Get WAAS Container Policy
GET/api/v34.00/policies/firewall/app/container
x-prisma-cloud-target-env: {"permission":"policyWAAS"}
Retrieves the WAAS policy for containers. A policy consists of ordered rules.
This endpoint maps to Defend > WAAS > Container in the Console UI.
cURL Request
Refer to the following example cURL command:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
'https://<CONSOLE>/api/v<VERSION>/policies/firewall/app/container'
A successful response returns a list of rules in the policy.
Responses
- 200
- default
Policy representation details
- application/json
- Schema
- Example (auto)
Schema
_idstring
Unique internal ID.
maxPortinteger
Specifies the upper limit (maxima) for a port number to use in an application firewall.
minPortinteger
Specifies the lower limit (minima) for a port number to use in an application firewall.
rules object[]
{
"_id": "string",
"maxPort": 0,
"minPort": 0,
"rules": [
{
"allowMalformedHttpHeaderNames": true,
"applicationsSpec": [
{
"apiSpec": {
"description": "string",
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"endpoints": [
{
"basePath": "string",
"exposedPort": 0,
"grpc": true,
"host": "string",
"http2": true,
"internalPort": 0,
"tls": true
}
],
"fallbackEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"paths": [
{
"methods": [
{
"method": "string",
"parameters": [
{
"allowEmptyValue": true,
"array": true,
"explode": true,
"location": [
"path",
"query",
"cookie",
"header",
"body",
"json",
"xml",
"formData",
"multipart"
],
"max": 0,
"min": 0,
"name": "string",
"required": true,
"style": [
"simple",
"spaceDelimited",
"tabDelimited",
"pipeDelimited",
"form",
"matrix",
"label"
],
"type": [
"integer",
"number",
"string",
"boolean",
"array",
"object"
]
}
]
}
],
"path": "string"
}
],
"queryParamFallbackEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"appID": "string",
"attackTools": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"autoApplyPatchesSpec": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"banDurationMinutes": 0,
"body": {
"inspectionLimitExceededEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"inspectionSizeBytes": 0,
"skip": true
},
"botProtectionSpec": {
"interstitialPage": true,
"jsInjectionSpec": {
"enabled": true,
"timeoutEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"knownBotProtectionsSpec": {
"archiving": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"businessAnalytics": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"careerSearch": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"contentFeedClients": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"educational": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"financial": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"mediaSearch": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"news": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"searchEngineCrawlers": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"reCAPTCHASpec": {
"allSessions": true,
"customPageSpec": {
"body": "string",
"enabled": true
},
"enabled": true,
"secretKey": {
"encrypted": "string",
"plain": "string"
},
"siteKey": "string",
"successExpirationHours": 0,
"type": [
"checkbox",
"invisible"
]
},
"sessionValidation": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"unknownBotProtectionSpec": {
"apiLibraries": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"botImpersonation": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"browserImpersonation": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"generic": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"httpLibraries": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"requestAnomalies": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"threshold": [
"3",
"6",
"9"
]
},
"webAutomationTools": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"webScrapers": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"userDefinedBots": [
{
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"headerName": "string",
"headerValues": [
"string"
],
"name": "string",
"subnets": [
"string"
]
}
]
},
"certificate": {
"encrypted": "string",
"plain": "string"
},
"clickjackingEnabled": true,
"cmdi": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"codeInjection": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"csrfEnabled": true,
"customBlockResponse": {
"body": "string",
"code": 0,
"enabled": true
},
"customRules": [
{
"_id": 0,
"action": [
"audit",
"incident"
],
"effect": [
"block",
"prevent",
"alert",
"allow",
"ban",
"disable"
]
}
],
"disableEventIDHeader": true,
"dosConfig": {
"alert": {
"average": 0,
"burst": 0
},
"ban": {
"average": 0,
"burst": 0
},
"enabled": true,
"excludedNetworkLists": [
"string"
],
"matchConditions": [
{
"fileTypes": [
"string"
],
"methods": [
"string"
],
"responseCodeRanges": [
{
"end": 0,
"start": 0
}
]
}
],
"trackSession": true
},
"headerSpecs": [
{
"allow": true,
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"name": "string",
"required": true,
"values": [
"string"
]
}
],
"intelGathering": {
"infoLeakageEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"removeFingerprintsEnabled": true
},
"lfi": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"malformedReq": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"maliciousUpload": {
"allowedExtensions": [
"string"
],
"allowedFileTypes": [
[
"pdf",
"officeLegacy",
"officeOoxml",
"odf",
"jpeg",
"png",
"gif",
"bmp",
"ico",
"avi",
"mp4",
"aac",
"mp3",
"wav",
"zip",
"gzip",
"rar",
"7zip"
]
],
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
]
},
"networkControls": {
"advancedProtectionEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"countries": {
"alert": [
"string"
],
"allow": [
"string"
],
"allowMode": true,
"enabled": true,
"fallbackEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"prevent": [
"string"
]
},
"exceptionSubnets": [
"string"
],
"networkControlsExceptionSubnets": {
"subnets": [
"string"
]
},
"subnets": {
"alert": [
"string"
],
"allow": [
"string"
],
"allowMode": true,
"enabled": true,
"fallbackEffect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"prevent": [
"string"
]
}
},
"remoteHostForwarding": {
"enabled": true,
"target": "string"
},
"responseHeaderSpecs": [
{
"name": "string",
"override": true,
"values": [
"string"
]
}
],
"sessionCookieBan": true,
"sessionCookieEnabled": true,
"sessionCookieSameSite": [
"Lax",
"Strict",
"None"
],
"sessionCookieSecure": true,
"shellshock": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"sqli": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
},
"tlsConfig": {
"HSTSConfig": {
"enabled": true,
"includeSubdomains": true,
"maxAgeSeconds": 0,
"preload": true
},
"metadata": {
"issuerName": "string",
"notAfter": "2024-07-29T15:51:28.071Z",
"subjectName": "string"
},
"minTLSVersion": [
"1.0",
"1.1",
"1.2",
"1.3"
]
},
"xss": {
"effect": [
"ban",
"prevent",
"alert",
"allow",
"disable",
"reCAPTCHA"
],
"exceptionFields": [
{
"key": "string",
"keyPattern": true,
"location": [
"path",
"query",
"queryValues",
"cookie",
"UserAgentHeader",
"header",
"body",
"rawBody",
"XMLPath",
"JSONPath"
],
"response": true,
"valuePattern": true
}
]
}
}
],
"autoProtectPorts": true,
"collections": [
{
"accountIDs": [
"string"
],
"appIDs": [
"string"
],
"clusters": [
"string"
],
"color": "string",
"containers": [
"string"
],
"description": "string",
"functions": [
"string"
],
"hosts": [
"string"
],
"images": [
"string"
],
"labels": [
"string"
],
"modified": "2024-07-29T15:51:28.071Z",
"name": "string",
"namespaces": [
"string"
],
"owner": "string",
"prisma": true,
"system": true
}
],
"disabled": true,
"modified": "2024-07-29T15:51:28.071Z",
"name": "string",
"notes": "string",
"outOfBandScope": [
"container",
"host",
""
],
"owner": "string",
"previousName": "string",
"readTimeoutSeconds": 0,
"skipAPILearning": true,
"trafficMirroring": {
"enabled": true,
"sampling": true,
"vpcConfig": {
"autoScalingEnabled": true,
"autoScalingMaxInstances": 0,
"configID": "string",
"consoleHostname": "string",
"credentialID": "string",
"instanceNames": [
"string"
],
"instanceType": "string",
"lbARN": "string",
"lbName": "string",
"lbType": "string",
"ports": [
0
],
"region": "string",
"subnetID": "string",
"tags": [
"string"
],
"vpcID": "string"
}
},
"windows": true
}
]
}
- curl
- python
- go
- nodejs
- csharp
- php
- CURL
curl -L 'https://pan.dev/api/v34.00/policies/firewall/app/container' \
-H 'Accept: application/json'