From 5c2e2f0b054a4415688c7d04ee5fb481d8f363de Mon Sep 17 00:00:00 2001 From: Patricia Loraine Santa Ana Date: Fri, 14 Mar 2025 11:11:28 -0700 Subject: [PATCH] apply categories to endpoint labels --- .../management-and-monitoring/endpoint-labels.mdx | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/src/content/docs/api-shield/management-and-monitoring/endpoint-labels.mdx b/src/content/docs/api-shield/management-and-monitoring/endpoint-labels.mdx index 27903cc6305f81..524492cc1b47d1 100644 --- a/src/content/docs/api-shield/management-and-monitoring/endpoint-labels.mdx +++ b/src/content/docs/api-shield/management-and-monitoring/endpoint-labels.mdx @@ -18,7 +18,11 @@ User-defined labels can also be added to endpoints in API Shield by creating a l You can filter your endpoints based on the labels. -## Managed labels +## Categories + +### Managed labels + +Use managed labels to identify endpoints by use case. Cloudflare may automatically apply these labels in a future release. `cf-log-in`: Add this label to endpoints that accept user credentials. You may have multiple endpoints if you accept username, password, and multi-factor authentication (MFA) across multiple endpoints or requests. @@ -42,6 +46,10 @@ You can filter your endpoints based on the labels. `cf-rss-feed`: Add this label to endpoints that expect traffic from RSS clients. +### Risk labels + +Cloudflare automatically runs risk scans every 24 hours on your saved endpoints. API Shield applies these labels when a scan finds security risks on your endpoints. A corresponding Security Center Insight is also raised when risks are found. + `cf-risk-missing-auth`: Automatically added when all successful requests lack a session identifier. Refer to the table below for more information. `cf-risk-mixed-auth`: Automatically added when some successful requests contain a session identifier and some successful requests lack a session identifier. Refer to the table below for more information.