hashicorp · katbyte · Dec 14, 2023 · Dec 12, 2023 · Dec 13, 2023 · Dec 14, 2023
diff --git a/internal/services/network/web_application_firewall_policy_resource.go b/internal/services/network/web_application_firewall_policy_resource.go
@@ -782,7 +782,7 @@ func expandWebApplicationFirewallPolicyExclusionManagedRuleGroup(input []interfa
 	for _, item := range input {
 		v := item.(map[string]interface{})
 
-		ruleGroupName := v["rule_group_name"].(string)
+		ruleGroupName := convertRuleGroupNameToBeAcceptedByAPI(v["rule_group_name"].(string))
 
 		result := webapplicationfirewallpolicies.ExclusionManagedRuleGroup{
 			RuleGroupName: ruleGroupName,
@@ -874,7 +874,7 @@ func expandWebApplicationFirewallPolicyRuleGroupOverrides(input []interface{}, d
 	for i, item := range input {
 		v := item.(map[string]interface{})
 
-		ruleGroupName := v["rule_group_name"].(string)
+		ruleGroupName := convertRuleGroupNameToBeAcceptedByAPI(v["rule_group_name"].(string))
 
 		result := webapplicationfirewallpolicies.ManagedRuleGroupOverride{
 			RuleGroupName: ruleGroupName,
@@ -1108,7 +1108,7 @@ func flattenWebApplicationFirewallPolicyExclusionManagedRuleGroups(input *[]weba
 	for _, item := range *input {
 		v := make(map[string]interface{})
 
-		v["rule_group_name"] = item.RuleGroupName
+		v["rule_group_name"] = convertRuleGroupNameFromAPI(item.RuleGroupName)
 		v["excluded_rules"] = flattenWebApplicationFirewallPolicyExclusionManagedRules(item.Rules)
 
 		results = append(results, v)
@@ -1183,7 +1183,7 @@ func flattenWebApplicationFirewallPolicyRuleGroupOverrides(input *[]webapplicati
 	for _, item := range *input {
 		v := make(map[string]interface{})
 
-		v["rule_group_name"] = item.RuleGroupName
+		v["rule_group_name"] = convertRuleGroupNameFromAPI(item.RuleGroupName)
 
 		if !features.FourPointOhBeta() {
 			v["disabled_rules"] = flattenWebApplicationFirewallPolicyRules(item.Rules)
@@ -1296,3 +1296,57 @@ func flattenWebApplicationFirewallPoliciesSubResourcesToIDs(input *[]webapplicat
 
 	return ids
 }
+
+func convertRuleGroupNameToBeAcceptedByAPI(name string) string {
+	var ruleGroupName string
+	switch name {
+	case "APPLICATION-ATTACK-LFI":
+		ruleGroupName = "LFI"
+	case "APPLICATION-ATTACK-RFI":
+		ruleGroupName = "RFI"
+	case "APPLICATION-ATTACK-RCE":
+		ruleGroupName = "RCE"
+	case "APPLICATION-ATTACK-PHP":
+		ruleGroupName = "PHP"
+	case "APPLICATION-ATTACK-NodeJS":
+		ruleGroupName = "NODEJS"
+	case "APPLICATION-ATTACK-XSS":
+		ruleGroupName = "XSS"
+	case "APPLICATION-ATTACK-SQLI":
+		ruleGroupName = "SQLI"
+	case "APPLICATION-ATTACK-SESSION-FIXATION":
+		ruleGroupName = "FIX"
+	case "APPLICATION-ATTACK-SESSION-JAVA":
+		ruleGroupName = "JAVA"
+	default:
+		ruleGroupName = name
+	}
+	return ruleGroupName
+}
+
+func convertRuleGroupNameFromAPI(name string) string {
+	var ruleGroupName string
+	switch name {
+	case "LFI":
+		ruleGroupName = "APPLICATION-ATTACK-LFI"
+	case "RFI":
+		ruleGroupName = "APPLICATION-ATTACK-RFI"
+	case "RCE":
+		ruleGroupName = "APPLICATION-ATTACK-RCE"
+	case "PHP":
+		ruleGroupName = "APPLICATION-ATTACK-PHP"
+	case "NODEJS":
+		ruleGroupName = "APPLICATION-ATTACK-NodeJS"
+	case "XSS":
+		ruleGroupName = "APPLICATION-ATTACK-XSS"
+	case "SQLI":
+		ruleGroupName = "APPLICATION-ATTACK-SQLI"
+	case "FIX":
+		ruleGroupName = "APPLICATION-ATTACK-SESSION-FIXATION"
+	case "JAVA":
+		ruleGroupName = "APPLICATION-ATTACK-SESSION-JAVA"
+	default:
+		ruleGroupName = name
+	}
+	return ruleGroupName
+}
@@ -1421,6 +1421,87 @@ resource "azurerm_web_application_firewall_policy" "test" {
           action  = "Log"
         }
       }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-LFI"
+        rule {
+          id      = "930100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-RFI"
+        rule {
+          id      = "931100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-RCE"
+        rule {
+          id      = "932100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-PHP"
+        rule {
+          id      = "933100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-NodeJS"
+        rule {
+          id      = "934100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-XSS"
+        rule {
+          id      = "941100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-SQLI"
+        rule {
+          id      = "942100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-SESSION-FIXATION"
+        rule {
+          id      = "943100"
+          enabled = false
+          action  = "Log"
+        }
+      }
+
+      rule_group_override {
+        rule_group_name = "APPLICATION-ATTACK-SESSION-JAVA"
+        rule {
+          id      = "944100"
+          enabled = false
+          action  = "Log"
+        }
+      }
     }
   }
 }