Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

How to edit 403 error message in AWS WAF

0

is there a way to customize the 403 error message that WAF puts out? Right now our clients are seeing:

<html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> </body> </html>

Is there way to edit this? So that clients aren't seeing html tags etc if they receive a 403 error trying to log into our app? The WAF rule that is triggering this is the AWS-AWSManagedRulesBotControlRuleSet...being that it is a managed rule I can't edit the JSON to put out a different output (is this just a console limitation?). And I tried using the custom response bodies section on the rule but it isn't what I need. I just want to change the above out to say something like: "403 Forbidden" but I don't want clients to be seeing <html> <head> etc on the app...like I'm not sure if I can use the terminal to edit this? I attached a picture so you can see what the error message looks like...it just looks really unprofessional imo. example of message on app

Temas
Seguridad, identidad y cumplimiento
Etiquetas
AWS WAF
Idioma
English
Simon Abisoye
preguntada hace un mes187 visualizaciones
1 Respuesta
1

Hi,

Yes, there is such a capability announced in 2021: https://aws.amazon.com/about-aws/whats-new/2021/03/aws-waf-adds-support-custom-responses/

See for details to implement: https://docs.aws.amazon.com/waf/latest/developerguide/waf-custom-request-response.html

Best,

Didier

profile pictureAWS
EXPERTO
Didier_Durand
respondido hace un mes
profile picture
EXPERTO
Adeleke Adebowale J
revisado hace un mes

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante