Skip to content

[Security] Update settings table #20966

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Mar 20, 2025
Merged

[Security] Update settings table #20966

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
13ed4d6
[Security] Update settings
pedrosousa Mar 19, 2025
0a957d3
Small fixes
pedrosousa Mar 19, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
47 changes: 27 additions & 20 deletions src/content/docs/security/settings.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -84,23 +84,30 @@ The client-side abuse module includes features and settings from [Page Shield](/

This section allows you to configure multiple security-related settings. The following table links to additional information about each setting:

| Setting | Location in previous dashboard navigation |
| ------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------- |
| [Endpoint labels](/api-shield/management-and-monitoring/endpoint-labels/) | **Security** > **Settings** > **Labels** |
| [Session identifiers](/api-shield/management-and-monitoring/session-identifiers/#rule-form) | **Security** > **API Shield** > **Settings** |
| [Uploaded schemas](/api-shield/security/schema-validation/) | **Security** > **API Shield** > **Schema Validation** |
| [Learned schemas](/api-shield/security/schema-validation/) | **Security** > **API Shield** > **Schema Validation** |
| [Token configuration](/api-shield/security/jwt-validation/#add-a-token-validation-configuration) | **Security** > **API Shield** > **Settings** |
| [Client-side resource alerts](/page-shield/detection/configure-alerts/#rule-form) | **Security** > **Page Shield** > **Settings**<br/>Account Home > **Notifications** |
| [Reporting endpoint](/page-shield/reference/settings/#reporting-endpoint) | **Security** > **Page Shield** > **Settings** |
| [Data processing](/page-shield/reference/settings/#connection-target-details) | **Security** > **Page Shield** > **Settings** |
| [IP lists](/waf/tools/lists/custom-lists/#lists-with-ip-addresses-ip-lists) | Account Home > **Manage Account** > **Configurations** |
| [Custom username and password location](/waf/detections/leaked-credentials/#custom-detection-locations) | **Security** > **Settings** |
| [Custom content location](/waf/detections/malicious-uploads/#custom-scan-expressions) | **Security** > **Settings** |
| [JavaScript detections](/bots/reference/javascript-detections/) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Auto-update machine learning model](/bots/reference/machine-learning-models/) | **Security** > **Bots** > **Configure Bot Management** |
| [Enable Security.txt](/security-center/infrastructure/security-file/) | **Security** > **Settings** |
| [Challenge Passage](/waf/tools/challenge-passage/) | **Security** > **Settings** |
| [Browser Integrity Check](/waf/tools/browser-integrity-check/) | **Security** > **Settings** |
| [Replace insecure JavaScript libraries](/waf/tools/replace-insecure-js-libraries/) | **Security** > **Settings** |
| [Security Level](/waf/tools/security-level/) | **Security** > **Settings** |
| Setting | Location in previous dashboard navigation |
| ----------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------- |
| [Endpoint labels](/api-shield/management-and-monitoring/endpoint-labels/) | **Security** > **Settings** > **Labels** |
| [Session identifiers](/api-shield/management-and-monitoring/session-identifiers/#rule-form) | **Security** > **API Shield** > **Settings** |
| [Schemas default action](/api-shield/security/schema-validation/#change-the-global-default-action-of-schema-validation) | **Security** > **API Shield** > **Schema Validation** |
| [Uploaded schemas](/api-shield/security/schema-validation/) | **Security** > **API Shield** > **Schema Validation** |
| [Learned schemas](/api-shield/security/schema-validation/) | **Security** > **API Shield** > **Schema Validation** |
| [Token configuration](/api-shield/security/jwt-validation/#add-a-token-validation-configuration) | **Security** > **API Shield** > **Settings** |
| [Client-side resource alerts](/page-shield/detection/configure-alerts/#rule-form) | **Security** > **Page Shield** > **Settings**<br/>Account Home > **Notifications** |
| [Reporting endpoint](/page-shield/reference/settings/#reporting-endpoint) | **Security** > **Page Shield** > **Settings** |
| [Data processing](/page-shield/reference/settings/#connection-target-details) | **Security** > **Page Shield** > **Settings** |
| [IP lists](/waf/tools/lists/custom-lists/#lists-with-ip-addresses-ip-lists) | Account Home > **Manage Account** > **Configurations** |
| [Custom username and password location](/waf/detections/leaked-credentials/#custom-detection-locations) | **Security** > **Settings** |
| [Custom content location](/waf/detections/malicious-uploads/#custom-scan-expressions) | **Security** > **Settings** |
| [Custom sensitive data deployment](/waf/managed-rules/reference/sensitive-data-detection/#configure-in-the-dashboard) | **Security** > **Sensitive Data** |
| [Block definitely automated traffic](/bots/get-started/biz-and-ent/#bot-settings) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Block likely bots](/bots/get-started/biz-and-ent/#bot-settings) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Allow verified bots](/bots/get-started/biz-and-ent/#bot-settings) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Static resource protection](/bots/reference/static-resources/) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Optimize for WordPress](/bots/reference/wordpress-loopback-issue/) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [JavaScript detections](/bots/reference/javascript-detections/) | **Security** > **Bots** > **Configure Super Bot Fight Mode<br/>Security** > **Bots** > **Configure Bot Management** |
| [Auto-update machine learning model](/bots/reference/machine-learning-models/) | **Security** > **Bots** > **Configure Bot Management** |
| [Enable Security.txt](/security-center/infrastructure/security-file/) | **Security** > **Settings** |
| [Challenge Passage](/waf/tools/challenge-passage/) | **Security** > **Settings** |
| [Browser Integrity Check](/waf/tools/browser-integrity-check/) | **Security** > **Settings** |
| [Replace insecure JavaScript libraries](/waf/tools/replace-insecure-js-libraries/) | **Security** > **Settings** |
| [Security Level](/waf/tools/security-level/) | **Security** > **Settings** |
11 changes: 6 additions & 5 deletions src/content/partials/bots/get-started-pro-biz-steps.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,17 +1,18 @@
---
{}

---

To start using Super Bot Fight Mode:

1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account and domain.
2. Go to **Security** > **Bots**.
3. Select **Configure Super Bot Fight Mode**.
4. Choose how your domain should respond to various types of traffic:
* For more details on verified bots, refer to [Verified Bots](/bots/concepts/bot/#verified-bots).
* For more details on supported file types, refer to [Static resource protection](/bots/reference/static-resources/)
* For more details on invisible code injection, refer to [JavaScript detections](/bots/reference/javascript-detections/).
4. <a id="bot-settings" />
Copy link
Contributor Author

@pedrosousa pedrosousa Mar 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Makes step 4 a link target.

Choose how your domain should respond to various types of traffic:

- For more details on verified bots, refer to [Verified Bots](/bots/concepts/bot/#verified-bots).
- For more details on supported file types, refer to [Static resource protection](/bots/reference/static-resources/).
- For more details on invisible code injection, refer to [JavaScript detections](/bots/reference/javascript-detections/).

:::caution[Warning]

Expand Down