Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(ecs-patterns): Adds missing option to secure ingress of ALB in Ap… #9434

Merged
merged 2 commits into from
Aug 5, 2020
Merged

fix(ecs-patterns): Adds missing option to secure ingress of ALB in Ap… #9434

merged 2 commits into from
Aug 5, 2020

Conversation

ddneilson
Copy link
Contributor

This adds the option:

  /**
   * Determines whether or not the Security Group for the Load Balancer's Listener will be open to all traffic by default.
   *
   * @default true -- The security group allows ingress from all IP addresses.
   */
  readonly openListener?: boolean;

to ApplicationLoadBalancedServiceBase so that it is possible to restrict ingress to the listener created by the pattern.

Fixes: #9433

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

@SomayaB SomayaB added the @aws-cdk/aws-ecs-patterns Related to ecs-patterns library label Aug 5, 2020
iamhopaul123
iamhopaul123 approved these changes Aug 5, 2020
View reviewed changes
Copy link
Contributor

@iamhopaul123 iamhopaul123 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Thank you for contributing!

@mergify
Copy link
Contributor

mergify bot commented Aug 5, 2020

Thank you for contributing! Your pull request will be updated from master and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

@iamhopaul123 iamhopaul123 added the pr/do-not-merge This PR should not be merged at this time. label Aug 5, 2020
@iamhopaul123 iamhopaul123 requested a review from piradeepk August 5, 2020 18:34
@aws-cdk-automation
Copy link
Collaborator

AWS CodeBuild CI Report

  • CodeBuild project: AutoBuildProject6AEA49D1-qxepHUsryhcu
  • Commit ID: b92e6d3
  • Result: SUCCEEDED
  • Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

piradeepk
piradeepk approved these changes Aug 5, 2020
View reviewed changes
Copy link
Contributor

@piradeepk piradeepk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ship it! 💯 Thanks for adding the ability to restrict ingress traffic @ddneilson!

@piradeepk piradeepk removed the pr/do-not-merge This PR should not be merged at this time. label Aug 5, 2020
@mergify
Copy link
Contributor

mergify bot commented Aug 5, 2020

Thank you for contributing! Your pull request will be updated from master and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

@mergify mergify bot merged commit ba1427f into aws:master Aug 5, 2020
eladb pushed a commit that referenced this pull request Aug 10, 2020
@ddneilson
fix(ecs-patterns): Adds missing option to secure ingress of ALB in Ap… (
b62bd71 
#9434)

This adds the option:
```
  /**
   * Determines whether or not the Security Group for the Load Balancer's Listener will be open to all traffic by default.
   *
   * @default true -- The security group allows ingress from all IP addresses.
   */
  readonly openListener?: boolean;
```

to `ApplicationLoadBalancedServiceBase` so that it is possible to restrict ingress to the listener created by the pattern.

Fixes: #9433

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@iamhopaul123 iamhopaul123 iamhopaul123 approved these changes

@piradeepk piradeepk piradeepk approved these changes

Assignees

@uttarasridhar uttarasridhar

Labels
@aws-cdk/aws-ecs-patterns Related to ecs-patterns library
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[ecs-patterns] ApplicationLoadBalancedEc2Service missing option to control ingress of security group
6 participants
@ddneilson @aws-cdk-automation @piradeepk @iamhopaul123 @uttarasridhar @SomayaB