github_mirrors/openappsec
3
0
Fork 1
mirror of https://github.com/openappsec/openappsec.git synced 2025-06-28 16:41:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

Update open-appsec-crd-v1beta2.yaml

Browse Source
This commit is contained in:
orianelou 2024-12-19 14:42:51 +02:00 committed by GitHub
parent de8e2d9970
commit 96ce290e5f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 7 additions and 153 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

160
config/crds/open-appsec-crd-v1beta2.yaml
View File

@ -138,6 +138,8 @@ spec:
items:
type: object
properties:
name:
type: string
host:
type: string
mode:
@ -182,142 +184,6 @@ spec:
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata :
name : practices.openappsec.io
spec:
group: openappsec.io
versions:
- name: v1beta1
served: true
storage: true
schema:
openAPIV3Schema:
type: object
properties:
spec:
type: object
properties:
web-attacks:
type: object
properties:
override-mode:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
minimum-confidence:
type: string
enum:
- medium
- high
- critical
max-url-size-bytes:
type: integer
max-object-depth:
type: integer
max-body-size-kb:
type: integer
max-header-size-bytes:
type: integer
protections:
type: object
properties:
csrf-enabled:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
error-disclosure-enabled:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
open-redirect-enabled:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
non-valid-http-methods:
type: boolean
anti-bot:
type: object
properties:
override-mode:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
injected-URIs:
type: array
items:
type: object
properties:
uri:
type: string
validated-URIs:
type: array
items:
type: object
properties:
uri:
type: string
snort-signatures:
type: object
properties:
override-mode:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
configmap:
type: array
items:
type: string
openapi-schema-validation:
type: object
properties:
override-mode:
type: string
enum:
- prevent-learn
- detect-learn
- prevent
- detect
- inactive
configmap:
type: array
items:
type: string
scope: Cluster
names:
plural: practices
singular: practice
kind: Practice
shortNames:
- practice
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata :
name : accesscontrolpractices.openappsec.io
creationTimestamp: null
@ -338,8 +204,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
practiceMode:
type: string
enum:
@ -431,7 +295,7 @@ spec:
type: string
enum:
- block-page
#- redirect
- redirect
- response-code-only
message-title:
type: string
@ -455,8 +319,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
mode:
type: string
enum:
@ -569,8 +431,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
action:
type: string
enum:
@ -718,8 +578,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
accessControlLogging:
type: object
properties:
@ -801,8 +659,8 @@ spec:
- json
- json-formatted
default: json
k8s-service:
type: boolean # Default value is dependant on the environment type
local-tuning:
type: boolean
cefService:
type: array
items:
@ -873,8 +731,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
sourcesIdentifiers: # required, minItems: 1
type: array
items:
@ -929,8 +785,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
practiceMode:
type: string
enum:
@ -1078,6 +932,8 @@ spec:
- inactive
- inherited #inherited from threatPreventionPractice mode set in policy
default: inactive
enforcementLevel:
type: string
configmap:
type: array
items:
@ -1303,8 +1159,6 @@ spec:
properties:
appsecClassName:
type: string
name:
type: string
minNumOfSources:
type: integer
default: 3