:source: fmgd_webfilter_profile.py :orphan: .. _fmgd_webfilter_profile: fmgd_webfilter_profile -- Configure Web filter profiles. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ .. versionadded:: 1.1.0 .. contents:: :local: :depth: 1 Synopsis -------- - This module is able to configure a FortiManager device. - Examples include all parameters and values need to be adjusted to data sources before usage. - Tested with FortiManager v7.x. Requirements ------------ The below requirements are needed on the host that executes this module. - ansible-core>=2.16.0 FortiManager Version Compatibility ---------------------------------- .. raw:: html

Supported Version Ranges: v7.4.8 -> v7.4.10, v7.6.4 -> latest

Parameters ---------- .. raw:: html Notes ----- .. note:: - Running in workspace locking mode is supported in this FortiManager module, the top level parameters workspace_locking_adom and workspace_locking_timeout help do the work. - To create or update an object, use state: present directive. - To delete an object, use state: absent directive - Normally, running one module can fail when a non-zero rc is returned. you can also override the conditions to fail or succeed with parameters rc_failed and rc_succeeded Examples -------- .. code-block:: yaml+jinja - name: Example playbook (generated based on argument schema) hosts: fortimanagers connection: httpapi gather_facts: false vars: ansible_httpapi_use_ssl: true ansible_httpapi_validate_certs: false ansible_httpapi_port: 443 tasks: - name: Configure Web filter profiles. fortinet.fmgdevice.fmgd_webfilter_profile: # bypass_validation: false # workspace_locking_adom: # workspace_locking_timeout: 300 # rc_succeeded: [0, -2, -3, ...] # rc_failed: [-2, -3, ...] device: vdom: state: present # webfilter_profile: name: "your value" # Required variable, string # antiphish: # authentication: # check_basic_auth: # check_uri: # check_username_only: # custom_patterns: # - category: # pattern: # type: # default_action: # domain_controller: # inspection_entries: # - action: # fortiguard_category: # name: # ldap: # max_body_len: # status: # comment: # ftgd_wf: # exempt_quota: # filters: # - action: # auth_usr_grp: # category: # id: # log: # override_replacemsg: # warn_duration: # warning_duration_type: # warning_prompt: # max_quota_timeout: # options: # - "error-allow" # - "rate-server-ip" # - "connect-request-bypass" # - "ftgd-disable" # - "http-err-detail" # ovrd: # quota: # - category: # duration: # id: # override_replacemsg: # type: # unit: # value: # reset_frequency: # rate_crl_urls: # rate_css_urls: # rate_javascript_urls: # risk: # - action: # id: # log: # risk_level: # rate_image_urls: # https_replacemsg: # ia_categorization: # log_all_url: # options: # - "block-invalid-url" # - "jscript" # - "js" # - "vbs" # - "unknown" # - "wf-referer" # - "intrinsic" # - "wf-cookie" # - "activexfilter" # - "cookiefilter" # - "javafilter" # - "per-user-bal" # - "per-user-bwl" # override: # ovrd_cookie: # ovrd_dur: # ovrd_dur_mode: # ovrd_scope: # ovrd_user_group: # profile: # profile_attribute: # profile_type: # ovrd_perm: # - "bannedword-override" # - "urlfilter-override" # - "fortiguard-wf-override" # - "contenttype-check-override" # post_action: # replacemsg_group: # web: # allowlist: # - "exempt-av" # - "exempt-webcontent" # - "exempt-activex-java-cookie" # - "exempt-dlp" # - "exempt-rangeblock" # - "extended-log-others" # blocklist: # bword_table: # bword_threshold: # content_header_list: # keyword_match: # log_search: # qwant_restrict: # safe_search: # - "url" # - "header" # urlfilter_table: # vimeo_restrict: # youtube_restrict: # whitelist: # - "exempt-av" # - "exempt-webcontent" # - "exempt-activex-java-cookie" # - "exempt-dlp" # - "exempt-rangeblock" # - "extended-log-others" # blacklist: # web_antiphishing_log: # web_content_log: # web_filter_activex_log: # web_filter_applet_log: # web_filter_command_block_log: # web_filter_cookie_log: # web_filter_cookie_removal_log: # web_filter_js_log: # web_filter_jscript_log: # web_filter_referer_log: # web_filter_unknown_log: # web_filter_vbs_log: # web_ftgd_err_log: # web_ftgd_quota_usage: # web_invalid_domain_log: # web_url_log: # wisp: # wisp_algorithm: # wisp_servers: # feature_set: # web_flow_log_encoding: # url_extraction: # redirect_header: # redirect_no_content: # redirect_url: # server_fqdn: # status: # extended_log: # web_extended_all_action_log: # youtube_channel_status: # youtube_channel_filter: # - channel_id: # comment: # id: # file_filter: # entries: # - action: # comment: # direction: # file_type: # filter: # password_protected: # protocol: # - "http" # - "ftp" # log: # scan_archive_contents: # status: Return Values ------------- Common return values are documented: https://docs.ansible.com/ansible/latest/reference_appendices/common_return_values.html#common-return-values, the following are the fields unique to this module: .. raw:: html
  • meta - The result of the request.returned: always type: dict
    • request_url - The full url requested. returned: always type: str sample: /sys/login/user
    • response_code - The status of api request. returned: always type: int sample: 0
    • response_data - The data body of the api response. returned: optional type: list or dict
    • response_message - The descriptive message of the api response. returned: always type: str sample: OK
    • system_information - The information of the target system. returned: always type: dict
  • rc - The status the request. returned: always type: int sample: 0
  • version_check_warning - Warning if the parameters used in the playbook are not supported by the current FortiManager version. returned: if at least one parameter not supported by the current FortiManager version type: list
Status ------ - This module is not guaranteed to have a backwards compatible interface. Authors ------- - Xinwei Du (@dux-fortinet) - Xing Li (@lix-fortinet) - Jie Xue (@JieX19) - Link Zheng (@chillancezen) - Frank Shen (@fshen01) - Hongbin Lu (@fgtdev-hblu)