Create custom rules via API
Use the Rulesets API to create a Custom Rule via API.
You must deploy custom rules to the http_request_firewall_custom phase entry point ruleset.
Create a custom rule
To create a custom rule, add a rule to the http_request_firewall_custom phase entry point ruleset.
-
Invoke the View ruleset method to obtain the list of rules already present in the
http_request_firewall_customphase entry point ruleset. If the entry point ruleset does not exist, proceed to step 2, since adding a rule to the entry point ruleset will create the ruleset if it does not exist. -
Invoke the Update ruleset method to update the list of rules in the phase entry point ruleset with a new rule. You must include the rule ID of all the rules you wish to keep in the ruleset (all other fields are optional).
Example: Add new custom rule using the Update ruleset API method
---
header: Request
---
curl -X PUT \
"https://api.cloudflare.com/client/v4/zones/{zone-id}/rulesets/phases/http_request_firewall_custom/entrypoint" \
-H "Authorization: Bearer <API_TOKEN>" \
-d '{
"rules": [
{
"description": "My custom rule",
"expression": "(ip.geoip.country eq \"GB\" or ip.geoip.country eq \"FR\") or cf.threat_score > 0",
"action": "challenge"
}
]
}'
The response includes the complete ruleset definition.
---
header: Response
---
{
"result": {
"id": "{ruleset-id}",
"name": "Default",
"description": "",
"kind": "zone",
"version": "5",
"rules": [
{
"id": "{rule-id}",
"version": "1",
"expression": "(ip.geoip.country eq \"GB\" or ip.geoip.country eq \"FR\") or cf.threat_score > 0",
"action": "challenge",
"description": "My custom rule",
"last_updated": "2021-05-31T18:33:41.347Z",
"ref": "{rule-ref-1}",
"enabled": true
}
],
"last_updated": "2021-05-31T18:33:41.347Z",
"phase": "http_request_firewall_custom"
},
"success": true,
"errors": [],
"messages": []
}