github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/cloudfront/use_secure_tls_policy.cf.go (about) 1 package cloudfront 2 3 var cloudFormationUseSecureTlsPolicyGoodExamples = []string{ 4 `--- 5 Resources: 6 GoodExample: 7 Properties: 8 DistributionConfig: 9 DefaultCacheBehavior: 10 TargetOriginId: target 11 ViewerProtocolPolicy: https-only 12 Enabled: true 13 Logging: 14 Bucket: logging-bucket 15 Origins: 16 - DomainName: https://some.domain 17 Id: somedomain1 18 ViewerCertificate: 19 MinimumProtocolVersion: TLSv1.2_2021 20 Type: AWS::CloudFront::Distribution 21 `, 22 } 23 24 var cloudFormationUseSecureTlsPolicyBadExamples = []string{ 25 `--- 26 Resources: 27 BadExample: 28 Properties: 29 DistributionConfig: 30 DefaultCacheBehavior: 31 TargetOriginId: target 32 ViewerProtocolPolicy: https-only 33 Enabled: true 34 Logging: 35 Bucket: logging-bucket 36 Origins: 37 - DomainName: https://some.domain 38 Id: somedomain1 39 ViewerCertificate: 40 MinimumProtocolVersion: TLSv1.0 41 Type: AWS::CloudFront::Distribution 42 `, 43 } 44 45 var cloudFormationUseSecureTlsPolicyLinks = []string{} 46 47 var cloudFormationUseSecureTlsPolicyRemediationMarkdown = ``