search

cloud-gov / cg-atlas

Repository hosting issues and artifacts related to operations of the cloud.gov platform
Creative Commons Zero v1.0 Universal
3 stars 1 forks source link

Reject S3 uploads without server-side encryption #123

Closed jmcarp closed 8 years ago

jmcarp commented 8 years ago

Buckets that must be encrypted should reject uploads that don't specify server-side encryption. Example policy: http://s3tools.org/kb/item11.htm

jmcarp commented 8 years ago

https://github.com/18F/cg-provision/pull/46

jmcarp commented 8 years ago

Bucket policies are set correctly, and uploads without sse are rejected:

screen shot 2016-07-20 at 5 46 48 pm

screen shot 2016-07-20 at 5 55 30 pm
rogeruiz commented 8 years ago

👍