terraform-google-cloud-armor The module doesn't support using TLS_JA3

The module doesn't support using TLS_JA3_FINGERPRINT in enforce on key

Open mqmr opened this issue 1 year ago • 6 comments

[NOT A CONTRIBUTION]

It seems the module doesn't support setting TLS_JA3_FINGERPRINT, while the documentation [1] and examples [2] show it's possible.

│ Error: expected rule.60.rate_limit_options.0.enforce_on_key to be one of ["ALL" "IP" "HTTP_HEADER" "XFF_IP" "HTTP_COOKIE" "HTTP_PATH" "SNI" "REGION_CODE" ""], got TLS_JA3_FINGERPRINT

│ Error: expected rule.60.rate_limit_options.0.enforce_on_key_configs.0.enforce_on_key_type to be one of ["ALL" "IP" "HTTP_HEADER" "XFF_IP" "HTTP_COOKIE" "HTTP_PATH" "SNI" "REGION_CODE"], got TLS_JA3_FINGERPRINT

Would it be possible to extend the module to support that as well? Thank you

[1] https://cloud.google.com/armor/docs/rate-limiting-overview#identifying_clients_for_rate_limiting [2] https://cloud.google.com/armor/docs/configure-rate-limiting#ja3

Feb 29 '24 11:02 mqmr

terraform-google-cloud-armor terraform-google-cloud-armor copied to clipboard

The module doesn't support using TLS_JA3_FINGERPRINT in enforce on key

terraform-google-cloud-armor
terraform-google-cloud-armor copied to clipboard