Web Application Firewall - Minimal to Viable
Web Application Firewall - Minimal to Viable
This epic is the set of issues we need to complete for our WAF offering to be considered viable. To mark this epic as complete, we must meet the maturity definition of "Viable: Used by users/customers to solve real problems."
Specifically, for us to solve real problems, we must be able to address several needs:
- The ability to log and/or block malicious traffic
- The ability to easily update and modify what is considered "malicious"
- The ability to interact with the WAF directly as part of GitLab (rather than a shell in a remote system)
- The ability to run in a web app that receives a large amount of production-grade traffic, with a minimal amount of maintenance and required manual interaction
Follow-on items for future maturity states, not included in Viable:
- Deep integration with other GitLab stages
- Virtual patching
- "Learning-mode" and auto-suggestion of new WAF rules
- Deployment configurations other than GitLab-managed Kubernetes clusters
- Responses to malicious actions beyond allow/block
- Show closed items
Link items together to show that they're related or that one is blocking others.