adding s3 bucket policy through log_access_logs on load balancers not working correctly in python #17680
brammiedemaatos
started this conversation in
General
adding s3 bucket policy through log_access_logs on load balancers not working correctly in python
#17680
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Adding policy for access log storage from load balancers in an s3 bucket is not working correctly, see docs here: https://docs.aws.amazon.com/cdk/api/latest/python/aws_cdk.aws_elasticloadbalancingv2/NetworkLoadBalancer.html?highlight=log_access_logs#aws_cdk.aws_elasticloadbalancingv2.NetworkLoadBalancer.log_access_logs. Documentation suggests that it should result in this https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-access-logs.html#access-logging-bucket-requirements but it results in policies conflicting with security best practices as found here: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp-controls.html#s3-6-remediation
See results
Beta Was this translation helpful? Give feedback.
All reactions