XssMatchStatement class
A rule statement that defines a cross-site scripting (XSS) match search for
AWS WAF to apply to web requests. XSS attacks are those where the attacker
uses vulnerabilities in a benign website as a vehicle to inject malicious
client-site scripts into other legitimate web browsers. The XSS match
statement provides the location in requests that you want AWS WAF to search
and text transformations to use on the search area before AWS WAF searches
for character sequences that are likely to be malicious strings.
Constructors
-
XssMatchStatement.new({required FieldToMatch fieldToMatch, required List<
TextTransformation> textTransformations}) -
XssMatchStatement.fromJson(Map<
String, dynamic> json) -
factory
Properties
- fieldToMatch → FieldToMatch
-
The part of a web request that you want AWS WAF to inspect. For more
information, see FieldToMatch.
final
- hashCode → int
-
The hash code for this object.
no setterinherited
- runtimeType → Type
-
A representation of the runtime type of the object.
no setterinherited
-
textTransformations
→ List<
TextTransformation> -
Text transformations eliminate some of the unusual formatting that attackers
use in web requests in an effort to bypass detection. If you specify one or
more transformations in a rule statement, AWS WAF performs all
transformations on the content of the request component identified by
FieldToMatch, starting from the lowest priority setting, before inspecting the content for a match.final
Methods
-
noSuchMethod(
Invocation invocation) → dynamic -
Invoked when a nonexistent method or property is accessed.
inherited
-
toJson(
) → Map< String, dynamic> -
toString(
) → String -
A string representation of this object.
inherited
Operators
-
operator ==(
Object other) → bool -
The equality operator.
inherited