Skip to content
This repository has been archived by the owner on Dec 30, 2024. It is now read-only.

Commit

Permalink
Fix cfn-nag violations #204
Browse files Browse the repository at this point in the history
  • Loading branch information
@JimTharioAmazon
JimTharioAmazon committed Mar 2, 2021
1 parent bef6b7e commit 731124f
Showing 1 changed file with 44 additions and 1 deletion.
45 changes: 44 additions & 1 deletion source/web-cloudformation/msam-browser-app-release.template
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,11 +101,23 @@
"ViewerCertificate": {
"CloudFrontDefaultCertificate": true,
"MinimumProtocolVersion": "TLSv1"
},
"Logging": {
"Bucket": {
"Fn::Join": [
"", [{
"Ref": "MSAMBrowserAppLoggingBucket"
},
".s3.amazonaws.com"
]
]
},
"Prefix": "cf/"
}
}
}
},
"MSAMAppBucketPolicy": {
"MSAMBrowserAppBucketPolicy": {
"Type": "AWS::S3::BucketPolicy",
"Properties": {
"Bucket": {
Expand Down Expand Up @@ -157,6 +169,37 @@
"*"
]
}]
},
"BucketEncryption": {
"ServerSideEncryptionConfiguration": [{
"ServerSideEncryptionByDefault": {
"SSEAlgorithm": "AES256"
}
}]
}
}
},
"MSAMBrowserAppLoggingBucket": {
"Type": "AWS::S3::Bucket",
"Properties": {
"AccessControl": "LogDeliveryWrite",
"BucketEncryption": {
"ServerSideEncryptionConfiguration": [{
"ServerSideEncryptionByDefault": {
"SSEAlgorithm": "AES256"
}
}]
},
"LifecycleConfiguration": {
"Rules": [{
"AbortIncompleteMultipartUpload": {
"DaysAfterInitiation": 5
},
"ExpirationInDays": 365,
"Id": "Expire Objects After 1 Year",
"NoncurrentVersionExpirationInDays": 365,
"Status": "Enabled"
}]
}
}
},
Expand Down

0 comments on commit 731124f

Please sign in to comment.