Get All Profiles

This article explains the legacy version of WAF that underwent end-of-life on June 30, 2021. Our new version of WAF expands upon all of the capabilities offered by WAF (Legacy) and Rate Limiting (Legacy) with a simplified and centralized setup. Please upgrade to the latest version of WAF at your earliest convenience.

WAF Essential cannot be configured via our APIs. However, you may leverage our APIs to retrieve WAF and Rate Limiting event log data.

Retrieves a list of WAF profiles.

Request

A request to retrieve profiles is described below.

HTTP Method	Request URI
GET	https://api.transactcdn.com/v2/mcc/customers/AccountNumber/waf/config/profiles

Define the following variable when submitting the above request:

VariableA variable represents a value that must be replaced. A variable consists of either a URL segment (e.g., "0001" in /0001/) or a query string value (e.g., "3" in mediaTypes=3).	Description
AccountNumber Required	Replace this variable with a customer account number. This account number may be found in the upper left-hand corner of the TCC.

Description

AccountNumber

Required

Replace this variable with a customer account number. This account number may be found in the upper left-hand corner of the TCC.

Request Headers

This endpointIdentifies a request's connection point to our REST API service. only takes advantage of common request headers.

Request Body

Request body parameters are not required by this endpoint.

Response

The response to the above request includes an HTTP status code, response headers, and a response body.

Status Code

A status code indicates whether the request was successfully performed.

Response Headers

The response for this endpoint only includes standard HTTP response headers.

View common response headers.

Response Body

The response body for a successful request contains the following response parameters for each profile returned by this endpoint:

Name	Data Type	Description
ruleset_id	String	Identifies the rule set (e.g., Trustwave-OWASPIntegration-Application) through which threats will be detected.
ruleset_version	String	Identifies the version of the rule set (e.g., 2017-09-18) that will be used to identify threats.
created_date	String	Identifies the date and time (UTC) at which the profile was created. Format: MM-DD-YYYY hh:mm AM\|PM
id	Integer	Identifies a profile by its system-defined ID.
name	String	Identifies a profile by its name.

Errors

The response body for an unsuccessful request will contain an error response that provides additional information.

View common error messages.

Sample Request and Response

A sample JSON request is shown below.

GET https://api.transactcdn.com/v2/mcc/customers/0001/waf/config/profiles HTTP/1.1

Authorization: TOK:12345678-1234-1234-1234-1234567890ab

Accept: application/json

Host:api.transactcdn.com

A sample JSON response is shown below.

HTTP/1.1 200 OK

Cache-Control: private

Content-Type: application/json; charset=utf-8

Date: Thu, 15 Apr 2021 12:00:00 GMT

Content-Length: 161

[{
		"ruleset_id": "Trustwave-OWASPIntegration-Application",
		"ruleset_version": "2017-09-18",
		"created_date": "10/13/2017 05:47:25 PM",
		"id": "e032f437-6220-4bf7-a5ea-1a2bcd34e45f",
		"name": "Site B Profile Test"
	}, {
		"ruleset_id": "Trustwave-OWASPIntegration-Application",
		"ruleset_version": "2017-08-01",
		"created_date": "09/28/2017 6:04:30 PM",
		"id": "0b97746d-8e71-4f95-83bd-1a2bcd34e45f",
		"name": "My Profile"
	}
]