Coder Social home page Coder Social logo

akamaiwaf's Introduction

Akamai WAF

Publisher: Robert Drouin
Connector Version: 1.1.0
Product Vendor: Akamai
Product Name: Network Lists
Product Version Supported (regex): ".*"
Minimum Product Version: 5.2.0

The WAF API allows you to manage a common set of lists for use in various Akamai security products such as Kona Site Defender, Web App Protector, and Bot Manager

The Network Lists API allows you to manage a common set of lists for use in various Akamai security products such as Kona Site Defender, Web App Protector, and Bot Manager. Network lists are shared sets of IP addresses, CIDR blocks, or broad geographic areas. Along with managing your own lists, you can also access read-only lists that Akamai dynamically updates for you.

Port Information

The app uses HTTP/ HTTPS protocol for communicating with the Akamai WAF server. Below are the default ports used by Splunk SOAR.

        Service Name Transport Protocol Port
        http tcp 80
        https tcp 443

Configuration Variables

The below configuration variables are required for this Connector to operate. These variables are specified when configuring a Network Lists asset in SOAR.

VARIABLE REQUIRED TYPE DESCRIPTION
base_url required string Base URL for the API. This URL is given to you when you setup the API Client in the Akamai Control Center. e.g. https://akaa-WWWWWWWWWWWW.luna.akamaiapis.net
access_token required password Access Token for the API
client_token required password Client Token for the API
client_secret required password Client Secret for the API

Supported Actions

test connectivity - Validate the asset configuration for connectivity using the supplied configuration
list networks - Get a network list
get network - Gets a network list's most recent syncPoint version
create network - Create a new network list
delete network - Removes a network list
update network - Update the network list items and properties
add element - Adds the specified element(s) to a list
remove element - Remove the specified element(s) from the list
activate network - Activate the most recent syncPoint version of a network list in either the STAGING or PRODUCTION environment
activation status - Shows a network list activation status on either the STAGING or PRODUCTION environment
activation snapshot - Gets a version of a network list
activation details - Provides detailed status for a given activation
list siteshields - Get akamai site shields ip ranges

action: 'test connectivity'

Validate the asset configuration for connectivity using the supplied configuration

Type: test
Read only: True

Action Parameters

No parameters are required for this action

Action Output

No Output

action: 'list networks'

Get a network list

Type: investigate
Read only: True

List all network lists available for an authenticated user who belongs to a group, optionally filtered by listType or based on a search string. For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments. For includeelements parameter, if enabled, the response list includes all items. For large network lists, this may slow responses and yield large response objects. Results appear within the networkLists array, which might be empty if no network lists are available to the client.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
search optional Only list items that match the specified substring in any network list's name or list of items string
extended optional When enabled, provides additional response data (Default: false) boolean
includeelements optional If enabled, the response list includes all items (Default: false) boolean

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.search string
action_result.parameter.extended boolean
action_result.parameter.includeelements boolean
action_result.data.*.networkLists.*.name string
action_result.data.*.networkLists.*.networkListType string
action_result.data.*.networkLists.*.elementCount numeric
action_result.data.*.networkLists.*.list string ip
action_result.data.*.networkLists.*.uniqueId string akamai networklist id
action_result.data.*.networkLists.*.type string
action_result.data.*.networkLists.*.description string
action_result.data.*.networkLists.*.createDate string
action_result.data.*.networkLists.*.createdBy string
action_result.data.*.networkLists.*.updateDate string
action_result.data.*.networkLists.*.updateBy string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'get network'

Gets a network list's most recent syncPoint version

Type: investigate
Read only: True

For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments. For includeelements parameter, if enabled, the response list includes all items. For large network lists, this may slow responses and yield large response objects.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for each network list. Comma-separated list is allowed string akamai networklist id
extended optional When enabled, provides additional response data (Default: false) boolean
includeelements optional If enabled, the response list includes all items (Default: false) boolean

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.extended boolean
action_result.parameter.includeelements boolean
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.data.*.description string
action_result.data.*.createDate string
action_result.data.*.createdBy string
action_result.data.*.updateDate string
action_result.data.*.updatedBy string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'create network'

Create a new network list

Type: generic
Read only: False

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
name required Name for the new network list string
type required Type of the new network list string
description required Description of the new network list string
list required IP(s) for the new network list. Comma-separated list is allowed string ip

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.name string
action_result.parameter.type string
action_result.parameter.description string
action_result.parameter.list string ip
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'delete network'

Removes a network list

Type: generic
Read only: False

You can only remove network lists that never activated. To deactivate a list, you can empty its list of elements.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.data.*.status string
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.syncPoint numeric akamai networklist syncpoint
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'update network'

Update the network list items and properties

Type: generic
Read only: False

Allows you to set the name, description, and set of network list items to the resource. The current state of the list will be replaced with the properties and items you provide. The type cannot be changed.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for each network list string akamai networklist id
name required Update or change the name of the network list string
description required Update or change the description of the network list string

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.name string
action_result.parameter.description string
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'add element'

Adds the specified element(s) to a list

Type: generic
Read only: False

If the network list's type is IP, the value needs to be a URL-encoded IP address or CIDR block.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id
elements required Element(s) to add to the network list. Comma-separated list is allowed string ip

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.elements string ip
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.data.*.description string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'remove element'

Remove the specified element(s) from the list

Type: generic
Read only: False

If the network list's type is IP, the value needs to be a URL-encoded IP address or CIDR block.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id
elements required Element(s) to be removed from the network list. Comma-separated list is allowed string ip

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.elements string ip
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.data.*.description string
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'activate network'

Activate the most recent syncPoint version of a network list in either the STAGING or PRODUCTION environment

Type: generic
Read only: False

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id
environment required Environment to activate the network (Default: STAGING) string
comments optional Comments to add to the network string
notification optional Notification Recipients for the network list. Comma-separated list is allowed string

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.environment string
action_result.parameter.comments string
action_result.parameter.notification string
action_result.data.*.activationId numeric akamai networklist activationid
action_result.data.*.activationComments string
action_result.data.*.activationStatus string
action_result.data.*.syncPoint numeric akamai networklist syncpoint
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.fast boolean
action_result.data.*.dispatchCount numeric
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'activation status'

Shows a network list activation status on either the STAGING or PRODUCTION environment

Type: investigate
Read only: True

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id
environment required The environment in which the list activation occurs (Default: STAGING) string

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.environment string
action_result.data.*.activationId numeric akamai networklist activationid
action_result.data.*.activationComments string
action_result.data.*.activationStatus string
action_result.data.*.syncPoint numeric akamai networklist syncpoint
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.fast boolean
action_result.data.*.dispatchCount numeric
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'activation snapshot'

Gets a version of a network list

Type: investigate
Read only: True

Gets a version of a network list in its state when activated, with each version identified by its syncPoint value. You can only get syncPoint versions that have been activated. For extended parameter, when enabled, provides additional response data identifying who and when the lists were created and updated, and the network list's deployment status in both STAGING and PRODUCTION environments.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
networklistid required Unique identifier for the network list string akamai networklist id
syncpoint required The network list version for which to retrieve the snapshot numeric akamai networklist syncpoint
extended optional When enabled, provides additional response data (Default: false) boolean

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.networklistid string akamai networklist id
action_result.parameter.syncpoint numeric akamai networklist syncpoint
action_result.parameter.extended boolean
action_result.data.*.name string
action_result.data.*.networkListType string
action_result.data.*.elementCount numeric
action_result.data.*.list string ip
action_result.data.*.uniqueId string akamai networklist id
action_result.data.*.type string
action_result.data.*.syncPoint numeric akamai networklist syncpoint
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'activation details'

Provides detailed status for a given activation

Type: investigate
Read only: True

Provides detailed status for a given activation, including progress on fast activation and other audit information, in addition to information ordinarily available from the "activation status" action.

Action Parameters

PARAMETER REQUIRED DESCRIPTION TYPE CONTAINS
activationid required Unique identifier for the network list numeric akamai networklist activationid

Action Output

DATA PATH TYPE CONTAINS
action_result.parameter.activationid numeric akamai networklist activationid
action_result.data.*.activationId numeric akamai networklist activationid
action_result.data.*.createDate string
action_result.data.*.createdBy string
action_result.data.*.environment string
action_result.data.*.fast boolean
action_result.data.*.networkList.activationComments string
action_result.data.*.networkList.activationStatus string
action_result.data.*.syncPoint numeric akamai networklist syncpoint
action_result.data.*.uniqueId string akamai networklist id
action_result.status string
action_result.message string
action_result.summary string
summary.total_objects numeric
summary.total_objects_successful numeric

action: 'list siteshields'

Get akamai site shields ip ranges

Type: investigate
Read only: True

Action Parameters

No parameters are required for this action

Action Output

DATA PATH TYPE CONTAINS
action_result.status string
action_result.data.*.cidr string
action_result.message string
action_result.summary.num_data string
summary.total_objects numeric
summary.total_objects_successful numeric

akamaiwaf's People

Contributors

ighelani-crest avatar jdemelo avatar phantom-chetan avatar robdrouin avatar rsojitra-crest avatar siisar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.