Kvindo™ Cloud Docs
An HTTPS Listener Rule matches requests on an HTTPS Listener (after TLS has been terminated) and applies a Layer-7 action. It has the same capabilities as an HTTP rule, with one extra option: forwarding as gRPC.
• Listener — the HTTPS listener this rule belongs to (spec.httpsListenerId)
• Match — the request path and how it is compared (spec.match)
• Action — forward to a Target Group, return a static response, rewrite the path, or add/remove headers
• gRPC — the forward-to-HTTPS action can carry passAsGrpc for gRPC backends
| UI Name | API / kc name | Terraform name | Optional | Format | Default | Is read only | Description |
|---|---|---|---|---|---|---|---|
| Listener | spec.httpsListenerId |
spec.https_listener_id |
No | ULID — references an HTTPS Listener | — | No | The listener this rule belongs to |
| Order | spec.order |
spec.order |
Yes | integer | 0 |
No | Evaluation order; lower is checked first |
| Match | spec.match |
spec.match |
No | object | — | No | Request match criteria |
| Path | spec.match.path |
path |
No | string | — | No | Path to compare against |
| Path match type | spec.match.pathMatchType |
path_match_type |
No | string — prefix / exact / regex |
— | No | How the path is compared |
| Forward to HTTP | spec.forwardToHttpResponseAction |
spec.forward_to_http_response_action |
Yes | object — {targetGroupId, toPorts, portMappingType} |
— | No | Forward the request to a Target Group over plain HTTP |
| Forward to HTTPS | spec.forwardToHttpsResponseAction |
spec.forward_to_https_response_action |
Yes | object — adds tls + passAsGrpc |
— | No | Forward the request to a Target Group, re-encrypting to the backends (optionally as gRPC); the tls object supports mTlsCertificateId, caCertificateId, verify, and sniServerName |
| Static response | spec.staticResponseAction |
spec.static_response_action |
Yes | object — {statusCode, bodyString, contentType, headers} |
— | No | Return a fixed response without touching a backend |
| Path rewrite | spec.pathRewriteAction |
spec.path_rewrite_action |
Yes | object — {sourcePath, destinationPath, pathType} |
— | No | Rewrite the request path before forwarding |
| Header actions | spec.setRequestHeadersAction / setResponseHeadersAction / deleteRequestHeadersAction / deleteResponseHeadersAction |
spec.set_request_headers_action / set_response_headers_action / delete_request_headers_action / delete_response_headers_action |
Yes | objects | — | No | Add or remove request/response headers |
A rule on an HTTPS listener that forwards decrypted requests to a Target Group's backends on port 80.
Terraform
Python SDK
kc CLI
Resource docs
Examples
More in this section