Skip to content

chore(cloudfront): validate minimumProtocolVersion, sslSupportMethod must be used with custom certificate #35767

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(cloudfront): validate minimumProtocolVersion, sslSupportMethod must be used with custom certificate #35767

wants to merge 1 commit into from

Conversation

@phuhung273
Copy link
Contributor

@phuhung273 phuhung273 commented Oct 17, 2025

Issue # (if applicable)

Closes #35404

Reason for this change

minimumProtocolVersion, sslSupportMethod silently ignored without certificate. Users are unaware that their security setting is non-compliant.

Description of changes

Validate minimumProtocolVersion, sslSupportMethod must be used with custom certificate

Description of how you validated changes

Unit test

Checklist

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

@github-actions github-actions bot added bug This issue is a bug. effort/small Small work item – less than a day of effort p1 distinguished-contributor [Pilot] contributed 50+ PRs to the CDK labels Oct 17, 2025
@aws-cdk-automation aws-cdk-automation requested a review from a team October 17, 2025 04:05
@phuhung273 phuhung273 closed this Oct 17, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Oct 17, 2025

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 17, 2025
@phuhung273 phuhung273 deleted the cloudfront-validation branch October 17, 2025 04:25
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

bug This issue is a bug. distinguished-contributor [Pilot] contributed 50+ PRs to the CDK effort/small Small work item – less than a day of effort p1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

aws-cloudfront: minimumProtocolVersion setting should not be allowed without custom SSL/TLS certificate

1 participant

@phuhung273