- 1.63.0 (latest)
- 1.62.0
- 1.61.0
- 1.59.0
- 1.58.0
- 1.57.0
- 1.56.0
- 1.55.0
- 1.54.0
- 1.53.0
- 1.52.0
- 1.51.0
- 1.50.0
- 1.49.0
- 1.47.0
- 1.46.0
- 1.45.0
- 1.44.0
- 1.43.0
- 1.42.0
- 1.41.0
- 1.40.0
- 1.39.0
- 1.38.0
- 1.37.0
- 1.34.0
- 1.33.0
- 1.32.0
- 1.31.0
- 1.30.0
- 1.29.0
- 1.28.0
- 1.27.0
- 1.26.0
- 1.25.0
- 1.24.0
- 1.23.0
- 1.22.0
- 1.21.0
- 1.20.0
- 1.19.0
- 1.18.0
- 1.17.0
- 1.16.0
- 1.15.0
- 1.14.0
- 1.13.0
- 1.12.1
- 1.11.0
- 1.9.1
- 1.8.1
- 1.7.2
- 1.6.0-beta
public interface SecurityPolicyRuleRateLimitOptionsOrBuilder extends MessageOrBuilder
Implements
MessageOrBuilderMethods
getBanDurationSec()
public abstract int getBanDurationSec()
Can only be specified if the action for the rule is "rate_based_ban". If specified, determines the time (in seconds) the traffic will continue to be banned by the rate limit after the rate falls below the threshold.
optional int32 ban_duration_sec = 42896726;
Type | Description |
int | The banDurationSec. |
getBanThreshold()
public abstract SecurityPolicyRuleRateLimitOptionsThreshold getBanThreshold()
Can only be specified if the action for the rule is "rate_based_ban". If specified, the key will be banned for the configured 'ban_duration_sec' when the number of requests that exceed the 'rate_limit_threshold' also exceed this 'ban_threshold'.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold ban_threshold = 501208123;
Type | Description |
SecurityPolicyRuleRateLimitOptionsThreshold | The banThreshold. |
getBanThresholdOrBuilder()
public abstract SecurityPolicyRuleRateLimitOptionsThresholdOrBuilder getBanThresholdOrBuilder()
Can only be specified if the action for the rule is "rate_based_ban". If specified, the key will be banned for the configured 'ban_duration_sec' when the number of requests that exceed the 'rate_limit_threshold' also exceed this 'ban_threshold'.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold ban_threshold = 501208123;
Type | Description |
SecurityPolicyRuleRateLimitOptionsThresholdOrBuilder |
getConformAction()
public abstract String getConformAction()
Action to take for requests that are under the configured rate limit threshold. Valid option is "allow" only.
optional string conform_action = 517612367;
Type | Description |
String | The conformAction. |
getConformActionBytes()
public abstract ByteString getConformActionBytes()
Action to take for requests that are under the configured rate limit threshold. Valid option is "allow" only.
optional string conform_action = 517612367;
Type | Description |
ByteString | The bytes for conformAction. |
getEnforceOnKey()
public abstract String getEnforceOnKey()
Determines the key to enforce the rate_limit_threshold on. Possible values are: - ALL: A single rate limit threshold is applied to all the requests matching this rule. This is the default value if this field 'enforce_on_key' is not configured. - IP: The source IP address of the request is the key. Each IP has this limit enforced separately. - HTTP_HEADER: The value of the HTTP header whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the header value. If no such header is present in the request, the key type defaults to ALL. - XFF_IP: The first IP address (i.e. the originating client IP address) specified in the list of IPs under X-Forwarded-For HTTP header. If no such header is present or the value is not a valid IP, the key defaults to the source IP address of the request i.e. key type IP. - HTTP_COOKIE: The value of the HTTP cookie whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the cookie value. If no such cookie is present in the request, the key type defaults to ALL. - HTTP_PATH: The URL path of the HTTP request. The key value is truncated to the first 128 bytes. - SNI: Server name indication in the TLS session of the HTTPS request. The key value is truncated to the first 128 bytes. The key type defaults to ALL on a HTTP session. - REGION_CODE: The country/region from which the request originates. Check the EnforceOnKey enum for the list of possible values.
optional string enforce_on_key = 416648956;
Type | Description |
String | The enforceOnKey. |
getEnforceOnKeyBytes()
public abstract ByteString getEnforceOnKeyBytes()
Determines the key to enforce the rate_limit_threshold on. Possible values are: - ALL: A single rate limit threshold is applied to all the requests matching this rule. This is the default value if this field 'enforce_on_key' is not configured. - IP: The source IP address of the request is the key. Each IP has this limit enforced separately. - HTTP_HEADER: The value of the HTTP header whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the header value. If no such header is present in the request, the key type defaults to ALL. - XFF_IP: The first IP address (i.e. the originating client IP address) specified in the list of IPs under X-Forwarded-For HTTP header. If no such header is present or the value is not a valid IP, the key defaults to the source IP address of the request i.e. key type IP. - HTTP_COOKIE: The value of the HTTP cookie whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the cookie value. If no such cookie is present in the request, the key type defaults to ALL. - HTTP_PATH: The URL path of the HTTP request. The key value is truncated to the first 128 bytes. - SNI: Server name indication in the TLS session of the HTTPS request. The key value is truncated to the first 128 bytes. The key type defaults to ALL on a HTTP session. - REGION_CODE: The country/region from which the request originates. Check the EnforceOnKey enum for the list of possible values.
optional string enforce_on_key = 416648956;
Type | Description |
ByteString | The bytes for enforceOnKey. |
getEnforceOnKeyName()
public abstract String getEnforceOnKeyName()
Rate limit key name applicable only for the following key types: HTTP_HEADER -- Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE -- Name of the HTTP cookie whose value is taken as the key value.
optional string enforce_on_key_name = 132555246;
Type | Description |
String | The enforceOnKeyName. |
getEnforceOnKeyNameBytes()
public abstract ByteString getEnforceOnKeyNameBytes()
Rate limit key name applicable only for the following key types: HTTP_HEADER -- Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE -- Name of the HTTP cookie whose value is taken as the key value.
optional string enforce_on_key_name = 132555246;
Type | Description |
ByteString | The bytes for enforceOnKeyName. |
getExceedAction()
public abstract String getExceedAction()
Action to take for requests that are above the configured rate limit threshold, to either deny with a specified HTTP response code, or redirect to a different endpoint. Valid options are "deny(status)", where valid values for status are 403, 404, 429, and 502, and "redirect" where the redirect parameters come from exceedRedirectOptions below.
optional string exceed_action = 167159073;
Type | Description |
String | The exceedAction. |
getExceedActionBytes()
public abstract ByteString getExceedActionBytes()
Action to take for requests that are above the configured rate limit threshold, to either deny with a specified HTTP response code, or redirect to a different endpoint. Valid options are "deny(status)", where valid values for status are 403, 404, 429, and 502, and "redirect" where the redirect parameters come from exceedRedirectOptions below.
optional string exceed_action = 167159073;
Type | Description |
ByteString | The bytes for exceedAction. |
getExceedRedirectOptions()
public abstract SecurityPolicyRuleRedirectOptions getExceedRedirectOptions()
Parameters defining the redirect action that is used as the exceed action. Cannot be specified if the exceed action is not redirect.
optional .google.cloud.compute.v1.SecurityPolicyRuleRedirectOptions exceed_redirect_options = 473646694;
Type | Description |
SecurityPolicyRuleRedirectOptions | The exceedRedirectOptions. |
getExceedRedirectOptionsOrBuilder()
public abstract SecurityPolicyRuleRedirectOptionsOrBuilder getExceedRedirectOptionsOrBuilder()
Parameters defining the redirect action that is used as the exceed action. Cannot be specified if the exceed action is not redirect.
optional .google.cloud.compute.v1.SecurityPolicyRuleRedirectOptions exceed_redirect_options = 473646694;
Type | Description |
SecurityPolicyRuleRedirectOptionsOrBuilder |
getRateLimitThreshold()
public abstract SecurityPolicyRuleRateLimitOptionsThreshold getRateLimitThreshold()
Threshold at which to begin ratelimiting.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold rate_limit_threshold = 315875208;
Type | Description |
SecurityPolicyRuleRateLimitOptionsThreshold | The rateLimitThreshold. |
getRateLimitThresholdOrBuilder()
public abstract SecurityPolicyRuleRateLimitOptionsThresholdOrBuilder getRateLimitThresholdOrBuilder()
Threshold at which to begin ratelimiting.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold rate_limit_threshold = 315875208;
Type | Description |
SecurityPolicyRuleRateLimitOptionsThresholdOrBuilder |
hasBanDurationSec()
public abstract boolean hasBanDurationSec()
Can only be specified if the action for the rule is "rate_based_ban". If specified, determines the time (in seconds) the traffic will continue to be banned by the rate limit after the rate falls below the threshold.
optional int32 ban_duration_sec = 42896726;
Type | Description |
boolean | Whether the banDurationSec field is set. |
hasBanThreshold()
public abstract boolean hasBanThreshold()
Can only be specified if the action for the rule is "rate_based_ban". If specified, the key will be banned for the configured 'ban_duration_sec' when the number of requests that exceed the 'rate_limit_threshold' also exceed this 'ban_threshold'.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold ban_threshold = 501208123;
Type | Description |
boolean | Whether the banThreshold field is set. |
hasConformAction()
public abstract boolean hasConformAction()
Action to take for requests that are under the configured rate limit threshold. Valid option is "allow" only.
optional string conform_action = 517612367;
Type | Description |
boolean | Whether the conformAction field is set. |
hasEnforceOnKey()
public abstract boolean hasEnforceOnKey()
Determines the key to enforce the rate_limit_threshold on. Possible values are: - ALL: A single rate limit threshold is applied to all the requests matching this rule. This is the default value if this field 'enforce_on_key' is not configured. - IP: The source IP address of the request is the key. Each IP has this limit enforced separately. - HTTP_HEADER: The value of the HTTP header whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the header value. If no such header is present in the request, the key type defaults to ALL. - XFF_IP: The first IP address (i.e. the originating client IP address) specified in the list of IPs under X-Forwarded-For HTTP header. If no such header is present or the value is not a valid IP, the key defaults to the source IP address of the request i.e. key type IP. - HTTP_COOKIE: The value of the HTTP cookie whose name is configured under "enforce_on_key_name". The key value is truncated to the first 128 bytes of the cookie value. If no such cookie is present in the request, the key type defaults to ALL. - HTTP_PATH: The URL path of the HTTP request. The key value is truncated to the first 128 bytes. - SNI: Server name indication in the TLS session of the HTTPS request. The key value is truncated to the first 128 bytes. The key type defaults to ALL on a HTTP session. - REGION_CODE: The country/region from which the request originates. Check the EnforceOnKey enum for the list of possible values.
optional string enforce_on_key = 416648956;
Type | Description |
boolean | Whether the enforceOnKey field is set. |
hasEnforceOnKeyName()
public abstract boolean hasEnforceOnKeyName()
Rate limit key name applicable only for the following key types: HTTP_HEADER -- Name of the HTTP header whose value is taken as the key value. HTTP_COOKIE -- Name of the HTTP cookie whose value is taken as the key value.
optional string enforce_on_key_name = 132555246;
Type | Description |
boolean | Whether the enforceOnKeyName field is set. |
hasExceedAction()
public abstract boolean hasExceedAction()
Action to take for requests that are above the configured rate limit threshold, to either deny with a specified HTTP response code, or redirect to a different endpoint. Valid options are "deny(status)", where valid values for status are 403, 404, 429, and 502, and "redirect" where the redirect parameters come from exceedRedirectOptions below.
optional string exceed_action = 167159073;
Type | Description |
boolean | Whether the exceedAction field is set. |
hasExceedRedirectOptions()
public abstract boolean hasExceedRedirectOptions()
Parameters defining the redirect action that is used as the exceed action. Cannot be specified if the exceed action is not redirect.
optional .google.cloud.compute.v1.SecurityPolicyRuleRedirectOptions exceed_redirect_options = 473646694;
Type | Description |
boolean | Whether the exceedRedirectOptions field is set. |
hasRateLimitThreshold()
public abstract boolean hasRateLimitThreshold()
Threshold at which to begin ratelimiting.
optional .google.cloud.compute.v1.SecurityPolicyRuleRateLimitOptionsThreshold rate_limit_threshold = 315875208;
Type | Description |
boolean | Whether the rateLimitThreshold field is set. |