summaryrefslogtreecommitdiff
path: root/astroshop-terraform/backend.tf
diff options
context:
space:
mode:
Diffstat (limited to 'astroshop-terraform/backend.tf')
-rw-r--r--astroshop-terraform/backend.tf17
1 files changed, 14 insertions, 3 deletions
diff --git a/astroshop-terraform/backend.tf b/astroshop-terraform/backend.tf
index 88e6e36..d962b6b 100644
--- a/astroshop-terraform/backend.tf
+++ b/astroshop-terraform/backend.tf
@@ -19,9 +19,20 @@ resource "aws_s3_bucket_versioning" "terraform_state" {
resource "aws_s3_bucket_server_side_encryption_configuration" "terraform_state" {
bucket = aws_s3_bucket.terraform_state.id
- rule {
- apply_server_side_encryption_by_default {
- sse_algorithm = "AES256"
+ server_side_encryption_configuration {
+ rule {
+ apply_server_side_encryption_by_default {
+ sse_algorithm = "AES256"
+ }
}
}
+}
+
+resource "aws_s3_bucket_public_access_block" "terraform_state" {
+ bucket = aws_s3_bucket.terraform_state.id
+
+ block_public_acls = true
+ block_public_policy = true
+ ignore_public_acls = true
+ restrict_public_buckets = true
} \ No newline at end of file
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-26 13:12:09 +0000