Eval penalty box

akamai_appsec_eval_penalty_box

ūüöß

Beta

This is a beta version of eval penalty box. Use of this version is as is and as available while still in testing and development.

Returns the penalty box settings for a security policy in evaluation mode. When the penalty box is enabled for a policy in evaluation mode, clients that trigger a WAF Deny action are placed in the penalty box.

There, the action you select for the penalty box (either alert or deny) continues to apply to any requests from that client for the next 10 minutes.

Scopes: Security policy

Example

terraform {
  required_providers {
    akamai = {
      source = "akamai/akamai"
    }
  }
}

provider "akamai" {
  edgerc = "~/.edgerc"
}

// USE CASE: User wants to view penalty box settings.

data "akamai_appsec_configuration" "configuration" {
  name = "Documentation"
}
data "akamai_appsec_eval_penalty_box" "eval_penalty_box" {
  config_id          = data.akamai_appsec_configuration.configuration.config_id
  security_policy_id = "gms1_134637"
}

output "eval_penalty_box_action" {
  value = data.akamai_appsec_eval_penalty_box.eval_penalty_box.action
}

output "eval_penalty_box_enabled" {
  value = data.akamai_appsec_eval_penalty_box.eval_penalty_box.enabled
}

output "eval_penalty_box_text" {
  value = data.akamai_appsec_eval_penalty_box.eval_penalty_box.output_text
}

Argument reference

This data source supports the following arguments:

  • config_id (Required). Unique identifier of the security configuration associated with the evaluation penalty box settings.
  • security_policy_id (Required). Unique identifier of the security policy associated with the evaluation penalty box settings.

Output options

The following options can be used to determine the information returned, and how that returned information is formatted:

  • action. Action taken any time the penalty box is triggered.

    • alert. Record the event.
    • deny. The request is blocked.
    • denycustom{custom_deny_id}. The action defined by the custom deny is taken.
    • none. Take no action.
  • enabled. If true, evaluation penalty box protection is enabled. If false, evaluation penalty box protection is disabled.

  • output_text. Tabular report of evaluation penalty box protection settings.