Create a rule via API
Use the Rulesets API to create configuration rules via API.
When creating a configuration rule via API, make sure you:
- Set the rule action to
set_config
. - Define the parameters in the
action_parameters
field according to the settings you wish to override for matching requests. - Deploy the rule to the
http_config_settings
phase at the zone level.
Follow this workflow to create a configuration rule for a given zone via API:
-
Use the List zone rulesets operation to check if there is already a ruleset for the
http_config_settings
phase at the zone level. -
If the phase ruleset does not exist, create it using the Create a zone ruleset operation. In the new ruleset properties, set the following values:
- kind:
zone
- phase:
http_config_settings
- kind:
-
Use the Update a zone ruleset operation to add a configuration rule to the list of ruleset rules. Alternatively, include the rule in the Create a zone ruleset request mentioned in the previous step.
Make sure your API token has the required permissions to perform the API operations.
Example: Add a rule that enables Email Obfuscation and Browser Integrity Check
The following example sets the rules of an existing phase ruleset ({ruleset_id}
) to a single configuration rule — enabling Email Obfuscation and Browser Integrity Check for the contacts page — using the Update a zone ruleset operation:
Example: Add a rule that turns on I'm Under Attack mode for the admin area
The following example sets the rules of an existing phase ruleset ({ruleset_id}
) to a single configuration rule — turning on I'm Under Attack mode for the administration area — using the Update a zone ruleset operation:
The API token used in API requests to manage configuration rules must have at least the following permission:
- Zone > Config Rules > Edit