Help Center/ Web Application Firewall/ API Reference/ APIs/ Policy and Rule Management/ Deleting an IP Intelligence Protection Rule
Updated on 2025-08-19 GMT+08:00

Deleting an IP Intelligence Protection Rule

Function

This API is used to delete an IP intelligence protection rule.

Calling Method

For details, see Calling APIs.

URI

DELETE /v1/{project_id}/waf/policy/{policy_id}/ip-reputation/{rule_id}

Table 1 Path Parameters

Parameter

Mandatory

Type

Description

project_id

Yes

String

Definition

Project ID of the user.

Constraints

N/A

Range

N/A

Default Value

N/A

policy_id

Yes

String

Definition

Protection policy ID. You can call the ListPolicy API to obtain the policy ID.

Constraints

N/A

Range

N/A

Default Value

N/A

rule_id

Yes

String

Definition

ID of the IP intelligence access control rule. You can obtain it by calling the API for querying the IP intelligence rule list (https://apiexplorer.developer.huaweicloud.com/apiexplorer/doc?product=WAF&api=ListIdcIpRule).

Constraints

N/A

Range

N/A

Default Value

N/A

Table 2 Query Parameters

Parameter

Mandatory

Type

Description

enterprise_project_id

No

String

Definition

Obtain the enterprise project ID by calling the ListEnterpriseProject API of Enterprise Project Management Service (EPS).

Constraints

N/A

Range

N/A

Default Value

N/A

Request Parameters

Table 3 Request header parameters

Parameter

Mandatory

Type

Description

X-Auth-Token

Yes

String

Definition

User token. It can be obtained by calling the IAM API for obtaining a user token (value of X-Subject-Token in the response header).

Constraints

N/A

Range

N/A

Default Value

N/A

Content-Type

Yes

String

Definition

Content type.

Constraints

N/A

Range

N/A

Default Value

application/json;charset=utf8

Response Parameters

Status code: 200

Table 4 Response body parameters

Parameter

Type

Description

id

String

Definition

ID of the deleted rule.

Constraints

N/A

Range

N/A

Default Value

N/A

policyid

String

Definition

Protection policy ID.

Constraints

N/A

Range

N/A

Default Value

N/A

name

String

Definition

Name of the deleted rule.

Constraints

N/A

Range

N/A

Default Value

N/A

timestamp

Integer

Definition

Rule deletion timestamp (in ms).

Constraints

N/A

Range

N/A

Default Value

N/A

description

String

Definition

Description of the deleted rule.

Constraints

N/A

Range

N/A

Default Value

N/A

status

Integer

Definition

Status of the rule when it is deleted. 0: disabled or deleted.

Constraints

N/A

Range

N/A

Default Value

N/A

type

String

Definition

Rule type, for example, idc indicates the data center IP intelligence type.

Constraints

N/A

Range

N/A

Default Value

N/A

tags

Array of strings

Definition

List of tags associated with the rule.

Constraints

N/A

Range

N/A

Default Value

N/A

action

action object

Definition

Protective action for the rule before it is deleted.

Constraints

N/A

Range

N/A

Default Value

N/A

Table 5 action

Parameter

Type

Description

category

String

Definition

Action type, for example, log indicates that attacks are logged only.

Constraints

N/A

Range

N/A

Default Value

N/A

Status code: 400

Table 6 Response body parameters

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

encoded_authorization_message

String

You can call the decode-authorization-message interface of the STS service to decode the rejection reason. For details, see the STS5 joint commissioning and self-verification. This parameter is returned only when an IAM 5 authentication error occurs.

details

Array of IAM5ErrorDetails objects

The set of error messages reported when a downstream service is invoked. This parameter is returned only when an IAM 5 authentication error occurs.

Table 7 IAM5ErrorDetails

Parameter

Type

Description

error_code

String

Error codes of the downstream service.

error_msg

String

Error messages of the downstream service.

Status code: 401

Table 8 Response body parameters

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

encoded_authorization_message

String

You can call the decode-authorization-message interface of the STS service to decode the rejection reason. For details, see the STS5 joint commissioning and self-verification. This parameter is returned only when an IAM 5 authentication error occurs.

details

Array of IAM5ErrorDetails objects

The set of error messages reported when a downstream service is invoked. This parameter is returned only when an IAM 5 authentication error occurs.

Table 9 IAM5ErrorDetails

Parameter

Type

Description

error_code

String

Error codes of the downstream service.

error_msg

String

Error messages of the downstream service.

Status code: 500

Table 10 Response body parameters

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

encoded_authorization_message

String

You can call the decode-authorization-message interface of the STS service to decode the rejection reason. For details, see the STS5 joint commissioning and self-verification. This parameter is returned only when an IAM 5 authentication error occurs.

details

Array of IAM5ErrorDetails objects

The set of error messages reported when a downstream service is invoked. This parameter is returned only when an IAM 5 authentication error occurs.

Table 11 IAM5ErrorDetails

Parameter

Type

Description

error_code

String

Error codes of the downstream service.

error_msg

String

Error messages of the downstream service.

Example Requests

DELETE https://{Endpoint}/v1/{project_id}/waf/policy/{policy_id}/ip-reputation/{rule_id}?enterprise_project_id=0

Example Responses

Status code: 200

Request succeeded.

{
  "id" : "11842c5779204842bfe51c3e8b7981ca",
  "policyid" : "6d392034d94c4e8a95a78c98127453b6",
  "name" : "name",
  "timestamp" : 1657797158022,
  "description" : "description",
  "status" : 0,
  "type" : "idc",
  "tags" : [ "AliCloud" ],
  "action" : {
    "category" : "log"
  }
}

Status Codes

Status Code

Description

200

Request succeeded.

400

Request failed.

401

The token does not have required permissions.

500

Internal server error.

Error Codes

See Error Codes.