api-gw-associated-with-waf
Checks if an Amazon API Gateway API stage is using an Amazon WAF web access control list (web ACL). The rule is NON_COMPLIANT if an Amazon WAF Web ACL is not used or if a used Amazon Web ACL does not match what is listed in the rule parameter.
Identifier: API_GW_ASSOCIATED_WITH_WAF
Resource Types: AWS::ApiGateway::Stage
Trigger type: Configuration changes
Amazon Web Services Region: All supported Amazon regions except US ISO West (Northern California), Asia Pacific (Jakarta), US ISO East, Asia Pacific (Hyderabad), Asia Pacific (Osaka), Asia Pacific (Malaysia), US ISOB East (Ohio), Canada West (Calgary), Europe (Spain) Region
Parameters:
- WebAclArns (Optional)
- Type: CSV
-
Comma-separated list of web ACL Amazon Resource Names (ARNs).
Amazon CloudFormation template
To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.