CustomizationsConfig / AppConfigItem / ApplicationLoadBalancerConfig / ApplicationLoadBalancerAttributesConfig

Application Load Balancer attributes config.

See

https://docs.aws.amazon.com/elasticloadbalancing/latest/APIReference/API_LoadBalancerAttribute.html

Example

attributes:
deletionProtection: true
idleTimeout: 60
routingHttpDropInvalidHeader: true
routingHttpXAmznTlsCipherEnable: true
routingHttpXffClientPort: true
routingHttpXffHeaderProcessingMode: 'append'
http2Enabled: true
wafFailOpen: true

Hierarchy

  • ApplicationLoadBalancerAttributesConfig

Implements

Constructors

Properties

deletionProtection: undefined | boolean = undefined

Enable or disable deletion protection.

http2Enabled: undefined | boolean = undefined

Indicates whether HTTP/2 is enabled. The possible values are true and false. The default is true. Elastic Load Balancing requires that message header names contain only alphanumeric characters and hyphens.

idleTimeout: undefined | number = undefined

The idle timeout value, in seconds. The valid range is 1-4000 seconds. The default is 60 seconds.

routingHttpDesyncMitigationMode: undefined | "monitor" | "defensive" | "strictest" = undefined

Determines how the load balancer handles requests that might pose a security risk to your application. The possible values are monitor , defensive , and strictest . The default is defensive.

routingHttpDropInvalidHeader: undefined | boolean = undefined

Indicates whether HTTP headers with invalid header fields are removed by the load balancer ( true ) or routed to targets ( false ). The default is false.

routingHttpXAmznTlsCipherEnable: undefined | boolean = undefined

Indicates whether the two headers ( x-amzn-tls-version and x-amzn-tls-cipher-suite ), which contain information about the negotiated TLS version and cipher suite, are added to the client request before sending it to the target. The x-amzn-tls-version header has information about the TLS protocol version negotiated with the client, and the x-amzn-tls-cipher-suite header has information about the cipher suite negotiated with the client. Both headers are in OpenSSL format. The possible values for the attribute are true and false . The default is false.

routingHttpXffClientPort: undefined | boolean = undefined

Indicates whether the X-Forwarded-For header should preserve the source port that the client used to connect to the load balancer. The possible values are true and false . The default is false.

routingHttpXffHeaderProcessingMode: undefined | "remove" | "append" | "preserve" = undefined

Enables you to modify, preserve, or remove the X-Forwarded-For header in the HTTP request before the Application Load Balancer sends the request to the target. The possible values are append, preserve, and remove. The default is append.

wafFailOpen: undefined | boolean = undefined

Indicates whether to allow a WAF-enabled load balancer to route requests to targets if it is unable to forward the request to AWS WAF. The possible values are true and false. The default is false.

Generated using TypeDoc