If default cloudfront certificate is used, ignore minimum_protocol_version #1785

ekini · 2017-10-01T08:22:38Z

According to the Amazon documentation http://docs.aws.amazon.com/cloudfront/latest/APIReference/API_ViewerCertificate.html,
MinimumProtocolVersion is ignored when default Cloudfront certificate is used.

It is currently set by Amazon as TLSv1, whereas default value for this in terraform is SSLv3. It causes terraform to update resources every time.

Fixes #407

…rsion Fixes hashicorp#407

radeksimko

LGTM, thanks for the fix. 👍

ghost · 2020-04-10T17:56:06Z

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

If default cloudfront certificate is used, ignore minimum_protocol_ve…

52ad2b6

…rsion Fixes hashicorp#407

ekini force-pushed the default_certificate branch from 058bfa3 to 52ad2b6 Compare October 1, 2017 21:46

radeksimko added the bug Addresses a defect in current functionality. label Oct 2, 2017

JamesBelchamber mentioned this pull request Oct 11, 2017

terraform updates aws_cloudfront_distribution every time over and over again #407

Closed

radeksimko approved these changes Oct 14, 2017

View reviewed changes

radeksimko merged commit a45d3a5 into hashicorp:master Oct 14, 2017

jeancochrane mentioned this pull request Dec 17, 2018

Configure CloudFront proxy for Tilegarden azavea/pfb-network-connectivity#629

Merged

ghost locked and limited conversation to collaborators Apr 10, 2020

Provide feedback