Skip to content

[WAF] Refactor Security Events #20092

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Feb 20, 2025
Merged

[WAF] Refactor Security Events #20092

merged 9 commits into from
Feb 20, 2025

Conversation

@pedrosousa
Copy link
Contributor

@pedrosousa pedrosousa commented Feb 19, 2025
edited
Loading

Summary

Addresses PCX-16008.

Converts section into a single page.
Updates "Activity log" to "Sampled logs" according to the change already done in the dashboard.
Moves Validation Service page to "Additional tools".

Documentation checklist

@github-actions
Copy link
Contributor

github-actions bot commented Feb 19, 2025

Howdy and thanks for contributing to our repo. We review internal PRs with 1 week. If it's something urgent or has been sitting without a comment, start a thread in the Developer Docs space internally.

@github-actions
Copy link
Contributor

github-actions bot commented Feb 19, 2025
edited
Loading

This PR changes current filenames or deletes current files. Make sure you have redirects set up to cover the following paths:

  • /waf/analytics/security-events/free-plan/
  • /waf/analytics/security-events/
  • /waf/analytics/security-events/paid-plans/
  • /waf/analytics/security-events/additional-information/

@github-actions
Copy link
Contributor

github-actions bot commented Feb 19, 2025
edited
Loading

Preview URL: https://2a951e20.preview.developers.cloudflare.com
Preview Branch URL: https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com

Files with changes (up to 15)

Original Link Updated Link
https://developers.cloudflare.com/waf/analytics/security-events/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/analytics/security-events/
https://developers.cloudflare.com/waf/analytics/security-events/paid-plans/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/analytics/security-events/paid-plans/
https://developers.cloudflare.com/waf/analytics/security-events/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/analytics/security-events/
https://developers.cloudflare.com/waf/reference/legacy/old-waf-managed-rules/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/reference/legacy/old-waf-managed-rules/
https://developers.cloudflare.com/waf/analytics/security-events/free-plan/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/analytics/security-events/free-plan/
https://developers.cloudflare.com/waf/tools/validation-checks/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/tools/validation-checks/
https://developers.cloudflare.com/ddos-protection/reference/analytics/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/ddos-protection/reference/analytics/
https://developers.cloudflare.com/fundamentals/reference/cloudflare-ray-id/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/fundamentals/reference/cloudflare-ray-id/
https://developers.cloudflare.com/waf/reference/legacy/old-waf-managed-rules/troubleshooting/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/reference/legacy/old-waf-managed-rules/troubleshooting/
https://developers.cloudflare.com/waf/reference/migration-guides/waf-managed-rules-migration/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/reference/migration-guides/waf-managed-rules-migration/
https://developers.cloudflare.com/waf/managed-rules/check-for-exposed-credentials/monitor-events/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/managed-rules/check-for-exposed-credentials/monitor-events/
https://developers.cloudflare.com/waf/managed-rules/reference/owasp-core-ruleset/example/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/managed-rules/reference/owasp-core-ruleset/example/
https://developers.cloudflare.com/waf/troubleshooting/faq/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/troubleshooting/faq/
https://developers.cloudflare.com/support/troubleshooting/http-status-codes/4xx-client-error/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/support/troubleshooting/http-status-codes/4xx-client-error/
https://developers.cloudflare.com/waf/custom-rules/use-cases/configure-token-authentication/ https://pedro-2025-02-19-waf-refactor-security-events.preview.developers.cloudflare.com/waf/custom-rules/use-cases/configure-token-authentication/

@github-actions github-actions bot added size/l and removed size/m labels Feb 20, 2025
pedrosousa
pedrosousa commented Feb 20, 2025
View reviewed changes
src/assets/images/waf/events-activity-log.png
Copy link
Contributor Author

@pedrosousa pedrosousa Feb 20, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Replaced with src/assets/images/waf/events-sampled-logs.png.

pedrosousa
pedrosousa commented Feb 20, 2025
View reviewed changes
src/content/docs/waf/analytics/security-events.mdx
- [Events summary](#events-summary): Provides the number of security events on traffic during the selected time period, grouped according to the selected dimension (for example, Action, Host, Country).
- [Events by service](#events-by-service): Lists the security-related activity per security feature (for example, WAF, API Shield).
- [Top events by source](#top-events-by-source): Provides details of the traffic flagged or actioned by a Cloudflare security feature (for example, IP addresses, User Agents, Paths, Countries, Hosts, ASNs).
- [Sampled logs](#sampled-logs): Summarizes security events by date to show the action taken and the applied Cloudflare security product.
Copy link
Contributor Author

@pedrosousa pedrosousa Feb 20, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Main changes:

  • Moved content from 5 partials to this page, now that there's only a single page for free and paid customers. That content did not change. (Also deleted those partials in this PR.)
  • Activity log is now Sampled logs.

pedrosousa
pedrosousa commented Feb 20, 2025
View reviewed changes
pedrosousa
pedrosousa commented Feb 20, 2025
View reviewed changes
@pedrosousa pedrosousa marked this pull request as ready for review February 20, 2025 10:26
Oxyjun
Oxyjun reviewed Feb 20, 2025
View reviewed changes
Oxyjun
Oxyjun reviewed Feb 20, 2025
View reviewed changes
Oxyjun
Oxyjun reviewed Feb 20, 2025
View reviewed changes
Oxyjun
Oxyjun reviewed Feb 20, 2025
View reviewed changes
Oxyjun
Oxyjun reviewed Feb 20, 2025
View reviewed changes
@pedrosousa pedrosousa merged commit 7719cf7 into production Feb 20, 2025
11 checks passed
@pedrosousa pedrosousa deleted the pedro/2025-02-19-waf-refactor-security-events branch February 20, 2025 15:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Oxyjun Oxyjun Oxyjun approved these changes

@TracyCloudflare TracyCloudflare Awaiting requested review from TracyCloudflare

@ngayerie ngayerie Awaiting requested review from ngayerie

@patriciasantaana patriciasantaana Awaiting requested review from patriciasantaana patriciasantaana is a code owner

@irvinebroque irvinebroque Awaiting requested review from irvinebroque irvinebroque is a code owner

@GregBrimble GregBrimble Awaiting requested review from GregBrimble GregBrimble is a code owner

@dcpena dcpena Awaiting requested review from dcpena dcpena is a code owner

@KianNH KianNH Awaiting requested review from KianNH

@WalshyDev WalshyDev Awaiting requested review from WalshyDev WalshyDev is a code owner

+1 more reviewer

@zeinjaber zeinjaber zeinjaber approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@irvinebroque irvinebroque

@GregBrimble GregBrimble

@WalshyDev WalshyDev

@zeinjaber zeinjaber

@dcpena dcpena

@KianNH KianNH

@patriciasantaana patriciasantaana

@ngayerie ngayerie

@TracyCloudflare TracyCloudflare

Labels

product:ddos-protection product:fundamentals product:support product:waf product:workers Related to Workers product size/l

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.