request_control

Suggest Edits

Version: `v2024-10-21`	Includes use: No

Behavior name: Request Control Cloudlet

The Request Control Cloudlet allows you to control access to your web content based on the incoming request's IP or geographic location. With Cloudlets available on your contract, choose Your services > Edge logic Cloudlets to control how the feature works within Control Center, or use the Cloudlets API to configure it programmatically.

Default behavior

These samples reflect the behavior's default settings. You can use these as is in your configurations or make adjustments based on the behavior's available options.

data "akamai_property_rules_builder" "request_control" {
  rules_v2025_02_18 {
    name     = "Request Control Cloudlet"
    comments = "Controls access to your web content based on the incoming request's IP or geographic location."
    behavior {
      request_control {
        enabled           = true
        is_shared_policy  = false
        cloudlet_policy   = ""
        enable_branded403 = false
      }
    }
  }
}

"behaviors": [
  {
    "name": "requestControl",
    "options": {
      "enabled": true,
      "isSharedPolicy": false,
      "cloudletPolicy": "",
      "enableBranded403": false
    }
  }
]

Options

Option	Description
`enabled`	Boolean Enables the Request Control Cloudlet.
`is_shared_policy`	Boolean Whether you want to apply the Cloudlet shared policy to an unlimited number of properties within your account. Learn more about shared policies and how to create them in Cloudlets Policy Manager.
`cloudlet_policy`	Object \| Requires: `is_shared_policy` is `false` Identifies the Cloudlet policy. Contains: `id`. The cloudlet policy's ID. `name`. The cloudlet policy's name.
`cloudlet_shared_policy`	String \| Requires: `is_shared_policy` is `true` Identifies the Cloudlet shared policy to use with this behavior. Use the Cloudlets API to list available shared policies.
`enable_branded403`	Boolean If enabled, serves a branded `403` page for this Cloudlet instance.
`branded403status_code`	Enum \| Requires: `enable_branded403` is `true` Specifies the response status code for the branded deny action. Value is one of: `200` `302` `403` `503`
`net_storage`	Object \| Requires Requires both: `enable_branded403` is `true` `branded403status_code` isn't `302` Specifies the NetStorage domain that contains the branded `403` page. Contains: `cp_code`. Identifies a CP code assigned to this storage group. `download_domain_name`. Domain name from which content can be downloaded. `g2o_token`. Signature Header Authentication key. `id`. The storage group's ID. `name`. The storage group's name.
`branded403File`	String \| Requires Requires both: `enable_branded403` is `true` `branded403status_code` isn't `302` Specifies the full path of the branded 403 page, including the filename, but excluding the NetStorage CP code path component.
`branded403Url`	String \| Requires Requires both: `enable_branded403` is `true` `branded403status_code` isn't `302` Specifies the redirect URL for the branded deny action.
`branded_deny_cache_ttl`	Number \| Requires Requires both: `enable_branded403` is `true` `branded403status_code` isn't `302` Specifies the branded response page's time to live in the cache in minutes. Value range is `5`-`30`. Default is `5` minutes.

Updated about 10 hours ago