ALIYUN::CDN::DomainConfig is used to add domain name settings.

Syntax

{
  "Type": "ALIYUN::WAF::DomainConfig",
  "Properties": {
    "HttpToUserIp": Integer,
    "Domain": String,
    "SourceIps": String,
    "InstanceId": String,
    "Region": String,
    "HttpPort": String,
    "LoadBalancing": Integer,
    "HttpsPort": String,
    "RsType": Integer,
    "IsAccessProduct": Integer,
    "HttpsRedirect": Integer,
    "Protocols": String
  }
}

Properties

Property Type Required Editable Description Constraint
HttpToUserIp Integer No Yes Specifies whether to enable the HTTP back-to-origin feature. After the feature is enabled, the Web Application Firewall (WAF) instance can use HTTP to forward HTTPS requests to the origin.
Note If your website does not support HTTPS access, you can enable the HTTP back-to-origin feature to allow HTTPS access through WAF. By default, port 80 is used to forward the requests to the origin.
Default value: 0. Valid values:
  • 0: disables the HTTP back-to-origin feature.
  • 1: enables the HTTP back-to-origin feature.
Domain String Yes No The domain name. None
SourceIps String No Yes The origin IP address. You can specify multiple IP addresses. Example: ["1.1.1.1", "10.0.0.0"]. None
InstanceId String Yes No The ID of the WAF instance. None
Region String No Yes The region where the WAF instance resides. Default value: cn. Valid values:
  • cn: Chinese mainland
  • cn-hongkong: China (Hong Kong) and regions outside China
HttpPort String No Yes The HTTP port number. Separate multiple port numbers with commas (,). Example: [80, 8000]. This parameter is required if the Protocols parameter is set to HTTP. Default value: 80. You must specify one of the HttpPort and HttpsPort parameters in a request.
LoadBalancing Integer No Yes The load balancing policy for back-to-origin traffic. Valid values:
  • 0: IP hash
  • 1: round robin
HttpsPort String No Yes The HTTPS port number. Separate multiple HTTPS port numbers with commas (,). Example: [443]. This parameter is required if the Protocols parameter is set to https. Default value: 443. You must specify one of the HttpPort and HttpsPort parameters in a request.
RsType Integer No No The origin address type of the domain name. Valid values:
  • 0: The origin address is an IP address.
  • 1: The origin address is a domain name.
IsAccessProduct Integer Yes No Specifies whether to configure a Layer-7 proxy, such as Anti-DDoS Pro or CDN, to filter the inbound traffic before it is forwarded to WAF. Valid values:
  • 0: A Layer-7 proxy is not configured.
  • 1: A Layer-7 proxy is configured.
HttpsRedirect Integer No Yes Specifies whether to redirect HTTP requests as HTTPS requests. Default value: 0. Valid values:
  • 0: HTTP requests are not redirected as HTTPS requests.
  • 1: HTTP requests are redirected as HTTPS requests.
You need to specify this request parameter only when the Protocols parameter is set to https. If this parameter is set to 1, HTTP requests are redirected to HTTPS port 443.
Protocols String Yes No The access protocols supported by the domain name. Valid values:
  • http
  • https
  • http,https

Response parameters

Fn::GetAtt

  • ProtocolType: the supported protocol type. 0 indicates HTTP. 1 indicates HTTPS. 2 indicates both HTTP and HTTPS.
  • Cname: the alias assigned by WAF.

Examples

JSON format

{
  "ROSTemplateFormatVersion": "2015-09-01",
  "Parameters": {
    "HttpToUserIp": {
      "Type": "Number",
      "Description": "Whether to open HTTPS access request is forwarded back to the source station via the HTTP protocol, the value of:\n0: off (default)\n1: Turn\nNote If your site does not support HTTPS back to the source, open source HTTP return (default back to the source port is port 80) function key, can be realized by WAF HTTPS access.",
      "AllowedValues": [
        0,
        1
      ]
    },
    "HttpPort": {
      "Type": "String",
      "Description": "HTTP protocol configuration port. When specifying a plurality of HTTP port \",\" separated. Example values: [80].\nConfigure the HTTP protocol, this parameter is required. The default value is 80. HttpPort HttpsPort with at least two parameters need to fill a request."
    },
    "IsAccessProduct": {
      "Type": "Number",
      "Description": "The domain before WAF is configured with seven agents (eg, high defense, CDN, etc.), the value of:\n0: none.\n1: expressed.",
      "AllowedValues": [
        0,
        1
      ]
    },
    "RsType": {
      "Type": "Number",
      "Description": "Back to the source address type the domain name values:\n0: back to the source to IP.\n1: Indicates the domain name back to the source.",
      "AllowedValues": [
        0,
        1
      ]
    },
    "Protocols": {
      "Type": "String",
      "Description": "The domain supports access protocols, values:\nhttp: expressed support for the HTTP protocol.\nhttps: support for HTTPS protocol.\nhttp, https: supports HTTP, HTTPS protocol."
    },
    "InstanceId": {
      "Type": "String",
      "Description": "WAF instance ID.\nDescription Interface You can view your current WAF instance ID by calling DescribePayInfo."
    },
    "SourceIps": {
      "Type": "String",
      "Description": "Source station IP, supports a plurality of specified IP. Example values: [ \"1.1.1.1\"]."
    },
    "HttpsRedirect": {
      "Type": "Number",
      "Description": "HTTPS is turned forcefully jump the argument:\n0: off (default)\n1: Turn\nDescription required to complete the request parameters using only HTTPS access protocol. After opening force will show a jump HTTP request is HTTPS, a default jump to 443.",
      "AllowedValues": [
        0,
        1
      ]
    },
    "Region": {
      "Type": "String",
      "Description": "Examples of areas where the WAF. Value:\ncn: China mainland (default)\ncn-hongkong: China HongKong and other overseas",
      "AllowedValues": [
        "cn",
        "cn-hongkong"
      ]
    },
    "Domain": {
      "Type": "String",
      "Description": "Domain name."
    },
    "LoadBalancing": {
      "Type": "Number",
      "Description": "Back to the source load balancing policy values:\n0: IP Hash way.\n1: represents a polling mode.",
      "AllowedValues": [
        0,
        1
      ]
    },
    "HttpsPort": {
      "Type": "String",
      "Description": "HTTPS protocol configuration port. When specifying a plurality HTTPS port, using the \",\" separated. Example values: [443].\nConfigure the protocol is HTTPS, this parameter is required. The default value is 443. HttpPort HttpsPort with at least two parameters need to fill a request."
    }
  },
  "Resources": {
    "DomainConfig": {
      "Type": "ALIYUN::WAF::DomainConfig",
      "Properties": {
        "HttpToUserIp": {
          "Ref": "HttpToUserIp"
        },
        "HttpPort": {
          "Ref": "HttpPort"
        },
        "IsAccessProduct": {
          "Ref": "IsAccessProduct"
        },
        "RsType": {
          "Ref": "RsType"
        },
        "Protocols": {
          "Ref": "Protocols"
        },
        "InstanceId": {
          "Ref": "InstanceId"
        },
        "SourceIps": {
          "Ref": "SourceIps"
        },
        "HttpsRedirect": {
          "Ref": "HttpsRedirect"
        },
        "Region": {
          "Ref": "Region"
        },
        "Domain": {
          "Ref": "Domain"
        },
        "LoadBalancing": {
          "Ref": "LoadBalancing"
        },
        "HttpsPort": {
          "Ref": "HttpsPort"
        }
      }
    }
  },
  "Outputs": {
    "ProtocolType": {
      "Description": "agreement type:0: indicates that the HTTP protocol is supported.1: indicates that the HTTPS protocol is supported.2: indicates that both HTTP and HTTPS protocols are supported.",
      "Value": {
        "Fn::GetAtt": [
          "DomainConfig",
          "ProtocolType"
        ]
      }
    },
    "Cname": {
      "Description": "CNAME assigned by WAF instance.",
      "Value": {
        "Fn::GetAtt": [
          "DomainConfig",
          "Cname"
        ]
      }
    }
  }
}

YAML format

ROSTemplateFormatVersion: '2015-09-01'
Parameters:
  HttpToUserIp:
    Type: Number
    Description: >-
      Whether to open HTTPS access request is forwarded back to the source
      station via the HTTP protocol, the value of:
      0: off (default)
      1: Turn
      Note If your site does not support HTTPS back to the source, open source
      HTTP return (default back to the source port is port 80) function key, can
      be realized by WAF HTTPS access.
    AllowedValues:
      - 0
      - 1
  HttpPort:
    Type: String
    Description: >-
      HTTP protocol configuration port. When specifying a plurality of HTTP port
      "," separated. Example values: [80].
      Configure the HTTP protocol, this parameter is required. The default value
      is 80. HttpPort HttpsPort with at least two parameters need to fill a
      request.
  IsAccessProduct:
    Type: Number
    Description: >-
      The domain before WAF is configured with seven agents (eg, high defense,
      CDN, etc.), the value of:
      0: none.
      1: expressed.
    AllowedValues:
      - 0
      - 1
  RsType:
    Type: Number
    Description: |-
      Back to the source address type the domain name values:
      0: back to the source to IP.
      1: Indicates the domain name back to the source.
    AllowedValues:
      - 0
      - 1
  Protocols:
    Type: String
    Description: |-
      The domain supports access protocols, values:
      http: expressed support for the HTTP protocol.
      https: support for HTTPS protocol.
      http, https: supports HTTP, HTTPS protocol.
  InstanceId:
    Type: String
    Description: >-
      WAF instance ID.
      Description Interface You can view your current WAF instance ID by calling
      DescribePayInfo.
  SourceIps:
    Type: String
    Description: >-
      Source station IP, supports a plurality of specified IP. Example values: [
      "1.1.1.1"].
  HttpsRedirect:
    Type: Number
    Description: >-
      HTTPS is turned forcefully jump the argument:
      0: off (default)
      1: Turn
      Description required to complete the request parameters using only HTTPS
      access protocol. After opening force will show a jump HTTP request is
      HTTPS, a default jump to 443.
    AllowedValues:
      - 0
      - 1
  Region:
    Type: String
    Description: |-
      Examples of areas where the WAF. Value:
      cn: China mainland (default)
      cn-hongkong: China HongKong and other overseas
    AllowedValues:
      - cn
      - cn-hongkong
  Domain:
    Type: String
    Description: Domain name.
  LoadBalancing:
    Type: Number
    Description: |-
      Back to the source load balancing policy values:
      0: IP Hash way.
      1: represents a polling mode.
    AllowedValues:
      - 0
      - 1
  HttpsPort:
    Type: String
    Description: >-
      HTTPS protocol configuration port. When specifying a plurality HTTPS port,
      using the "," separated. Example values: [443].
      Configure the protocol is HTTPS, this parameter is required. The default
      value is 443. HttpPort HttpsPort with at least two parameters need to fill
      a request.
Resources:
  DomainConfig:
    Type: 'ALIYUN::WAF::DomainConfig'
    Properties:
      HttpToUserIp:
        Ref: HttpToUserIp
      HttpPort:
        Ref: HttpPort
      IsAccessProduct:
        Ref: IsAccessProduct
      RsType:
        Ref: RsType
      Protocols:
        Ref: Protocols
      InstanceId:
        Ref: InstanceId
      SourceIps:
        Ref: SourceIps
      HttpsRedirect:
        Ref: HttpsRedirect
      Region:
        Ref: Region
      Domain:
        Ref: Domain
      LoadBalancing:
        Ref: LoadBalancing
      HttpsPort:
        Ref: HttpsPort
Outputs:
  ProtocolType:
    Description: >-
      agreement type:0: indicates that the HTTP protocol is supported.1:
      indicates that the HTTPS protocol is supported.2: indicates that both HTTP
      and HTTPS protocols are supported.
    Value:
      'Fn::GetAtt':
        - DomainConfig
        - ProtocolType
  Cname:
    Description: CNAME assigned by WAF instance.
    Value:
      'Fn::GetAtt':
        - DomainConfig
        - Cname