cloudfront-waf
dod-iac/cloudfront-waf/aws
WAF for use with CloudFront
Usage Creates an WAF Web ACL for use with CloudFront. Since this is a global resource, you can use any provider region. ``hcl module "cloudfront_waf" { source = "dod-iac/cloudfront-waf/aws" name = format("app-%s-%s", var.application, var.environment) metric_name = format("app%s%s", title(var.application), title(var.environment)) allowed_hosts = [var.fqdn] tags = { Application = var.application Environment = var.environment Automation = "Terraform" } } ` You can then add the WAF to a CloudFront Distribution with web_acl_id = module.cloudfront_waf.web_acl_id. Terraform Version Terraform 0.12. Pin module version to ~> 1.0.0 . Submit pull-requests to master branch. Terraform 0.11 is not supported. License This project constitutes a work of the United States Government and is not subject to dom
| Name | Type | Description | Default |
|---|---|---|---|
| allowed_hosts | list(string) | List of allowed values for the host header. | |
| name | string | The name or description of the web ACL. | |
| metric_name | string | The name or description for the Amazon CloudWatch metric of this web ACL. | |
| aws_waf_byte_match_set_allowed_hosts_name | string | The name of the aws_waf_byte_match_set used by the rule used for filtering by ho | "" |
| aws_waf_rule_allowed_hosts_name | string | The name of the rule used for filtering by host header. Defaults to "[name]-all | "" |
| aws_waf_rule_allowed_hosts_metric_name | string | The metric name of the rule used for filtering by host header. Defaults to "[me | "" |
| tags | map(string) | A mapping of tags to assign to the WAF Web ACL Resource and WAF Rules. | {} |
web_acl_id — The ID of the WAF WebACL.Azure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,