search

hashicorp / terraform-provider-aws

The AWS Provider enables Terraform to manage AWS resources.
https://registry.terraform.io/providers/hashicorp/aws
Mozilla Public License 2.0
9.85k stars 9.2k forks source link

[New]: The aws_glue_security_configuration resource should support encrypting Glue Data Quality . #39821

Open vaquarkhan opened 1 month ago

vaquarkhan commented 1 month ago

Description

Currently aws_glue_security_configuration is not have support to add encryption for Glue data quality . if glue data quality not encrypted then Glue security configuration show disabled even you encrypt S3, KMS and CLoudwatch . which flag as security findings . looking to add support so via terraform we can add glue data quality encryption Document: https://registry.terraform.io/providers/hashicorp/aws/4.1.0/docs/resources/glue_security_configuration Images dq1 dq2 dq3

Requested Resource(s) and/or Data Source(s)

aws_glue_security_configuration data quality encryption

Potential Terraform Configuration

resource "aws_glue_security_configuration" "example" {
  name = "example"

  encryption_configuration {
    cloudwatch_encryption {
      cloudwatch_encryption_mode = "DISABLED"
    }

    job_bookmarks_encryption {
      job_bookmarks_encryption_mode = "DISABLED"
    }

    s3_encryption {
      kms_key_arn        = data.aws_kms_key.example.arn
      s3_encryption_mode = "SSE-KMS"
    }
    # Add new feature
    data_quality_encryption {
      kms_key_arn        = data.aws_kms_key.example.arn
      data_quality_encryption_mode = "SSE-KMS"
    }
  }
}

References

Would you like to implement a fix?

Yes

github-actions[bot] commented 1 month ago

Community Note

Voting for Prioritization

Volunteering to Work on This Issue

vaquarkhan commented 2 weeks ago

do we need any process or i can start work on this enhancement ?

vaquarkhan commented 5 days ago

Code changes are done , we have following blocker for release this enhancement - https://github.com/aws/aws-sdk-go-v2/issues/2893