From f3f5f5b30984b32cea2a0ecda174f73f64260042 Mon Sep 17 00:00:00 2001 From: Robert Garcia Ventura <11559903+robertgv@users.noreply.github.com> Date: Mon, 19 Feb 2024 11:53:32 +0100 Subject: [PATCH 1/5] feat: Add support for 2 new security_policy_name: TransferSecurityPolicy-2024-01 and TransferSecurityPolicy-FIPS-2024-01. --- .changelog/35877.txt | 7 +++++++ internal/service/transfer/enum.go | 4 ++++ internal/service/transfer/server.go | 2 +- internal/service/transfer/server_test.go | 18 ++++++++++++++++-- .../python/r/transfer_server.html.markdown | 12 +++++++++++- .../typescript/r/transfer_server.html.markdown | 12 +++++++++++- website/docs/r/transfer_server.html.markdown | 12 +++++++++++- 7 files changed, 61 insertions(+), 6 deletions(-) create mode 100644 .changelog/35877.txt diff --git a/.changelog/35877.txt b/.changelog/35877.txt new file mode 100644 index 00000000000..d2415be7ec1 --- /dev/null +++ b/.changelog/35877.txt @@ -0,0 +1,7 @@ +```release-note:note +resource/aws_transfer_server: The new default value for `security_policy_name` is `TransferSecurityPolicy-2024-01`. +``` + +```release-note:enhancement +resource/aws_transfer_server: Add support for 2 new `security_policy_name`: `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01`. +``` \ No newline at end of file diff --git a/internal/service/transfer/enum.go b/internal/service/transfer/enum.go index 39b6d79abaf..1e529e06d9d 100644 --- a/internal/service/transfer/enum.go +++ b/internal/service/transfer/enum.go @@ -8,8 +8,10 @@ const ( SecurityPolicyName2020_06 = "TransferSecurityPolicy-2020-06" SecurityPolicyNameFIPS_2020_06 = "TransferSecurityPolicy-FIPS-2020-06" SecurityPolicyNameFIPS_2023_05 = "TransferSecurityPolicy-FIPS-2023-05" + SecurityPolicyNameFIPS_2024_01 = "TransferSecurityPolicy-FIPS-2024-01" SecurityPolicyName2022_03 = "TransferSecurityPolicy-2022-03" SecurityPolicyName2023_05 = "TransferSecurityPolicy-2023-05" + SecurityPolicyName2024_01 = "TransferSecurityPolicy-2024-01" SecurityPolicyNamePQ_SSH_2023_04 = "TransferSecurityPolicy-PQ-SSH-Experimental-2023-04" SecurityPolicyNamePQ_SSH_FIPS_2023_04 = "TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04" ) @@ -20,8 +22,10 @@ func SecurityPolicyName_Values() []string { SecurityPolicyName2020_06, SecurityPolicyNameFIPS_2020_06, SecurityPolicyNameFIPS_2023_05, + SecurityPolicyNameFIPS_2024_01, SecurityPolicyName2022_03, SecurityPolicyName2023_05, + SecurityPolicyName2024_01, SecurityPolicyNamePQ_SSH_2023_04, SecurityPolicyNamePQ_SSH_FIPS_2023_04, } diff --git a/internal/service/transfer/server.go b/internal/service/transfer/server.go index 8151e636b2e..86a30eea57f 100644 --- a/internal/service/transfer/server.go +++ b/internal/service/transfer/server.go @@ -224,7 +224,7 @@ func ResourceServer() *schema.Resource { "security_policy_name": { Type: schema.TypeString, Optional: true, - Default: SecurityPolicyName2018_11, + Default: SecurityPolicyName2024_01, ValidateFunc: validation.StringInSlice(SecurityPolicyName_Values(), false), }, "structured_log_destinations": { diff --git a/internal/service/transfer/server_test.go b/internal/service/transfer/server_test.go index e0b7712568d..cc04e4034d1 100644 --- a/internal/service/transfer/server_test.go +++ b/internal/service/transfer/server_test.go @@ -71,7 +71,7 @@ func testAccServer_basic(t *testing.T) { resource.TestCheckResourceAttr(resourceName, "protocol_details.0.tls_session_resumption_mode", "ENFORCED"), resource.TestCheckResourceAttr(resourceName, "protocols.#", "1"), resource.TestCheckTypeSetElemAttr(resourceName, "protocols.*", "SFTP"), - resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2018-11"), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2024-01"), resource.TestCheckResourceAttr(resourceName, "structured_log_destinations.#", "0"), resource.TestCheckResourceAttr(resourceName, "tags.%", "0"), resource.TestCheckResourceAttr(resourceName, "url", ""), @@ -103,7 +103,7 @@ func testAccServer_basic(t *testing.T) { resource.TestCheckResourceAttrPair(resourceName, "logging_role", iamRoleResourceName, "arn"), resource.TestCheckResourceAttr(resourceName, "protocols.#", "1"), resource.TestCheckTypeSetElemAttr(resourceName, "protocols.*", "SFTP"), - resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2018-11"), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2024-01"), resource.TestCheckResourceAttr(resourceName, "tags.%", "0"), resource.TestCheckResourceAttr(resourceName, "url", ""), ), @@ -263,6 +263,13 @@ func testAccServer_securityPolicy(t *testing.T) { resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-PQ-SSH-Experimental-2023-04"), ), }, + { + Config: testAccServerConfig_securityPolicy(rName, "TransferSecurityPolicy-2024-01"), + Check: resource.ComposeTestCheckFunc( + testAccCheckServerExists(ctx, resourceName, &conf), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2024-01"), + ), + }, }, }) } @@ -292,6 +299,13 @@ func testAccServer_securityPolicyFIPS(t *testing.T) { ImportStateVerify: true, ImportStateVerifyIgnore: []string{"force_destroy"}, }, + { + Config: testAccServerConfig_securityPolicy(rName, "TransferSecurityPolicy-FIPS-2024-01"), + Check: resource.ComposeTestCheckFunc( + testAccCheckServerExists(ctx, resourceName, &conf), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-FIPS-2024-01"), + ), + }, }, }) } diff --git a/website/docs/cdktf/python/r/transfer_server.html.markdown b/website/docs/cdktf/python/r/transfer_server.html.markdown index 7d4e815e883..e810d8bfc40 100644 --- a/website/docs/cdktf/python/r/transfer_server.html.markdown +++ b/website/docs/cdktf/python/r/transfer_server.html.markdown @@ -221,7 +221,17 @@ This resource supports the following arguments: * `post_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `pre_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocol_details`- (Optional) The protocol settings that are configured for your server. -* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Possible values are `TransferSecurityPolicy-2018-11`, `TransferSecurityPolicy-2020-06`, `TransferSecurityPolicy-FIPS-2020-06`, `TransferSecurityPolicy-FIPS-2023-05`, `TransferSecurityPolicy-2022-03`, `TransferSecurityPolicy-2023-05`, `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` and `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04`. Default value is: `TransferSecurityPolicy-2018-11`. +* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: + * `TransferSecurityPolicy-2024-01` + * `TransferSecurityPolicy-2023-05` + * `TransferSecurityPolicy-2022-03` + * `TransferSecurityPolicy-2020-06` + * `TransferSecurityPolicy-2018-11` + * `TransferSecurityPolicy-FIPS-2024-01` + * `TransferSecurityPolicy-FIPS-2023-05` + * `TransferSecurityPolicy-FIPS-2020-06` + * `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` + * `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04` * `structured_log_destinations` - (Optional) A set of ARNs of destinations that will receive structured logs from the transfer server such as CloudWatch Log Group ARNs. If provided this enables the transfer server to emit structured logs to the specified locations. * `tags` - (Optional) A map of tags to assign to the resource. If configured with a provider [`default_tags` configuration block](https://registry.terraform.io/providers/hashicorp/aws/latest/docs#default_tags-configuration-block) present, tags with matching keys will overwrite those defined at the provider-level. * `workflow_details` - (Optional) Specifies the workflow details. See Workflow Details below. diff --git a/website/docs/cdktf/typescript/r/transfer_server.html.markdown b/website/docs/cdktf/typescript/r/transfer_server.html.markdown index 80f794ceb82..fd2c1081768 100644 --- a/website/docs/cdktf/typescript/r/transfer_server.html.markdown +++ b/website/docs/cdktf/typescript/r/transfer_server.html.markdown @@ -254,7 +254,17 @@ This resource supports the following arguments: * `postAuthenticationLoginBanner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `preAuthenticationLoginBanner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocolDetails`- (Optional) The protocol settings that are configured for your server. -* `securityPolicyName` - (Optional) Specifies the name of the security policy that is attached to the server. Possible values are `TransferSecurityPolicy-2018-11`, `TransferSecurityPolicy-2020-06`, `TransferSecurityPolicy-FIPS-2020-06`, `TransferSecurityPolicy-FIPS-2023-05`, `TransferSecurityPolicy-2022-03`, `TransferSecurityPolicy-2023-05`, `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` and `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04`. Default value is: `TransferSecurityPolicy-2018-11`. +* `securityPolicyName` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: + * `TransferSecurityPolicy-2024-01` + * `TransferSecurityPolicy-2023-05` + * `TransferSecurityPolicy-2022-03` + * `TransferSecurityPolicy-2020-06` + * `TransferSecurityPolicy-2018-11` + * `TransferSecurityPolicy-FIPS-2024-01` + * `TransferSecurityPolicy-FIPS-2023-05` + * `TransferSecurityPolicy-FIPS-2020-06` + * `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` + * `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04` * `structuredLogDestinations` - (Optional) A set of ARNs of destinations that will receive structured logs from the transfer server such as CloudWatch Log Group ARNs. If provided this enables the transfer server to emit structured logs to the specified locations. * `tags` - (Optional) A map of tags to assign to the resource. If configured with a provider [`defaultTags` configuration block](https://registry.terraform.io/providers/hashicorp/aws/latest/docs#default_tags-configuration-block) present, tags with matching keys will overwrite those defined at the provider-level. * `workflowDetails` - (Optional) Specifies the workflow details. See Workflow Details below. diff --git a/website/docs/r/transfer_server.html.markdown b/website/docs/r/transfer_server.html.markdown index 7ab5394cc02..34d36385de9 100644 --- a/website/docs/r/transfer_server.html.markdown +++ b/website/docs/r/transfer_server.html.markdown @@ -145,7 +145,17 @@ This resource supports the following arguments: * `post_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `pre_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocol_details`- (Optional) The protocol settings that are configured for your server. -* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Possible values are `TransferSecurityPolicy-2018-11`, `TransferSecurityPolicy-2020-06`, `TransferSecurityPolicy-FIPS-2020-06`, `TransferSecurityPolicy-FIPS-2023-05`, `TransferSecurityPolicy-2022-03`, `TransferSecurityPolicy-2023-05`, `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` and `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04`. Default value is: `TransferSecurityPolicy-2018-11`. +* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: + * `TransferSecurityPolicy-2024-01` + * `TransferSecurityPolicy-2023-05` + * `TransferSecurityPolicy-2022-03` + * `TransferSecurityPolicy-2020-06` + * `TransferSecurityPolicy-2018-11` + * `TransferSecurityPolicy-FIPS-2024-01` + * `TransferSecurityPolicy-FIPS-2023-05` + * `TransferSecurityPolicy-FIPS-2020-06` + * `TransferSecurityPolicy-PQ-SSH-Experimental-2023-04` + * `TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04` * `structured_log_destinations` - (Optional) A set of ARNs of destinations that will receive structured logs from the transfer server such as CloudWatch Log Group ARNs. If provided this enables the transfer server to emit structured logs to the specified locations. * `tags` - (Optional) A map of tags to assign to the resource. If configured with a provider [`default_tags` configuration block](https://registry.terraform.io/providers/hashicorp/aws/latest/docs#default_tags-configuration-block) present, tags with matching keys will overwrite those defined at the provider-level. * `workflow_details` - (Optional) Specifies the workflow details. See Workflow Details below. From 778b29ef2e67aa993117f03e46bb540230ccd5ac Mon Sep 17 00:00:00 2001 From: Robert Garcia Ventura <11559903+robertgv@users.noreply.github.com> Date: Mon, 19 Feb 2024 12:16:18 +0100 Subject: [PATCH 2/5] fix: Rename 35877.txt to 35879.txt to match PR number --- .changelog/{35877.txt => 35879.txt} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename .changelog/{35877.txt => 35879.txt} (98%) diff --git a/.changelog/35877.txt b/.changelog/35879.txt similarity index 98% rename from .changelog/35877.txt rename to .changelog/35879.txt index d2415be7ec1..a85affa822b 100644 --- a/.changelog/35877.txt +++ b/.changelog/35879.txt @@ -4,4 +4,4 @@ resource/aws_transfer_server: The new default value for `security_policy_name` i ```release-note:enhancement resource/aws_transfer_server: Add support for 2 new `security_policy_name`: `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01`. -``` \ No newline at end of file +``` From d0867f880e72935bb47bca0ca8b846aae8bf704e Mon Sep 17 00:00:00 2001 From: Kit Ewbank Date: Wed, 21 Feb 2024 07:54:16 -0500 Subject: [PATCH 3/5] r/aws_transfer_server: Restore 'TransferSecurityPolicy-2018-11' as the default 'security_policy_name'. --- .changelog/35879.txt | 6 +----- internal/service/transfer/exports_test.go | 3 ++- internal/service/transfer/server.go | 4 ++-- internal/service/transfer/server_test.go | 4 ++-- internal/service/transfer/service_package_gen.go | 2 +- internal/service/transfer/sweep.go | 2 +- website/docs/r/transfer_server.html.markdown | 2 +- 7 files changed, 10 insertions(+), 13 deletions(-) diff --git a/.changelog/35879.txt b/.changelog/35879.txt index a85affa822b..8b106973b3c 100644 --- a/.changelog/35879.txt +++ b/.changelog/35879.txt @@ -1,7 +1,3 @@ -```release-note:note -resource/aws_transfer_server: The new default value for `security_policy_name` is `TransferSecurityPolicy-2024-01`. -``` - ```release-note:enhancement -resource/aws_transfer_server: Add support for 2 new `security_policy_name`: `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01`. +resource/aws_transfer_server: `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01` as valid values for `security_policy_name` ``` diff --git a/internal/service/transfer/exports_test.go b/internal/service/transfer/exports_test.go index 7d84bc67c68..6be3e172350 100644 --- a/internal/service/transfer/exports_test.go +++ b/internal/service/transfer/exports_test.go @@ -5,5 +5,6 @@ package transfer // Exports for use in tests only. var ( - ResourceTag = resourceTag + ResourceServer = resourceServer + ResourceTag = resourceTag ) diff --git a/internal/service/transfer/server.go b/internal/service/transfer/server.go index 86a30eea57f..281da1dba35 100644 --- a/internal/service/transfer/server.go +++ b/internal/service/transfer/server.go @@ -30,7 +30,7 @@ import ( // nosemgrep:ci.semgrep.aws.multiple-service-imports // @SDKResource("aws_transfer_server", name="Server") // @Tags(identifierAttribute="arn") -func ResourceServer() *schema.Resource { +func resourceServer() *schema.Resource { return &schema.Resource{ CreateWithoutTimeout: resourceServerCreate, ReadWithoutTimeout: resourceServerRead, @@ -224,7 +224,7 @@ func ResourceServer() *schema.Resource { "security_policy_name": { Type: schema.TypeString, Optional: true, - Default: SecurityPolicyName2024_01, + Default: SecurityPolicyName2018_11, ValidateFunc: validation.StringInSlice(SecurityPolicyName_Values(), false), }, "structured_log_destinations": { diff --git a/internal/service/transfer/server_test.go b/internal/service/transfer/server_test.go index cc04e4034d1..11eda1e28aa 100644 --- a/internal/service/transfer/server_test.go +++ b/internal/service/transfer/server_test.go @@ -71,7 +71,7 @@ func testAccServer_basic(t *testing.T) { resource.TestCheckResourceAttr(resourceName, "protocol_details.0.tls_session_resumption_mode", "ENFORCED"), resource.TestCheckResourceAttr(resourceName, "protocols.#", "1"), resource.TestCheckTypeSetElemAttr(resourceName, "protocols.*", "SFTP"), - resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2024-01"), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2018-11"), resource.TestCheckResourceAttr(resourceName, "structured_log_destinations.#", "0"), resource.TestCheckResourceAttr(resourceName, "tags.%", "0"), resource.TestCheckResourceAttr(resourceName, "url", ""), @@ -103,7 +103,7 @@ func testAccServer_basic(t *testing.T) { resource.TestCheckResourceAttrPair(resourceName, "logging_role", iamRoleResourceName, "arn"), resource.TestCheckResourceAttr(resourceName, "protocols.#", "1"), resource.TestCheckTypeSetElemAttr(resourceName, "protocols.*", "SFTP"), - resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2024-01"), + resource.TestCheckResourceAttr(resourceName, "security_policy_name", "TransferSecurityPolicy-2018-11"), resource.TestCheckResourceAttr(resourceName, "tags.%", "0"), resource.TestCheckResourceAttr(resourceName, "url", ""), ), diff --git a/internal/service/transfer/service_package_gen.go b/internal/service/transfer/service_package_gen.go index 137ac62bbca..130ed62edaf 100644 --- a/internal/service/transfer/service_package_gen.go +++ b/internal/service/transfer/service_package_gen.go @@ -73,7 +73,7 @@ func (p *servicePackage) SDKResources(ctx context.Context) []*types.ServicePacka }, }, { - Factory: ResourceServer, + Factory: resourceServer, TypeName: "aws_transfer_server", Name: "Server", Tags: &types.ServicePackageResourceTags{ diff --git a/internal/service/transfer/sweep.go b/internal/service/transfer/sweep.go index 8d358527536..e3d7b7182dd 100644 --- a/internal/service/transfer/sweep.go +++ b/internal/service/transfer/sweep.go @@ -45,7 +45,7 @@ func sweepServers(region string) error { } for _, server := range page.Servers { - r := ResourceServer() + r := resourceServer() d := r.Data(nil) d.SetId(aws.StringValue(server.ServerId)) d.Set("force_destroy", true) // In lieu of an aws_transfer_user sweeper. diff --git a/website/docs/r/transfer_server.html.markdown b/website/docs/r/transfer_server.html.markdown index 34d36385de9..3b81313ccb3 100644 --- a/website/docs/r/transfer_server.html.markdown +++ b/website/docs/r/transfer_server.html.markdown @@ -145,7 +145,7 @@ This resource supports the following arguments: * `post_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `pre_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocol_details`- (Optional) The protocol settings that are configured for your server. -* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: +* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2018-11`. The available values are: * `TransferSecurityPolicy-2024-01` * `TransferSecurityPolicy-2023-05` * `TransferSecurityPolicy-2022-03` From d15c2f2be18bdf9b6ebab324ec6b431b62a06b08 Mon Sep 17 00:00:00 2001 From: Kit Ewbank Date: Wed, 21 Feb 2024 07:56:35 -0500 Subject: [PATCH 4/5] Update 35879.txt --- .changelog/35879.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.changelog/35879.txt b/.changelog/35879.txt index 8b106973b3c..192042824a5 100644 --- a/.changelog/35879.txt +++ b/.changelog/35879.txt @@ -1,3 +1,3 @@ ```release-note:enhancement -resource/aws_transfer_server: `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01` as valid values for `security_policy_name` +resource/aws_transfer_server: Add `TransferSecurityPolicy-2024-01` and `TransferSecurityPolicy-FIPS-2024-01` as valid values for `security_policy_name` ``` From 6597f82fd81e4e2f0c78e1eb22a7cb3f7fda0cf0 Mon Sep 17 00:00:00 2001 From: Robert Garcia Ventura <11559903+robertgv@users.noreply.github.com> Date: Wed, 21 Feb 2024 14:02:39 +0100 Subject: [PATCH 5/5] r/aws_transfer_server: Restore 'TransferSecurityPolicy-2018-11' as the default 'security_policy_name'. --- website/docs/cdktf/python/r/transfer_server.html.markdown | 2 +- website/docs/cdktf/typescript/r/transfer_server.html.markdown | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/website/docs/cdktf/python/r/transfer_server.html.markdown b/website/docs/cdktf/python/r/transfer_server.html.markdown index e810d8bfc40..c7fa7517e32 100644 --- a/website/docs/cdktf/python/r/transfer_server.html.markdown +++ b/website/docs/cdktf/python/r/transfer_server.html.markdown @@ -221,7 +221,7 @@ This resource supports the following arguments: * `post_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `pre_authentication_login_banner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocol_details`- (Optional) The protocol settings that are configured for your server. -* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: +* `security_policy_name` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2018-11`. The available values are: * `TransferSecurityPolicy-2024-01` * `TransferSecurityPolicy-2023-05` * `TransferSecurityPolicy-2022-03` diff --git a/website/docs/cdktf/typescript/r/transfer_server.html.markdown b/website/docs/cdktf/typescript/r/transfer_server.html.markdown index fd2c1081768..04a184a6697 100644 --- a/website/docs/cdktf/typescript/r/transfer_server.html.markdown +++ b/website/docs/cdktf/typescript/r/transfer_server.html.markdown @@ -254,7 +254,7 @@ This resource supports the following arguments: * `postAuthenticationLoginBanner`- (Optional) Specify a string to display when users connect to a server. This string is displayed after the user authenticates. The SFTP protocol does not support post-authentication display banners. * `preAuthenticationLoginBanner`- (Optional) Specify a string to display when users connect to a server. This string is displayed before the user authenticates. * `protocolDetails`- (Optional) The protocol settings that are configured for your server. -* `securityPolicyName` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2024-01`. The available values are: +* `securityPolicyName` - (Optional) Specifies the name of the security policy that is attached to the server. Default value is: `TransferSecurityPolicy-2018-11`. The available values are: * `TransferSecurityPolicy-2024-01` * `TransferSecurityPolicy-2023-05` * `TransferSecurityPolicy-2022-03`