Ctrl K

Put Firewall Configuration

Published Apr 8, 2025

Set the firewall configuration to provided rules and settings. Creates or overwrite the existing firewall configuration.

Script vercel Verified

Use in Windmill

The script

Submitted by hugo697 Bun

Verified 428 days ago

All edits

Permalink

//native
type Vercel = {
  token: string;
};
/**
 * Put Firewall Configuration
 * Set the firewall configuration to provided rules and settings. Creates or overwrite the existing firewall configuration.
 */
export async function main(
  auth: Vercel,
  projectId: string | undefined,
  teamId: string | undefined,
  slug: string | undefined,
  body: {
    firewallEnabled: false | true;
    managedRules?: {};
    crs?: {
      sd?: { active: false | true; action: "deny" | "log" };
      ma?: { active: false | true; action: "deny" | "log" };
      lfi?: { active: false | true; action: "deny" | "log" };
      rfi?: { active: false | true; action: "deny" | "log" };
      rce?: { active: false | true; action: "deny" | "log" };
      php?: { active: false | true; action: "deny" | "log" };
      gen?: { active: false | true; action: "deny" | "log" };
      xss?: { active: false | true; action: "deny" | "log" };
      sqli?: { active: false | true; action: "deny" | "log" };
      sf?: { active: false | true; action: "deny" | "log" };
      java?: { active: false | true; action: "deny" | "log" };
    };
    rules?: {
      id?: string;
      name: string;
      description?: string;
      active: false | true;
      conditionGroup: {
        conditions: {
          type:
            | "host"
            | "path"
            | "method"
            | "header"
            | "query"
            | "cookie"
            | "target_path"
            | "raw_path"
            | "ip_address"
            | "region"
            | "protocol"
            | "scheme"
            | "environment"
            | "user_agent"
            | "geo_continent"
            | "geo_country"
            | "geo_country_region"
            | "geo_city"
            | "geo_as_number"
            | "ja4_digest"
            | "ja3_digest"
            | "rate_limit_api_id";
          op:
            | "re"
            | "eq"
            | "neq"
            | "ex"
            | "nex"
            | "inc"
            | "ninc"
            | "pre"
            | "suf"
            | "sub"
            | "gt"
            | "gte"
            | "lt"
            | "lte";
          neg?: false | true;
          key?: string;
          value?: string | number | string[];
        }[];
      }[];
      action: {
        mitigate?: {
          action:
            | "deny"
            | "log"
            | "challenge"
            | "bypass"
            | "rate_limit"
            | "redirect";
          rateLimit?: {
            algo: "fixed_window" | "token_bucket";
            window: number;
            limit: number;
            keys: string[];
            action?: "deny" | "log" | "challenge" | "rate_limit";
          };
          redirect?: { location: string; permanent: false | true };
          actionDuration?: string;
          bypassSystem?: false | true;
        };
      };
    }[];
    ips?: {
      id?: string;
      hostname: string;
      ip: string;
      notes?: string;
      action: "deny" | "log" | "challenge" | "bypass";
    }[];
  },
) {
  const url = new URL(`https://api.vercel.com/v1/security/firewall/config`);
  for (const [k, v] of [
    ["projectId", projectId],
    ["teamId", teamId],
    ["slug", slug],
  ]) {
    if (v !== undefined && v !== "" && k !== undefined) {
      url.searchParams.append(k, v);
    }
  }
  const response = await fetch(url, {
    method: "PUT",
    headers: {
      "Content-Type": "application/json",
      Authorization: "Bearer " + auth.token,
    },
    body: JSON.stringify(body),
  });
  if (!response.ok) {
    const text = await response.text();
    throw new Error(`${response.status} ${text}`);
  }
  return await response.json();
}


`1`	`//native`
`2`	`type Vercel = {`
`3`	`token: string;`
`4`	`};`
`5`	`/**`
`6`	`* Put Firewall Configuration`
`7`	`* Set the firewall configuration to provided rules and settings. Creates or overwrite the existing firewall configuration.`
`8`	`*/`
`9`	`export async function main(`
`10`	`auth: Vercel,`
`11`	`projectId: string \| undefined,`
`12`	`teamId: string \| undefined,`
`13`	`slug: string \| undefined,`
`14`	`body: {`
`15`	`firewallEnabled: false \| true;`
`16`	`managedRules?: {};`
`17`	`crs?: {`
`18`	`sd?: { active: false \| true; action: "deny" \| "log" };`
`19`	`ma?: { active: false \| true; action: "deny" \| "log" };`
`20`	`lfi?: { active: false \| true; action: "deny" \| "log" };`
`21`	`rfi?: { active: false \| true; action: "deny" \| "log" };`
`22`	`rce?: { active: false \| true; action: "deny" \| "log" };`
`23`	`php?: { active: false \| true; action: "deny" \| "log" };`
`24`	`gen?: { active: false \| true; action: "deny" \| "log" };`
`25`	`xss?: { active: false \| true; action: "deny" \| "log" };`
`26`	`sqli?: { active: false \| true; action: "deny" \| "log" };`
`27`	`sf?: { active: false \| true; action: "deny" \| "log" };`
`28`	`java?: { active: false \| true; action: "deny" \| "log" };`
`29`	`};`
`30`	`rules?: {`
`31`	`id?: string;`
`32`	`name: string;`
`33`	`description?: string;`
`34`	`active: false \| true;`
`35`	`conditionGroup: {`
`36`	`conditions: {`
`37`	`type:`
`38`	`\| "host"`
`39`	`\| "path"`
`40`	`\| "method"`
`41`	`\| "header"`
`42`	`\| "query"`
`43`	`\| "cookie"`
`44`	`\| "target_path"`
`45`	`\| "raw_path"`
`46`	`\| "ip_address"`
`47`	`\| "region"`
`48`	`\| "protocol"`
`49`	`\| "scheme"`
`50`	`\| "environment"`
`51`	`\| "user_agent"`
`52`	`\| "geo_continent"`
`53`	`\| "geo_country"`
`54`	`\| "geo_country_region"`
`55`	`\| "geo_city"`
`56`	`\| "geo_as_number"`
`57`	`\| "ja4_digest"`
`58`	`\| "ja3_digest"`
`59`	`\| "rate_limit_api_id";`
`60`	`op:`
`61`	`\| "re"`
`62`	`\| "eq"`
`63`	`\| "neq"`
`64`	`\| "ex"`
`65`	`\| "nex"`
`66`	`\| "inc"`
`67`	`\| "ninc"`
`68`	`\| "pre"`
`69`	`\| "suf"`
`70`	`\| "sub"`
`71`	`\| "gt"`
`72`	`\| "gte"`
`73`	`\| "lt"`
`74`	`\| "lte";`
`75`	`neg?: false \| true;`
`76`	`key?: string;`
`77`	`value?: string \| number \| string[];`
`78`	`}[];`
`79`	`}[];`
`80`	`action: {`
`81`	`mitigate?: {`
`82`	`action:`
`83`	`\| "deny"`
`84`	`\| "log"`
`85`	`\| "challenge"`
`86`	`\| "bypass"`
`87`	`\| "rate_limit"`
`88`	`\| "redirect";`
`89`	`rateLimit?: {`
`90`	`algo: "fixed_window" \| "token_bucket";`
`91`	`window: number;`
`92`	`limit: number;`
`93`	`keys: string[];`
`94`	`action?: "deny" \| "log" \| "challenge" \| "rate_limit";`
`95`	`};`
`96`	`redirect?: { location: string; permanent: false \| true };`
`97`	`actionDuration?: string;`
`98`	`bypassSystem?: false \| true;`
`99`	`};`
`100`	`};`
`101`	`}[];`
`102`	`ips?: {`
`103`	`id?: string;`
`104`	`hostname: string;`
`105`	`ip: string;`
`106`	`notes?: string;`
`107`	`action: "deny" \| "log" \| "challenge" \| "bypass";`
`108`	`}[];`
`109`	`},`
`110`	`) {`
`111`	const url = new URL(`https://api.vercel.com/v1/security/firewall/config`);
`112`	`for (const [k, v] of [`
`113`	`["projectId", projectId],`
`114`	`["teamId", teamId],`
`115`	`["slug", slug],`
`116`	`]) {`
`117`	`if (v !== undefined && v !== "" && k !== undefined) {`
`118`	`url.searchParams.append(k, v);`
`119`	`}`
`120`	`}`
`121`	`const response = await fetch(url, {`
`122`	`method: "PUT",`
`123`	`headers: {`
`124`	`"Content-Type": "application/json",`
`125`	`Authorization: "Bearer " + auth.token,`
`126`	`},`
`127`	`body: JSON.stringify(body),`
`128`	`});`
`129`	`if (!response.ok) {`
`130`	`const text = await response.text();`
`131`	throw new Error(`${response.status} ${text}`);
`132`	`}`
`133`	`return await response.json();`
`134`	`}`
`135`