afeld
commented
6 years ago @eyard @kishorebabu12 ^
Closed Vermyndax closed 6 years ago
afeld
commented
6 years ago @eyard @kishorebabu12 ^
tim20watts
commented
6 years ago Jason The Cloud team has some extensive working knowledge on this subject. you may want to reach out to Julius Williams - IOH julius.williams@gsa.gov Or my self timothy.watts@gsa.gov and we mably to help.
Thank you in advance, Timothy E. Watts - IDIHC Cloud Management Branch - Innovation Specialist Office (504) 249-6438 | Cell (985) 237-0782 | timothy.watts@gsa.gov | www.gsa.gov
CONTACT US: Reach the Cloud Management Branch on our "Chatter Page"! Email Cloud Management Branch at "cloudmgmt@gsa.gov".
On Fri, Sep 29, 2017 at 3:55 PM, Jason Miller notifications@github.com wrote:
I'd like to use: https://github.com/18F/cg-provision/blob/master/ terraform/modules/s3_bucket/encrypted_bucket/encrypted_bucket.tf ...for the S3 bucket to back up jenkins, but setting up a policy that forces encryption could lead to a situation that runs afoul of GSA security's KMS key requirements. Anyone have an opinion on guidance for this one?
— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/GSA/DevSecOps-Mgmt-Tools-Deploy/issues/8, or mute the thread https://github.com/notifications/unsubscribe-auth/AcZ6b02fXSB-bZcB7lG-g_b4PNhWo_pqks5snVk7gaJpZM4PpOOa .
Vermyndax
commented
6 years ago This is implemented here: https://github.com/GSA/devsecops-example-pipeline/pull/2
I'd like to use: https://github.com/18F/cg-provision/blob/master/terraform/modules/s3_bucket/encrypted_bucket/encrypted_bucket.tf ...for the S3 bucket to back up jenkins, but setting up a policy that forces encryption could lead to a situation that runs afoul of GSA security's KMS key requirements. Anyone have an opinion on guidance for this one?