Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BastionHostLinux does not encrypt EBS volume #6945

Closed
2 tasks
stephendwu opened this issue Mar 23, 2020 · 0 comments · Fixed by #7585
Closed
2 tasks

BastionHostLinux does not encrypt EBS volume #6945

stephendwu opened this issue Mar 23, 2020 · 0 comments · Fixed by #7585
Assignees
@rix0rrr
Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. good first issue Related to contributions. See CONTRIBUTING.md in-progress This issue is being actively worked on.

Comments

@stephendwu
Copy link
Contributor

BastionHostLinux does not encrypt EBS Volume, and does not provide the option to encrypt the EBS volume. In version 1.30, I would have to manually enable encryption on EBS volumes.

Use Case

Compliance regulations could require us to secure all EBS volumes.

Proposed Solution

Allow a user to encrypt an EBS volume. To stay consistent, it'd be nice to do something similar to DatabaseCluster

kmsKey?,
storageEncrypted?

Other

  • 👋 I may be able to implement this feature request
  • ⚠️ This feature might incur a breaking change

This is a 🚀 Feature Request
@stephendwu stephendwu added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Mar 23, 2020
@SomayaB SomayaB added the @aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud label Mar 25, 2020
@rix0rrr rix0rrr added effort/small Small work item – less than a day of effort good first issue Related to contributions. See CONTRIBUTING.md labels Apr 16, 2020
@shreyasdamle shreyasdamle mentioned this issue Apr 24, 2020
Merged
@SomayaB SomayaB added in-progress This issue is being actively worked on. and removed needs-triage This issue or PR still needs to be triaged. labels Apr 28, 2020
@mergify mergify bot closed this as completed in #7585 May 6, 2020
mergify bot pushed a commit that referenced this issue May 6, 2020
@shreyasdamle
feat(ec2): EBS volume configuration for BastionHostLinux
207a8ec 
Added `blockDevices?` property to `BastionHostLinuxProps` to allow full EBS device configuration so that customers can use it for use-cases like to encrypt an EBS volume for BastionHostLinux

Fixes #6945
karupanerura pushed a commit to karupanerura/aws-cdk that referenced this issue May 7, 2020
@shreyasdamle @karupanerura
feat(ec2): EBS volume configuration for BastionHostLinux
7d11a06 
Added `blockDevices?` property to `BastionHostLinuxProps` to allow full EBS device configuration so that customers can use it for use-cases like to encrypt an EBS volume for BastionHostLinux

Fixes aws#6945
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rix0rrr rix0rrr

Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. good first issue Related to contributions. See CONTRIBUTING.md in-progress This issue is being actively worked on.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(ec2): EBS volume configuration for BastionHostLinux shreyasdamle/aws-cdk
3 participants
@rix0rrr @SomayaB @stephendwu