Provide real impact description on the service mentioned. It can include any potential blockers for the product team.
Uncertainty of visibility of Cloudfront resources using ACL / WAF from prisons delaying move to Cloudfront in all environments.
Problem description
We are moving from securing S3 resources via presigned URLs to Cloudfront paired with a WAF / ACL.
We would like to temporarily add the two IP addresses for Erlestoke prison as visible in the production Prisoner Content Hub Cloudfront ACL / WAF to the development ACL / WAF so that we can prove that the prison estate will be able to view S3 resources when secured in this manner.
Contact person
Elliot Ward / elliot.ward@digital.justice.gov.uk
Tosin Ogunrinde / tosin.ogunrinde@digital.justice.gov.uk
Service name
Prisoner Content Hub
Service environment
Impact on the service
Provide real impact description on the service mentioned. It can include any potential blockers for the product team.
Uncertainty of visibility of Cloudfront resources using ACL / WAF from prisons delaying move to Cloudfront in all environments.
Problem description
We are moving from securing S3 resources via presigned URLs to Cloudfront paired with a WAF / ACL.
We would like to temporarily add the two IP addresses for Erlestoke prison as visible in the production Prisoner Content Hub Cloudfront ACL / WAF to the development ACL / WAF so that we can prove that the prison estate will be able to view S3 resources when secured in this manner.
Contact person
Elliot Ward / elliot.ward@digital.justice.gov.uk Tosin Ogunrinde / tosin.ogunrinde@digital.justice.gov.uk