16f6c0aecf
Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in.
65 lines
1.3 KiB
Plaintext
65 lines
1.3 KiB
Plaintext
include::../description.adoc[]
|
|
|
|
include::../ask-yourself.adoc[]
|
|
|
|
include::../recommended.adoc[]
|
|
|
|
== Sensitive Code Example
|
|
|
|
For https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_efs.FileSystem.html[aws_cdk.aws_efs.FileSystem]
|
|
and https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_efs.CfnFileSystem.html[aws_cdk.aws_efs.CfnFileSystem]:
|
|
|
|
[source,python]
|
|
----
|
|
from aws_cdk import (
|
|
aws_efs as efs
|
|
)
|
|
|
|
efs.FileSystem(
|
|
self,
|
|
"example",
|
|
encrypted=False # Sensitive
|
|
)
|
|
----
|
|
|
|
== Compliant Solution
|
|
|
|
For https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_efs.FileSystem.html[aws_cdk.aws_efs.FileSystem]
|
|
and https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_efs.CfnFileSystem.html[aws_cdk.aws_efs.CfnFileSystem]:
|
|
|
|
[source,python]
|
|
----
|
|
from aws_cdk import (
|
|
aws_efs as efs
|
|
)
|
|
|
|
efs.FileSystem(
|
|
self,
|
|
"example",
|
|
encrypted=True
|
|
)
|
|
----
|
|
|
|
include::../see.adoc[]
|
|
|
|
ifdef::env-github,rspecator-view[]
|
|
|
|
'''
|
|
|
|
== Implementation Specification
|
|
(visible only on this page)
|
|
|
|
=== Message
|
|
|
|
For FileSystem:
|
|
|
|
* Make sure that using unencrypted file systems is safe here.
|
|
|
|
For CfnFileSystem:
|
|
|
|
* Make sure that using unencrypted file systems is safe here.
|
|
* Omitting "encrypted" disables EFS encryption. Make sure it is safe here.
|
|
|
|
|
|
endif::env-github,rspecator-view[]
|