Skip to content

(aws-ecs) - attaching an EFS filesystem should default transit encryption to enabled #11242

New issue
New issue
Closed
Closed
(aws-ecs) - attaching an EFS filesystem should default transit encryption to enabled#11242
Labels
@aws-cdk/aws-ecsRelated to Amazon Elastic Containerclosed-for-stalenessThis issue was automatically closed because it hadn't received any attention in a while.effort/mediumMedium work item – several days of effortfeature-requestA feature should be added or improved.p2response-requestedWaiting on additional info and feedback. Will move to "closing-soon" in 7 days.
@justin8

Description

@justin8
justin8
opened on Nov 2, 2020

We describe the CDK as encoding best practices by default and providing sane defaults. Yet EFS does some, less than sane things by default:

  • Encryption is disabled by default
  • To allow access a security group needs to be made and the NFS port opened up, there should be a helper method to make this easier
  • (sort of an ECS issue more than EFS, but...) When attaching an EFS filesystem to an ECS service the default is transit encryption disabled

Reproduction Steps

What did you expect to happen?

What actually happened?

Environment

  • CLI Version : 1.71.0
  • Framework Version: 1.71.0
  • Node.js Version:
  • OS :
  • Language (Version):

Other

This is 🐛 Bug Report

Metadata

Metadata

Assignees

No one assigned

    Labels

    @aws-cdk/aws-ecsRelated to Amazon Elastic Containerclosed-for-stalenessThis issue was automatically closed because it hadn't received any attention in a while.effort/mediumMedium work item – several days of effortfeature-requestA feature should be added or improved.p2response-requestedWaiting on additional info and feedback. Will move to "closing-soon" in 7 days.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions