Skip to content

Commit

Permalink
Merge pull request #7421 from ministryofjustice/CC-2605/ELBSecurityPo…
Browse files Browse the repository at this point in the history 
…licy-upgrade

CC-2605: ssl_policy ELBSecurityPolicy-2016-08 -> ELBSecurityPolicy-TLS13-1-2-2021-06
  • Loading branch information
@mmgovuk
mmgovuk authored Aug 13, 2024
2 parents 2d78c95 + c53d2b5 commit c4472e8
Show file tree
Hide file tree
Showing 6 changed files with 15 additions and 15 deletions.
2 changes: 1 addition & 1 deletion terraform/environments/ccms-ebs-upgrade/ec2-oracle_ebs_apps-alb.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ resource "aws_lb_listener" "ebsapps_listener" {
load_balancer_arn = aws_lb.ebsapps_lb.arn
port = "443"
protocol = "HTTPS"
ssl_policy = "ELBSecurityPolicy-2016-08"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.external.arn

default_action {
Expand Down
2 changes: 1 addition & 1 deletion terraform/environments/ccms-ebs-upgrade/ec2-oracle_webgate-alb.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ resource "aws_lb_listener" "webgate_listener" {
load_balancer_arn = aws_lb.webgate_lb.arn
port = "443"
protocol = "HTTPS"
ssl_policy = "ELBSecurityPolicy-2016-08"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.external.arn

default_action {
Expand Down
2 changes: 1 addition & 1 deletion terraform/environments/ccms-ebs/ccms-ec2-oracle_ebs_apps-alb.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ resource "aws_lb_listener" "ebsapps_listener" {
load_balancer_arn = aws_lb.ebsapps_lb.arn
port = "443"
protocol = "HTTPS"
ssl_policy = "ELBSecurityPolicy-2016-08"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = data.aws_acm_certificate.gandi_cert.arn

default_action {
Expand Down
4 changes: 2 additions & 2 deletions terraform/environments/ccms-ebs/ccms-ec2-oracle_webgate-alb.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ resource "aws_lb_listener" "webgate_listener" {
load_balancer_arn = aws_lb.webgate_lb[count.index].arn
port = "443"
protocol = "HTTPS"
ssl_policy = "ELBSecurityPolicy-2016-08"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = local.cert_arn

default_action {
Expand Down Expand Up @@ -88,7 +88,7 @@ resource "aws_lb_listener" "webgate_public_listener" {
load_balancer_arn = aws_lb.webgate_public_lb.arn
port = "443"
protocol = "HTTPS"
ssl_policy = "ELBSecurityPolicy-2016-08"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = data.aws_acm_certificate.gandi_cert.arn

default_action {
Expand Down
10 changes: 5 additions & 5 deletions terraform/environments/laa-oem/oem_ec2_app_lb.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ resource "aws_lb_listener" "oem_app" {
port = 443
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -27,7 +27,7 @@ resource "aws_lb_listener" "oem_app_3872" {
port = 3872
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -41,7 +41,7 @@ resource "aws_lb_listener" "oem_app_4903" {
port = 4903
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -55,7 +55,7 @@ resource "aws_lb_listener" "oem_app_7102" {
port = 7102
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -69,7 +69,7 @@ resource "aws_lb_listener" "oem_app_7803" {
port = 7803
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand Down
10 changes: 5 additions & 5 deletions terraform/environments/laa-oem/oem_ec2_app_lb_internal.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ resource "aws_lb_listener" "oem_app_internal" {
port = 443
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -27,7 +27,7 @@ resource "aws_lb_listener" "oem_app_3872_internal" {
port = 3872
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -41,7 +41,7 @@ resource "aws_lb_listener" "oem_app_4903_internal" {
port = 4903
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -55,7 +55,7 @@ resource "aws_lb_listener" "oem_app_7102_internal" {
port = 7102
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand All @@ -69,7 +69,7 @@ resource "aws_lb_listener" "oem_app_7803_internal" {
port = 7803
protocol = "HTTPS"

ssl_policy = "ELBSecurityPolicy-TLS-1-2-2017-01"
ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
certificate_arn = aws_acm_certificate.laa_cert.arn

default_action {
Expand Down

0 comments on commit c4472e8

Please sign in to comment.