aws-elasticloadbalancingv2: SslPolicy enum doesn't include FIPS policies #28455

nwesoccer · 2023-12-21T17:03:44Z

Describe the bug

The SslPolicy enum does not include the FIPS Policies that were announce in November (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#fips-security-policies).

Expected Behavior

All Policies would be present in the SslPolicy enum, or there would be an option to use our own as a string.

Current Behavior

No FIPS policies can be selected/used.

Reproduction Steps

Create an ALB Listener. During the create, use attempt to set the sslPolicy property to SslPolicy.(value that represents ELBSecurityPolicy-TLS13-1-2-Ext0-FIPS-2023-04 policy).

Possible Solution

No response

Additional Information/Context

No response

CDK CLI Version

2.114.1

Framework Version

No response

Node.js Version

18

OS

Mac

Language

TypeScript

Language Version

No response

Other information

No response

pahud · 2023-12-22T17:28:50Z

Looks like we can simply add it into the enum

aws-cdk/packages/aws-cdk-lib/aws-elasticloadbalancingv2/lib/shared/enums.ts

Line 99 in cd54c42

export enum SslPolicy {

Are you interested to submit a PR for that?

This Pull Request introduces a set of new FIPS-compliant SSL policies for the Application Load Balancer (ALB) in AWS Elastic Load Balancing (ELB). These policies enhance the security of ALB by providing options that are compliant with the Federal Information Processing Standards (FIPS). Closes #28455 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

github-actions · 2023-12-23T22:22:11Z

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.

…8479) This Pull Request introduces a set of new FIPS-compliant SSL policies for the Application Load Balancer (ALB) in AWS Elastic Load Balancing (ELB). These policies enhance the security of ALB by providing options that are compliant with the Federal Information Processing Standards (FIPS). Closes aws#28455 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

nwesoccer added bug This issue is a bug. needs-triage This issue or PR still needs to be triaged. labels Dec 21, 2023

github-actions bot added the @aws-cdk/aws-elasticloadbalancingv2 Related to Amazon Elastic Load Balancing V2 label Dec 21, 2023

pahud self-assigned this Dec 22, 2023

pahud added p2 effort/small Small work item – less than a day of effort labels Dec 22, 2023

pahud removed their assignment Dec 22, 2023

pahud removed the needs-triage This issue or PR still needs to be triaged. label Dec 22, 2023

badmintoncryer mentioned this issue Dec 23, 2023

feat(elasticloadbalancingv2): FIPS compliant SSL policy to ALB #28479

Merged

mergify bot closed this as completed in #28479 Dec 23, 2023

github-actions bot mentioned this issue Jan 1, 2024

Monthly issue metrics report - Dec 2023 #28543

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

aws-elasticloadbalancingv2: SslPolicy enum doesn't include FIPS policies #28455

aws-elasticloadbalancingv2: SslPolicy enum doesn't include FIPS policies #28455

nwesoccer commented Dec 21, 2023

pahud commented Dec 22, 2023

github-actions bot commented Dec 23, 2023