Parametrize tls version according to Azure policies requirement (!662) · Merge requests · OSDU Software / OSDU Data Platform / Deployment and Operations / infra-azure-provisioning

Vasyl Leskiv [SLB] requested to merge vl/parametrize-tls-version into master Jun 17, 2022

All Submissions:

[YES] Have you added an explanation of what your changes do and why you'd like us to include them?
[YES] I have updated the documentation accordingly.
[YES] My code follows the code style of this project.

Current Behavior or Linked Issues

Update enforcement policy for Postgres: resource "azurerm_postgresql_server" "main" ssl_minimal_tls_version_enforced = "TLSEnforcementDisabled" -> "TLS1_2".

Motivation:

Security best practice
Azure policies enforcement on client side: Some clients have Azure security policies that are conflicting with this setting. TLSEnforcement should be enabled by default.

Does this introduce a breaking change?

[NO]

Edited Jun 17, 2022 by Vasyl Leskiv [SLB]

Parametrize tls version according to Azure policies requirement

All Submissions:

Current Behavior or Linked Issues

Does this introduce a breaking change?

Merge request reports