Skip to content

Commit

Permalink
Add dormant WAF for shared ALB
Browse files Browse the repository at this point in the history
  • Loading branch information
farski committed Jan 10, 2025
1 parent 7e9e429 commit 7301acc
Showing 1 changed file with 19 additions and 0 deletions.
19 changes: 19 additions & 0 deletions spire/templates/shared-alb.yml
Original file line number Diff line number Diff line change
Expand Up @@ -435,6 +435,25 @@ Resources:
SetIdentifier: !Ref AWS::StackName
Type: A

Waf:
Type: AWS::WAFv2::WebACL
Properties:
DefaultAction:
Allow:
Scope: REGIONAL
Tags:
- { Key: prx:meta:tagging-version, Value: "2021-04-07" }
- { Key: prx:cloudformation:stack-name, Value: !Ref AWS::StackName }
- { Key: prx:cloudformation:stack-id, Value: !Ref AWS::StackId }
- { Key: prx:cloudformation:root-stack-name, Value: !Ref RootStackName }
- { Key: prx:cloudformation:root-stack-id, Value: !Ref RootStackId }
- { Key: prx:ops:environment, Value: !Ref EnvironmentType }
- { Key: prx:dev:application, Value: Common }
VisibilityConfig:
CloudWatchMetricsEnabled: false
MetricName: !Sub ${Alb.LoadBalancerName}-WAF
SampledRequestsEnabled: false

Outputs:
AlbArn:
Description: The Amazon Resource Name (ARN) of the load balancer
Expand Down

0 comments on commit 7301acc

Please sign in to comment.