/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/controlTypes
Parameters
Name
Description
string
Responses
Response content type:
Code
200
Description
OK
Example Value
string
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom
Parameters
Name
Description
list
The total list of AppProtection custom controls.
action
string
The action of the custom control.
[
...
]actionValue
string
Denotes the action. Supports any string.
associatedInspectionProfileNames
The names of the AppProtection profile.
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
controlNumber
integer($int32)
The AppProtection control number.
controlRuleJson
string
The AppProtection control rule.
controlType
string
The control type of the custom control.
[
...
]creationTime
integer($int32)
The time the custom control is created.
defaultAction
string
The performed action.
[
...
]defaultActionValue
string
Used to provide the redirect URL if the default action is set to
REDIRECT.description
string
The description of the custom control.
id
integer($int64)
The unique identifier of the custom control.
modifiedBy
integer($int64)
The unique identifier of the tenant who modified the custom control.
modifiedTime
integer($int32)
The time the custom control is modified.
name*
string
The name of the custom control.
paranoiaLevel
integer($int32)
The OWASP Predefined Paranoia Level. To learn more, see Configuring AppProtection Profiles.
protocolType
string
The protocol type of the custom control.
[
...
]rules
The rules of the custom controls applied as conditions.
conditions
The conditions of the AppProtection rule.
lhs
string
The key for the object type.
[
...
]op
string
The operation type.
[
...
]rhs
string
The value for the given object type. Its value depends upon the key.
names
array[string]
The names of the AppProtection rule.
type
string
The type of the AppProtection rule.
[
...
]severity
string
The severity of the AppProtection control number. To learn more, see About AppProtection Controls.
[
...
]type
string
The rules to be applied to the request or response type.
[
...
]version
string
The predefined control version.
totalCount
integer($int64)
The total count of resources per the search feature.
totalPages
integer($int32)
The total number of pages per the pagination attribute.
Responses
Response content type:
Code
200
Description
OK
Example Value
{
"list": [
{
"action": "PASS",
"actionValue": "string",
"associatedInspectionProfileNames": [
{
"id": 0,
"name": "string"
}
],
"controlNumber": 0,
"controlRuleJson": "string",
"controlType": "WEBSOCKET_PREDEFINED",
"creationTime": 0,
"defaultAction": "PASS",
"defaultActionValue": "string",
"description": "string",
"id": 0,
"modifiedBy": 0,
"modifiedTime": 0,
"name": "string",
"paranoiaLevel": 0,
"protocolType": "HTTP",
"rules": [
{
"conditions": [
{
"lhs": "SIZE",
"op": "RX",
"rhs": "string"
}
],
"names": [
"string"
],
"type": "REQUEST_HEADERS"
}
],
"severity": "CRITICAL",
"type": "REQUEST",
"version": "string"
}
],
"totalCount": 0,
"totalPages": 0
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom
Parameters
Name
Description
action
string
The action of the custom control.
[
...
]actionValue
string
Denotes the action. Supports any string.
associatedInspectionProfileNames
The names of the AppProtection profile.
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
controlNumber
integer($int32)
The AppProtection control number.
controlRuleJson
string
The AppProtection control rule.
controlType
string
The control type of the custom control.
[
...
]creationTime
integer($int32)
The time the custom control is created.
defaultAction
string
The performed action.
[
...
]defaultActionValue
string
Used to provide the redirect URL if the default action is set to
REDIRECT.description
string
The description of the custom control.
id
integer($int64)
The unique identifier of the custom control.
modifiedBy
integer($int64)
The unique identifier of the tenant who modified the custom control.
modifiedTime
integer($int32)
The time the custom control is modified.
name*
string
The name of the custom control.
paranoiaLevel
integer($int32)
The OWASP Predefined Paranoia Level. To learn more, see Configuring AppProtection Profiles.
protocolType
string
The protocol type of the custom control.
[
...
]rules
The rules of the custom controls applied as conditions.
conditions
The conditions of the AppProtection rule.
lhs
string
The key for the object type.
[
...
]op
string
The operation type.
[
...
]rhs
string
The value for the given object type. Its value depends upon the key.
names
array[string]
The names of the AppProtection rule.
type
string
The type of the AppProtection rule.
[
...
]severity
string
The severity of the AppProtection control number. To learn more, see About AppProtection Controls.
[
...
]type
string
The rules to be applied to the request or response type.
[
...
]version
string
The predefined control version.
Responses
Response content type:
Code
201
Description
Created
Example Value
{
"action": "PASS",
"actionValue": "string",
"associatedInspectionProfileNames": [
{
"id": 0,
"name": "string"
}
],
"controlNumber": 0,
"controlRuleJson": "string",
"controlType": "WEBSOCKET_PREDEFINED",
"creationTime": 0,
"defaultAction": "PASS",
"defaultActionValue": "string",
"description": "string",
"id": 0,
"modifiedBy": 0,
"modifiedTime": 0,
"name": "string",
"paranoiaLevel": 0,
"protocolType": "HTTP",
"rules": [
{
"conditions": [
{
"lhs": "SIZE",
"op": "RX",
"rhs": "string"
}
],
"names": [
"string"
],
"type": "REQUEST_HEADERS"
}
],
"severity": "CRITICAL",
"type": "REQUEST",
"version": "string"
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/inspectionControls/customControlTypes
Parameters
No parameters
Responses
Response content type:
Code
200
Description
OK
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom/{id}/profiles
Parameters
Name
Description
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
Responses
Response content type:
Code
200
Description
OK
Example Value
{
"id": 0,
"name": "string"
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom/httpMethods
Parameters
Name
Description
string
Responses
Response content type:
Code
200
Description
OK
Example Value
string
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/severityTypes
Parameters
Name
Description
string
Responses
Response content type:
Code
200
Description
OK
Example Value
string
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom/{id}
Parameters
Name
Description
action
string
The action of the custom control.
[
...
]actionValue
string
Denotes the action. Supports any string.
associatedInspectionProfileNames
The names of the AppProtection profile.
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
controlNumber
integer($int32)
The AppProtection control number.
controlRuleJson
string
The AppProtection control rule.
controlType
string
The control type of the custom control.
[
...
]creationTime
integer($int32)
The time the custom control is created.
defaultAction
string
The performed action.
[
...
]defaultActionValue
string
Used to provide the redirect URL if the default action is set to
REDIRECT.description
string
The description of the custom control.
id
integer($int64)
The unique identifier of the custom control.
modifiedBy
integer($int64)
The unique identifier of the tenant who modified the custom control.
modifiedTime
integer($int32)
The time the custom control is modified.
name*
string
The name of the custom control.
paranoiaLevel
integer($int32)
The OWASP Predefined Paranoia Level. To learn more, see Configuring AppProtection Profiles.
protocolType
string
The protocol type of the custom control.
[
...
]rules
The rules of the custom controls applied as conditions.
conditions
The conditions of the AppProtection rule.
lhs
string
The key for the object type.
[
...
]op
string
The operation type.
[
...
]rhs
string
The value for the given object type. Its value depends upon the key.
names
array[string]
The names of the AppProtection rule.
type
string
The type of the AppProtection rule.
[
...
]severity
string
The severity of the AppProtection control number. To learn more, see About AppProtection Controls.
[
...
]type
string
The rules to be applied to the request or response type.
[
...
]version
string
The predefined control version.
Responses
Response content type:
Code
200
Description
OK
Example Value
{
"action": "PASS",
"actionValue": "string",
"associatedInspectionProfileNames": [
{
"id": 0,
"name": "string"
}
],
"controlNumber": 0,
"controlRuleJson": "string",
"controlType": "WEBSOCKET_PREDEFINED",
"creationTime": 0,
"defaultAction": "PASS",
"defaultActionValue": "string",
"description": "string",
"id": 0,
"modifiedBy": 0,
"modifiedTime": 0,
"name": "string",
"paranoiaLevel": 0,
"protocolType": "HTTP",
"rules": [
{
"conditions": [
{
"lhs": "SIZE",
"op": "RX",
"rhs": "string"
}
],
"names": [
"string"
],
"type": "REQUEST_HEADERS"
}
],
"severity": "CRITICAL",
"type": "REQUEST",
"version": "string"
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom/{id}
Parameters
Name
Description
Responses
Response content type:
Code
201
Description
Created
Code
204
Description
No Content
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/custom/{id}
Parameters
Name
Description
Responses
Response content type:
Code
204
Description
No Content
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/predefined/versions
Parameters
Name
Description
string
Responses
Response content type:
Code
200
Description
OK
Example Value
string
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/actionTypes
Parameters
Name
Description
string
Responses
Response content type:
Code
200
Description
OK
Example Value
string
Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/predefined/{id}
Parameters
Name
Description
action
string
The action of the predefined control.
[
...
]actionValue
string
The value for the predefined controls action. This field is only required if the
action is set to REDIRECT.associatedInspectionProfileNames
The names of the AppProtection profile.
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
attachment
string
The control attachment.
controlGroup
string
The control group.
controlNumber
integer($int32)
The control number of the predefined control.
controlType
string
The control type of the custom control.
[
...
]creationTime
integer($int32)
The time the custom control is created.
defaultAction
string
The performed action.
[
...
]defaultActionValue
string
Used to provide the redirect URL if the default action is set to
REDIRECT.description
string
The description of the predefined control.
id
integer($int64)
The unique identifier of the predefined control.
modifiedBy
integer($int64)
The unique identifier of the tenant who modified the predefined control.
modifiedTime
integer($int32)
The time the predefined control is modified.
name*
string
The name of the application.
paranoiaLevel
integer($int32)
The OWASP Predefined Paranoia Level. To learn more, see Configuring AppProtection Profiles.
protocolType
string
The protocol type of the predefined control.
[
...
]severity
string
The severity of the AppProtection control number. To learn more, see About AppProtection Controls.
[
...
]version
string
The predefined control version.
Responses
Response content type:
Code
200
Description
OK
Example Value
{
"action": "PASS",
"actionValue": "string",
"associatedInspectionProfileNames": [
{
"id": 0,
"name": "string"
}
],
"attachment": "string",
"controlGroup": "string",
"controlNumber": 0,
"controlType": "WEBSOCKET_PREDEFINED",
"creationTime": 0,
"defaultAction": "PASS",
"defaultActionValue": "string",
"description": "string",
"id": 0,
"modifiedBy": 0,
"modifiedTime": 0,
"name": "string",
"paranoiaLevel": 0,
"protocolType": "HTTP",
"severity": "CRITICAL",
"version": "string"
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found
/mgmtconfig/v1/admin/customers/{customerId}/inspectionControls/predefined
Parameters
Name
Description
controlGroup
string
The control group.
defaultGroup
boolean
Indicates whether or not the
controlGroup is a part of the mandatory controls group. This is only used by the ZPA Admin Portal.predefinedInspectionControls
The list predefined controls.
action
string
The action of the predefined control.
[
...
]actionValue
string
The value for the predefined controls action. This field is only required if the
action is set to REDIRECT.associatedInspectionProfileNames
The names of the AppProtection profile.
id
integer($int64)
The list of unique identifiers for the entity type.
name
string
The list of names for the entity type.
attachment
string
The control attachment.
controlGroup
string
The control group.
controlNumber
integer($int32)
The control number of the predefined control.
controlType
string
The control type of the custom control.
[
...
]creationTime
integer($int32)
The time the custom control is created.
defaultAction
string
The performed action.
[
...
]defaultActionValue
string
Used to provide the redirect URL if the default action is set to
REDIRECT.description
string
The description of the predefined control.
id
integer($int64)
The unique identifier of the predefined control.
modifiedBy
integer($int64)
The unique identifier of the tenant who modified the predefined control.
modifiedTime
integer($int32)
The time the predefined control is modified.
name*
string
The name of the application.
paranoiaLevel
integer($int32)
The OWASP Predefined Paranoia Level. To learn more, see Configuring AppProtection Profiles.
protocolType
string
The protocol type of the predefined control.
[
...
]severity
string
The severity of the AppProtection control number. To learn more, see About AppProtection Controls.
[
...
]version
string
The predefined control version.
Responses
Response content type:
Code
200
Description
OK
Example Value
{
"controlGroup": "string",
"defaultGroup": true,
"predefinedInspectionControls": [
{
"action": "PASS",
"actionValue": "string",
"associatedInspectionProfileNames": [
{
"id": 0,
"name": "string"
}
],
"attachment": "string",
"controlGroup": "string",
"controlNumber": 0,
"controlType": "WEBSOCKET_PREDEFINED",
"creationTime": 0,
"defaultAction": "PASS",
"defaultActionValue": "string",
"description": "string",
"id": 0,
"modifiedBy": 0,
"modifiedTime": 0,
"name": "string",
"paranoiaLevel": 0,
"protocolType": "HTTP",
"severity": "CRITICAL",
"version": "string"
}
]
}Code
401
Description
Unauthorized
Code
403
Description
Forbidden
Code
404
Description
Not Found