Batsad 1440 (#26)

dgwhited · web-flow · commit e3210be86934 · 2023-06-28T10:16:46.000-05:00
* acl private no longer needed

* variablize slack channel id
diff --git a/s3_data_events/s3.tf b/s3_data_events/s3.tf
@@ -4,10 +4,6 @@ resource "aws_s3_bucket" "cloudtrail" {
   force_destroy = false
 }
 
-resource "aws_s3_bucket_acl" "cloudtrail" {
-  bucket = aws_s3_bucket.cloudtrail.id
-  acl    = "private"
-}
 
 resource "aws_s3_bucket_public_access_block" "cloudtrail" {
   bucket = aws_s3_bucket.cloudtrail.id
diff --git a/security-alerts/chatbot.tf b/security-alerts/chatbot.tf
@@ -1,7 +1,7 @@
 resource "awscc_chatbot_slack_channel_configuration" "chatbot" {
   configuration_name = "batcave-security-alerts"
   iam_role_arn       = aws_iam_role.chatbot_role.arn
-  slack_channel_id   = "C036GQ3E9D1"
+  slack_channel_id   = var.slack_channel_id
   slack_workspace_id = "TGYJGRB1T"
   guardrail_policies = ["arn:aws:iam::aws:policy/ReadOnlyAccess"]
   logging_level      = "INFO"
diff --git a/security-alerts/variables.tf b/security-alerts/variables.tf
@@ -25,4 +25,9 @@ variable "sechub_nessus_rule_name" {
 
 variable "account_name" {
   type = string
+}
+
+variable "slack_channel_id" {
+  type    = string
+  default = "C036GQ3E9D1"
 }

Original file line number	Diff line number	Diff line change
`@@ -4,10 +4,6 @@ resource "aws_s3_bucket" "cloudtrail" {`
`4`	`4`	`force_destroy = false`
`5`	`5`	`}`
`6`	`6`
`7`		`-resource "aws_s3_bucket_acl" "cloudtrail" {`
`8`		`- bucket = aws_s3_bucket.cloudtrail.id`
`9`		`- acl = "private"`
`10`		`-}`
`11`	`7`
`12`	`8`	`resource "aws_s3_bucket_public_access_block" "cloudtrail" {`
`13`	`9`	`bucket = aws_s3_bucket.cloudtrail.id`
Original file line number	Diff line number	Diff line change
`@@ -25,4 +25,9 @@ variable "sechub_nessus_rule_name" {`
`25`	`25`
`26`	`26`	`variable "account_name" {`
`27`	`27`	`type = string`
	`28`	`+}`
	`29`	`+`
	`30`	`+variable "slack_channel_id" {`
	`31`	`+ type = string`
	`32`	`+ default = "C036GQ3E9D1"`
`28`	`33`	`}`