite. */ interface URIPath { /** * A URI path rewrite. */ path: URIPath.Path; /** * Whether to propagate the rewritten URI to origin. */ origin?: boolean; } namespace URIPath { /** * A URI path rewrite. */ interface Path { /** * An expression that evaluates to a value to rewrite the URI path to. */ expression?: string; /** * A value to rewrite the URI path to. */ value?: string; } } /** * A URI query rewrite. */ interface URIQuery { /** * A URI query rewrite. */ query: URIQuery.Query; /** * Whether to propagate the rewritten URI to origin. */ origin?: boolean; } namespace URIQuery { /** * A URI query rewrite. */ interface Query { /** * An expression that evaluates to a value to rewrite the URI query to. */ expression?: string; /** * A value to rewrite the URI query to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RewriteRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'rewrite'; /** * The parameters configuring the rule's action. */ action_parameters?: RewriteRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RewriteRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RewriteRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RewriteRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A map of headers to rewrite. */ headers?: { [key: string]: ActionParameters.AddStaticHeader | ActionParameters.AddDynamicHeader | ActionParameters.SetStaticHeader | ActionParameters.SetDynamicHeader | ActionParameters.RemoveHeader; }; /** * A URI path rewrite. */ uri?: ActionParameters.URIPath | ActionParameters.URIQuery; } namespace ActionParameters { /** * A header with a static value to add. */ interface AddStaticHeader { /** * The operation to perform on the header. */ operation: 'add'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to add. */ interface AddDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'add'; } /** * A header with a static value to set. */ interface SetStaticHeader { /** * The operation to perform on the header. */ operation: 'set'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to set. */ interface SetDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'set'; } /** * A header to remove. */ interface RemoveHeader { /** * The operation to perform on the header. */ operation: 'remove'; } /** * A URI path rewrite. */ interface URIPath { /** * A URI path rewrite. */ path: URIPath.Path; } namespace URIPath { /** * A URI path rewrite. */ interface Path { /** * An expression that evaluates to a value to rewrite the URI path to. */ expression?: string; /** * A value to rewrite the URI path to. */ value?: string; } } /** * A URI query rewrite. */ interface URIQuery { /** * A URI query rewrite. */ query: URIQuery.Query; } namespace URIQuery { /** * A URI query rewrite. */ interface Query { /** * An expression that evaluates to a value to rewrite the URI query to. */ expression?: string; /** * A value to rewrite the URI query to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RouteRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'route'; /** * The parameters configuring the rule's action. */ action_parameters?: RouteRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RouteRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RouteRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RouteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A value to rewrite the HTTP host header to. */ host_header?: string; /** * An origin to route to. */ origin?: ActionParameters.Origin; /** * A Server Name Indication (SNI) override. */ sni?: ActionParameters.SNI; } namespace ActionParameters { /** * An origin to route to. */ interface Origin { /** * A resolved host to route to. */ host?: string; /** * A destination port to route to. */ port?: number; } /** * A Server Name Indication (SNI) override. */ interface SNI { /** * A value to override the SNI to. */ value: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RouteRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'route'; /** * The parameters configuring the rule's action. */ action_parameters?: RouteRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RouteRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RouteRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RouteRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A value to rewrite the HTTP host header to. */ host_header?: string; /** * An origin to route to. */ origin?: ActionParameters.Origin; /** * A Server Name Indication (SNI) override. */ sni?: ActionParameters.SNI; } namespace ActionParameters { /** * An origin to route to. */ interface Origin { /** * A resolved host to route to. */ host?: string; /** * A destination port to route to. */ port?: number; } /** * A Server Name Indication (SNI) override. */ interface SNI { /** * A value to override the SNI to. */ value: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface RulesetRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: string; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace RulesetRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ScoreRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'score'; /** * The parameters configuring the rule's action. */ action_parameters?: ScoreRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ScoreRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ScoreRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ScoreRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A delta to change the score by, which can be either positive or negative. */ increment: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ScoreRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'score'; /** * The parameters configuring the rule's action. */ action_parameters?: ScoreRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ScoreRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ScoreRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ScoreRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A delta to change the score by, which can be either positive or negative. */ increment: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ServeErrorRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'serve_error'; /** * The parameters configuring the rule's action. */ action_parameters?: ServeErrorRule.ActionParametersContent | ServeErrorRule.ActionParametersAsset; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ServeErrorRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ServeErrorRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ServeErrorRule { interface ActionParametersContent { /** * The response content. */ content: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } interface ActionParametersAsset { /** * The name of a custom asset to serve as the error response. */ asset_name: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface ServeErrorRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'serve_error'; /** * The parameters configuring the rule's action. */ action_parameters?: ServeErrorRuleParam.ActionParametersContent | ServeErrorRuleParam.ActionParametersAsset; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: ServeErrorRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: ServeErrorRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace ServeErrorRuleParam { interface ActionParametersContent { /** * The response content. */ content: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } interface ActionParametersAsset { /** * The name of a custom asset to serve as the error response. */ asset_name: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SetCacheSettingsRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'set_cache_settings'; /** * The parameters configuring the rule's action. */ action_parameters?: SetCacheSettingsRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SetCacheSettingsRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SetCacheSettingsRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SetCacheSettingsRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A list of additional ports that caching should be enabled on. */ additional_cacheable_ports?: Array; /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ browser_ttl?: ActionParameters.BrowserTTL; /** * Whether the request's response from the origin is eligible for caching. Caching * itself will still depend on the cache control header and your other caching * configurations. */ cache?: boolean; /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ cache_key?: ActionParameters.CacheKey; /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ cache_reserve?: ActionParameters.CacheReserve; /** * How long the Cloudflare edge network should cache the response. */ edge_ttl?: ActionParameters.EdgeTTL; /** * Whether Cloudflare will aim to strictly adhere to RFC 7234. */ origin_cache_control?: boolean; /** * Whether to generate Cloudflare error pages for issues from the origin server. */ origin_error_page_passthru?: boolean; /** * A timeout value between two successive read operations to use for your origin * server. Historically, the timeout value between two read options from Cloudflare * to an origin server is 100 seconds. If you are attempting to reduce HTTP 524 * errors because of timeouts from an origin server, try increasing this timeout * value. */ read_timeout?: number; /** * Whether Cloudflare should respect strong ETag (entity tag) headers. If false, * Cloudflare converts strong ETag headers to weak ETag headers. */ respect_strong_etags?: boolean; /** * When to serve stale content from cache. */ serve_stale?: ActionParameters.ServeStale; } namespace ActionParameters { /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ interface BrowserTTL { /** * The browser TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin' | 'bypass'; /** * The browser TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; } /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ interface CacheKey { /** * Whether to separate cached content based on the visitor's device type. */ cache_by_device_type?: boolean; /** * Whether to protect from web cache deception attacks, while allowing static * assets to be cached. */ cache_deception_armor?: boolean; /** * Which components of the request are included or excluded from the cache key. */ custom_key?: CacheKey.CustomKey; /** * Whether to treat requests with the same query parameters the same, regardless of * the order those query parameters are in. */ ignore_query_strings_order?: boolean; } namespace CacheKey { /** * Which components of the request are included or excluded from the cache key. */ interface CustomKey { /** * Which cookies to include in the cache key. */ cookie?: CustomKey.Cookie; /** * Which headers to include in the cache key. */ header?: CustomKey.Header; /** * How to use the host in the cache key. */ host?: CustomKey.Host; /** * Which query string parameters to include in or exclude from the cache key. */ query_string?: CustomKey.QueryString; /** * How to use characteristics of the request user agent in the cache key. */ user?: CustomKey.User; } namespace CustomKey { /** * Which cookies to include in the cache key. */ interface Cookie { /** * A list of cookies to check for the presence of. The presence of these cookies is * included in the cache key. */ check_presence?: Array; /** * A list of cookies to include in the cache key. */ include?: Array; } /** * Which headers to include in the cache key. */ interface Header { /** * A list of headers to check for the presence of. The presence of these headers is * included in the cache key. */ check_presence?: Array; /** * A mapping of header names to a list of values. If a header is present in the * request and contains any of the values provided, its value is included in the * cache key. */ contains?: { [key: string]: Array; }; /** * Whether to exclude the origin header in the cache key. */ exclude_origin?: boolean; /** * A list of headers to include in the cache key. */ include?: Array; } /** * How to use the host in the cache key. */ interface Host { /** * Whether to use the resolved host in the cache key. */ resolved?: boolean; } /** * Which query string parameters to include in or exclude from the cache key. */ interface QueryString { /** * Which query string parameters to exclude from the cache key. */ exclude?: QueryString.Exclude; /** * Which query string parameters to include in the cache key. */ include?: QueryString.Include; } namespace QueryString { /** * Which query string parameters to exclude from the cache key. */ interface Exclude { /** * Whether to exclude all query string parameters from the cache key. */ all?: true; /** * A list of query string parameters to exclude from the cache key. */ list?: Array; } /** * Which query string parameters to include in the cache key. */ interface Include { /** * Whether to include all query string parameters in the cache key. */ all?: true; /** * A list of query string parameters to include in the cache key. */ list?: Array; } } /** * How to use characteristics of the request user agent in the cache key. */ interface User { /** * Whether to use the user agent's device type in the cache key. */ device_type?: boolean; /** * Whether to use the user agents's country in the cache key. */ geo?: boolean; /** * Whether to use the user agent's language in the cache key. */ lang?: boolean; } } } /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ interface CacheReserve { /** * Whether Cache Reserve is enabled. If this is true and a request meets * eligibility criteria, Cloudflare will write the resource to Cache Reserve. */ eligible: boolean; /** * The minimum file size eligible for storage in Cache Reserve. */ minimum_file_size?: number; } /** * How long the Cloudflare edge network should cache the response. */ interface EdgeTTL { /** * The edge TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin'; /** * The edge TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; /** * A list of TTLs to apply to specific status codes or status code ranges. */ status_code_ttl?: Array; } namespace EdgeTTL { interface StatusCodeTTL { /** * The time to cache the response for (in seconds). A value of 0 is equivalent to * setting the cache control header with the value "no-cache". A value of -1 is * equivalent to setting the cache control header with the value of "no-store". */ value: number; /** * A single status code to apply the TTL to. */ status_code?: number; /** * A range of status codes to apply the TTL to. */ status_code_range?: StatusCodeTTL.StatusCodeRange; } namespace StatusCodeTTL { /** * A range of status codes to apply the TTL to. */ interface StatusCodeRange { /** * The lower bound of the range. */ from?: number; /** * The upper bound of the range. */ to?: number; } } } /** * When to serve stale content from cache. */ interface ServeStale { /** * Whether Cloudflare should disable serving stale content while getting the latest * content from the origin. */ disable_stale_while_updating?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SetCacheSettingsRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'set_cache_settings'; /** * The parameters configuring the rule's action. */ action_parameters?: SetCacheSettingsRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SetCacheSettingsRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SetCacheSettingsRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SetCacheSettingsRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A list of additional ports that caching should be enabled on. */ additional_cacheable_ports?: Array; /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ browser_ttl?: ActionParameters.BrowserTTL; /** * Whether the request's response from the origin is eligible for caching. Caching * itself will still depend on the cache control header and your other caching * configurations. */ cache?: boolean; /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ cache_key?: ActionParameters.CacheKey; /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ cache_reserve?: ActionParameters.CacheReserve; /** * How long the Cloudflare edge network should cache the response. */ edge_ttl?: ActionParameters.EdgeTTL; /** * Whether Cloudflare will aim to strictly adhere to RFC 7234. */ origin_cache_control?: boolean; /** * Whether to generate Cloudflare error pages for issues from the origin server. */ origin_error_page_passthru?: boolean; /** * A timeout value between two successive read operations to use for your origin * server. Historically, the timeout value between two read options from Cloudflare * to an origin server is 100 seconds. If you are attempting to reduce HTTP 524 * errors because of timeouts from an origin server, try increasing this timeout * value. */ read_timeout?: number; /** * Whether Cloudflare should respect strong ETag (entity tag) headers. If false, * Cloudflare converts strong ETag headers to weak ETag headers. */ respect_strong_etags?: boolean; /** * When to serve stale content from cache. */ serve_stale?: ActionParameters.ServeStale; } namespace ActionParameters { /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ interface BrowserTTL { /** * The browser TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin' | 'bypass'; /** * The browser TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; } /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ interface CacheKey { /** * Whether to separate cached content based on the visitor's device type. */ cache_by_device_type?: boolean; /** * Whether to protect from web cache deception attacks, while allowing static * assets to be cached. */ cache_deception_armor?: boolean; /** * Which components of the request are included or excluded from the cache key. */ custom_key?: CacheKey.CustomKey; /** * Whether to treat requests with the same query parameters the same, regardless of * the order those query parameters are in. */ ignore_query_strings_order?: boolean; } namespace CacheKey { /** * Which components of the request are included or excluded from the cache key. */ interface CustomKey { /** * Which cookies to include in the cache key. */ cookie?: CustomKey.Cookie; /** * Which headers to include in the cache key. */ header?: CustomKey.Header; /** * How to use the host in the cache key. */ host?: CustomKey.Host; /** * Which query string parameters to include in or exclude from the cache key. */ query_string?: CustomKey.QueryString; /** * How to use characteristics of the request user agent in the cache key. */ user?: CustomKey.User; } namespace CustomKey { /** * Which cookies to include in the cache key. */ interface Cookie { /** * A list of cookies to check for the presence of. The presence of these cookies is * included in the cache key. */ check_presence?: Array; /** * A list of cookies to include in the cache key. */ include?: Array; } /** * Which headers to include in the cache key. */ interface Header { /** * A list of headers to check for the presence of. The presence of these headers is * included in the cache key. */ check_presence?: Array; /** * A mapping of header names to a list of values. If a header is present in the * request and contains any of the values provided, its value is included in the * cache key. */ contains?: { [key: string]: Array; }; /** * Whether to exclude the origin header in the cache key. */ exclude_origin?: boolean; /** * A list of headers to include in the cache key. */ include?: Array; } /** * How to use the host in the cache key. */ interface Host { /** * Whether to use the resolved host in the cache key. */ resolved?: boolean; } /** * Which query string parameters to include in or exclude from the cache key. */ interface QueryString { /** * Which query string parameters to exclude from the cache key. */ exclude?: QueryString.Exclude; /** * Which query string parameters to include in the cache key. */ include?: QueryString.Include; } namespace QueryString { /** * Which query string parameters to exclude from the cache key. */ interface Exclude { /** * Whether to exclude all query string parameters from the cache key. */ all?: true; /** * A list of query string parameters to exclude from the cache key. */ list?: Array; } /** * Which query string parameters to include in the cache key. */ interface Include { /** * Whether to include all query string parameters in the cache key. */ all?: true; /** * A list of query string parameters to include in the cache key. */ list?: Array; } } /** * How to use characteristics of the request user agent in the cache key. */ interface User { /** * Whether to use the user agent's device type in the cache key. */ device_type?: boolean; /** * Whether to use the user agents's country in the cache key. */ geo?: boolean; /** * Whether to use the user agent's language in the cache key. */ lang?: boolean; } } } /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ interface CacheReserve { /** * Whether Cache Reserve is enabled. If this is true and a request meets * eligibility criteria, Cloudflare will write the resource to Cache Reserve. */ eligible: boolean; /** * The minimum file size eligible for storage in Cache Reserve. */ minimum_file_size?: number; } /** * How long the Cloudflare edge network should cache the response. */ interface EdgeTTL { /** * The edge TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin'; /** * The edge TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; /** * A list of TTLs to apply to specific status codes or status code ranges. */ status_code_ttl?: Array; } namespace EdgeTTL { interface StatusCodeTTL { /** * The time to cache the response for (in seconds). A value of 0 is equivalent to * setting the cache control header with the value "no-cache". A value of -1 is * equivalent to setting the cache control header with the value of "no-store". */ value: number; /** * A single status code to apply the TTL to. */ status_code?: number; /** * A range of status codes to apply the TTL to. */ status_code_range?: StatusCodeTTL.StatusCodeRange; } namespace StatusCodeTTL { /** * A range of status codes to apply the TTL to. */ interface StatusCodeRange { /** * The lower bound of the range. */ from?: number; /** * The upper bound of the range. */ to?: number; } } } /** * When to serve stale content from cache. */ interface ServeStale { /** * Whether Cloudflare should disable serving stale content while getting the latest * content from the origin. */ disable_stale_while_updating?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SetConfigRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'set_config'; /** * The parameters configuring the rule's action. */ action_parameters?: SetConfigRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SetConfigRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SetConfigRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SetConfigRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Whether to enable Automatic HTTPS Rewrites. */ automatic_https_rewrites?: boolean; /** * Which file extensions to minify automatically. */ autominify?: ActionParameters.Autominify; /** * Whether to enable Browser Integrity Check (BIC). */ bic?: boolean; /** * Whether to disable Cloudflare Apps. */ disable_apps?: true; /** * Whether to disable Pay Per Crawl. */ disable_pay_per_crawl?: true; /** * Whether to disable Real User Monitoring (RUM). */ disable_rum?: true; /** * Whether to disable Zaraz. */ disable_zaraz?: true; /** * Whether to enable Email Obfuscation. */ email_obfuscation?: boolean; /** * Whether to enable Cloudflare Fonts. */ fonts?: boolean; /** * Whether to enable Hotlink Protection. */ hotlink_protection?: boolean; /** * Whether to enable Mirage. */ mirage?: boolean; /** * Whether to enable Opportunistic Encryption. */ opportunistic_encryption?: boolean; /** * The Polish level to configure. */ polish?: 'off' | 'lossless' | 'lossy' | 'webp'; /** * Whether to enable Rocket Loader. */ rocket_loader?: boolean; /** * The Security Level to configure. */ security_level?: 'off' | 'essentially_off' | 'low' | 'medium' | 'high' | 'under_attack'; /** * Whether to enable Server-Side Excludes. */ server_side_excludes?: boolean; /** * The SSL level to configure. */ ssl?: 'off' | 'flexible' | 'full' | 'strict' | 'origin_pull'; /** * Whether to enable Signed Exchanges (SXG). */ sxg?: boolean; } namespace ActionParameters { /** * Which file extensions to minify automatically. */ interface Autominify { /** * Whether to minify CSS files. */ css?: boolean; /** * Whether to minify HTML files. */ html?: boolean; /** * Whether to minify JavaScript files. */ js?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SetConfigRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'set_config'; /** * The parameters configuring the rule's action. */ action_parameters?: SetConfigRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SetConfigRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SetConfigRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SetConfigRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Whether to enable Automatic HTTPS Rewrites. */ automatic_https_rewrites?: boolean; /** * Which file extensions to minify automatically. */ autominify?: ActionParameters.Autominify; /** * Whether to enable Browser Integrity Check (BIC). */ bic?: boolean; /** * Whether to disable Cloudflare Apps. */ disable_apps?: true; /** * Whether to disable Pay Per Crawl. */ disable_pay_per_crawl?: true; /** * Whether to disable Real User Monitoring (RUM). */ disable_rum?: true; /** * Whether to disable Zaraz. */ disable_zaraz?: true; /** * Whether to enable Email Obfuscation. */ email_obfuscation?: boolean; /** * Whether to enable Cloudflare Fonts. */ fonts?: boolean; /** * Whether to enable Hotlink Protection. */ hotlink_protection?: boolean; /** * Whether to enable Mirage. */ mirage?: boolean; /** * Whether to enable Opportunistic Encryption. */ opportunistic_encryption?: boolean; /** * The Polish level to configure. */ polish?: 'off' | 'lossless' | 'lossy' | 'webp'; /** * Whether to enable Rocket Loader. */ rocket_loader?: boolean; /** * The Security Level to configure. */ security_level?: 'off' | 'essentially_off' | 'low' | 'medium' | 'high' | 'under_attack'; /** * Whether to enable Server-Side Excludes. */ server_side_excludes?: boolean; /** * The SSL level to configure. */ ssl?: 'off' | 'flexible' | 'full' | 'strict' | 'origin_pull'; /** * Whether to enable Signed Exchanges (SXG). */ sxg?: boolean; } namespace ActionParameters { /** * Which file extensions to minify automatically. */ interface Autominify { /** * Whether to minify CSS files. */ css?: boolean; /** * Whether to minify HTML files. */ html?: boolean; /** * Whether to minify JavaScript files. */ js?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SkipRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'skip'; /** * The parameters configuring the rule's action. */ action_parameters?: SkipRule.ActionParameters; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SkipRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SkipRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SkipRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A phase to skip the execution of. This option is only compatible with the * products option. */ phase?: 'current'; /** * A list of phases to skip the execution of. This option is incompatible with the * rulesets option. */ phases?: Array; /** * A list of legacy security products to skip the execution of. */ products?: Array<'bic' | 'hot' | 'rateLimit' | 'securityLevel' | 'uaBlock' | 'waf' | 'zoneLockdown'>; /** * A mapping of ruleset IDs to a list of rule IDs in that ruleset to skip the * execution of. This option is incompatible with the ruleset option. */ rules?: { [key: string]: Array; }; /** * A ruleset to skip the execution of. This option is incompatible with the * rulesets option. */ ruleset?: 'current'; /** * A list of ruleset IDs to skip the execution of. This option is incompatible with * the ruleset and phases options. */ rulesets?: Array; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } export interface SkipRuleParam { /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'skip'; /** * The parameters configuring the rule's action. */ action_parameters?: SkipRuleParam.ActionParameters; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: SkipRuleParam.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: SkipRuleParam.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } export declare namespace SkipRuleParam { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A phase to skip the execution of. This option is only compatible with the * products option. */ phase?: 'current'; /** * A list of phases to skip the execution of. This option is incompatible with the * rulesets option. */ phases?: Array; /** * A list of legacy security products to skip the execution of. */ products?: Array<'bic' | 'hot' | 'rateLimit' | 'securityLevel' | 'uaBlock' | 'waf' | 'zoneLockdown'>; /** * A mapping of ruleset IDs to a list of rule IDs in that ruleset to skip the * execution of. This option is incompatible with the ruleset option. */ rules?: { [key: string]: Array; }; /** * A ruleset to skip the execution of. This option is incompatible with the * rulesets option. */ ruleset?: 'current'; /** * A list of ruleset IDs to skip the execution of. This option is incompatible with * the ruleset and phases options. */ rulesets?: Array; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } /** * A ruleset object. */ export interface RuleCreateResponse { /** * The unique ID of the ruleset. */ id: string; /** * The kind of the ruleset. */ kind: RulesetsAPI.Kind; /** * The timestamp of when the ruleset was last modified. */ last_updated: string; /** * The human-readable name of the ruleset. */ name: string; /** * The phase of the ruleset. */ phase: RulesetsAPI.Phase; /** * The list of rules in the ruleset. */ rules: Array; /** * The version of the ruleset. */ version: string; /** * An informative description of the ruleset. */ description?: string; } export declare namespace RuleCreateResponse { interface RulesetsChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RulesetsJSChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'js_challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsJSChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsJSChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsJSChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } } /** * A ruleset object. */ export interface RuleDeleteResponse { /** * The unique ID of the ruleset. */ id: string; /** * The kind of the ruleset. */ kind: RulesetsAPI.Kind; /** * The timestamp of when the ruleset was last modified. */ last_updated: string; /** * The human-readable name of the ruleset. */ name: string; /** * The phase of the ruleset. */ phase: RulesetsAPI.Phase; /** * The list of rules in the ruleset. */ rules: Array; /** * The version of the ruleset. */ version: string; /** * An informative description of the ruleset. */ description?: string; } export declare namespace RuleDeleteResponse { interface RulesetsChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RulesetsJSChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'js_challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsJSChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsJSChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsJSChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } } /** * A ruleset object. */ export interface RuleEditResponse { /** * The unique ID of the ruleset. */ id: string; /** * The kind of the ruleset. */ kind: RulesetsAPI.Kind; /** * The timestamp of when the ruleset was last modified. */ last_updated: string; /** * The human-readable name of the ruleset. */ name: string; /** * The phase of the ruleset. */ phase: RulesetsAPI.Phase; /** * The list of rules in the ruleset. */ rules: Array; /** * The version of the ruleset. */ version: string; /** * An informative description of the ruleset. */ description?: string; } export declare namespace RuleEditResponse { interface RulesetsChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RulesetsJSChallengeRule { /** * The timestamp of when the rule was last modified. */ last_updated: string; /** * The version of the rule. */ version: string; /** * The unique ID of the rule. */ id?: string; /** * The action to perform when the rule matches. */ action?: 'js_challenge'; /** * The parameters configuring the rule's action. */ action_parameters?: unknown; /** * The categories of the rule. */ categories?: Array; /** * An informative description of the rule. */ description?: string; /** * Whether the rule should be executed. */ enabled?: boolean; /** * Configuration for exposed credential checking. */ exposed_credential_check?: RulesetsJSChallengeRule.ExposedCredentialCheck; /** * The expression defining which traffic will match the rule. */ expression?: string; /** * An object configuring the rule's logging behavior. */ logging?: RulesAPI.Logging; /** * An object configuring the rule's rate limit behavior. */ ratelimit?: RulesetsJSChallengeRule.Ratelimit; /** * The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RulesetsJSChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } } export type RuleCreateParams = RuleCreateParams.BlockRule | RuleCreateParams.ChallengeRule | RuleCreateParams.ResponseCompressionRule | RuleCreateParams.DDoSDynamicRule | RuleCreateParams.ExecuteRule | RuleCreateParams.ForceConnectionCloseRule | RuleCreateParams.JavaScriptChallengeRule | RuleCreateParams.LogRule | RuleCreateParams.LogCustomFieldRule | RuleCreateParams.ManagedChallengeRule | RuleCreateParams.RedirectRule | RuleCreateParams.RewriteRule | RuleCreateParams.RouteRule | RuleCreateParams.ScoreRule | RuleCreateParams.ServeErrorRule | RuleCreateParams.SetCacheSettingsRule | RuleCreateParams.SetConfigurationRule | RuleCreateParams.SkipRule; export declare namespace RuleCreateParams { interface BlockRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'block'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: BlockRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: BlockRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: BlockRule.BeforePosition | BlockRule.AfterPosition | BlockRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: BlockRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace BlockRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The response to show when the block is applied. */ response?: ActionParameters.Response; } namespace ActionParameters { /** * The response to show when the block is applied. */ interface Response { /** * The content to return. */ content: string; /** * The type of the content to return. */ content_type: string; /** * The status code to return. */ status_code: number; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ChallengeRule.BeforePosition | ChallengeRule.AfterPosition | ChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ResponseCompressionRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'compress_response'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ResponseCompressionRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ResponseCompressionRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ResponseCompressionRule.BeforePosition | ResponseCompressionRule.AfterPosition | ResponseCompressionRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ResponseCompressionRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ResponseCompressionRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Custom order for compression algorithms. */ algorithms: Array; } namespace ActionParameters { /** * Compression algorithm to enable. */ interface Algorithm { /** * Name of the compression algorithm to enable. */ name?: 'none' | 'auto' | 'default' | 'gzip' | 'brotli' | 'zstd'; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface DDoSDynamicRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'ddos_dynamic'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: DDoSDynamicRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: DDoSDynamicRule.BeforePosition | DDoSDynamicRule.AfterPosition | DDoSDynamicRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: DDoSDynamicRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace DDoSDynamicRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ExecuteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'execute'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ExecuteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ExecuteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ExecuteRule.BeforePosition | ExecuteRule.AfterPosition | ExecuteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ExecuteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ExecuteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The ID of the ruleset to execute. */ id: string; /** * The configuration to use for matched data logging. */ matched_data?: ActionParameters.MatchedData; /** * A set of overrides to apply to the target ruleset. */ overrides?: ActionParameters.Overrides; } namespace ActionParameters { /** * The configuration to use for matched data logging. */ interface MatchedData { /** * The public key to encrypt matched data logs with. */ public_key: string; } /** * A set of overrides to apply to the target ruleset. */ interface Overrides { /** * An action to override all rules with. This option has lower precedence than rule * and category overrides. */ action?: string; /** * A list of category-level overrides. This option has the second-highest * precedence after rule-level overrides. */ categories?: Array; /** * Whether to enable execution of all rules. This option has lower precedence than * rule and category overrides. */ enabled?: boolean; /** * A list of rule-level overrides. This option has the highest precedence. */ rules?: Array; /** * A sensitivity level to set for all rules. This option has lower precedence than * rule and category overrides and is only applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } namespace Overrides { /** * A category-level override. */ interface Category { /** * The name of the category to override. */ category: string; /** * The action to override rules in the category with. */ action?: string; /** * Whether to enable execution of rules in the category. */ enabled?: boolean; /** * The sensitivity level to use for rules in the category. This option is only * applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } /** * A rule-level override. */ interface Rule { /** * The ID of the rule to override. */ id: string; /** * The action to override the rule with. */ action?: string; /** * Whether to enable execution of the rule. */ enabled?: boolean; /** * The score threshold to use for the rule. */ score_threshold?: number; /** * The sensitivity level to use for the rule. This option is only applicable for * DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ForceConnectionCloseRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'force_connection_close'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ForceConnectionCloseRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ForceConnectionCloseRule.BeforePosition | ForceConnectionCloseRule.AfterPosition | ForceConnectionCloseRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ForceConnectionCloseRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ForceConnectionCloseRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface JavaScriptChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'js_challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: JavaScriptChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: JavaScriptChallengeRule.BeforePosition | JavaScriptChallengeRule.AfterPosition | JavaScriptChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: JavaScriptChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace JavaScriptChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface LogRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'log'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: LogRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: LogRule.BeforePosition | LogRule.AfterPosition | LogRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: LogRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace LogRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface LogCustomFieldRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'log_custom_field'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: LogCustomFieldRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: LogCustomFieldRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: LogCustomFieldRule.BeforePosition | LogCustomFieldRule.AfterPosition | LogCustomFieldRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: LogCustomFieldRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace LogCustomFieldRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The cookie fields to log. */ cookie_fields?: Array; /** * The raw response fields to log. */ raw_response_fields?: Array; /** * The raw request fields to log. */ request_fields?: Array; /** * The transformed response fields to log. */ response_fields?: Array; /** * The transformed request fields to log. */ transformed_request_fields?: Array; } namespace ActionParameters { /** * The cookie field to log. */ interface CookieField { /** * The name of the cookie. */ name: string; } /** * The raw response field to log. */ interface RawResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The raw request field to log. */ interface RequestField { /** * The name of the header. */ name: string; } /** * The transformed response field to log. */ interface ResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The transformed request field to log. */ interface TransformedRequestField { /** * The name of the header. */ name: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ManagedChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'managed_challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ManagedChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ManagedChallengeRule.BeforePosition | ManagedChallengeRule.AfterPosition | ManagedChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ManagedChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ManagedChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RedirectRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'redirect'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RedirectRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RedirectRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RedirectRule.BeforePosition | RedirectRule.AfterPosition | RedirectRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RedirectRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RedirectRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A redirect based on a bulk list lookup. */ from_list?: ActionParameters.FromList; /** * A redirect based on the request properties. */ from_value?: ActionParameters.FromValue; } namespace ActionParameters { /** * A redirect based on a bulk list lookup. */ interface FromList { /** * An expression that evaluates to the list lookup key. */ key: string; /** * The name of the list to match against. */ name: string; } /** * A redirect based on the request properties. */ interface FromValue { /** * A URL to redirect the request to. */ target_url: FromValue.TargetURL; /** * Whether to keep the query string of the original request. */ preserve_query_string?: boolean; /** * The status code to use for the redirect. */ status_code?: 301 | 302 | 303 | 307 | 308; } namespace FromValue { /** * A URL to redirect the request to. */ interface TargetURL { /** * An expression that evaluates to a URL to redirect the request to. */ expression?: string; /** * A URL to redirect the request to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RewriteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'rewrite'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RewriteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RewriteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RewriteRule.BeforePosition | RewriteRule.AfterPosition | RewriteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RewriteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RewriteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A map of headers to rewrite. */ headers?: { [key: string]: ActionParameters.AddStaticHeader | ActionParameters.AddDynamicHeader | ActionParameters.SetStaticHeader | ActionParameters.SetDynamicHeader | ActionParameters.RemoveHeader; }; /** * A URI path rewrite. */ uri?: ActionParameters.URIPath | ActionParameters.URIQuery; } namespace ActionParameters { /** * A header with a static value to add. */ interface AddStaticHeader { /** * The operation to perform on the header. */ operation: 'add'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to add. */ interface AddDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'add'; } /** * A header with a static value to set. */ interface SetStaticHeader { /** * The operation to perform on the header. */ operation: 'set'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to set. */ interface SetDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'set'; } /** * A header to remove. */ interface RemoveHeader { /** * The operation to perform on the header. */ operation: 'remove'; } /** * A URI path rewrite. */ interface URIPath { /** * A URI path rewrite. */ path: URIPath.Path; } namespace URIPath { /** * A URI path rewrite. */ interface Path { /** * An expression that evaluates to a value to rewrite the URI path to. */ expression?: string; /** * A value to rewrite the URI path to. */ value?: string; } } /** * A URI query rewrite. */ interface URIQuery { /** * A URI query rewrite. */ query: URIQuery.Query; } namespace URIQuery { /** * A URI query rewrite. */ interface Query { /** * An expression that evaluates to a value to rewrite the URI query to. */ expression?: string; /** * A value to rewrite the URI query to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RouteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'route'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RouteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RouteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RouteRule.BeforePosition | RouteRule.AfterPosition | RouteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RouteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RouteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A value to rewrite the HTTP host header to. */ host_header?: string; /** * An origin to route to. */ origin?: ActionParameters.Origin; /** * A Server Name Indication (SNI) override. */ sni?: ActionParameters.SNI; } namespace ActionParameters { /** * An origin to route to. */ interface Origin { /** * A resolved host to route to. */ host?: string; /** * A destination port to route to. */ port?: number; } /** * A Server Name Indication (SNI) override. */ interface SNI { /** * A value to override the SNI to. */ value: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ScoreRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'score'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ScoreRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ScoreRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ScoreRule.BeforePosition | ScoreRule.AfterPosition | ScoreRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ScoreRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ScoreRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A delta to change the score by, which can be either positive or negative. */ increment: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ServeErrorRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'serve_error'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ServeErrorRule.ActionParametersContent | ServeErrorRule.ActionParametersAsset; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ServeErrorRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ServeErrorRule.BeforePosition | ServeErrorRule.AfterPosition | ServeErrorRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ServeErrorRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ServeErrorRule { interface ActionParametersContent { /** * The response content. */ content: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } interface ActionParametersAsset { /** * The name of a custom asset to serve as the error response. */ asset_name: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SetCacheSettingsRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'set_cache_settings'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SetCacheSettingsRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SetCacheSettingsRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SetCacheSettingsRule.BeforePosition | SetCacheSettingsRule.AfterPosition | SetCacheSettingsRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SetCacheSettingsRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SetCacheSettingsRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A list of additional ports that caching should be enabled on. */ additional_cacheable_ports?: Array; /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ browser_ttl?: ActionParameters.BrowserTTL; /** * Whether the request's response from the origin is eligible for caching. Caching * itself will still depend on the cache control header and your other caching * configurations. */ cache?: boolean; /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ cache_key?: ActionParameters.CacheKey; /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ cache_reserve?: ActionParameters.CacheReserve; /** * How long the Cloudflare edge network should cache the response. */ edge_ttl?: ActionParameters.EdgeTTL; /** * Whether Cloudflare will aim to strictly adhere to RFC 7234. */ origin_cache_control?: boolean; /** * Whether to generate Cloudflare error pages for issues from the origin server. */ origin_error_page_passthru?: boolean; /** * A timeout value between two successive read operations to use for your origin * server. Historically, the timeout value between two read options from Cloudflare * to an origin server is 100 seconds. If you are attempting to reduce HTTP 524 * errors because of timeouts from an origin server, try increasing this timeout * value. */ read_timeout?: number; /** * Whether Cloudflare should respect strong ETag (entity tag) headers. If false, * Cloudflare converts strong ETag headers to weak ETag headers. */ respect_strong_etags?: boolean; /** * When to serve stale content from cache. */ serve_stale?: ActionParameters.ServeStale; } namespace ActionParameters { /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ interface BrowserTTL { /** * The browser TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin' | 'bypass'; /** * The browser TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; } /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ interface CacheKey { /** * Whether to separate cached content based on the visitor's device type. */ cache_by_device_type?: boolean; /** * Whether to protect from web cache deception attacks, while allowing static * assets to be cached. */ cache_deception_armor?: boolean; /** * Which components of the request are included or excluded from the cache key. */ custom_key?: CacheKey.CustomKey; /** * Whether to treat requests with the same query parameters the same, regardless of * the order those query parameters are in. */ ignore_query_strings_order?: boolean; } namespace CacheKey { /** * Which components of the request are included or excluded from the cache key. */ interface CustomKey { /** * Which cookies to include in the cache key. */ cookie?: CustomKey.Cookie; /** * Which headers to include in the cache key. */ header?: CustomKey.Header; /** * How to use the host in the cache key. */ host?: CustomKey.Host; /** * Which query string parameters to include in or exclude from the cache key. */ query_string?: CustomKey.QueryString; /** * How to use characteristics of the request user agent in the cache key. */ user?: CustomKey.User; } namespace CustomKey { /** * Which cookies to include in the cache key. */ interface Cookie { /** * A list of cookies to check for the presence of. The presence of these cookies is * included in the cache key. */ check_presence?: Array; /** * A list of cookies to include in the cache key. */ include?: Array; } /** * Which headers to include in the cache key. */ interface Header { /** * A list of headers to check for the presence of. The presence of these headers is * included in the cache key. */ check_presence?: Array; /** * A mapping of header names to a list of values. If a header is present in the * request and contains any of the values provided, its value is included in the * cache key. */ contains?: { [key: string]: Array; }; /** * Whether to exclude the origin header in the cache key. */ exclude_origin?: boolean; /** * A list of headers to include in the cache key. */ include?: Array; } /** * How to use the host in the cache key. */ interface Host { /** * Whether to use the resolved host in the cache key. */ resolved?: boolean; } /** * Which query string parameters to include in or exclude from the cache key. */ interface QueryString { /** * Which query string parameters to exclude from the cache key. */ exclude?: QueryString.Exclude; /** * Which query string parameters to include in the cache key. */ include?: QueryString.Include; } namespace QueryString { /** * Which query string parameters to exclude from the cache key. */ interface Exclude { /** * Whether to exclude all query string parameters from the cache key. */ all?: true; /** * A list of query string parameters to exclude from the cache key. */ list?: Array; } /** * Which query string parameters to include in the cache key. */ interface Include { /** * Whether to include all query string parameters in the cache key. */ all?: true; /** * A list of query string parameters to include in the cache key. */ list?: Array; } } /** * How to use characteristics of the request user agent in the cache key. */ interface User { /** * Whether to use the user agent's device type in the cache key. */ device_type?: boolean; /** * Whether to use the user agents's country in the cache key. */ geo?: boolean; /** * Whether to use the user agent's language in the cache key. */ lang?: boolean; } } } /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ interface CacheReserve { /** * Whether Cache Reserve is enabled. If this is true and a request meets * eligibility criteria, Cloudflare will write the resource to Cache Reserve. */ eligible: boolean; /** * The minimum file size eligible for storage in Cache Reserve. */ minimum_file_size?: number; } /** * How long the Cloudflare edge network should cache the response. */ interface EdgeTTL { /** * The edge TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin'; /** * The edge TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; /** * A list of TTLs to apply to specific status codes or status code ranges. */ status_code_ttl?: Array; } namespace EdgeTTL { interface StatusCodeTTL { /** * The time to cache the response for (in seconds). A value of 0 is equivalent to * setting the cache control header with the value "no-cache". A value of -1 is * equivalent to setting the cache control header with the value of "no-store". */ value: number; /** * A single status code to apply the TTL to. */ status_code?: number; /** * A range of status codes to apply the TTL to. */ status_code_range?: StatusCodeTTL.StatusCodeRange; } namespace StatusCodeTTL { /** * A range of status codes to apply the TTL to. */ interface StatusCodeRange { /** * The lower bound of the range. */ from?: number; /** * The upper bound of the range. */ to?: number; } } } /** * When to serve stale content from cache. */ interface ServeStale { /** * Whether Cloudflare should disable serving stale content while getting the latest * content from the origin. */ disable_stale_while_updating?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SetConfigurationRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'set_config'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SetConfigurationRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SetConfigurationRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SetConfigurationRule.BeforePosition | SetConfigurationRule.AfterPosition | SetConfigurationRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SetConfigurationRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SetConfigurationRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Whether to enable Automatic HTTPS Rewrites. */ automatic_https_rewrites?: boolean; /** * Which file extensions to minify automatically. */ autominify?: ActionParameters.Autominify; /** * Whether to enable Browser Integrity Check (BIC). */ bic?: boolean; /** * Whether to disable Cloudflare Apps. */ disable_apps?: true; /** * Whether to disable Pay Per Crawl. */ disable_pay_per_crawl?: true; /** * Whether to disable Real User Monitoring (RUM). */ disable_rum?: true; /** * Whether to disable Zaraz. */ disable_zaraz?: true; /** * Whether to enable Email Obfuscation. */ email_obfuscation?: boolean; /** * Whether to enable Cloudflare Fonts. */ fonts?: boolean; /** * Whether to enable Hotlink Protection. */ hotlink_protection?: boolean; /** * Whether to enable Mirage. */ mirage?: boolean; /** * Whether to enable Opportunistic Encryption. */ opportunistic_encryption?: boolean; /** * The Polish level to configure. */ polish?: 'off' | 'lossless' | 'lossy' | 'webp'; /** * Whether to enable Rocket Loader. */ rocket_loader?: boolean; /** * The Security Level to configure. */ security_level?: 'off' | 'essentially_off' | 'low' | 'medium' | 'high' | 'under_attack'; /** * Whether to enable Server-Side Excludes. */ server_side_excludes?: boolean; /** * The SSL level to configure. */ ssl?: 'off' | 'flexible' | 'full' | 'strict' | 'origin_pull'; /** * Whether to enable Signed Exchanges (SXG). */ sxg?: boolean; } namespace ActionParameters { /** * Which file extensions to minify automatically. */ interface Autominify { /** * Whether to minify CSS files. */ css?: boolean; /** * Whether to minify HTML files. */ html?: boolean; /** * Whether to minify JavaScript files. */ js?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SkipRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'skip'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SkipRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SkipRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SkipRule.BeforePosition | SkipRule.AfterPosition | SkipRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SkipRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SkipRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A phase to skip the execution of. This option is only compatible with the * products option. */ phase?: 'current'; /** * A list of phases to skip the execution of. This option is incompatible with the * rulesets option. */ phases?: Array; /** * A list of legacy security products to skip the execution of. */ products?: Array<'bic' | 'hot' | 'rateLimit' | 'securityLevel' | 'uaBlock' | 'waf' | 'zoneLockdown'>; /** * A mapping of ruleset IDs to a list of rule IDs in that ruleset to skip the * execution of. This option is incompatible with the ruleset option. */ rules?: { [key: string]: Array; }; /** * A ruleset to skip the execution of. This option is incompatible with the * rulesets option. */ ruleset?: 'current'; /** * A list of ruleset IDs to skip the execution of. This option is incompatible with * the ruleset and phases options. */ rulesets?: Array; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } } export interface RuleDeleteParams { /** * The Account ID to use for this endpoint. Mutually exclusive with the Zone ID. */ account_id?: string; /** * The Zone ID to use for this endpoint. Mutually exclusive with the Account ID. */ zone_id?: string; } export type RuleEditParams = RuleEditParams.BlockRule | RuleEditParams.ChallengeRule | RuleEditParams.ResponseCompressionRule | RuleEditParams.DDoSDynamicRule | RuleEditParams.ExecuteRule | RuleEditParams.ForceConnectionCloseRule | RuleEditParams.JavaScriptChallengeRule | RuleEditParams.LogRule | RuleEditParams.LogCustomFieldRule | RuleEditParams.ManagedChallengeRule | RuleEditParams.RedirectRule | RuleEditParams.RewriteRule | RuleEditParams.RouteRule | RuleEditParams.ScoreRule | RuleEditParams.ServeErrorRule | RuleEditParams.SetCacheSettingsRule | RuleEditParams.SetConfigurationRule | RuleEditParams.SkipRule; export declare namespace RuleEditParams { interface BlockRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'block'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: BlockRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: BlockRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: BlockRule.BeforePosition | BlockRule.AfterPosition | BlockRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: BlockRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace BlockRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The response to show when the block is applied. */ response?: ActionParameters.Response; } namespace ActionParameters { /** * The response to show when the block is applied. */ interface Response { /** * The content to return. */ content: string; /** * The type of the content to return. */ content_type: string; /** * The status code to return. */ status_code: number; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ChallengeRule.BeforePosition | ChallengeRule.AfterPosition | ChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ResponseCompressionRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'compress_response'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ResponseCompressionRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ResponseCompressionRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ResponseCompressionRule.BeforePosition | ResponseCompressionRule.AfterPosition | ResponseCompressionRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ResponseCompressionRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ResponseCompressionRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Custom order for compression algorithms. */ algorithms: Array; } namespace ActionParameters { /** * Compression algorithm to enable. */ interface Algorithm { /** * Name of the compression algorithm to enable. */ name?: 'none' | 'auto' | 'default' | 'gzip' | 'brotli' | 'zstd'; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface DDoSDynamicRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'ddos_dynamic'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: DDoSDynamicRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: DDoSDynamicRule.BeforePosition | DDoSDynamicRule.AfterPosition | DDoSDynamicRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: DDoSDynamicRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace DDoSDynamicRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ExecuteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'execute'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ExecuteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ExecuteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ExecuteRule.BeforePosition | ExecuteRule.AfterPosition | ExecuteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ExecuteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ExecuteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The ID of the ruleset to execute. */ id: string; /** * The configuration to use for matched data logging. */ matched_data?: ActionParameters.MatchedData; /** * A set of overrides to apply to the target ruleset. */ overrides?: ActionParameters.Overrides; } namespace ActionParameters { /** * The configuration to use for matched data logging. */ interface MatchedData { /** * The public key to encrypt matched data logs with. */ public_key: string; } /** * A set of overrides to apply to the target ruleset. */ interface Overrides { /** * An action to override all rules with. This option has lower precedence than rule * and category overrides. */ action?: string; /** * A list of category-level overrides. This option has the second-highest * precedence after rule-level overrides. */ categories?: Array; /** * Whether to enable execution of all rules. This option has lower precedence than * rule and category overrides. */ enabled?: boolean; /** * A list of rule-level overrides. This option has the highest precedence. */ rules?: Array; /** * A sensitivity level to set for all rules. This option has lower precedence than * rule and category overrides and is only applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } namespace Overrides { /** * A category-level override. */ interface Category { /** * The name of the category to override. */ category: string; /** * The action to override rules in the category with. */ action?: string; /** * Whether to enable execution of rules in the category. */ enabled?: boolean; /** * The sensitivity level to use for rules in the category. This option is only * applicable for DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } /** * A rule-level override. */ interface Rule { /** * The ID of the rule to override. */ id: string; /** * The action to override the rule with. */ action?: string; /** * Whether to enable execution of the rule. */ enabled?: boolean; /** * The score threshold to use for the rule. */ score_threshold?: number; /** * The sensitivity level to use for the rule. This option is only applicable for * DDoS phases. */ sensitivity_level?: 'default' | 'medium' | 'low' | 'eoff'; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ForceConnectionCloseRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'force_connection_close'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ForceConnectionCloseRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ForceConnectionCloseRule.BeforePosition | ForceConnectionCloseRule.AfterPosition | ForceConnectionCloseRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ForceConnectionCloseRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ForceConnectionCloseRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface JavaScriptChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'js_challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: JavaScriptChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: JavaScriptChallengeRule.BeforePosition | JavaScriptChallengeRule.AfterPosition | JavaScriptChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: JavaScriptChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace JavaScriptChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface LogRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'log'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: LogRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: LogRule.BeforePosition | LogRule.AfterPosition | LogRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: LogRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace LogRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface LogCustomFieldRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'log_custom_field'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: LogCustomFieldRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: LogCustomFieldRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: LogCustomFieldRule.BeforePosition | LogCustomFieldRule.AfterPosition | LogCustomFieldRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: LogCustomFieldRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace LogCustomFieldRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * The cookie fields to log. */ cookie_fields?: Array; /** * The raw response fields to log. */ raw_response_fields?: Array; /** * The raw request fields to log. */ request_fields?: Array; /** * The transformed response fields to log. */ response_fields?: Array; /** * The transformed request fields to log. */ transformed_request_fields?: Array; } namespace ActionParameters { /** * The cookie field to log. */ interface CookieField { /** * The name of the cookie. */ name: string; } /** * The raw response field to log. */ interface RawResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The raw request field to log. */ interface RequestField { /** * The name of the header. */ name: string; } /** * The transformed response field to log. */ interface ResponseField { /** * The name of the response header. */ name: string; /** * Whether to log duplicate values of the same header. */ preserve_duplicates?: boolean; } /** * The transformed request field to log. */ interface TransformedRequestField { /** * The name of the header. */ name: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ManagedChallengeRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'managed_challenge'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: unknown; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ManagedChallengeRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ManagedChallengeRule.BeforePosition | ManagedChallengeRule.AfterPosition | ManagedChallengeRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ManagedChallengeRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ManagedChallengeRule { /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RedirectRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'redirect'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RedirectRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RedirectRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RedirectRule.BeforePosition | RedirectRule.AfterPosition | RedirectRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RedirectRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RedirectRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A redirect based on a bulk list lookup. */ from_list?: ActionParameters.FromList; /** * A redirect based on the request properties. */ from_value?: ActionParameters.FromValue; } namespace ActionParameters { /** * A redirect based on a bulk list lookup. */ interface FromList { /** * An expression that evaluates to the list lookup key. */ key: string; /** * The name of the list to match against. */ name: string; } /** * A redirect based on the request properties. */ interface FromValue { /** * A URL to redirect the request to. */ target_url: FromValue.TargetURL; /** * Whether to keep the query string of the original request. */ preserve_query_string?: boolean; /** * The status code to use for the redirect. */ status_code?: 301 | 302 | 303 | 307 | 308; } namespace FromValue { /** * A URL to redirect the request to. */ interface TargetURL { /** * An expression that evaluates to a URL to redirect the request to. */ expression?: string; /** * A URL to redirect the request to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RewriteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'rewrite'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RewriteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RewriteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RewriteRule.BeforePosition | RewriteRule.AfterPosition | RewriteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RewriteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RewriteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A map of headers to rewrite. */ headers?: { [key: string]: ActionParameters.AddStaticHeader | ActionParameters.AddDynamicHeader | ActionParameters.SetStaticHeader | ActionParameters.SetDynamicHeader | ActionParameters.RemoveHeader; }; /** * A URI path rewrite. */ uri?: ActionParameters.URIPath | ActionParameters.URIQuery; } namespace ActionParameters { /** * A header with a static value to add. */ interface AddStaticHeader { /** * The operation to perform on the header. */ operation: 'add'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to add. */ interface AddDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'add'; } /** * A header with a static value to set. */ interface SetStaticHeader { /** * The operation to perform on the header. */ operation: 'set'; /** * A static value for the header. */ value: string; } /** * A header with a dynamic value to set. */ interface SetDynamicHeader { /** * An expression that evaluates to a value for the header. */ expression: string; /** * The operation to perform on the header. */ operation: 'set'; } /** * A header to remove. */ interface RemoveHeader { /** * The operation to perform on the header. */ operation: 'remove'; } /** * A URI path rewrite. */ interface URIPath { /** * A URI path rewrite. */ path: URIPath.Path; } namespace URIPath { /** * A URI path rewrite. */ interface Path { /** * An expression that evaluates to a value to rewrite the URI path to. */ expression?: string; /** * A value to rewrite the URI path to. */ value?: string; } } /** * A URI query rewrite. */ interface URIQuery { /** * A URI query rewrite. */ query: URIQuery.Query; } namespace URIQuery { /** * A URI query rewrite. */ interface Query { /** * An expression that evaluates to a value to rewrite the URI query to. */ expression?: string; /** * A value to rewrite the URI query to. */ value?: string; } } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface RouteRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'route'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: RouteRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: RouteRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: RouteRule.BeforePosition | RouteRule.AfterPosition | RouteRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: RouteRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace RouteRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A value to rewrite the HTTP host header to. */ host_header?: string; /** * An origin to route to. */ origin?: ActionParameters.Origin; /** * A Server Name Indication (SNI) override. */ sni?: ActionParameters.SNI; } namespace ActionParameters { /** * An origin to route to. */ interface Origin { /** * A resolved host to route to. */ host?: string; /** * A destination port to route to. */ port?: number; } /** * A Server Name Indication (SNI) override. */ interface SNI { /** * A value to override the SNI to. */ value: string; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ScoreRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'score'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ScoreRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ScoreRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ScoreRule.BeforePosition | ScoreRule.AfterPosition | ScoreRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ScoreRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ScoreRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A delta to change the score by, which can be either positive or negative. */ increment: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface ServeErrorRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'serve_error'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: ServeErrorRule.ActionParametersContent | ServeErrorRule.ActionParametersAsset; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: ServeErrorRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: ServeErrorRule.BeforePosition | ServeErrorRule.AfterPosition | ServeErrorRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: ServeErrorRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace ServeErrorRule { interface ActionParametersContent { /** * The response content. */ content: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } interface ActionParametersAsset { /** * The name of a custom asset to serve as the error response. */ asset_name: string; /** * The content type header to set with the error response. */ content_type?: 'application/json' | 'text/html' | 'text/plain' | 'text/xml'; /** * The status code to use for the error. */ status_code?: number; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SetCacheSettingsRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'set_cache_settings'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SetCacheSettingsRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SetCacheSettingsRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SetCacheSettingsRule.BeforePosition | SetCacheSettingsRule.AfterPosition | SetCacheSettingsRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SetCacheSettingsRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SetCacheSettingsRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A list of additional ports that caching should be enabled on. */ additional_cacheable_ports?: Array; /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ browser_ttl?: ActionParameters.BrowserTTL; /** * Whether the request's response from the origin is eligible for caching. Caching * itself will still depend on the cache control header and your other caching * configurations. */ cache?: boolean; /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ cache_key?: ActionParameters.CacheKey; /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ cache_reserve?: ActionParameters.CacheReserve; /** * How long the Cloudflare edge network should cache the response. */ edge_ttl?: ActionParameters.EdgeTTL; /** * Whether Cloudflare will aim to strictly adhere to RFC 7234. */ origin_cache_control?: boolean; /** * Whether to generate Cloudflare error pages for issues from the origin server. */ origin_error_page_passthru?: boolean; /** * A timeout value between two successive read operations to use for your origin * server. Historically, the timeout value between two read options from Cloudflare * to an origin server is 100 seconds. If you are attempting to reduce HTTP 524 * errors because of timeouts from an origin server, try increasing this timeout * value. */ read_timeout?: number; /** * Whether Cloudflare should respect strong ETag (entity tag) headers. If false, * Cloudflare converts strong ETag headers to weak ETag headers. */ respect_strong_etags?: boolean; /** * When to serve stale content from cache. */ serve_stale?: ActionParameters.ServeStale; } namespace ActionParameters { /** * How long client browsers should cache the response. Cloudflare cache purge will * not purge content cached on client browsers, so high browser TTLs may lead to * stale content. */ interface BrowserTTL { /** * The browser TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin' | 'bypass'; /** * The browser TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; } /** * Which components of the request are included in or excluded from the cache key * Cloudflare uses to store the response in cache. */ interface CacheKey { /** * Whether to separate cached content based on the visitor's device type. */ cache_by_device_type?: boolean; /** * Whether to protect from web cache deception attacks, while allowing static * assets to be cached. */ cache_deception_armor?: boolean; /** * Which components of the request are included or excluded from the cache key. */ custom_key?: CacheKey.CustomKey; /** * Whether to treat requests with the same query parameters the same, regardless of * the order those query parameters are in. */ ignore_query_strings_order?: boolean; } namespace CacheKey { /** * Which components of the request are included or excluded from the cache key. */ interface CustomKey { /** * Which cookies to include in the cache key. */ cookie?: CustomKey.Cookie; /** * Which headers to include in the cache key. */ header?: CustomKey.Header; /** * How to use the host in the cache key. */ host?: CustomKey.Host; /** * Which query string parameters to include in or exclude from the cache key. */ query_string?: CustomKey.QueryString; /** * How to use characteristics of the request user agent in the cache key. */ user?: CustomKey.User; } namespace CustomKey { /** * Which cookies to include in the cache key. */ interface Cookie { /** * A list of cookies to check for the presence of. The presence of these cookies is * included in the cache key. */ check_presence?: Array; /** * A list of cookies to include in the cache key. */ include?: Array; } /** * Which headers to include in the cache key. */ interface Header { /** * A list of headers to check for the presence of. The presence of these headers is * included in the cache key. */ check_presence?: Array; /** * A mapping of header names to a list of values. If a header is present in the * request and contains any of the values provided, its value is included in the * cache key. */ contains?: { [key: string]: Array; }; /** * Whether to exclude the origin header in the cache key. */ exclude_origin?: boolean; /** * A list of headers to include in the cache key. */ include?: Array; } /** * How to use the host in the cache key. */ interface Host { /** * Whether to use the resolved host in the cache key. */ resolved?: boolean; } /** * Which query string parameters to include in or exclude from the cache key. */ interface QueryString { /** * Which query string parameters to exclude from the cache key. */ exclude?: QueryString.Exclude; /** * Which query string parameters to include in the cache key. */ include?: QueryString.Include; } namespace QueryString { /** * Which query string parameters to exclude from the cache key. */ interface Exclude { /** * Whether to exclude all query string parameters from the cache key. */ all?: true; /** * A list of query string parameters to exclude from the cache key. */ list?: Array; } /** * Which query string parameters to include in the cache key. */ interface Include { /** * Whether to include all query string parameters in the cache key. */ all?: true; /** * A list of query string parameters to include in the cache key. */ list?: Array; } } /** * How to use characteristics of the request user agent in the cache key. */ interface User { /** * Whether to use the user agent's device type in the cache key. */ device_type?: boolean; /** * Whether to use the user agents's country in the cache key. */ geo?: boolean; /** * Whether to use the user agent's language in the cache key. */ lang?: boolean; } } } /** * Settings to determine whether the request's response from origin is eligible for * Cache Reserve (requires a Cache Reserve add-on plan). */ interface CacheReserve { /** * Whether Cache Reserve is enabled. If this is true and a request meets * eligibility criteria, Cloudflare will write the resource to Cache Reserve. */ eligible: boolean; /** * The minimum file size eligible for storage in Cache Reserve. */ minimum_file_size?: number; } /** * How long the Cloudflare edge network should cache the response. */ interface EdgeTTL { /** * The edge TTL mode. */ mode: 'respect_origin' | 'bypass_by_default' | 'override_origin'; /** * The edge TTL (in seconds) if you choose the "override_origin" mode. */ default?: number; /** * A list of TTLs to apply to specific status codes or status code ranges. */ status_code_ttl?: Array; } namespace EdgeTTL { interface StatusCodeTTL { /** * The time to cache the response for (in seconds). A value of 0 is equivalent to * setting the cache control header with the value "no-cache". A value of -1 is * equivalent to setting the cache control header with the value of "no-store". */ value: number; /** * A single status code to apply the TTL to. */ status_code?: number; /** * A range of status codes to apply the TTL to. */ status_code_range?: StatusCodeTTL.StatusCodeRange; } namespace StatusCodeTTL { /** * A range of status codes to apply the TTL to. */ interface StatusCodeRange { /** * The lower bound of the range. */ from?: number; /** * The upper bound of the range. */ to?: number; } } } /** * When to serve stale content from cache. */ interface ServeStale { /** * Whether Cloudflare should disable serving stale content while getting the latest * content from the origin. */ disable_stale_while_updating?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SetConfigurationRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'set_config'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SetConfigurationRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SetConfigurationRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SetConfigurationRule.BeforePosition | SetConfigurationRule.AfterPosition | SetConfigurationRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SetConfigurationRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SetConfigurationRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * Whether to enable Automatic HTTPS Rewrites. */ automatic_https_rewrites?: boolean; /** * Which file extensions to minify automatically. */ autominify?: ActionParameters.Autominify; /** * Whether to enable Browser Integrity Check (BIC). */ bic?: boolean; /** * Whether to disable Cloudflare Apps. */ disable_apps?: true; /** * Whether to disable Pay Per Crawl. */ disable_pay_per_crawl?: true; /** * Whether to disable Real User Monitoring (RUM). */ disable_rum?: true; /** * Whether to disable Zaraz. */ disable_zaraz?: true; /** * Whether to enable Email Obfuscation. */ email_obfuscation?: boolean; /** * Whether to enable Cloudflare Fonts. */ fonts?: boolean; /** * Whether to enable Hotlink Protection. */ hotlink_protection?: boolean; /** * Whether to enable Mirage. */ mirage?: boolean; /** * Whether to enable Opportunistic Encryption. */ opportunistic_encryption?: boolean; /** * The Polish level to configure. */ polish?: 'off' | 'lossless' | 'lossy' | 'webp'; /** * Whether to enable Rocket Loader. */ rocket_loader?: boolean; /** * The Security Level to configure. */ security_level?: 'off' | 'essentially_off' | 'low' | 'medium' | 'high' | 'under_attack'; /** * Whether to enable Server-Side Excludes. */ server_side_excludes?: boolean; /** * The SSL level to configure. */ ssl?: 'off' | 'flexible' | 'full' | 'strict' | 'origin_pull'; /** * Whether to enable Signed Exchanges (SXG). */ sxg?: boolean; } namespace ActionParameters { /** * Which file extensions to minify automatically. */ interface Autominify { /** * Whether to minify CSS files. */ css?: boolean; /** * Whether to minify HTML files. */ html?: boolean; /** * Whether to minify JavaScript files. */ js?: boolean; } } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } interface SkipRule { /** * Path param: The Account ID to use for this endpoint. Mutually exclusive with the * Zone ID. */ account_id?: string; /** * Path param: The Zone ID to use for this endpoint. Mutually exclusive with the * Account ID. */ zone_id?: string; /** * Body param: The unique ID of the rule. */ id?: string; /** * Body param: The action to perform when the rule matches. */ action?: 'skip'; /** * Body param: The parameters configuring the rule's action. */ action_parameters?: SkipRule.ActionParameters; /** * Body param: An informative description of the rule. */ description?: string; /** * Body param: Whether the rule should be executed. */ enabled?: boolean; /** * Body param: Configuration for exposed credential checking. */ exposed_credential_check?: SkipRule.ExposedCredentialCheck; /** * Body param: The expression defining which traffic will match the rule. */ expression?: string; /** * Body param: An object configuring the rule's logging behavior. */ logging?: LoggingParam; /** * Body param: An object configuring where the rule will be placed. */ position?: SkipRule.BeforePosition | SkipRule.AfterPosition | SkipRule.IndexPosition; /** * Body param: An object configuring the rule's rate limit behavior. */ ratelimit?: SkipRule.Ratelimit; /** * Body param: The reference of the rule (the rule's ID by default). */ ref?: string; } namespace SkipRule { /** * The parameters configuring the rule's action. */ interface ActionParameters { /** * A phase to skip the execution of. This option is only compatible with the * products option. */ phase?: 'current'; /** * A list of phases to skip the execution of. This option is incompatible with the * rulesets option. */ phases?: Array; /** * A list of legacy security products to skip the execution of. */ products?: Array<'bic' | 'hot' | 'rateLimit' | 'securityLevel' | 'uaBlock' | 'waf' | 'zoneLockdown'>; /** * A mapping of ruleset IDs to a list of rule IDs in that ruleset to skip the * execution of. This option is incompatible with the ruleset option. */ rules?: { [key: string]: Array; }; /** * A ruleset to skip the execution of. This option is incompatible with the * rulesets option. */ ruleset?: 'current'; /** * A list of ruleset IDs to skip the execution of. This option is incompatible with * the ruleset and phases options. */ rulesets?: Array; } /** * Configuration for exposed credential checking. */ interface ExposedCredentialCheck { /** * An expression that selects the password used in the credentials check. */ password_expression: string; /** * An expression that selects the user ID used in the credentials check. */ username_expression: string; } /** * An object configuring where the rule will be placed. */ interface BeforePosition { /** * The ID of another rule to place the rule before. An empty value causes the rule * to be placed at the top. */ before?: string; } /** * An object configuring where the rule will be placed. */ interface AfterPosition { /** * The ID of another rule to place the rule after. An empty value causes the rule * to be placed at the bottom. */ after?: string; } /** * An object configuring where the rule will be placed. */ interface IndexPosition { /** * An index at which to place the rule, where index 1 is the first rule. */ index?: number; } /** * An object configuring the rule's rate limit behavior. */ interface Ratelimit { /** * Characteristics of the request on which the rate limit counter will be * incremented. */ characteristics: Array; /** * Period in seconds over which the counter is being incremented. */ period: number; /** * An expression that defines when the rate limit counter should be incremented. It * defaults to the same as the rule's expression. */ counting_expression?: string; /** * Period of time in seconds after which the action will be disabled following its * first execution. */ mitigation_timeout?: number; /** * The threshold of requests per period after which the action will be executed for * the first time. */ requests_per_period?: number; /** * Whether counting is only performed when an origin is reached. */ requests_to_origin?: boolean; /** * The score threshold per period for which the action will be executed the first * time. */ score_per_period?: number; /** * A response header name provided by the origin, which contains the score to * increment rate limit counter with. */ score_response_header_name?: string; } } } export declare namespace Rules { export { type BlockRule as BlockRule, type CompressResponseRule as CompressResponseRule, type DDoSDynamicRule as DDoSDynamicRule, type ExecuteRule as ExecuteRule, type ForceConnectionCloseRule as ForceConnectionCloseRule, type LogCustomFieldRule as LogCustomFieldRule, type LogRule as LogRule, type Logging as Logging, type ManagedChallengeRule as ManagedChallengeRule, type RedirectRule as RedirectRule, type RewriteRule as RewriteRule, type RouteRule as RouteRule, type RulesetRule as RulesetRule, type ScoreRule as ScoreRule, type ServeErrorRule as ServeErrorRule, type SetCacheSettingsRule as SetCacheSettingsRule, type SetConfigRule as SetConfigRule, type SkipRule as SkipRule, type RuleCreateResponse as RuleCreateResponse, type RuleDeleteResponse as RuleDeleteResponse, type RuleEditResponse as RuleEditResponse, type RuleCreateParams as RuleCreateParams, type RuleDeleteParams as RuleDeleteParams, type RuleEditParams as RuleEditParams, }; } //# sourceMappingURL=rules.d.ts.map