Class WaasClient

Accepts a list of recommended Web Application Firewall protection rules. Web Application Firewall protection rule recommendations are sets of rules generated by observed traffic patterns through the Web Application Firewall and are meant to optimize the Web Application Firewall's security profile. Only the rules specified in the request body will be updated; all other rules will remain unchanged.

Use the `GET /waasPolicies/{waasPolicyId}/wafConfig/recommendations` method to view a list of recommended Web Application Firewall protection rules. For more information, see [WAF Protection Rules](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/wafprotectionrules.htm). This operation does not retry by default if the user has not defined a retry configuration.

Cancels a specified work request. This operation does not retry by default if the user has not defined a retry configuration.

Moves address list into a different compartment. When provided, If-Match is checked against ETag values of the address list. For information about moving resources between compartments, see Moving Resources to a Different Compartment.

Moves certificate into a different compartment. When provided, If-Match is checked against ETag values of the certificate. For information about moving resources between compartments, see Moving Resources to a Different Compartment.

Moves a custom protection rule into a different compartment within the same tenancy. When provided, If-Match is checked against ETag values of the custom protection rule. For information about moving resources between compartments, see Moving Resources to a Different Compartment. This operation does not retry by default if the user has not defined a retry configuration.

Moves WAAS policy into a different compartment. When provided, If-Match is checked against ETag values of the WAAS policy. For information about moving resources between compartments, see Moving Resources to a Different Compartment.

Close the client once it is no longer needed

Creates an address list in a set compartment and allows it to be used in a WAAS policy and referenced by access rules. Addresses can be IP addresses and CIDR notations. This operation does not retry by default if the user has not defined a retry configuration.

Allows an SSL certificate to be added to a WAAS policy. The Web Application Firewall terminates SSL connections to inspect requests in runtime, and then re-encrypts requests before sending them to the origin for fulfillment.

For more information, see [WAF Settings](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/wafsettings.htm). This operation does not retry by default if the user has not defined a retry configuration.

Creates a new custom protection rule in the specified compartment.

Custom protection rules allow you to create rules in addition to the rulesets provided by the Web Application Firewall service, including rules from [ModSecurity](https://modsecurity.org/). The syntax for custom rules is based on the ModSecurity syntax. For more information about custom protection rules, see [Custom Protection Rules](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/customprotectionrules.htm). This operation does not retry by default if the user has not defined a retry configuration.

Creates a new Web Application Acceleration and Security (WAAS) policy in the specified compartment. A WAAS policy must be established before creating Web Application Firewall (WAF) rules. To use WAF rules, your web application's origin servers must defined in the WaasPolicy schema.

A domain name must be specified when creating a WAAS policy. The domain name should be different from the origins specified in your `WaasPolicy`. Once domain name is entered and stored, it is unchangeable.

Use the record data returned in the `cname` field of the `WaasPolicy` object to create a CNAME record in your DNS configuration that will direct your domain's traffic through the WAF.

For the purposes of access control, you must provide the OCID of the compartment where you want the service to reside. For information about access control and compartments, see [Overview of the IAM Service](https://docs.cloud.oracle.com/iaas/Content/Identity/Concepts/overview.htm).

You must specify a display name and domain for the WAAS policy. The display name does not have to be unique and can be changed. The domain name should be different from every origin specified in `WaasPolicy`.

All Oracle Cloud Infrastructure resources, including WAAS policies, receive a unique, Oracle-assigned ID called an Oracle Cloud Identifier (OCID). When a resource is created, you can find its OCID in the response. You can also retrieve a resource's OCID by using a list API operation for that resource type, or by viewing the resource in the Console. Fore more information, see [Resource Identifiers](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm).

*Note:** After sending the POST request, the new object's state will temporarily be `CREATING`. Ensure that the resource's state has changed to `ACTIVE` before use. This operation does not retry by default if the user has not defined a retry configuration.

Creates a new WaasWaiter for resources for this service.

Deletes the address list from the compartment if it is not used. This operation does not retry by default if the user has not defined a retry configuration.

Deletes an SSL certificate from the WAAS service. This operation does not retry by default if the user has not defined a retry configuration.

Deletes a Custom Protection rule. This operation does not retry by default if the user has not defined a retry configuration.

Deletes a policy. This operation does not retry by default if the user has not defined a retry configuration.

Gets the details of an address list. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the details of an SSL certificate. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the details of a custom protection rule. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the device fingerprint challenge settings in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the human interaction challenge settings in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the JavaScript challenge settings in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the configuration of a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the details of a protection rule in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the protection settings in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the details of a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the address rate limiting settings of the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the Web Application Firewall configuration details for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the waiters available for resources for this service.

Gets the details of a specified work request. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Gets the currently configured access rules for the Web Application Firewall configuration of a specified WAAS policy. The order of the access rules is important. The rules will be checked in the order they are specified and the first matching rule will be used. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.AccessRule objects contained in responses from the listAccessRules operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listAccessRules operation. This iterator will fetch more data from the server as needed.

Gets a list of address lists that can be used in a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.AddressListSummary objects contained in responses from the listAddressLists operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listAddressLists operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listAccessRulesRecordIterator function. Creates a new async iterator which will iterate over the models.AccessRule objects contained in responses from the listAccessRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listAccessRulesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listAccessRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listAddressListsRecordIterator function. Creates a new async iterator which will iterate over the models.AddressListSummary objects contained in responses from the listAddressLists operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listAddressListsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listAddressLists operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCachingRulesRecordIterator function. Creates a new async iterator which will iterate over the models.CachingRuleSummary objects contained in responses from the listCachingRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCachingRulesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listCachingRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCaptchasRecordIterator function. Creates a new async iterator which will iterate over the models.Captcha objects contained in responses from the listCaptchas operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCaptchasResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listCaptchas operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCertificatesRecordIterator function. Creates a new async iterator which will iterate over the models.CertificateSummary objects contained in responses from the listCertificates operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCertificatesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listCertificates operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCustomProtectionRulesRecordIterator function. Creates a new async iterator which will iterate over the models.CustomProtectionRuleSummary objects contained in responses from the listCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listCustomProtectionRulesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listEdgeSubnetsRecordIterator function. Creates a new async iterator which will iterate over the models.EdgeSubnet objects contained in responses from the listEdgeSubnets operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listEdgeSubnetsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listEdgeSubnets operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listGoodBotsRecordIterator function. Creates a new async iterator which will iterate over the models.GoodBot objects contained in responses from the listGoodBots operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listGoodBotsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listGoodBots operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listProtectionRulesRecordIterator function. Creates a new async iterator which will iterate over the models.ProtectionRule objects contained in responses from the listProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listProtectionRulesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listRecommendationsRecordIterator function. Creates a new async iterator which will iterate over the models.Recommendation objects contained in responses from the listRecommendations operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listRecommendationsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listRecommendations operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listThreatFeedsRecordIterator function. Creates a new async iterator which will iterate over the models.ThreatFeed objects contained in responses from the listThreatFeeds operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listThreatFeedsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listThreatFeeds operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWaasPoliciesRecordIterator function. Creates a new async iterator which will iterate over the models.WaasPolicySummary objects contained in responses from the listWaasPolicies operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWaasPoliciesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWaasPolicies operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWaasPolicyCustomProtectionRulesRecordIterator function. Creates a new async iterator which will iterate over the models.WaasPolicyCustomProtectionRuleSummary objects contained in responses from the listWaasPolicyCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWaasPolicyCustomProtectionRulesResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWaasPolicyCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafBlockedRequestsRecordIterator function. Creates a new async iterator which will iterate over the models.WafBlockedRequest objects contained in responses from the listWafBlockedRequests operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafBlockedRequestsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWafBlockedRequests operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafLogsRecordIterator function. Creates a new async iterator which will iterate over the models.WafLog objects contained in responses from the listWafLogs operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafLogsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWafLogs operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafRequestsRecordIterator function. Creates a new async iterator which will iterate over the models.WafRequest objects contained in responses from the listWafRequests operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafRequestsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWafRequests operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafTrafficRecordIterator function. Creates a new async iterator which will iterate over the models.WafTrafficDatum objects contained in responses from the listWafTraffic operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWafTrafficResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWafTraffic operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWhitelistsRecordIterator function. Creates a new async iterator which will iterate over the models.Whitelist objects contained in responses from the listWhitelists operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWhitelistsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWhitelists operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWorkRequestsRecordIterator function. Creates a new async iterator which will iterate over the models.WorkRequestSummary objects contained in responses from the listWorkRequests operation. This iterator will fetch more data from the server as needed.

NOTE: This function is deprecated in favor of listWorkRequestsResponseIterator function. Creates a new async iterator which will iterate over the responses received from the listWorkRequests operation. This iterator will fetch more data from the server as needed.

Gets the currently configured caching rules for the Web Application Firewall configuration of a specified WAAS policy. The rules are processed in the order they are specified in and the first matching rule will be used when processing a request. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.CachingRuleSummary objects contained in responses from the listCachingRules operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listCachingRules operation. This iterator will fetch more data from the server as needed.

Gets the list of currently configured CAPTCHA challenges in the Web Application Firewall configuration of a WAAS policy.

The order of the CAPTCHA challenges is important. The URL for each CAPTCHA will be checked in the order they are created.

Creates a new async iterator which will iterate over the models.Captcha objects contained in responses from the listCaptchas operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listCaptchas operation. This iterator will fetch more data from the server as needed.

Gets a list of SSL certificates that can be used in a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.CertificateSummary objects contained in responses from the listCertificates operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listCertificates operation. This iterator will fetch more data from the server as needed.

Gets a list of custom protection rules for the specified Web Application Firewall. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.CustomProtectionRuleSummary objects contained in responses from the listCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

Return the list of the tenant's edge node subnets. Use these CIDR blocks to restrict incoming traffic to your origin. These subnets are owned by OCI and forward traffic to customer origins. They are not associated with specific regions or compartments. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.EdgeSubnet objects contained in responses from the listEdgeSubnets operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listEdgeSubnets operation. This iterator will fetch more data from the server as needed.

Gets the list of good bots defined in the Web Application Firewall configuration for a WAAS policy.

The list is sorted by `key`, in ascending order.

Creates a new async iterator which will iterate over the models.GoodBot objects contained in responses from the listGoodBots operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listGoodBots operation. This iterator will fetch more data from the server as needed.

Gets the list of available protection rules for a WAAS policy. Use the GetWafConfig operation to view a list of currently configured protection rules for the Web Application Firewall, or use the ListRecommendations operation to get a list of recommended protection rules for the Web Application Firewall. The list is sorted by key, in ascending order. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.ProtectionRule objects contained in responses from the listProtectionRules operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listProtectionRules operation. This iterator will fetch more data from the server as needed.

Gets the list of recommended Web Application Firewall protection rules.

Use the `POST /waasPolicies/{waasPolicyId}/actions/acceptWafConfigRecommendations` method to accept recommended Web Application Firewall protection rules. For more information, see [WAF Protection Rules](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/wafprotectionrules.htm). The list is sorted by `key`, in ascending order. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.Recommendation objects contained in responses from the listRecommendations operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listRecommendations operation. This iterator will fetch more data from the server as needed.

Gets the list of available web application threat intelligence feeds and the actions set for each feed. The list is sorted by key, in ascending order.

Creates a new async iterator which will iterate over the models.ThreatFeed objects contained in responses from the listThreatFeeds operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listThreatFeeds operation. This iterator will fetch more data from the server as needed.

Gets a list of WAAS policies. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.WaasPolicySummary objects contained in responses from the listWaasPolicies operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWaasPolicies operation. This iterator will fetch more data from the server as needed.

Gets the list of currently configured custom protection rules for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.WaasPolicyCustomProtectionRuleSummary objects contained in responses from the listWaasPolicyCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWaasPolicyCustomProtectionRules operation. This iterator will fetch more data from the server as needed.

Gets the number of blocked requests by a Web Application Firewall feature in five minute blocks, sorted by timeObserved in ascending order (starting from oldest data). This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.WafBlockedRequest objects contained in responses from the listWafBlockedRequests operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWafBlockedRequests operation. This iterator will fetch more data from the server as needed.

Gets structured Web Application Firewall event logs for a WAAS policy. Sorted by the timeObserved in ascending order (starting from the oldest recorded event).

Creates a new async iterator which will iterate over the models.WafLog objects contained in responses from the listWafLogs operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWafLogs operation. This iterator will fetch more data from the server as needed.

Gets the number of requests managed by a Web Application Firewall over a specified period of time, including blocked requests. Sorted by timeObserved in ascending order (starting from oldest requests).

Creates a new async iterator which will iterate over the models.WafRequest objects contained in responses from the listWafRequests operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWafRequests operation. This iterator will fetch more data from the server as needed.

Gets the Web Application Firewall traffic data for a WAAS policy. Sorted by timeObserved in ascending order (starting from oldest data).

Creates a new async iterator which will iterate over the models.WafTrafficDatum objects contained in responses from the listWafTraffic operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWafTraffic operation. This iterator will fetch more data from the server as needed.

Gets the list of whitelists defined in the Web Application Firewall configuration for a WAAS policy. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.Whitelist objects contained in responses from the listWhitelists operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWhitelists operation. This iterator will fetch more data from the server as needed.

Gets a list of subnets (CIDR notation) from which the WAAS EDGE may make requests. The subnets are owned by OCI and forward traffic to your origins. Allow traffic from these subnets to your origins. They are not associated with specific regions or compartments. This operation uses {@link common.OciSdkDefaultRetryConfiguration} by default if no retry configuration is defined by the user.

Creates a new async iterator which will iterate over the models.WorkRequestSummary objects contained in responses from the listWorkRequests operation. This iterator will fetch more data from the server as needed.

Creates a new async iterator which will iterate over the responses received from the listWorkRequests operation. This iterator will fetch more data from the server as needed.

Performs a purge of the cache for each specified resource. If no resources are passed, the cache for the entire Web Application Firewall will be purged. For more information, see Caching Rules. This operation does not retry by default if the user has not defined a retry configuration.

Shutdown the circuit breaker used by the client when it is no longer needed

Updates the list of access rules in the Web Application Firewall configuration for a specified WAAS policy. Access rules allow explicit actions to be defined and executed for requests that meet various conditions. A rule action can be set to allow, detect, or block requests. The detect setting allows the request to pass through the Web Application Firewall and is tagged with a DETECT flag in the Web Application Firewall's log.

This operation can create, delete, update, and/or reorder access rules depending on the structure of the request body.

Access rules can be updated by changing the properties of the access rule object with the rule's key specified in the key field. Access rules can be reordered by changing the order of the access rules in the list when updating.

Access rules can be created by adding a new access rule object to the list without a `key` property specified. A `key` will be generated for the new access rule upon update.

Any existing access rules that are not specified with a `key` in the list of access rules will be deleted upon update. This operation does not retry by default if the user has not defined a retry configuration.

Updates the details of an address list. Only the fields specified in the request body will be updated; all other properties will remain unchanged. This operation does not retry by default if the user has not defined a retry configuration.

Updates the configuration for each specified caching rule.

Caching rules WAF policies allow you to selectively cache content on Oracle Cloud Infrastructure's edge servers, such as webpages or certain file types. For more information about caching rules, see [Caching Rules](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/cachingrules.htm).

This operation can create, delete, update, and/or reorder caching rules depending on the structure of the request body. Caching rules can be updated by changing the properties of the caching rule object with the rule's key specified in the key field. Any existing caching rules that are not specified with a key in the list of access rules will be deleted upon update.

The order the caching rules are specified in is important. The rules are processed in the order they are specified and the first matching rule will be used when processing a request. Use `ListCachingRules` to view a list of all available caching rules in a compartment. This operation does not retry by default if the user has not defined a retry configuration.

Updates the list of CAPTCHA challenges in the Web Application Firewall configuration for a WAAS policy. This operation can create, update, or delete CAPTCHAs depending on the structure of the request body. CAPTCHA challenges can be updated by changing the properties of the CAPTCHA object with the rule's key specified in the key field. CAPTCHA challenges can be reordered by changing the order of the CAPTCHA challenges in the list when updating.

CAPTCHA challenges can be created by adding a new access rule object to the list without a `key` property specified. A `key` will be generated for the new CAPTCHA challenges upon update.

Any existing CAPTCHA challenges that are not specified with a `key` in the list of CAPTCHA challenges will be deleted upon update.

Query parameters are allowed in CAPTCHA URL. This operation does not retry by default if the user has not defined a retry configuration.

It is not possible to update a certificate, only create and delete. Therefore, this operation can only update the display name, freeform tags, and defined tags of a certificate. This operation does not retry by default if the user has not defined a retry configuration.

Updates the configuration of a custom protection rule. Only the fields specified in the request body will be updated; all other properties will remain unchanged. This operation does not retry by default if the user has not defined a retry configuration.

Updates the Device Fingerprint Challenge (DFC) settings in the Web Application Firewall configuration for a policy. The DFC generates a hashed signature of both virtual and real browsers based on 50+ attributes. These proprietary signatures are then leveraged for real-time correlation to identify and block malicious bots.

The signature is based on a library of attributes detected via JavaScript listeners; the attributes include OS, screen resolution, fonts, UserAgent, IP address, etc. We are constantly making improvements and considering new libraries to include in our DFC build. We can also exclude attributes from the signature as needed.

DFC collects attributes to generate a hashed signature about a client - if a fingerprint is not possible, then it will result in a block or alert action. Actions can be enforced across multiple devices if they share they have the same fingerprint. This operation does not retry by default if the user has not defined a retry configuration.

Updates the list of good bots in the Web Application Firewall configuration for a policy. Only the fields specified in the request body will be updated, all other configuration properties will remain unchanged.

Good bots allows you to manage access for bots from known providers, such as Google or Baidu. For more information about good bots, see [Bot Management](https://docs.cloud.oracle.com/iaas/Content/WAF/Tasks/botmanagement.htm). This operation does not retry by default if the user has not defined a retry configuration.

Updates the Human Interaction Challenge (HIC) settings in the Web Application Firewall configuration for a WAAS policy. HIC is a countermeasure that allows the proxy to check the user's browser for various behaviors that distinguish a human presence from a bot. This operation does not retry by default if the user has not defined a retry configuration.

Updates the JavaScript challenge settings in the Web Application Firewall configuration for a WAAS policy. JavaScript Challenge validates that the client can accept JavaScript with a binary decision. For more information, see Bot Management. This operation does not retry by default if the user has not defined a retry configuration.

Updates the configuration for a WAAS policy. Only the fields specified in the request body will be updated; all other properties will remain unchanged. This operation does not retry by default if the user has not defined a retry configuration.

Updates the action for each specified protection rule. Requests can either be allowed, blocked, or trigger an alert if they meet the parameters of an applied rule. For more information on protection rules, see WAF Protection Rules. This operation can update or disable protection rules depending on the structure of the request body. Protection rules can be updated by changing the properties of the protection rule object with the rule's key specified in the key field. This operation does not retry by default if the user has not defined a retry configuration.

Updates the protection settings in the Web Application Firewall configuration for a WAAS policy. Protection settings allow you define what action is taken when a request is blocked by the Web Application Firewall, such as returning a response code or block page. Only the fields specified in the request body will be updated; all other fields will remain unchanged. This operation does not retry by default if the user has not defined a retry configuration.

Updates the action to take when a request's IP address matches an address in the specified threat intelligence feed. Threat intelligence feeds are compiled lists of IP addresses with malicious reputations based on internet intelligence. Only the threat feeds specified in the request body will be updated; all other threat feeds will remain unchanged. This operation does not retry by default if the user has not defined a retry configuration.

Updates the details of a WAAS policy, including origins and tags. Only the fields specified in the request body will be updated; all other properties will remain unchanged. To update platform provided resources such as GoodBots, ProtectionRules, and ThreatFeeds, first retrieve the list of available resources with the related list operation such as GetThreatFeeds or GetProtectionRules. The returned list will contain objects with key properties that can be used to update the resource during the UpdateWaasPolicy request. This operation does not retry by default if the user has not defined a retry configuration.

Updates the action for each specified custom protection rule. Only the DETECT and BLOCK actions can be set. Disabled rules should not be included in the list. For more information on protection rules, see WAF Protection Rules. This operation does not retry by default if the user has not defined a retry configuration.

Updates the address rate limiting settings in the Web Application Firewall configuration for a policy. Rate limiting allows you to configure a threshold for the number of requests from a unique IP address for the given period. You can also define the response code for the requests from the same address that exceed the threshold. This operation does not retry by default if the user has not defined a retry configuration.

Updates the Web Application Firewall configuration for a specified WAAS policy.

To update platform provided resources such as `GoodBots`, `ProtectionRules`, and `ThreatFeeds`, first retrieve the list of available resources with the related list operation, such as `GetThreatFeeds` or `GetProtectionRules`.

The returned list will contain objects with `key` properties that can be used to update the resource during the `UpdateWafConfig` request.

Updates the list of IP addresses that bypass the Web Application Firewall for a WAAS policy. Supports single IP addresses, subnet masks (CIDR notation) and Address Lists.

This operation can create, delete, update, and/or reorder whitelists depending on the structure of the request body.

Whitelists can be updated by changing the properties of the whitelist object with the rule's key specified in the `key` field. Whitelists can be reordered by changing the order of the whitelists in the list of objects when updating.

Whitelists can be created by adding a new whitelist object to the list without a `key` property specified. A `key` will be generated for the new whitelist upon update.

Whitelists can be deleted by removing the existing whitelist object from the list. Any existing whitelists that are not specified with a `key` in the list of access rules will be deleted upon update. This operation does not retry by default if the user has not defined a retry configuration.