(aws-neptune): Provide Auto Minor Version Upgrade option for Neptune Cluster instances #17545

pedrosola · 2021-11-17T18:35:25Z

Description

Using the DatabaseCluster construct, I would like to specify that I want Auto Minor Version Upgrade to be enabled. This is inline with the security checks provided by the cdk-nag. This feature makes it so that projects using the construct are deemed invalid, as per the AWS Solutions Library rules.

More details about the feature can be found at the AWS Documentation.

Use Case

I need this feature for security purposes. Particularly, this is required in order to pass the AwsSolutions-N2 check by the cdk-nag tool. More information on rules can be found here.

Proposed Solution

I see the following approaches:

Provide the auto_minor_version_upgrade property directly under the DatabaseCluster construct as a boolean. If True then every Instance on the cluster would have auto_minor_version_upgrade set to True
Provide the auto_minor_version_upgrade property under the DatabaseClusterProps construct. The rest follows as in (1).
Provide auto_minor_version_upgrade property under the DatabaseInstanceProps construct and, in addition, provide a way for this property to be passed to the DatabaseCluster construct.

Other information

No response

Acknowledge

I may be able to implement this feature request
This feature might incur a breaking change

The text was updated successfully, but these errors were encountered:

njlynch · 2021-12-07T15:09:30Z

Thanks for the feature request.

Option 1 seems the sanest in the near-term. This would closely mirror the approach in some of the other DB services (e.g., docdb). Contributions welcome.

In the meantime, you can use escape hatches to set the underlying Cloudformation properties.

ericzbeard · 2022-01-12T23:50:02Z

This looks fairly simple, I'm going to work on it this week.

Fixes #17545

github-actions · 2022-01-13T10:59:44Z

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.

…18394) Fixes aws#17545

pedrosola added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Nov 17, 2021

github-actions bot added the @aws-cdk/aws-neptune Related Amazon Neptune label Nov 17, 2021

github-actions bot assigned njlynch Nov 17, 2021

njlynch added effort/small Small work item – less than a day of effort p2 and removed needs-triage This issue or PR still needs to be triaged. labels Dec 7, 2021

njlynch removed their assignment Dec 7, 2021

njlynch added the good first issue Related to contributions. See CONTRIBUTING.md label Dec 7, 2021

ericzbeard mentioned this issue Jan 13, 2022

feat(aws-neptune): add autoMinorVersionUpgrade to cluster props #18394

Merged

mergify bot closed this as completed in #18394 Jan 13, 2022

mergify bot pushed a commit that referenced this issue Jan 13, 2022

feat(aws-neptune): add autoMinorVersionUpgrade to cluster props (#18394)

8b5320a

Fixes #17545

TikiTDO pushed a commit to TikiTDO/aws-cdk that referenced this issue Feb 21, 2022

feat(aws-neptune): add autoMinorVersionUpgrade to cluster props (aws#…

fe2b4c8

…18394) Fixes aws#17545

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

(aws-neptune): Provide Auto Minor Version Upgrade option for Neptune Cluster instances #17545

(aws-neptune): Provide Auto Minor Version Upgrade option for Neptune Cluster instances #17545

pedrosola commented Nov 17, 2021

njlynch commented Dec 7, 2021

ericzbeard commented Jan 12, 2022

github-actions bot commented Jan 13, 2022