Add rules to a custom ruleset
To add rules to an existing custom ruleset, use the Update an account ruleset operation and pass the rules in an array. Each rule has an expression and an action.
The following request adds two rules to a custom ruleset. These will be the only two rules in the ruleset.
The response will include the rule ID of the new rules in the id
curl --request PUT \{account_id}/rulesets/{custom_ruleset_id} \--header "Authorization: Bearer <API_TOKEN>" \--header "Content-Type: application/json" \--data '{ "rules": [ { "expression": "( eq \"GB\" or eq \"FR\") or cf.threat_score > 0", "action": "challenge", "description": "challenge GB and FR or based on IP Reputation" }, { "expression": "not http.request.uri.path matches \"^/api/.*$\"", "action": "challenge", "description": "challenge not /api" } ]}'
{ "result": { "id": "<CUSTOM_RULESET_ID>", "name": "Custom Ruleset 1", "kind": "custom", "version": "2", "rules": [ { "id": "<CUSTOM_RULE_ID_1>", "version": "1", "action": "challenge", "expression": "( eq \"GB\" or eq \"FR\") or cf.threat_score \u003e 0", "description": "challenge GB and FR or based on IP Reputation", "last_updated": "2021-03-18T18:25:08.122758Z", "ref": "<CUSTOM_RULE_REF_1>", "enabled": true }, { "id": "<CUSTOM_RULE_ID_2>", "version": "1", "action": "challenge", "expression": "not http.request.uri.path matches \"^/api/.*$\"", "description": "challenge not /api", "last_updated": "2021-03-18T18:25:08.122758Z", "ref": "<CUSTOM_RULE_REF_2>", "enabled": true } ], "last_updated": "2021-03-18T18:25:08.122758Z", "phase": "http_request_firewall_custom" }, "success": true, "errors": [], "messages": []}
To update one or more rules in a custom ruleset, use the Update an account ruleset operation. Include the ID of the rules you want to modify in the rules array and add the fields you wish to update. The request replaces the entire ruleset with a new version. Therefore, you must include the ID of all the rules you wish to keep.
The following request edits one rule in a custom ruleset and updates the execution order of the rules.
The response will include the modified custom ruleset. Note that the updated rule and ruleset version number increment.
curl --request PUT \{account_id}/rulesets/{ruleset_id} \--header "Authorization: Bearer <API_TOKEN>" \--header "Content-Type: application/json" \--data '{ "rules": [ { "id": "<CUSTOM_RULE_ID_2>", "expression": "not http.request.uri.path matches \"^/api/.*$\"", "action": "js_challenge", "description": "js_challenge when not /api" }, { "id": "<CUSTOM_RULE_ID_1>" } ]}'
{ "result": { "id": "<CUSTOM_RULESET_ID>", "name": "Custom Ruleset 1", "kind": "custom", "version": "3", "rules": [ { "id": "<CUSTOM_RULE_ID_2>", "version": "2", "action": "js_challenge", "expression": "not http.request.uri.path matches \"^/api/.*$\"", "description": "js_challenge when not /api", "last_updated": "2021-03-18T18:30:08.122758Z", "ref": "<CUSTOM_RULE_ID_2>", "enabled": true }, { "id": "<CUSTOM_RULE_ID_1>", "version": "1", "action": "challenge", "expression": "( eq \"GB\" or eq \"FR\") or cf.threat_score \u003e 0", "description": "challenge GB and FR or based on IP Reputation", "last_updated": "2021-03-18T18:25:08.122758Z", "ref": "<CUSTOM_RULE_ID_1>", "enabled": true } ], "last_updated": "2021-03-18T18:30:08.122758Z", "phase": "http_request_firewall_custom" }, "success": true, "errors": [], "messages": []}
Was this helpful?
- Resources
- New to Cloudflare?
- Products
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- Company
- Our team
- Careers
- 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark