Skip to content

Releases: tamu-edu/it-svc-aws-static-sites-tfmod

Delete Secrets Manager secrets immediately

13 Nov 21:35
dde463d
Compare
Choose a tag to compare

No longer wait to delete AWS Secrets Manager secrets for OIDC and SSO. This allows you to turn SSO off and back on without a problem.

Add user agent string when fetching rewrite rules file

11 Sep 15:01
8e847e8
Compare
Choose a tag to compare

Add a user agent string when fetching the rewrite rules JSON file. This prevents the WAF from blocking that fetch

Prepare for use of GA in multi-site post stack

02 Sep 19:36
101b710
Compare
Choose a tag to compare

Prepare this module to enable the use of a Global Accelerator in the post-site stack of the multi-site system:

  • Support a new YAML attribute, global_accelerator, which is used to add a SAN to the site, as well as signal to the multi-site post-site stack that it should create an AWS Global Accelerator and associated certificate. This happens in the post-site stack because all sites share the same AWS Global Accelerator.

Add AWS WAF

31 Jul 17:14
830d20c
Compare
Choose a tag to compare

Add an AWS WAF to all CloudFront distributions. The WAF is created as part of the account bootstrapping procedure, and associated with a distribution when the cf distro is made or updated via this module.

IAM Username Length Fix

06 Mar 16:07
3e62b80
Compare
Choose a tag to compare

Limit IAM usernames to 64 characters to avoid errors

Add cache invalidation via Cascade publishing

07 Feb 22:39
3e62b80
Compare
Choose a tag to compare
  • Allow a CF distribution's cache to be invalidated by publishing a file called "invalidate_cache.txt" to the root of the distributon's S3 bucket.

Attempt to mitigate bucket ACL ownership race condition

26 Feb 21:53
10a8af1
Compare
Choose a tag to compare

Attempt to mitigate bucket ACL ownership race condition when replacing origin buckets and updating the CloudFront distribution

Rename S3 buckets to ensure no conflict during site migrations (post-flag)

26 Feb 21:03
55f056a
Compare
Choose a tag to compare

Rename S3 buckets to ensure no conflict during site migrations after setting force_destroy attribute in the terraform s3 bucket code

Put S3 bucket names back because force_destroy must be applied first

26 Feb 20:14
cd18526
Compare
Choose a tag to compare

Put S3 bucket names back because the terraform force_destroy attribute must be applied to the S3 buckets first

Rename S3 buckets to ensure no conflict during site migrations

26 Feb 19:19
5a148ff
Compare
Choose a tag to compare

Rename S3 buckets to include the account number prefix to ensure uniqueness across accounts. This ensures that sites can be migrated without the new system attempting to create duplicate S3 buckets, which must be globally unique.