WAF / Client / get_rule
get_rule#
- WAF.Client.get_rule(**kwargs)#
- Note- This is AWS WAF Classic documentation. For more information, see AWS WAF Classic in the developer guide. - For the latest version of AWS WAF, use the AWS WAFV2 API and see the AWS WAF Developer Guide. With the latest version, AWS WAF has a single set of endpoints for regional and global use. - Returns the Rule that is specified by the - RuleIdthat you included in the- GetRulerequest.- See also: AWS API Documentation - Request Syntax- response = client.get_rule( RuleId='string' ) - Parameters:
- RuleId (string) – - [REQUIRED] - The - RuleIdof the Rule that you want to get.- RuleIdis returned by CreateRule and by ListRules.
- Return type:
- dict 
- Returns:
- Response Syntax- { 'Rule': { 'RuleId': 'string', 'Name': 'string', 'MetricName': 'string', 'Predicates': [ { 'Negated': True|False, 'Type': 'IPMatch'|'ByteMatch'|'SqlInjectionMatch'|'GeoMatch'|'SizeConstraint'|'XssMatch'|'RegexMatch', 'DataId': 'string' }, ] } } - Response Structure- (dict) – - Rule (dict) – - Information about the Rule that you specified in the - GetRulerequest. For more information, see the following topics:- Rule: Contains - MetricName,- Name, an array of- Predicateobjects, and- RuleId
- Predicate: Each - Predicateobject contains- DataId,- Negated, and- Type
 - RuleId (string) – - A unique identifier for a - Rule. You use- RuleIdto get more information about a- Rule(see GetRule), update a- Rule(see UpdateRule), insert a- Ruleinto a- WebACLor delete a one from a- WebACL(see UpdateWebACL), or delete a- Rulefrom AWS WAF (see DeleteRule).- RuleIdis returned by CreateRule and by ListRules.
- Name (string) – - The friendly name or description for the - Rule. You can’t change the name of a- Ruleafter you create it.
- MetricName (string) – - A friendly name or description for the metrics for this - Rule. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can’t contain whitespace or metric names reserved for AWS WAF, including “All” and “Default_Action.” You can’t change- MetricNameafter you create the- Rule.
- Predicates (list) – - The - Predicatesobject contains one- Predicateelement for each ByteMatchSet, IPSet, or SqlInjectionMatchSet object that you want to include in a- Rule.- (dict) – - Note- This is AWS WAF Classic documentation. For more information, see AWS WAF Classic in the developer guide. - For the latest version of AWS WAF, use the AWS WAFV2 API and see the AWS WAF Developer Guide. With the latest version, AWS WAF has a single set of endpoints for regional and global use. - Specifies the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, and SizeConstraintSet objects that you want to add to a - Ruleand, for each object, indicates whether you want to negate the settings, for example, requests that do NOT originate from the IP address 192.0.2.44.- Negated (boolean) – - Set - Negatedto- Falseif you want AWS WAF to allow, block, or count requests based on the settings in the specified ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, or SizeConstraintSet. For example, if an- IPSetincludes the IP address- 192.0.2.44, AWS WAF will allow or block requests based on that IP address.- Set - Negatedto- Trueif you want AWS WAF to allow or block a request based on the negation of the settings in the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet, RegexMatchSet, GeoMatchSet, or SizeConstraintSet. For example, if an- IPSetincludes the IP address- 192.0.2.44, AWS WAF will allow, block, or count requests based on all IP addresses except- 192.0.2.44.
- Type (string) – - The type of predicate in a - Rule, such as- ByteMatchor- IPSet.
- DataId (string) – - A unique identifier for a predicate in a - Rule, such as- ByteMatchSetIdor- IPSetId. The ID is returned by the corresponding- Createor- Listcommand.
 
 
 
 
 
 - Exceptions- WAF.Client.exceptions.WAFInternalErrorException
- WAF.Client.exceptions.WAFInvalidAccountException
- WAF.Client.exceptions.WAFNonexistentItemException
 - Examples- The following example returns the details of a rule with the ID example1ds3t-46da-4fdb-b8d5-abc321j569j5. - response = client.get_rule( RuleId='example1ds3t-46da-4fdb-b8d5-abc321j569j5', ) print(response) - Expected Output: - { 'Rule': { 'MetricName': 'WAFByteHeaderRule', 'Name': 'WAFByteHeaderRule', 'Predicates': [ { 'DataId': 'MyByteMatchSetID', 'Negated': False, 'Type': 'ByteMatch', }, ], 'RuleId': 'example1ds3t-46da-4fdb-b8d5-abc321j569j5', }, 'ResponseMetadata': { '...': '...', }, }