Clone or create a security policy

post https://{hostname}/appsec/v1/configs/{configId}/versions/{versionNumber}/security-policies

Creates a new copy of an existing security policy or creates a new security policy from scratch when you don't specify a policy to clone in the request. To create a new security policy, leave createFromSecurityPolicy empty in your request. Products: Kona Site Defender, App & API Protector with the Advanced Security module.

Path Params

configId

int64

required

A unique identifier for each configuration.

versionNumber

integer

required

A unique identifier for each version of a configuration.

Query Params

accountSwitchKey

string

For customers who manage more than one account, this runs the operation from another account. The Identity and Access Management API provides a list of available account switch keys.

Body Params

createFromSecurityPolicy

string

The unique identifier (policyId) of the source policy to create the new policy from.

defaultSettings

string

The default settings on the policy, true by default.

policyName

string

The name of the security policy. If not provided, the system generates a name automatically with the pattern clone from <createFromSecurityPolicy>.

policyPrefix

string

The four-character alphanumeric string prefix for the policyId. If not provided, the prefix is autogenerated.

source

string | null

The source for the new the policy. If not provided, the source is blank. Other values are 'default' or the source security policy ID.

Responses

Response body

object

configId

integer

Uniquely identifies the security configuration.

hasRatePolicyWithApiKey

boolean

required

Indicates whether this security policy has a rate policy which has API_KEY as a client identifier. APIs are managed using the API Endpoint Definition API.

policyId

string

required

Uniquely identifies the security policy.

policyName

string

required

The name of the security policy.

policySecurityControls

object

required

The status of security controls defined in the security policy.

applyApiConstraints

boolean

required

Whether you enabled API constraints.

applyApplicationLayerControls

boolean

required

Whether you enabled application layer controls.

applyBotmanControls

boolean

required

Whether you enabled Bot Manager controls.

applyNetworkLayerControls

boolean

required

Whether you enabled network layer controls.

applyRateControls

boolean

required

Whether you enabled rate controls.

applyReputationControls

boolean

required

Whether you enabled reputation controls.

applySlowPostControls

boolean

required

Whether you enabled slow post controls.

version

integer

The version number of the security configuration.

Language

Authentication

Remember to add your authentication credentials to run this code.

URL


xxxxxxxxxx
1
curl --request POST \
2
     --url https://hostname/appsec/v1/configs/configId/versions/versionNumber/security-policies \
3
     --header 'accept: application/json' \
4
     --header 'content-type: application/json'


xxxxxxxxxx
15
 
1
{
2
  "configId": 77653,
3
  "policyId": "bt17_75755",
4
  "policyName": "Open Cloned IV 2",
5
  "policySecurityControls": {
6
    "applyApiConstraints": true,
7
    "applyApplicationLayerControls": true,
8
    "applyBotmanControls": true,
9
    "applyNetworkLayerControls": true,
10
    "applyRateControls": true,
11
    "applyReputationControls": true,
12
    "applySlowPostControls": false
13
  },
14
  "version": 144
15
}

201Successfully created security policy.

400Invalid. Client error, such as invalid or malformed input.

403Forbidden. You don't have permission to write to this resource.

404Not found. The named security policy doesn't exist, doesn't carry application layer controls, or no rule with this ID is available for use in this policy.

500Internal server error. Something went wrong on our side. Try again in a few minutes, and contact support if the error persists.